protected function emit($channel, $event, $message = null)
{
$client = new \Guzzle\Http\Client();
$apiUrl = "{$this->container->getParameter('socketio_baseurl')}/{$channel}/emit";
$request = $client->post($apiUrl, array('Content-Type' => 'application/json'), json_encode(array('event' => $event, 'message' => $message)));
$client->send($request);
}
/**
* Make the call to the endpoint and get the result
*
* @param string $url The URL to call
* @param string $method The verb to use
* @param array $params An array of parameters
*
* @return array The result in php array
*/
private function call($url, $method, $params = null)
{
$request = $this->client->createRequest($method, $this->getEndpoint() . $url);
$request->setHeader('Content-Type', 'application/' . $this->format);
$request->setHeader('Accept', 'application/' . $this->format);
$request->setHeader('Authorization', 'Basic ' . base64_encode($this->username . "/token:" . $this->api_key));
if ($params) {
$request->setBody(Stream::factory(json_encode($params)));
}
$response = $this->client->send($request);
return json_decode($response->getBody());
}
public function getRecipientViewUrl($returnUrl)
{
$data = array("email" => $this->studentEmail, "returnUrl" => $returnUrl, "authenticationMethod" => "None", "userName" => $this->studentName, "clientUserId" => $this->clientUserId);
//var_dump($data);
//exit;
$http = new \Guzzle\Http\Client();
try {
//$request = $http->createRequest('POST', $this->client->getBaseUrl() . $this->envelope->getUri() . '/views/recipient', ['body' => json_encode($data)]);
$request = $http->createRequest('POST', $this->client->getBaseUrl() . $this->envelope->getUri() . '/views/recipient');
$request->setBody(json_encode($data), 'application/json');
$request->setHeader('Content-Type', 'application/json');
$request->setHeader('Accept', 'application/json');
$request->setHeader('X-DocuSign-Authentication', $this->client->getAuthHeader());
$response = $http->send($request);
} catch (\Guzzle\Http\Exception\RequestException $e) {
//var_dump($e->getResponse()->json());
//var_dump($e);
//var_dump($e->getRequest());
//exit;
throw $e;
}
$result = $response->json();
//var_dump($result);exit;
return $result['url'];
}
/**
* Verify a reCAPTCHA submission.
*
* @return bool
*/
public function verify()
{
// Get reCAPTCHA value
$captcha = craft()->request->getPost('g-recaptcha-response');
// Get reCAPTCHA secret key
$secretKey = craft()->amForms_settings->getSettingsByHandleAndType('secretKey', AmFormsModel::SettingRecaptcha);
if (!$secretKey) {
return false;
}
// Google API parameters
$params = array('secret' => $secretKey->value, 'response' => $captcha);
// Set request
$client = new \Guzzle\Http\Client();
$request = $client->post('https://www.google.com/recaptcha/api/siteverify');
$request->addPostFields($params);
$result = $client->send($request);
// Handle response
if ($result->getStatusCode() == 200) {
$json = $result->json();
if ($json['success']) {
return true;
}
}
return false;
}
/**
* Sends a request and returns a response
*
* @param CartRecover_Request $request
* @return Cart_Recover_Response
*/
public function sendRequest(CartRecover_Request $request)
{
$url = Guzzle\Http\Url::factory($request->getUri());
$url->setQuery($request->getParams());
$this->client->setBaseUrl($url);
$grequest = $this->client->createRequest($request->getMethod(), $url);
$grequest->addHeader('Accept', 'application/json');
$this->response = $this->client->send($grequest);
if (!$this->response->isContentType('application/json')) {
throw new CartRecover_Exception_UnexpectedValueException("Unknown response format.");
}
$response = new CartRecover_Response();
$response->setRawResponse($this->response->__toString());
$response->setBody($this->response->json());
$response->setHeaders($this->response->getHeaders()->toArray());
$response->setStatus($this->response->getReasonPhrase(), $this->response->getStatusCode());
return $response;
}
public static function getEnvelopeById(Client $client, $envelopeId)
{
$http = new \Guzzle\Http\Client();
try {
$request = $http->createRequest('GET', $client->getBaseUrl() . '/envelopes/' . $envelopeId);
$request->setHeader('Content-Type', 'application/json');
$request->setHeader('Accept', 'application/json');
$request->setHeader('X-DocuSign-Authentication', $client->getAuthHeader());
$response = $http->send($request);
} catch (\GuzzleHttp\Exception\RequestException $e) {
