public function runStep($step) { VarnishpurgePlugin::log('Varnish purge task run step: ' . $step, LogLevel::Info, craft()->varnishpurge->getSetting('varnishLogAll')); $servers = craft()->varnishpurge->getSetting('varnishUrl'); if (!is_array($servers)) { $servers = array($servers); } foreach ($servers as $server) { $batch = \Guzzle\Batch\BatchBuilder::factory()->transferRequests(20)->bufferExceptions()->build(); $client = new \Guzzle\Http\Client(); $client->setDefaultOption('headers/Accept', '*/*'); foreach ($this->_urls[$step] as $url) { $urlComponents = parse_url($url); $targetUrl = preg_replace('{/$}', '', $server) . $urlComponents['path']; VarnishpurgePlugin::log('Adding url to purge: ' . $targetUrl . ' with Host: ' . $urlComponents['host'], LogLevel::Info, craft()->varnishpurge->getSetting('varnishLogAll')); $request = $client->createRequest('PURGE', $targetUrl); $request->addHeader('Host', $urlComponents['host']); $batch->add($request); } $requests = $batch->flush(); foreach ($batch->getExceptions() as $e) { VarnishpurgePlugin::log('An exception occurred: ' . $e->getMessage(), LogLevel::Error); } $batch->clearExceptions(); } return true; }
/** * @inheritDoc ITask::runStep() * * @param int $step * * @return bool */ public function runStep($step) { // NOTE: Perhaps much of this should be moved into a service $batch = \Guzzle\Batch\BatchBuilder::factory()->transferRequests(20)->bufferExceptions()->build(); // Make the client $client = new \Guzzle\Http\Client(); // Set the Accept header $client->setDefaultOption('headers/Accept', '*/*'); // Loop the paths in this step foreach ($this->_paths[$step] as $path) { // Make the url, stripping 'site:' from the path if it exists $newPath = preg_replace('/site:/', '', $path, 1); $url = UrlHelper::getSiteUrl($newPath); // Create the GET request $request = $client->get($url); // Add it to the batch $batch->add($request); } // Flush the queue and retrieve the flushed items $requests = $batch->flush(); // Log any exceptions foreach ($batch->getExceptions() as $e) { Craft::log('CacheMonster: an exception occurred: ' . $e->getMessage(), LogLevel::Error); } // Clear any exceptions $batch->clearExceptions(); return true; }
public function runStep($step) { VarnishpurgePlugin::log('Varnish purge task run step: ' . $step, LogLevel::Info, craft()->varnishpurge->getSetting('varnishLogAll')); $batch = \Guzzle\Batch\BatchBuilder::factory()->transferRequests(20)->bufferExceptions()->build(); $client = new \Guzzle\Http\Client(); $client->setDefaultOption('headers/Accept', '*/*'); foreach ($this->_urls[$step] as $url) { VarnishpurgePlugin::log('Adding url to purge: ' . $url, LogLevel::Info, craft()->varnishpurge->getSetting('varnishLogAll')); $request = $client->createRequest('PURGE', $url); $batch->add($request); } $requests = $batch->flush(); foreach ($batch->getExceptions() as $e) { VarnishpurgePlugin::log('An exception occurred: ' . $e->getMessage(), LogLevel::Error); } $batch->clearExceptions(); return true; }
/** * Do something. * * @ApiDoc( * statusCodes = { * 200 = "Returned when successful" * } * ) * * @Annotations\View() * * @param Request $request the request object * @param ParamFetcherInterface $paramFetcher param fetcher service * * @return array */ public function getSlackCallbackAction(Request $request, ParamFetcherInterface $paramFetcher) { //GET /api/slack/callback?code=10774936049.16968959669.95e76d0d0a&state=X+bEw HTTP/1.1 // Accept: text/html,application/xhtml+xml,application/xml; q=0.9,image/webp,*/*;q=0.8 //Accept-Encoding: gzip, deflate, sdch //Accept-Language: en-US,en;q=0.8,es;q=0.6 //Cache-Control: max-age=0 //Connection: keep-alive //Cookie: wordpress_test_cookie=WP+Cookie+check //Host: 4pixels.co //Upgrade-Insecure-Requests: 1 //User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/47.0.2526.106 Safari/537.36 X-Php-Ob-Level: /* @var $client \Guzzle\Http\Client */ /* @var $requestForSlack \Guzzle\Http\Message\Request */ $em = $this->getDoctrine()->getManager(); $logger = $this->get('logger'); $logger->info("----------------------------------------------"); $logger->info("------------getSlackCallbackAction------------"); $logger->info("----------------------------------------------"); $slackCode = $request->get('code'); $slackState = $request->get('state'); // Create a client and provide a base URL $client = new \Guzzle\Http\Client('https://slack.com'); $client->setDefaultOption('query', ['client_id' => $this->getParameter('slack.client_id'), 'client_secret' => $this->getParameter('slack.client_secret'), 'code' => $slackCode]); $requestForSlack = $client->get('/api/oauth.access'); $response = $requestForSlack->send(); $slackJson = $response->getBody(); $logger->info($slackJson); $serializer = $this->getSerializer(); $slack = $serializer->deserialize($slackJson, 'FourPixelsBundle\\Entity\\Slack', 'json'); $slack->setContent($slackJson); $em->persist($slack); $em->flush(); return $this->redirect('https://4pixels.co', Response::HTTP_FOUND); }
/** * 推送消息给到微信服务器 * * @param string $url * @param array $params * @return mixed */ public function post($url, $params = array()) { $client = new \Guzzle\Http\Client($this->_url); $client->setDefaultOption('body', $params); $request = $client->post($url); $request->getCurlOptions()->set(CURLOPT_SSLVERSION, 1); // CURL_SSLVERSION_TLSv1 $response = $client->send($request); if ($response->isSuccessful()) { return $response->json(); } else { throw new \Exception("云片短信服务器未有效的响应请求"); } }
/** * Load session from user * * At this time here, we can be in two situations. Either we are an * anonymous user (user object here has most likely no name set we assume) * but we also might happen to just be back from our trip to the OAuth * Resource server. * * Documentation says we should read cookies and just pop in that user object * the name coming from the cookies. I expect that just breaks any security * steps we’ve taken so far. * * Since we came from the OAuth Resource server and the user had a successful * authentication exchange, the Request URI should have TWO properties * * - code * - state * * The Code will be used right after to get a bearer token, so, its safe * to assume that we can start that validation here instead than later in the * execution flow. * * If that step was successful, we trust that we already saved * a state object in the Memcache server. Lets use that as a way to check * **before any html has been given to the browser** to validate that user. * * We already might got cookies: * * - (.*)Token, * - (.*)UserID * - (.*)UserName * * Since we already can know expectable data from the resource server, * use this hook as an event handler to actually do the validation. * from our OAuth Resource server, and nothing else should be done * * @param [type] $user [description] * @param [type] $result [description] * @return [type] [description] */ public static function onUserLoadFromSession($user, &$result) { $GLOBALS['poorman_logging'] = array(); $diagnosis['session'] = RequestContext::getMain()->getRequest()->getCookie('_session'); $diagnosis['username'] = RequestContext::getMain()->getRequest()->getCookie('UserName'); $diagnosis['user_id'] = RequestContext::getMain()->getRequest()->getCookie('UserID'); if (isset($_COOKIE['wpdSsoUsername'])) { $diagnosis['wpdSsoUsername'] = $_COOKIE['wpdSsoUsername']; } if (isset($_POST['recoveryPayload'])) { $diagnosis['recoveryPayload'] = $_POST['recoveryPayload']; } //header("X-WebPlatform-Debug: ".substr(str_replace('"','', json_encode($diagnosis,true)),1,-1)); //header("X-WebPlatform-Debug-Cookie: ".substr(str_replace('"','', json_encode($_COOKIE,true)),1,-1)); //if(isset($_POST['recoveryPayload'])){ // header("X-WebPlatform-Debug-Edgecase2: recoveryPayload is present"); //} // Use Native PHP way to check REQUEST params $state_key = isset($_GET['state']) ? $_GET['state'] : null; $code = isset($_GET['code']) ? $_GET['code'] : null; $bearer_token = null; $profile = null; $site_root = str_replace('$1', '', $GLOBALS['wgArticlePath']); //$registeredCookieWithUsername = RequestContext::getMain()->getRequest()->getCookie( 'UserName' ); //$GLOBALS['poorman_logging'][] = 'Registered cookie