mirror of
https://github.com/Poniverse/Pony.fm.git
synced 2024-11-26 14:58:00 +01:00
00f24a5c12
* Adopt PSR-2 coding style The Laravel framework adopts the PSR-2 coding style in version 5.1. Laravel apps *should* adopt this coding style as well. Read the [PSR-2 coding style guide][1] for more details and check out [PHPCS][2] to use as a code formatting tool. [1]: https://github.com/php-fig/fig-standards/blob/master/accepted/PSR-2-coding-style-guide.md [2]: https://github.com/squizlabs/PHP_CodeSniffer * Adopt PHP short array syntax Laravel 5 adopted the short array syntax which became available in PHP 5.4. * Remove SelfHandling from Jobs Jobs are self handling by default in Laravel 5.2. * Add new exceptions to `$dontReport` property * Shift core files * Shift Middleware Laravel 5.2 adjusts the `Guard` object used within middleware. In addition, new `can` and `throttles` middleware were added. * Shift Input to Request facade Laravel 5.2 no longer registers the `Input` facade by default. Laravel now prefers using the `Request` facade or the `$request` object within *Controllers* instead. Review the [HTTP Requests][1] documentation for more details. [1]: https://laravel.com/docs/5.2/requests * Shift configuration Laravel 5.2 introduces the `env` app configuration option and removes the `pretend` mail configuration option. In addition, a few of the default `providers` and `aliases` bindings were removed. * Shift Laravel dependencies * Shift cleanup * Updated composer.lock * Updated Middleware to 5.2 * Config update for Laravel 5.2 * [Laravel 5.2] Updated validation strings * Updated auth config * Updated to use middleware groups * Added laravel 5.2 sessions migration
128 lines
4.2 KiB
PHP
128 lines
4.2 KiB
PHP
<?php
|
|
|
|
/**
|
|
* Pony.fm - A community for pony fan music.
|
|
* Copyright (C) 2015 Peter Deltchev
|
|
*
|
|
* This program is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU Affero General Public License as published by
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU Affero General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Affero General Public License
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
*/
|
|
|
|
namespace Poniverse\Ponyfm\Http\Controllers;
|
|
|
|
use Poniverse\Ponyfm\Models\User;
|
|
use Auth;
|
|
use Config;
|
|
use DB;
|
|
use Illuminate\Support\Facades\Request;
|
|
use Poniverse;
|
|
use Redirect;
|
|
|
|
class AuthController extends Controller
|
|
{
|
|
protected $poniverse;
|
|
|
|
public function __construct()
|
|
{
|
|
$this->poniverse = new Poniverse(Config::get('poniverse.client_id'), Config::get('poniverse.secret'));
|
|
$this->poniverse->setRedirectUri(action('AuthController@getOAuth'));
|
|
}
|
|
|
|
public function getLogin()
|
|
{
|
|
if (Auth::guest()) {
|
|
return Redirect::to($this->poniverse->getAuthenticationUrl('login'));
|
|
}
|
|
|
|
return Redirect::to('/');
|
|
}
|
|
|
|
public function postLogout()
|
|
{
|
|
Auth::logout();
|
|
|
|
return Redirect::to('/');
|
|
}
|
|
|
|
public function getOAuth()
|
|
{
|
|
$code = $this->poniverse->getClient()->getAccessToken(
|
|
Config::get('poniverse.urls')['token'],
|
|
'authorization_code',
|
|
[
|
|
'code' => Request::query('code'),
|
|
'redirect_uri' => action('AuthController@getOAuth')
|
|
]
|
|
);
|
|
|
|
if ($code['code'] != 200) {
|
|
if ($code['code'] == 400 && $code['result']['error_description'] == 'The authorization code has expired' && !isset($this->request['login_attempt'])) {
|
|
return Redirect::to($this->poniverse->getAuthenticationUrl('login_attempt'));
|
|
}
|
|
|
|
return Redirect::to('/')->with(
|
|
'message',
|
|
'Unfortunately we are having problems attempting to log you in at the moment. Please try again at a later time.'
|
|
);
|
|
}
|
|
|
|
$this->poniverse->setAccessToken($code['result']['access_token']);
|
|
$poniverseUser = $this->poniverse->getUser();
|
|
$token = DB::table('oauth2_tokens')->where('external_user_id', '=', $poniverseUser['id'])->where(
|
|
'service',
|
|
'=',
|
|
'poniverse'
|
|
)->first();
|
|
|
|
$setData = [
|
|
'access_token' => $code['result']['access_token'],
|
|
'expires' => date('Y-m-d H:i:s', strtotime("+".$code['result']['expires_in']." Seconds", time())),
|
|
'type' => $code['result']['token_type'],
|
|
];
|
|
|
|
if (isset($code['result']['refresh_token']) && !empty($code['result']['refresh_token'])) {
|
|
$setData['refresh_token'] = $code['result']['refresh_token'];
|
|
}
|
|
|
|
if ($token) {
|
|
//User already exists, update access token and refresh token if provided.
|
|
DB::table('oauth2_tokens')->where('id', '=', $token->id)->update($setData);
|
|
|
|
return $this->loginRedirect(User::find($token->user_id));
|
|
}
|
|
|
|
// Check by login name to see if they already have an account
|
|
$user = User::findOrCreate($poniverseUser['username'], $poniverseUser['display_name'], $poniverseUser['email']);
|
|
|
|
if ($user->wasRecentlyCreated) {
|
|
return $this->loginRedirect($user);
|
|
}
|
|
|
|
// We need to insert a new token row :O
|
|
|
|
$setData['user_id'] = $user->id;
|
|
$setData['external_user_id'] = $poniverseUser['id'];
|
|
$setData['service'] = 'poniverse';
|
|
|
|
DB::table('oauth2_tokens')->insert($setData);
|
|
|
|
return $this->loginRedirect($user);
|
|
}
|
|
|
|
protected function loginRedirect($user, $rememberMe = true)
|
|
{
|
|
Auth::login($user, $rememberMe);
|
|
|
|
return Redirect::to('/');
|
|
}
|
|
}
|