throw new \Exception(print_r($e->getResponse()->json(), true));
}
$result = $response->json();
$envelope = new Envelope($result['envelopeId'], '/envelopes/' . $envelopeId, $result['statusChangedDateTime'], $result['status']);
return $envelope;
}
/**
* Purge the fastly cache
*
* @return bool
*/
public function purgeFastlyCache()
{
$fastlyKey = $this->settings->fastlyApiKey;
$serviceId = $this->settings->fastlyServiceId;
$client = new \Guzzle\Http\Client();
$url = 'https://api.fastly.com/service/' . $serviceId . '/purge_all';
$headers = ['Fastly-Key' => $fastlyKey, 'Accept' => 'application/json'];
$request = new \Guzzle\Http\Message\Request('POST', $url, $headers);
try {
$response = $client->send($request);
} catch (\Exception $e) {
$statusCode = $e->getResponse()->getInfo()['http_code'];
FastlyPlugin::log('Fastly API returned a non-successful response: ' . $statusCode, LogLevel::Error);
return false;
}
if ($response->getStatusCode() == 200) {
return true;
}
}
public function authenticate()
{
$url = $this->getAPIUrl() . '/login_information';
$http = new \Guzzle\Http\Client();
try {
$request = $http->createRequest('GET', $url);
$request->setHeader('Content-Type', 'application/json');
$request->setHeader('Accept', 'application/json');
$request->setHeader('X-DocuSign-Authentication', $this->getAuthHeader());
$response = $http->send($request);
} catch (\GuzzleHttp\Exception\RequestException $e) {
//var_dump($e);
//var_dump($e->getRequest());
//exit;
throw $e;
}
$json = $response->json();
//var_dump($json);exit;
//var_dump($json['loginAccounts'][0]['baseUrl']);
$this->baseURL = $json['loginAccounts'][0]['baseUrl'];
$this->accountID = $json['loginAccounts'][0]['accountId'];
/*
if( count($response->loginAccounts) > 1 ) $this->hasMultipleAccounts = true;
$defaultBaseURL = '';
$defaultAccountID = '';
foreach($response->loginAccounts as $account) {
if( !empty($this->accountID) ) {
if( $this->accountID == $account->accountId ) {
$this->baseURL = $account->baseUrl;
break;
}
}
if( $account->isDefault == 'true' ) {
$defaultBaseURL = $account->baseUrl;
$defaultAccountID = $account->accountId;
}
}
if(empty($this->baseURL)) {
$this->baseURL = $defaultBaseURL;
$this->accountID = $defaultAccountID;
}
*/
}
function testQueueing()
{
$client = new \Guzzle\Http\Client();
$client->getCurlMulti()->getEventDispatcher()->addSubscriber(new ConnectionLimit(2));
$queueings = 0;
$client->getEventDispatcher()->addListener('request.queued', function ($event) use(&$queueings) {
$queueings++;
});
$dequeueings = 0;
$client->getEventDispatcher()->addListener('request.dequeued', function ($event) use(&$dequeueings) {
$dequeueings++;
});
$requests = array($client->get()->setResponse(new Response(200), true), $client->get()->setResponse(new Response(200), true), $client->get()->setResponse(new Response(200), true), $client->get()->setResponse(new Response(200), true));
foreach ($client->send($requests) as $response) {
$this->assertEquals(200, $response->getStatusCode(), "Status code");
}
$this->assertEquals(2, $queueings, "Queueings");
$this->assertEquals(2, $dequeueings, "Dequeueings");
}
public function verify($data)
{
$base = "https://www.google.com/recaptcha/api/siteverify";
$plugin = craft()->plugins->getPlugin('recaptcha');
$settings = $plugin->getSettings();
$params = array('secret' => $settings->attributes['secretKey'], 'response' => $data);
$client = new \Guzzle\Http\Client();
$request = $client->post($base);
$request->addPostFields($params);
$result = $client->send($request);
if ($result->getStatusCode() == 200) {
$json = $result->json();
if ($json['success']) {
return true;
} else {
return false;
}
} else {
return false;
}
}
/**
* 推送消息给到微信服务器
*
* @param string $url
* @param array $params
* @return mixed
*/
public function post($url, $params = array())
{
$client = new \Guzzle\Http\Client($this->_url);
$client->setDefaultOption('body', $params);
$request = $client->post($url);
$request->getCurlOptions()->set(CURLOPT_SSLVERSION, 1);
// CURL_SSLVERSION_TLSv1
$response = $client->send($request);
if ($response->isSuccessful()) {
return $response->json();
} else {
throw new \Exception("云片短信服务器未有效的响应请求");
}
}
/**
* Load session from user
*
* At this time here, we can be in two situations. Either we are an
* anonymous user (user object here has most likely no name set we assume)
* but we also might happen to just be back from our trip to the OAuth
* Resource server.