username: '******'recoveryPayload']) ? $_POST['recoveryPayload'] : null; if (is_string($sessionToken)) { header('Cache-Control: no-store, no-cache, must-revalidate'); // TODO: Do some more validation with this, see // notes at http://docs.webplatform.org/wiki/WPD:Projects/SSO/Improvements_roadmap#Recovering_session_data try { $uri = 'https://profile.accounts.webplatform.org/v1/session/recover'; $client = new Guzzle\Http\Client(); $client->setDefaultOption('timeout', 22); $subreq = $client->get($uri); $subreq->setHeader('Content-type', 'application/json'); $subreq->setHeader('Authorization', 'Session ' . $sessionToken); $r = $client->send($subreq); } catch (Guzzle\Http\Exception\ClientErrorResponseException $e) { $clientErrorStatusCode = $e->getResponse()->getStatusCode(); $clientErrorReason = $e->getResponse()->getReasonPhrase(); // We are considering that wgUser id 0 means anonymous if ($clientErrorStatusCode === 401 && $GLOBALS['wgUser']->getId() !== 0) { $GLOBALS['wgUser']->logout(); header("HTTP/1.1 401 Unauthorized"); header("X-WebPlatform-Outcome-1: Session closed, closing local too"); // 401 AND uid 0 means we have nothing to do } elseif ($clientErrorStatusCode === 401 && $GLOBALS['wgUser']->getId() === 0) { header("HTTP/1.1 204 No Content"); header("X-WebPlatform-Outcome-2: Session closed both local and accounts"); } return true; } catch (Guzzle\Http\Exception\CurlException $e) { header("X-WebPlatform-Outcome-3: CurlException"); header("HTTP/1.1 400 Bad Request"); echo $e->getMessage(); return true; } try { $data = $r->json(); } catch (Exception $e) { header("HTTP/1.1 400 Bad Request"); header("X-WebPlatform-Outcome-4: Profile refused communication"); echo "Profile server refused communication"; return true; } # 20140807 $wgUserName = is_object($GLOBALS['wgUser']) ? $GLOBALS['wgUser']->getName() : null; if (isset($data['username']) && strtolower($wgUserName) === strtolower($data['username'])) { header("X-WebPlatform-Outcome-5: " . strtolower($wgUserName) . " is " . strtolower($data['username'])); header("HTTP/1.1 204 No Content"); return true; // All is good } $tempUser = WebPlatformAuthUserFactory::prepareUser($data); wfSetupSession(); if ($tempUser->getId() === 0) { // No user exists whatsoever, create and make current user $tempUser->ConfirmEmail(); $tempUser->setEmailAuthenticationTimestamp(time()); $tempUser->setPassword(User::randomPassword()); $tempUser->setToken(); $tempUser->setOption("rememberpassword", 0); $tempUser->addToDatabase(); $GLOBALS['poorman_logging'][] = sprintf('User %s created', $tempUser->getName()); } else { // User exist in database, load it $tempUser->loadFromDatabase(); $GLOBALS['poorman_logging'][] = sprintf('Session for %s started', $tempUser->getName()); } $GLOBALS['poorman_logging'][] = $tempUser->getId(); $GLOBALS['wgUser'] = $tempUser; $tempUser->saveSettings(); $tempUser->setCookies(); // Ideally, the first false below should be true! But we need SSL at the top level domain setcookie('wpdSsoUsername', $data['username'], time() + 60 * 60 * 7, '/', '.webplatform.org', false, true); if (isset($_GET['username'])) { header("X-WebPlatform-Username: "******"X-WebPlatform-Recovery: " . urlencode(json_encode($data)) ); header("HTTP/1.0 201 Created"); return true; } if (is_string($state_key) && is_string($code)) { // START IF HAS STATE AND CODE // WE HAVE STATE AND CODE, NOW ARE THEY JUNK? //$GLOBALS['poorman_logging'][] = 'About to retrieve data: '.(($user->isLoggedIn())?'logged in':'not logged in'); // DEBUG // Since we DO have what we need to get // to our validation server, please do not cache. // ... and since WE DIDN’t send any HTML, yet (good boy) // we can actually do that. header('Cache-Control: no-store, no-cache, must-revalidate'); try { $apiHandler = new FirefoxAccountsManager($GLOBALS['wgWebPlatformAuth']); // $code can be used ONLY ONCE! //$GLOBALS['poorman_logging'][] = 'Code: '.print_r($code,1); // DEBUG $bearer_token = $apiHandler->getBearerToken($code); } catch (ClientErrorResponseException $e) { $msg = 'Could not get authorization token'; $GLOBALS['poorman_logging'][] = $msg; $msg .= ', returned after FirefoxAccountsManager::getBearerToken(), it said:' . $e->getMessage(); $obj = json_decode($e->getResponse()->getBody(true), true); $msg .= isset($obj['reason']) ? ', reason: ' . $obj['reason'] : null; $msg .= isset($obj['message']) ? ', message: ' . $obj['message'] : null; error_log($msg); //header('Location: '.$site_root); return true; } catch (Exception $e) { // Other error: e.g. config, or other Guzzle call not expected. $msg = 'Unknown error, Could not get authorization token'; $GLOBALS['poorman_logging'][] = $msg; $msg .= ', returned a "' . get_class($e); $msg .= '" after FirefoxAccountsManager::getBearerToken(), it said: ' . $e->getMessage(); error_log($msg); //header('Location: '.$site_root); return true; } //$GLOBALS['poorman_logging'][] = 'Bearer token: '.print_r($bearer_token,1); // DEBUG // FirefoxAccountsManager::getBearerToken() // returns an array. if (is_array($bearer_token)) { try { $profile = $apiHandler->getProfile($bearer_token); //$GLOBALS['poorman_logging'][] = 'Profile: '.print_r($profile,1); // DEBUG $tempUser = WebPlatformAuthUserFactory::prepareUser($profile); } catch (ClientErrorResponseException $e) { $msg = 'Could not retrieve profile data'; $GLOBALS['poorman_logging'][] = $msg; $msg .= ', returned a "' . get_class($e); $msg .= '" after calling getProfile(), it said: ' . $e->getMessage(); $obj = json_decode($e->getResponse()->getBody(true), true); $msg .= isset($obj['reason']) ? ', with reason: ' . $obj['reason'] : null; $msg .= isset($obj['message']) ? ', message: ' . $obj['message'] : null; error_log($msg); return true; } catch (Exception $e) { $msg = 'Unknown error, Could not get profile data or create new user'; $GLOBALS['poorman_logging'][] = $msg; $msg .= ', returned a "' . get_class($e); $msg .= '" after FirefoxAccountsManager::getProfile(), it said: ' . $e->getMessage(); error_log($msg); return true; } // Note that, HERE, whether we use $GLOBALS['wgUser'] // or $user (passed in this function call from the hook) // or EVEN the one passed to WebPlatformAuthUserFactory::prepareUser() // it should be the same. It is assumed that in prepareUser() it the call // to MW User::loadDefaults($username) makes that binding. // #DOUBLECHECKLATER // Let’s be EXPLICIT // // Note that MW User::isLoggedIn() is not **only** checking // whether the user is logged in per se. But rather do both; // checking if the user exists in the database. Doesn’t mean // the session is bound, yet. wfSetupSession(); if ($tempUser->getId() === 0) { // No user exists whatsoever, create and make current user $tempUser->ConfirmEmail(); $tempUser->setEmailAuthenticationTimestamp(time()); $tempUser->setPassword(User::randomPassword()); $tempUser->setToken(); $tempUser->setOption("rememberpassword", 0); $tempUser->addToDatabase(); $GLOBALS['poorman_logging'][] = sprintf('User %s created', $tempUser->getName()); } else { // User exist in database, load it $tempUser->loadFromDatabase(); $GLOBALS['poorman_logging'][] = sprintf('Session for %s started', $tempUser->getName()); } $GLOBALS['poorman_logging'][] = $tempUser->getId(); $GLOBALS['wgUser'] = $tempUser; $tempUser->saveSettings(); $tempUser->setCookies(); //$GLOBALS['poorman_logging'][] = ($GLOBALS['wgUser']->isLoggedIn())?'logged in':'not logged in'; // DEBUG //$GLOBALS['poorman_logging'][] = $tempUser->getId(); // DEBUG $state_data = $apiHandler->stateRetrieve($state_key); if (is_array($state_data) && isset($state_data['return_to'])) { $apiHandler->stateDeleteKey($state_key); $GLOBALS['poorman_logging'][] = 'State data: ' . print_r($state_data, 1); header('Location: ' . $state_data['return_to']); return true; // Even though it might just be sent elsewhere, making sure. } } else { $GLOBALS['poorman_logging'][] = 'No bearer tokens'; header('Location: ' . $site_root); } } //$GLOBALS['poorman_logging'][] = ($GLOBALS['wgUser']->isLoggedIn())?'logged in':'not logged in'; /** * I can put true or false because we wont be using local authentication * whatsoever. Hopefully that’s the way to do. * * Quoting the doc * * "When the