ILIAS  release_7 Revision v7.30-3-g800a261c036
Public Member Functions | Static Public Member Functions | Data Fields | Static Public Attributes | Static Private Member Functions | Private Attributes
OAuthRequest Class Reference
+ Collaboration diagram for OAuthRequest:

Public Member Functions

 __construct ($http_method, $http_url, $parameters=null)
 
 set_parameter ($name, $value, $allow_duplicates=true)
 
 get_parameter ($name)
 
 get_parameters ()
 
 unset_parameter ($name)
 
 get_signable_parameters ()
 The request parameters, sorted and concatenated into a normalized string. More...
 
 get_signature_base_string ()
 Returns the base string of this request. More...
 
 get_normalized_http_method ()
 just uppercases the http method More...
 
 get_normalized_http_url ()
 parses the url and rebuilds it to be scheme://host/path More...
 
 to_url ()
 builds a url usable for a GET request More...
 
 to_postdata ()
 builds the data one would send in a POST request More...
 
 to_header ()
 builds the Authorization: header More...
 
 __toString ()
 
 sign_request ($signature_method, $consumer, $token)
 
 build_signature ($signature_method, $consumer, $token)
 

Static Public Member Functions

static from_request ($http_method=null, $http_url=null, $parameters=null)
 attempt to build up a request from what was passed to the server More...
 
static from_consumer_and_token ($consumer, $token, $http_method, $http_url, $parameters=null)
 pretty much a helper function to set up the request More...
 

Data Fields

 $base_string
 

Static Public Attributes

static $version = '1.0'
 
static $POST_INPUT = 'php://input'
 

Static Private Member Functions

static generate_timestamp ()
 util function: current timestamp More...
 
static generate_nonce ()
 util function: current nonce More...
 

Private Attributes

 $parameters
 
 $http_method
 
 $http_url
 

Detailed Description

Definition at line 206 of file OAuth.php.

Constructor & Destructor Documentation

◆ __construct()

OAuthRequest::__construct (   $http_method,
  $http_url,
  $parameters = null 
)

Definition at line 216 of file OAuth.php.

217 {
218 @$parameters or $parameters = array();
219 $this->parameters = $parameters;
220 $this->http_method = $http_method;
221 $this->http_url = $http_url;
222 }

References $http_method, $http_url, and $parameters.

Member Function Documentation

◆ __toString()

OAuthRequest::__toString ( )

Definition at line 451 of file OAuth.php.

452 {
453 return $this->to_url();
454 }
OAuthRequest\to_url
to_url()
builds a url usable for a GET request
Definition: OAuth.php:410

References to_url().

+ Here is the call graph for this function:

◆ build_signature()

OAuthRequest::build_signature (   $signature_method,
  $consumer,
  $token 
)

Definition at line 468 of file OAuth.php.

469 {
470 $signature = $signature_method->build_signature($this, $consumer, $token);
471 return $signature;
472 }
$token
$token
Definition: xapitoken.php:52

References $token.

Referenced by sign_request().

+ Here is the caller graph for this function:

◆ from_consumer_and_token()

static OAuthRequest::from_consumer_and_token (   $consumer,
  $token,
  $http_method,
  $http_url,
  $parameters = null 
)
static

pretty much a helper function to set up the request

Definition at line 284 of file OAuth.php.

285 {
286 @$parameters or $parameters = array();
287 $defaults = array("oauth_version" => OAuthRequest::$version,
288 "oauth_nonce" => OAuthRequest::generate_nonce(),
289 "oauth_timestamp" => OAuthRequest::generate_timestamp(),
290 "oauth_consumer_key" => $consumer->key);
291 if ($token) {
292 $defaults['oauth_token'] = $token->key;
293 }
294
295 $parameters = array_merge($defaults, $parameters);
296
297 // Parse the query-string to find and add GET parameters
298 $parts = parse_url($http_url);
299 if ($parts['query']) {
300 $qparms = OAuthUtil::parse_parameters($parts['query']);
301 $parameters = array_merge($qparms, $parameters);
302 }
303
304
305 return new OAuthRequest($http_method, $http_url, $parameters);
306 }
OAuthRequest\$version
static $version
Definition: OAuth.php:213
OAuthRequest\generate_timestamp
static generate_timestamp()
util function: current timestamp
Definition: OAuth.php:477
OAuthRequest\generate_nonce
static generate_nonce()
util function: current nonce
Definition: OAuth.php:485
OAuthUtil\parse_parameters
static parse_parameters($input)
Definition: OAuth.php:826

References $http_method, $http_url, $parameters, $token, $version, generate_nonce(), generate_timestamp(), and OAuthUtil\parse_parameters().