*
* Documentation says we should read cookies and just pop in that user object
* the name coming from the cookies. I expect that just breaks any security
* steps we’ve taken so far.
*
* Since we came from the OAuth Resource server and the user had a successful
* authentication exchange, the Request URI should have TWO properties
*
* - code
* - state
*
* The Code will be used right after to get a bearer token, so, its safe
* to assume that we can start that validation here instead than later in the
* execution flow.
*
* If that step was successful, we trust that we already saved
* a state object in the Memcache server. Lets use that as a way to check
* **before any html has been given to the browser** to validate that user.
*
* We already might got cookies:
*
* - (.*)Token,
* - (.*)UserID
* - (.*)UserName
*
* Since we already can know expectable data from the resource server,
* use this hook as an event handler to actually do the validation.
* from our OAuth Resource server, and nothing else should be done
*
* @param [type] $user [description]
* @param [type] $result [description]
* @return [type] [description]
*/
public static function onUserLoadFromSession($user, &$result)
{
$GLOBALS['poorman_logging'] = array();
$diagnosis['session'] = RequestContext::getMain()->getRequest()->getCookie('_session');
$diagnosis['username'] = RequestContext::getMain()->getRequest()->getCookie('UserName');
$diagnosis['user_id'] = RequestContext::getMain()->getRequest()->getCookie('UserID');
if (isset($_COOKIE['wpdSsoUsername'])) {
$diagnosis['wpdSsoUsername'] = $_COOKIE['wpdSsoUsername'];
}
if (isset($_POST['recoveryPayload'])) {
$diagnosis['recoveryPayload'] = $_POST['recoveryPayload'];
}
//header("X-WebPlatform-Debug: ".substr(str_replace('"','', json_encode($diagnosis,true)),1,-1));
//header("X-WebPlatform-Debug-Cookie: ".substr(str_replace('"','', json_encode($_COOKIE,true)),1,-1));
//if(isset($_POST['recoveryPayload'])){
// header("X-WebPlatform-Debug-Edgecase2: recoveryPayload is present");
//}
// Use Native PHP way to check REQUEST params
$state_key = isset($_GET['state']) ? $_GET['state'] : null;
$code = isset($_GET['code']) ? $_GET['code'] : null;
$bearer_token = null;
$profile = null;
$site_root = str_replace('$1', '', $GLOBALS['wgArticlePath']);
//$registeredCookieWithUsername = RequestContext::getMain()->getRequest()->getCookie( 'UserName' );
//$GLOBALS['poorman_logging'][] = 'Registered cookie username: '******'recoveryPayload']) ? $_POST['recoveryPayload'] : null;
if (is_string($sessionToken)) {
header('Cache-Control: no-store, no-cache, must-revalidate');
// TODO: Do some more validation with this, see
// notes at http://docs.webplatform.org/wiki/WPD:Projects/SSO/Improvements_roadmap#Recovering_session_data
try {
$uri = 'https://profile.accounts.webplatform.org/v1/session/recover';
$client = new Guzzle\Http\Client();
$client->setDefaultOption('timeout', 22);
$subreq = $client->get($uri);
$subreq->setHeader('Content-type', 'application/json');
$subreq->setHeader('Authorization', 'Session ' . $sessionToken);
$r = $client->send($subreq);
} catch (Guzzle\Http\Exception\ClientErrorResponseException $e) {
$clientErrorStatusCode = $e->getResponse()->getStatusCode();
$clientErrorReason = $e->getResponse()->getReasonPhrase();
// We are considering that wgUser id 0 means anonymous
if ($clientErrorStatusCode === 401 && $GLOBALS['wgUser']->getId() !== 0) {
$GLOBALS['wgUser']->logout();
header("HTTP/1.1 401 Unauthorized");
header("X-WebPlatform-Outcome-1: Session closed, closing local too");
// 401 AND uid 0 means we have nothing to do
} elseif ($clientErrorStatusCode === 401 && $GLOBALS['wgUser']->getId() === 0) {
header("HTTP/1.1 204 No Content");