authentication should continue undisturbed * after the hook was executed, do not touch $result. When * the normal authentication should not happen * (e.g., because $user is completely initialized), * set $result to any boolean value." * * -- 2014-05-22 http://www.mediawiki.org/wiki/Manual:Hooks/UserLoadFromSession * * But, if I set $result to either true or false, it doesn’t make the UI to * act as if you are logged in, AT ALL. Even though I created * the user and set it to the global object. I’d like to investigate on why we cannot * set either true or false here because it is unclear what it means undisturbed... we are * creating local users, based on remote data, but authentication implies password, we arent using * local ones, what gives? #DOUBLECHECKLATER */ //$result = false; // Doesn’t matter true or false, and its passed here by-reference. return true; // Hook MUST return true if it was as intended, was it? (hopefully so far) }
/** * 推送消息给到微信服务器 * * @param string $url * @param string $body * @param array $options * @return mixed */ public function post($url, $body, $options = array()) { $client = new \Guzzle\Http\Client(); $client->setDefaultOption('query', array('access_token' => $this->getAccessToken())); $client->setDefaultOption('body', $body); $request = $client->post($url, null, null, $options); $request->getCurlOptions()->set(CURLOPT_SSLVERSION, 1); // CURL_SSLVERSION_TLSv1 $response = $client->send($request); if ($response->isSuccessful()) { return $response->getBody(true); } else { throw new Exception("来伊份服务器未有效的响应请求"); } }
public function download_googledrive($options) { $this->log(__('Downloading backup via google drive', 'my-wp-backup')); $client = Admin\Job::get_drive_client(); $client->setAccessToken(html_entity_decode($options['token_json'])); $service = new \Google_Service_Drive($client); $info = $this->backup['destinations']['googledrive']; foreach ($this->backup['archives'] as $archive) { $file = $info['files'][$archive]; $local_filename = $this->basedir . $archive; $this->log(sprintf(__('Downloading %s -> %s...', 'my-wp-backup'), $file['id'], $local_filename), 'debug'); $local = fopen($local_filename, 'wb'); $url = $service->files->get($file['id'])->getDownloadUrl(); $token = json_decode($client->getAccessToken(), true); if ($client->isAccessTokenExpired()) { $client->refreshToken($token['refresh_token']); } $token = json_decode($client->getAccessToken(), true); $httpclient = new \Guzzle\Http\Client(); $httpclient->setDefaultOption('headers/Authorization', 'Bearer ' . $token['access_token']); $httpclient->get($url)->setResponseBody($local)->send(); if (is_resource($local)) { fclose($local); } $this->log(__('Ok.', 'my-wp-backup'), 'debug'); } $this->log(__('Done google drive download', 'my-wp-backup')); }
/** * Check for whether code and/or state params are being passed back from GitHub after * user authorizes the regsitered app. If so, exchange for token and save. */ function wpghpl_handle_authentication_redirection() { #check if we're receiving the GitHub temporary code $code = !empty($_GET['code']) ? $_GET['code'] : false; $state = !empty($_GET['state']) ? $_GET['state'] : false; if (!$code) { return; } $saved_state = get_option('wpghpl_auth_state'); if ($state != $saved_state) { return; } //TODO: This should throw an error! update_option('wpghpl_auth_code', $code); //TODO: The php-githup-api library can probably do this easier //TODO: This should handle non-success scenarios, like user NOT granting access $guzzle = new \Guzzle\Http\Client('https://github.com'); $guzzle->setDefaultOption('headers', array('Accept' => 'application/json')); $body = array('client_id' => get_option('wpghpl_client_id'), 'client_secret' => get_option('wpghpl_client_secret'), 'code' => $code, 'redirect_uri' => admin_url('options-general.php?page=wpghpl'), 'state' => $state); $request = $guzzle->post('https://github.com/login/oauth/access_token', null, $body); $response = $request->send(); $data = $response->json(); if (!empty($data['access_token'])) { update_option('wpghpl_token', $data['access_token']); } }