Referenced by ilLTIConsumerLaunch\signOAuth().

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ from_request()

static OAuthRequest::from_request (   $http_method = null,
  $http_url = null,
  $parameters = null 
)
static

attempt to build up a request from what was passed to the server

Definition at line 228 of file OAuth.php.

229 {
230 $scheme = (!isset($_SERVER['HTTPS']) || $_SERVER['HTTPS'] != "on")
231 ? 'http'
232 : 'https';
233 $port = "";
234 if ($_SERVER['SERVER_PORT'] != "80" && $_SERVER['SERVER_PORT'] != "443" &&
235 strpos(':', $_SERVER['HTTP_HOST']) < 0) {
236 $port = ':' . $_SERVER['SERVER_PORT'] ;
237 }
238 @$http_url or $http_url = $scheme .
239 '://' . $_SERVER['HTTP_HOST'] .
240 $port .
241 $_SERVER['REQUEST_URI'];
242 @$http_method or $http_method = $_SERVER['REQUEST_METHOD'];
243
244 // We weren't handed any parameters, so let's find the ones relevant to
245 // this request.
246 // If you run XML-RPC or similar you should use this to provide your own
247 // parsed parameter-list
248 if (!$parameters) {
249 // Find request headers
250 $request_headers = OAuthUtil::get_headers();
251
252 // Parse the query-string to find GET parameters
253 $parameters = OAuthUtil::parse_parameters($_SERVER['QUERY_STRING']);
254
255 $ourpost = $_POST;
256 // Deal with magic_quotes
257 // http://www.php.net/manual/en/security.magicquotes.disabling.php
258 if (get_magic_quotes_gpc()) {
259 $outpost = array();
260 foreach ($_POST as $k => $v) {
261 $v = stripslashes($v);
262 $ourpost[$k] = $v;
263 }
264 }
265 // Add POST Parameters if they exist
266 $parameters = array_merge($parameters, $ourpost);
267
268 // We have a Authorization-header with OAuth data. Parse the header
269 // and add those overriding any duplicates from GET or POST
270 if (@substr($request_headers['Authorization'], 0, 6) == "OAuth ") {
271 $header_parameters = OAuthUtil::split_header(
272 $request_headers['Authorization']
273 );
274 $parameters = array_merge($parameters, $header_parameters);
275 }
276 }
277
278 return new OAuthRequest($http_method, $http_url, $parameters);
279 }
$_POST
$_POST["username"]
Definition: cfg.phpunit.template.php:11
OAuthUtil\get_headers
static get_headers()
Definition: OAuth.php:797
OAuthUtil\split_header
static split_header($header, $only_allow_oauth_parameters=true)
Definition: OAuth.php:774
$_SERVER
$_SERVER['HTTP_HOST']
Definition: raiseError.php:10

References $_POST, $_SERVER, $http_method, $http_url, $parameters, OAuthUtil\get_headers(), OAuthUtil\parse_parameters(), and OAuthUtil\split_header().

Referenced by ilLTIConsumerResultService\checkSignature().

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ generate_nonce()

static OAuthRequest::generate_nonce ( )
staticprivate

util function: current nonce

Definition at line 485 of file OAuth.php.

486 {
487 $mt = microtime();
488 $rand = mt_rand();
489
490 return md5($mt . $rand); // md5s look nicer than numbers
491 }

Referenced by from_consumer_and_token().

