forked from projectestac/moodle-local_oauth
-
Notifications
You must be signed in to change notification settings - Fork 1
/
login.php
79 lines (64 loc) · 2.61 KB
/
login.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
<?php
// This file is part of Moodle - http://moodle.org/
//
// Moodle is free software: you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// Moodle is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU General Public License for more details.
//
// You should have received a copy of the GNU General Public License
// along with Moodle. If not, see <http://www.gnu.org/licenses/>.
/**
* @package local
* @subpackage oauth
* @copyright 2014 onwards Pau Ferrer Ocaña
* @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
*/
require('../../config.php');
require_once('lib.php');
$clientid = required_param('client_id', PARAM_RAW);
$responsetype = required_param('response_type', PARAM_RAW);
$scope = optional_param('scope', false, PARAM_TEXT);
$state = optional_param('state', false, PARAM_TEXT);
$url = $CFG->wwwroot.'/local/oauth/login.php?client_id='.$clientid.'&response_type='.$responsetype;
if ($scope) {
$url .= '&scope='.$scope;
}
if ($state) {
$url .= '&state='.$state;
}
$PAGE->set_url($CFG->wwwroot.'/local/oauth/login.php');
$PAGE->set_context(context_system::instance());
$PAGE->set_pagelayout('login');
if (isloggedin() and !isguestuser()) {
// include our OAuth2 Server object
$server = oauth_get_server();
$request = OAuth2\Request::createFromGlobals();
$response = new OAuth2\Response();
if (!$server->validateAuthorizeRequest($request, $response)) {
$logparams = array('objectid' => $USER->id, 'other' => array('clientid' => $clientid, 'scope' => $scope));
$event = \local_oauth\event\user_not_granted::create($logparams);
$event->trigger();
$response->send();
die();
}
$isauthorized = get_authorization_from_form($url, $clientid, $scope);
$logparams = array('objectid' => $USER->id, 'other' => array('clientid' => $clientid, 'scope' => $scope));
if ($isauthorized) {
$event = \local_oauth\event\user_granted::create($logparams);
} else {
$event = \local_oauth\event\user_not_granted::create($logparams);
}
$event->trigger();
// print the authorization code if the user has authorized your client
$server->handleAuthorizeRequest($request, $response, $isauthorized, $USER->id);
$response->send();
} else {
$SESSION->wantsurl = $url;
redirect(new moodle_url('/login/index.php'));
}