Openpearã§HTTP_OAuthProviderを公開ã—ã¦ã¿ãŸ
公開ã—ãŸã€‚
 
Openpearã§ãƒ‘ッケージを公開ã™ã‚‹ã¨ãƒ¡ãƒ¼ãƒ«ã‚¢ãƒ‰ãƒ¬ã‚¹ã‚‚公開ã•ã‚Œã‚‹ã¨ã„ã†äº‹ã‚’ã•ã£ã知ã£ãŸã€‚
ã‚‚ã†ã„ã„ã‚„ã¨æ€ã£ã¦ã€æ–‡ä¸ã®Pearæº–æ‹ ã®ã‚³ãƒ¡ãƒ³ãƒˆéƒ¨åˆ†ã§æœ¬åã‚‚æ™’ã—ãŸã€‚
 
プãƒã‚°ãƒ©ãƒ ã¯åŽ»å¹´æ›¸ã„ãŸã‚‚ã®ã‚’ベースã«ã—ãŸã‚“ã ã‘ã©ã€çµæ§‹æ›¸ã方も変ã‚ã£ãŸã€‚
ãªã‹ãªã‹ã„ã„æ„Ÿã˜ã®æ›¸ãæ–¹ãŒå‡ºæ¥ãŸã‚“ã˜ã‚ƒãªã„ã‹ã¨æ€ã£ã¦ã‚‹ã€‚
 
HTTP_OAuthProvider - Openpear
http://openpear.org/package/HTTP_OAuthProvider
 
/HTTP_OAuthProvider/trunk - リãƒã‚¸ãƒˆãƒªãƒ–ラウザ - Openpear
http://openpear.org/repository/HTTP_OAuthProvider/trunk
 
機能
OAuthリクエストã®èªè¨¼ã‚’è¡Œã†ã‚µãƒ¼ãƒ“スプãƒãƒã‚¤ãƒ€å´ã®ãƒ©ã‚¤ãƒ–ラリ。
2Legged OAuthã¨3Legged OAuthã®ä¸¡æ–¹ã«å¯¾å¿œã€‚
対応ã—ã¦ã„ã‚‹ã‚·ã‚°ãƒãƒãƒ£æ–¹å¼ã¯ã€HMAC-SHA1ã¨RSA-SHA1。
トークンã®ä¿æŒã«ã€Cache_Liteを使用。
トークンä¿æŒã®æ–¹æ³•ã¯ä»Šå¾Œã„ãã¤ã‹å¢—ã‚„ã™äºˆå®šã€‚
 
インストール
Openpearã®ãƒãƒ£ãƒ³ãƒãƒ«è¿½åŠ 。
[root@localhost ~]# pear channel-discover openpear.org Adding Channel "openpear.org" succeeded Discovery of channel "openpear.org" succeeded
 
HTTP_OAuthProviderã®ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã€‚
[root@localhost ~]# pear install openpear/HTTP_OAuthProvider downloading HTTP_OAuthProvider-1.0.0.tgz ... Starting to download HTTP_OAuthProvider-1.0.0.tgz (6,719 bytes) .....done: 6,719 bytes install ok: channel://openpear.org/HTTP_OAuthProvider-1.0.0
 
サンプル
ç¾æ™‚点ã§ã“ã“ã«æ›¸ã„ã¦ã‚ã‚‹ã‚‚ã®ã¨åŒã˜ã ã‘ã©â€¦ã€‚
 
/HTTP_OAuthProvider/trunk/example - リãƒã‚¸ãƒˆãƒªãƒ–ラウザ - Openpear
http://openpear.org/repository/HTTP_OAuthProvider/trunk/example
 
2Legged OAuthèªè¨¼ã‚’è¡Œã†
<?php require_once('HTTP/OAuthProvider.php'); require_once('config.php'); $o = new HTTP_OAuthProvider(); try { $o->setFetchConsumerHandler('fetchConsumer'); $o->authenticate(); echo "Auth OK!!!\n"; printf("consumer: %s\n", $o->getConsumer()->getKey()); } catch(Exception $e) { header(sprintf('HTTP/1.0 %d', $e->getCode())); echo $e->getMessage(); }
 