+ Here is the caller graph for this function:

◆ generate_timestamp()

static OAuthRequest::generate_timestamp ( )
staticprivate

util function: current timestamp

Definition at line 477 of file OAuth.php.

478 {
479 return time();
480 }

Referenced by from_consumer_and_token().

+ Here is the caller graph for this function:

◆ get_normalized_http_method()

OAuthRequest::get_normalized_http_method ( )

just uppercases the http method

Definition at line 380 of file OAuth.php.

381 {
382 return strtoupper($this->http_method);
383 }

Referenced by get_signature_base_string().

+ Here is the caller graph for this function:

◆ get_normalized_http_url()

OAuthRequest::get_normalized_http_url ( )

parses the url and rebuilds it to be scheme://host/path

Definition at line 389 of file OAuth.php.

390 {
391 $parts = parse_url($this->http_url);
392
393 $port = @$parts['port'];
394 $scheme = $parts['scheme'];
395 $host = $parts['host'];
396 $path = @$parts['path'];
397
398 $port or $port = ($scheme == 'https') ? '443' : '80';
399
400 if (($scheme == 'https' && $port != '443')
401 || ($scheme == 'http' && $port != '80')) {
402 $host = "$host:$port";
403 }
404 return "$scheme://$host$path";
405 }

Referenced by get_signature_base_string(), and to_url().

+ Here is the caller graph for this function:

◆ get_parameter()

OAuthRequest::get_parameter (   $name)

Definition at line 324 of file OAuth.php.

325 {
326 return isset($this->parameters[$name]) ? $this->parameters[$name] : null;
327 }
$name
if($format !==null) $name
Definition: metadata.php:230

References $name.

◆ get_parameters()

OAuthRequest::get_parameters ( )

Definition at line 329 of file OAuth.php.

330 {
331 return $this->parameters;
332 }

References $parameters.

◆ get_signable_parameters()

OAuthRequest::get_signable_parameters ( )

The request parameters, sorted and concatenated into a normalized string.

Returns
string

Definition at line 343 of file OAuth.php.

344 {
345 // Grab all parameters
346 $params = $this->parameters;
347
348 // Remove oauth_signature if present
349 // Ref: Spec: 9.1.1 ("The oauth_signature parameter MUST be excluded.")
350 if (isset($params['oauth_signature'])) {
351 unset($params['oauth_signature']);
352 }
353
354 return OAuthUtil::build_http_query($params);
355 }
OAuthUtil\build_http_query
static build_http_query($params)
Definition: OAuth.php:860

References $parameters, and OAuthUtil\build_http_query().

Referenced by get_signature_base_string().

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ get_signature_base_string()

OAuthRequest::get_signature_base_string ( )

Returns the base string of this request.

The base string defined as the method, the url and the parameters (normalized), each urlencoded and the concated with &.

Definition at line 364 of file OAuth.php.

365 {
366 $parts = array(
367 $this->get_normalized_http_method(),
368 $this->get_normalized_http_url(),
369 $this->get_signable_parameters()
370 );
371
372 $parts = OAuthUtil::urlencode_rfc3986($parts);
373
374 return implode('&', $parts);
375 }
OAuthRequest\get_normalized_http_method
get_normalized_http_method()
just uppercases the http method
Definition: OAuth.php:380
OAuthRequest\get_normalized_http_url
get_normalized_http_url()
parses the url and rebuilds it to be scheme://host/path
Definition: OAuth.php:389
OAuthRequest\get_signable_parameters
get_signable_parameters()
The request parameters, sorted and concatenated into a normalized string.
Definition: OAuth.php:343
OAuthUtil\urlencode_rfc3986
static urlencode_rfc3986($input)
Definition: OAuth.php:747

References get_normalized_http_method(), get_normalized_http_url(), get_signable_parameters(), and OAuthUtil\urlencode_rfc3986().

+ Here is the call graph for this function:

◆ set_parameter()

OAuthRequest::set_parameter (   $name,
  $value,
  $allow_duplicates = true 
)

Definition at line 308 of file OAuth.php.