header("X-WebPlatform-Outcome-2: Session closed both local and accounts");
}
return true;
} catch (Guzzle\Http\Exception\CurlException $e) {
header("X-WebPlatform-Outcome-3: CurlException");
header("HTTP/1.1 400 Bad Request");
echo $e->getMessage();
return true;
}
try {
$data = $r->json();
} catch (Exception $e) {
header("HTTP/1.1 400 Bad Request");
header("X-WebPlatform-Outcome-4: Profile refused communication");
echo "Profile server refused communication";
return true;
}
# 20140807
$wgUserName = is_object($GLOBALS['wgUser']) ? $GLOBALS['wgUser']->getName() : null;
if (isset($data['username']) && strtolower($wgUserName) === strtolower($data['username'])) {
header("X-WebPlatform-Outcome-5: " . strtolower($wgUserName) . " is " . strtolower($data['username']));
header("HTTP/1.1 204 No Content");
return true;
// All is good
}
$tempUser = WebPlatformAuthUserFactory::prepareUser($data);
wfSetupSession();
if ($tempUser->getId() === 0) {
// No user exists whatsoever, create and make current user
$tempUser->ConfirmEmail();
$tempUser->setEmailAuthenticationTimestamp(time());
$tempUser->setPassword(User::randomPassword());
$tempUser->setToken();
$tempUser->setOption("rememberpassword", 0);
$tempUser->addToDatabase();
$GLOBALS['poorman_logging'][] = sprintf('User %s created', $tempUser->getName());
} else {
// User exist in database, load it
$tempUser->loadFromDatabase();
$GLOBALS['poorman_logging'][] = sprintf('Session for %s started', $tempUser->getName());
}
$GLOBALS['poorman_logging'][] = $tempUser->getId();
$GLOBALS['wgUser'] = $tempUser;
$tempUser->saveSettings();
$tempUser->setCookies();
// Ideally, the first false below should be true! But we need SSL at the top level domain
setcookie('wpdSsoUsername', $data['username'], time() + 60 * 60 * 7, '/', '.webplatform.org', false, true);
if (isset($_GET['username'])) {
header("X-WebPlatform-Username: "******"X-WebPlatform-Recovery: " . urlencode(json_encode($data)) );
header("HTTP/1.0 201 Created");
return true;
}
if (is_string($state_key) && is_string($code)) {
// START IF HAS STATE AND CODE
// WE HAVE STATE AND CODE, NOW ARE THEY JUNK?
//$GLOBALS['poorman_logging'][] = 'About to retrieve data: '.(($user->isLoggedIn())?'logged in':'not logged in'); // DEBUG
// Since we DO have what we need to get
// to our validation server, please do not cache.
// ... and since WE DIDN’t send any HTML, yet (good boy)
// we can actually do that.
header('Cache-Control: no-store, no-cache, must-revalidate');
try {
$apiHandler = new FirefoxAccountsManager($GLOBALS['wgWebPlatformAuth']);
// $code can be used ONLY ONCE!
//$GLOBALS['poorman_logging'][] = 'Code: '.print_r($code,1); // DEBUG
$bearer_token = $apiHandler->getBearerToken($code);
} catch (ClientErrorResponseException $e) {
$msg = 'Could not get authorization token';
$GLOBALS['poorman_logging'][] = $msg;
$msg .= ', returned after FirefoxAccountsManager::getBearerToken(), it said:' . $e->getMessage();
$obj = json_decode($e->getResponse()->getBody(true), true);
$msg .= isset($obj['reason']) ? ', reason: ' . $obj['reason'] : null;
$msg .= isset($obj['message']) ? ', message: ' . $obj['message'] : null;
error_log($msg);
//header('Location: '.$site_root);
return true;
} catch (Exception $e) {
// Other error: e.g. config, or other Guzzle call not expected.
$msg = 'Unknown error, Could not get authorization token';
$GLOBALS['poorman_logging'][] = $msg;
$msg .= ', returned a "' . get_class($e);
$msg .= '" after FirefoxAccountsManager::getBearerToken(), it said: ' . $e->getMessage();
error_log($msg);
//header('Location: '.$site_root);
return true;
}
//$GLOBALS['poorman_logging'][] = 'Bearer token: '.print_r($bearer_token,1); // DEBUG
// FirefoxAccountsManager::getBearerToken()
// returns an array.