リクエストトークンを発行ã™ã‚‹
<?php require_once('HTTP/OAuthProvider.php'); require_once('config.php'); $o = new HTTP_OAuthProvider(); try { $o->setFetchConsumerHandler('fetchConsumer'); echo $o->issueRequestToken(); } catch(Exception $e) { header(sprintf('HTTP/1.0 %d', $e->getCode())); echo $e->getMessage(); }
 
ユーザã®èªå¯ã‚’ä¿å˜ã™ã‚‹(フォームも表示)
<?php require_once('HTTP/OAuthProvider.php'); require_once('config.php'); $content = "<b>this is provider's page !!</b><br />\n"; $o = new HTTP_OAuthProvider(); try { $o->setFetchConsumerHandler('fetchConsumer'); // check request token if (!$o->existsRequestToken()) { throw new Exception('not found request token', 200); } // show callback url if (isset($_REQUEST['authorize_confirm'])) { if ($_REQUEST['authorize_confirm']) { $callback = $o->authorizeToken($user_id, true); $content .= "you choose agree<br />\n"; } else { $callback = $o->authorizeToken($user_id, false); $content .= "you choose disagree<br />\n"; } $content .= "return to consumer's page<br />\n"; $content .= sprintf('<a href="%s">%s</a>', $callback, $callback)."<br />\n"; // show form } else { $content .= sprintf("hello. user id %s !<br />\n", $user_id); $content .= "do you authorize the consumer?<br />\n"; $content .= sprintf("consumer is %s<br />\n", $o->getConsumer()->getKey()); // agree form $content .= '<form action="?" method="post">'."\n"; $content .= sprintf('<input type="hidden" name="oauth_token" value="%s" />', $_REQUEST['oauth_token'])."\n"; $content .= '<input type="hidden" name="authorize_confirm" value="1" />'."\n"; $content .= sprintf('<input type="submit" value="agree">')."\n"; $content .= "</form>\n"; // disagree form $content .= '<form action="?" method="post">'."\n"; $content .= sprintf('<input type="hidden" name="oauth_token" value="%s" />', $_REQUEST['oauth_token'])."\n"; $content .= '<input type="hidden" name="authorize_confirm" value="0" />'."\n"; $content .= sprintf('<input type="submit" value="disagree">')."\n"; $content .= "</form>\n"; } } catch(Exception $e) { header(sprintf('HTTP/1.0 %d', $e->getCode())); $content .= $e->getMessage(); } ?> <html> <head> <title>provider's page</title> </head> <body> <?php echo $content; ?> </body> <html>
 
èªå¯ã•ã‚ŒãŸãƒªã‚¯ã‚¨ã‚¹ãƒˆãƒˆãƒ¼ã‚¯ãƒ³ã‚’アクセストークンã«äº¤æ›ã™ã‚‹
<?php require_once('HTTP/OAuthProvider.php'); require_once('config.php'); $o = new HTTP_OAuthProvider(); try { $o->setFetchConsumerHandler('fetchConsumer'); echo $o->exchangeAccessToken(); } catch(Exception $e) { header(sprintf('HTTP/1.0 %d', $e->getCode())); echo $e->getMessage(); }
 
ä¿è·ã•ã‚ŒãŸãƒªã‚½ãƒ¼ã‚¹ã¸ã®ã‚¢ã‚¯ã‚»ã‚¹ã®èªè¨¼ã‚’è¡Œã†
<?php require_once('HTTP/OAuthProvider.php'); require_once('config.php'); $o = new HTTP_OAuthProvider(); try { $o->setFetchConsumerHandler('fetchConsumer'); $o->authenticate3L(); echo "this is provider's protected resource !!\n"; printf("consumer: %s\n", $o->getConsumer()->getKey()); printf("user_id: %s\n", $o->getStore()->getUserID()); } catch(Exception $e) { header(sprintf('HTTP/1.0 %d', $e->getCode())); echo $e->getMessage(); }
 
