Trang chủ Khám phá Trợ giúp
Đăng nhập
yeungalan
/
ArOZ-System-Patch
1
0
Fork 0
Các tập tin Các vấn đề 0 Yêu cầu khéo về 0 Wiki
Tree: 23655dc770
Branches Tags
ArOZ-System-...
/
oauthgithub.php

oauthgithub.php 2.1 KB
Lịch sử Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253 
  1. <?php
    2. 

  2. //demo https://aroz.alanyeung.co/oauth.php
    3. 

  3. //please go to https://github.com/settings/applications/ to get the client_id and client_secret, pleae remind that the redirect_uri must be same as github.com
    4. 

  4. $baselink = "https://github.com/login/oauth"; //do not change it
    5. 

  5. 

  6. // CHNAGE HERE
    7. 

  7. $client_id = "8757b82f0e4c52d34ec8"; //Client ID
    8. 

  8. $client_secret = "96cfe75be2a9ffb6b8fca3811d76ebef63a17bbd"; //Client Secret
    9. 

  9. $redirect_uri = "https://aroz.alanyeung.co/AOB/oauthgithub.php"; //Authorization callback URL
    10. 

  10. // CHANGE HERE
    11. 

  11. 

  12. if(isset($_GET["code"])){
    13. 

  13. 	//we use the one time code ($_GET["code"]) to get the access_token
    14. 

  14.     $fields = array(
    15. 

  15.         'grant_type' => 'authorization_code',
    16. 

  16. 		'client_id' => $client_id,
    17. 

  17. 		'client_secret' => $client_secret,
    18. 

  18. 		'redirect_uri' => $redirect_uri,
    19. 

  19. 		'code' => $_GET["code"],
    20. 

  20.     );
    21. 

  21.     $postvars = http_build_query($fields);
    22. 

  22.     $ch = curl_init();
    23. 

  23.     curl_setopt($ch, CURLOPT_URL, $baselink."/access_token");
    24. 

  24.     curl_setopt($ch, CURLOPT_POST, count($fields));
    25. 

  25.     curl_setopt($ch, CURLOPT_POSTFIELDS, $postvars);
    26. 

  26. 	curl_setopt($ch,CURLOPT_RETURNTRANSFER, true);
    27. 

  27. 	curl_setopt($ch, CURLOPT_HTTPHEADER, array(
    28. 

  28. 	  'Accept: application/json'
    29. 

  29. 	));
    30. 

  30.     $result = curl_exec($ch);
    31. 

  31.     curl_close($ch);
    32. 

  32. 	$data = json_decode($result,true);
    33. 

  33. 	//$data had access_token,token_type,scope inside, but only access_token needed.
    34. 

  34. 	//print_r($data);
    35. 

  35. 	
    36. 

  36. 	//obtain the userinfo here due to github had their own OAuth implementions
    37. 

  37. 	$chs = curl_init();
    38. 

  38.     curl_setopt($chs, CURLOPT_URL, "https://api.github.com/user");
    39. 

  39. 	curl_setopt($chs,CURLOPT_RETURNTRANSFER, true);
    40. 

  40. 	curl_setopt($chs, CURLOPT_HTTPHEADER, array(
    41. 

  41. 	  "Authorization: token ".$data["access_token"],
    42. 

  42. 	  "User-Agent: Test" 
    43. 

  43. 	));
    44. 

  44.     $result = curl_exec($chs);
    45. 

  45.     curl_close($chs);
    46. 

  46. 	$userinfo = json_decode($result,true);
    47. 

  47. 	//print_r($userinfo);
    48. 

  48. 	session_start();
    49. 

  49. 	$_SESSION["login"] = $userinfo["login"];
    50. 

  50. 	setcookie("username",$userinfo["login"],time()+ 172800 );
    51. 

  51. 	setcookie("password","OAuthGithub",time()+ 172800 );
    52. 

  52. 	echo '<script>localStorage.ArOZusername = "'.$userinfo["login"].'";window.location = "./index.php"</script>';
    53. 

  53. }
    54.