if (is_array($bearer_token)) {
try {
$profile = $apiHandler->getProfile($bearer_token);
//$GLOBALS['poorman_logging'][] = 'Profile: '.print_r($profile,1); // DEBUG
$tempUser = WebPlatformAuthUserFactory::prepareUser($profile);
} catch (ClientErrorResponseException $e) {
$msg = 'Could not retrieve profile data';
$GLOBALS['poorman_logging'][] = $msg;
$msg .= ', returned a "' . get_class($e);
$msg .= '" after calling getProfile(), it said: ' . $e->getMessage();
$obj = json_decode($e->getResponse()->getBody(true), true);
$msg .= isset($obj['reason']) ? ', with reason: ' . $obj['reason'] : null;
$msg .= isset($obj['message']) ? ', message: ' . $obj['message'] : null;
error_log($msg);
return true;
} catch (Exception $e) {
$msg = 'Unknown error, Could not get profile data or create new user';
$GLOBALS['poorman_logging'][] = $msg;
$msg .= ', returned a "' . get_class($e);
$msg .= '" after FirefoxAccountsManager::getProfile(), it said: ' . $e->getMessage();
error_log($msg);
return true;
}
// Note that, HERE, whether we use $GLOBALS['wgUser']
// or $user (passed in this function call from the hook)
// or EVEN the one passed to WebPlatformAuthUserFactory::prepareUser()
// it should be the same. It is assumed that in prepareUser() it the call
// to MW User::loadDefaults($username) makes that binding.
// #DOUBLECHECKLATER
// Let’s be EXPLICIT
//
// Note that MW User::isLoggedIn() is not **only** checking
// whether the user is logged in per se. But rather do both;
// checking if the user exists in the database. Doesn’t mean
// the session is bound, yet.
wfSetupSession();
if ($tempUser->getId() === 0) {
// No user exists whatsoever, create and make current user
$tempUser->ConfirmEmail();
$tempUser->setEmailAuthenticationTimestamp(time());
$tempUser->setPassword(User::randomPassword());
$tempUser->setToken();
$tempUser->setOption("rememberpassword", 0);
$tempUser->addToDatabase();
$GLOBALS['poorman_logging'][] = sprintf('User %s created', $tempUser->getName());
} else {
// User exist in database, load it
$tempUser->loadFromDatabase();
$GLOBALS['poorman_logging'][] = sprintf('Session for %s started', $tempUser->getName());
}
$GLOBALS['poorman_logging'][] = $tempUser->getId();
$GLOBALS['wgUser'] = $tempUser;
$tempUser->saveSettings();
$tempUser->setCookies();
//$GLOBALS['poorman_logging'][] = ($GLOBALS['wgUser']->isLoggedIn())?'logged in':'not logged in'; // DEBUG
//$GLOBALS['poorman_logging'][] = $tempUser->getId(); // DEBUG
$state_data = $apiHandler->stateRetrieve($state_key);
if (is_array($state_data) && isset($state_data['return_to'])) {
$apiHandler->stateDeleteKey($state_key);
$GLOBALS['poorman_logging'][] = 'State data: ' . print_r($state_data, 1);
header('Location: ' . $state_data['return_to']);
return true;
// Even though it might just be sent elsewhere, making sure.
}
} else {
$GLOBALS['poorman_logging'][] = 'No bearer tokens';
header('Location: ' . $site_root);
}
}
//$GLOBALS['poorman_logging'][] = ($GLOBALS['wgUser']->isLoggedIn())?'logged in':'not logged in';
/**
* I can put true or false because we wont be using local authentication
* whatsoever. Hopefully that’s the way to do.
*
* Quoting the doc
*
* "When the authentication should continue undisturbed
* after the hook was executed, do not touch $result. When
* the normal authentication should not happen
* (e.g., because $user is completely initialized),
* set $result to any boolean value."
*
* -- 2014-05-22 http://www.mediawiki.org/wiki/Manual:Hooks/UserLoadFromSession
*
* But, if I set $result to either true or false, it doesn’t make the UI to
* act as if you are logged in, AT ALL. Even though I created
* the user and set it to the global object. I’d like to investigate on why we cannot
* set either true or false here because it is unclear what it means undisturbed... we are
* creating local users, based on remote data, but authentication implies password, we arent using
* local ones, what gives? #DOUBLECHECKLATER
*/
//$result = false; // Doesn’t matter true or false, and its passed here by-reference.
return true;
// Hook MUST return true if it was as intended, was it? (hopefully so far)
}
/**
* 推送消息给到微信服务器
*
* @param string $url
* @param string $body
* @param array $options
* @return mixed
*/
public function post($url, $body, $options = array())
{
$client = new \Guzzle\Http\Client();
$client->setDefaultOption('query', array('access_token' => $this->getAccessToken()));
$client->setDefaultOption('body', $body);
$request = $client->post($url, null, null, $options);
$request->getCurlOptions()->set(CURLOPT_SSLVERSION, 1);
// CURL_SSLVERSION_TLSv1
$response = $client->send($request);
if ($response->isSuccessful()) {
return $response->getBody(true);
} else {
throw new Exception("来伊份服务器未有效的响应请求");
}
}