è¨å®šãƒ•ã‚¡ã‚¤ãƒ«
コンシューマもユーザも固定。
コンシューマã¯1人ã ã‘ã„る想定。
ユーザã¯ID12345ãŒãƒã‚°ã‚¤ãƒ³æ¸ˆã¿ã¨ã„ã†æƒ³å®šã€‚
<?php // consumer function fetchConsumer($consumer_key) { $row = array( 'id' => 1, 'key' => 'testconsumer', 'secret' => 'testpass', 'publickey' => null ); if ($consumer_key==$row['key']) { $consumer = new HTTP_OAuthProvider_Consumer($row); return $consumer; } } // user $user_id = 12345;
 
テスト用コンシューマ
<?php // require HTTP_OAuth require_once('HTTP/OAuth/Consumer.php'); /* èªè¨¼æƒ…å ±ã‚’æ ¼ç´ã™ã‚‹ãŸã‚ã«ã‚»ãƒƒã‚·ãƒ§ãƒ³ã‚’開始 */ session_start(); /* Consumer key */ $consumer_key = 'testconsumer'; /* Consumer Secret */ $consumer_secret = 'testpass'; /* プãƒãƒã‚¤ãƒ€ã‹ã‚‰ã® Callback url */ $callback_url = sprintf('http://%s%s', $_SERVER['HTTP_HOST'], $_SERVER['SCRIPT_NAME']); $provider_base = 'http://example.com/example/'; $request_url = $provider_base.'3legged_request.php'; $authorize_url = $provider_base.'3legged_authorize.php'; $access_url = $provider_base.'3legged_access.php'; $resource_url = $provider_base.'3legged_resource.php'; /* Set up placeholder */ $content = ''; /* セッションã®ã‚¯ãƒªã‚¢ */ if (@$_REQUEST['test'] === 'clear') { session_destroy(); session_start(); } try { // -- init HTTP_OAuth_Consumer $oauth = new HTTP_OAuth_Consumer($consumer_key, $consumer_secret); // ssl通信をå¯èƒ½ã« $http_request = new HTTP_Request2(); $http_request->setConfig('ssl_verify_peer', false); $consumer_request = new HTTP_OAuth_Consumer_Request; $consumer_request->accept($http_request); $oauth->accept($consumer_request); if (!empty($_REQUEST['oauth_token']) && $_SESSION['oauth_state'] === 'start') { // -- プãƒãƒã‚¤ãƒ€ã‹ã‚‰èªè¨¼å¾Œã«æˆ»ã£ã¦ããŸå ´åˆ (callback処ç†) $_SESSION['oauth_state'] = 'returned'; if (empty($_SESSION['oauth_access_token']) || empty($_SESSION['oauth_access_token_secret'])) { // -- access_tokenãŒæœªå–å¾—ã®å ´åˆ /* request tokenをセット */ $oauth->setToken($_SESSION['oauth_request_token']); $oauth->setTokenSecret($_SESSION['oauth_request_token_secret']); /* プãƒãƒã‚¤ãƒ€ã‹ã‚‰æˆ»ã£ã¦ã㟠oauth_verifierをセット */ $oauth_verifier = $_REQUEST['oauth_verifier']; /* Access token をリクエスト */ $oauth->getAccessToken($access_url, $oauth_verifier); /* Acces tokenã‚’ä¿å˜ (実際ã®ã‚¢ãƒ—リケーションã§ã¯ã“れをDBç‰ã«ä¿å˜ã—ã¦ãŠãã¾ã™ã€‚) */ $_SESSION['oauth_access_token'] = $oauth->getToken(); $_SESSION['oauth_access_token_secret'] = $oauth->getTokenSecret(); } } if (!empty($_SESSION['oauth_access_token']) && !empty($_SESSION['oauth_access_token_secret'])) { // -- èªè¨¼æ¸ˆã¿ã®å ´åˆ /* access_tokenをセット */ $oauth->setToken($_SESSION['oauth_access_token']); $oauth->setTokenSecret($_SESSION['oauth_access_token_secret']); /* ãƒ¦ãƒ¼ã‚¶æƒ…å ±ã‚’å–å¾—ã™ã‚‹ãƒªã‚¯ã‚¨ã‚¹ãƒˆã‚’発行. */ $result = $oauth->sendRequest($resource_url, array(), 'GET'); /* データをå–å¾— */ $content = $result->getBody(); } else { // -- åˆå›žå‘¼ã³å‡ºã—時 /* プãƒãƒã‚¤ãƒ€ã‹ã‚‰request_tokenã®å–å¾— */ $oauth->getRequestToken($request_url, $callback_url); /* tokenをセッションã«ä¿å˜ */ $_SESSION['oauth_request_token'] = $oauth->getToken(); $_SESSION['oauth_request_token_secret'] = $oauth->getTokenSecret(); /* ステータスをstartã«ã‚»ãƒƒãƒˆ */ $_SESSION['oauth_state'] = "start"; /* authorization URL ã‚’å–å¾— */ $request_link = $oauth->getAuthorizeURL($authorize_url); /* authorization URLã®ãƒªãƒ³ã‚¯ã‚’ä½œæˆ */ $content = 'Click on the link to go to provider to authorize your account.'; $content .= '<br /><a href="'.$request_link.'">'.$request_link.'</a>'; } } catch (Exception $e) { $content = $e->getMessage(); } ?> <html> <head> <title>OAuth in PHP</title> </head> <body> <h2>Welcome to a OAuth PHP example.</h2> <p><a href='<?php echo $_SERVER['PHP_SELF']; ?>?test=clear'>clear sessions</a></p> <p><pre><?php print_r($content); ?><pre></p> </body> </html>
 
3Legged OAuthã®ã‚³ãƒ³ã‚·ãƒ¥ãƒ¼ãƒžå´ã®ã‚µãƒ³ãƒ—ルã¯ã€ã“ã“ã‹ã‚‰æ‹å€Ÿã—ãŸã€‚
 
HTTP_OAuthを利用ã—ã¦Twitterã®OAuthèªè¨¼ã‚’行ㆠ@ php-tips
http://php-tips.com/php/2009/11/http_oauth%E3%82%92%E5%88%A9%E7%94%A8%E3%81%97%E3%81%A6twitter%E3%81%AEoauth%E8%AA%8D%E8%A8%BC%E3%82%92%E8%A1%8C%E3%81%86
 
OAuthã®ä»•æ§˜ãŒã‚ˆã解らãªã„人用URL
OAuthプãƒãƒˆã‚³ãƒ«ã®ä¸èº«ã‚’ã–ã£ãり解説ã—ã¦ã¿ã‚‹ã‚ˆ - ゆã‚よã‚日記
http://d.hatena.ne.jp/yuroyoro/20100506/1273137673
 
PHPã‚’èªã‚“ã ã“ã¨ã‚る人ã®ãŸã‚ã®OAuthã®Signature解説 - r-weblife
http://d.hatena.ne.jp/ritou/20090912/1252776563
 
OpenSocialã®ã‚µãƒ¼ãƒ“スプãƒãƒã‚¤ãƒ€ã£ã½ã„ã®ã‚’作ã£ã¦ã¿ã‚‹ 5.OAuth Core 1.0a(3legged OAuth)ã®ä»•æ§˜ - eth0jpã®æ—¥è¨˜
http://d.hatena.ne.jp/eth0jp/20090826/1251228344
 
OpenSocialã®ã‚µãƒ¼ãƒ“スプãƒãƒã‚¤ãƒ€ã£ã½ã„ã®ã‚’作ã£ã¦ã¿ã‚‹ 6.OAuth Core 1.0a(3legged OAuth)を実装ã—ã¦ã¿ãŸ - eth0jpã®æ—¥è¨˜
http://d.hatena.ne.jp/eth0jp/20090829/1251497285
 
「OAuth Core 1.0 Revision Aã€æ—¥æœ¬èªžè¨³ã‚’ã¤ãã£ã¦ã¿ãŸ - tzmtkã®ãƒ–ãƒã‚°
http://d.hatena.ne.jp/tzmtk/20090723/p1
 
OAuth Core 1.0a
http://oauth.net/core/1.0a/
 