309 {
310 if ($allow_duplicates && isset($this->parameters[$name])) {
311 // We have already added parameter(s) with this name, so add to the list
312 if (is_scalar($this->parameters[$name])) {
313 // This is the first duplicate, so transform scalar (string)
314 // into an array so we can add the duplicates
315 $this->parameters[$name] = array($this->parameters[$name]);
316 }
317
318 $this->parameters[$name][] = $value;
319 } else {
320 $this->parameters[$name] = $value;
321 }
322 }

References $name.

Referenced by sign_request().

+ Here is the caller graph for this function:

◆ sign_request()

OAuthRequest::sign_request (   $signature_method,
  $consumer,
  $token 
)

Definition at line 457 of file OAuth.php.

458 {
459 $this->set_parameter(
460 "oauth_signature_method",
461 $signature_method->get_name(),
462 false
463 );
464 $signature = $this->build_signature($signature_method, $consumer, $token);
465 $this->set_parameter("oauth_signature", $signature, false);
466 }
OAuthRequest\set_parameter
set_parameter($name, $value, $allow_duplicates=true)
Definition: OAuth.php:308
OAuthRequest\build_signature
build_signature($signature_method, $consumer, $token)
Definition: OAuth.php:468

References $token, build_signature(), and set_parameter().

+ Here is the call graph for this function:

◆ to_header()

OAuthRequest::to_header ( )

builds the Authorization: header

Definition at line 431 of file OAuth.php.

432 {
433 $out = 'Authorization: OAuth realm=""';
434 $total = array();
435 foreach ($this->parameters as $k => $v) {
436 if (substr($k, 0, 5) != "oauth") {
437 continue;
438 }
439 if (is_array($v)) {
440 throw new OAuthException('Arrays not supported in headers');
441 }
442 $out .= ',' .
443 OAuthUtil::urlencode_rfc3986($k) .
444 '="' .
445 OAuthUtil::urlencode_rfc3986($v) .
446 '"';
447 }
448 return $out;
449 }
$total
$total
Definition: Utf8Test.php:87

References $out, $total, and OAuthUtil\urlencode_rfc3986().

+ Here is the call graph for this function:

◆ to_postdata()

OAuthRequest::to_postdata ( )

builds the data one would send in a POST request

Definition at line 423 of file OAuth.php.

424 {
425 return OAuthUtil::build_http_query($this->parameters);
426 }

References OAuthUtil\build_http_query().

Referenced by to_url().

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ to_url()

OAuthRequest::to_url ( )

builds a url usable for a GET request

Definition at line 410 of file OAuth.php.

411 {
412 $post_data = $this->to_postdata();
413 $out = $this->get_normalized_http_url();
414 if ($post_data) {
415 $out .= '?' . $post_data;
416 }
417 return $out;
418 }
OAuthRequest\to_postdata
to_postdata()
builds the data one would send in a POST request
Definition: OAuth.php:423

References $out, get_normalized_http_url(), and to_postdata().

Referenced by __toString().

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ unset_parameter()

OAuthRequest::unset_parameter (   $name)

Definition at line 334 of file OAuth.php.

335 {
336 unset($this->parameters[$name]);
337 }

References $name.

Field Documentation

◆ $base_string

OAuthRequest::$base_string

Definition at line 212 of file OAuth.php.

◆ $http_method

OAuthRequest::$http_method
private

Definition at line 209 of file OAuth.php.

Referenced by __construct(), from_consumer_and_token(), and from_request().

◆ $http_url

OAuthRequest::$http_url
private

Definition at line 210 of file OAuth.php.

Referenced by __construct(), from_consumer_and_token(), and from_request().

◆ $parameters

OAuthRequest::$parameters
private

Definition at line 208 of file OAuth.php.

Referenced by __construct(), from_consumer_and_token(), from_request(), get_parameters(), and get_signable_parameters().

◆ $POST_INPUT

OAuthRequest::$POST_INPUT = 'php://input'
static

Definition at line 214 of file OAuth.php.

◆ $version

OAuthRequest::$version = '1.0'
static

Definition at line 213 of file OAuth.php.

Referenced by from_consumer_and_token().

The documentation for this class was generated from the following file: