Trang chủ Khám phá Trợ giúp
Đăng nhập
iProspective
/
dolibarr
3
0
Fork 0
Các tập tin Các vấn đề 0 Yêu cầu khéo về 0 Wiki
Tree: e0048c056a
Branches Tags
dolibarr
/
htdocs
/
includes
/
OAuth
/
OAuth2
/
Service
/
Google.php

Google.php 9.5 KB
Lịch sử Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208 
  1. <?php
    2. 

  2. 

  3. namespace OAuth\OAuth2\Service;
    4. 

  4. 

  5. use OAuth\Common\Consumer\CredentialsInterface;
    6. 

  6. use OAuth\Common\Http\Client\ClientInterface;
    7. 

  7. use OAuth\Common\Http\Uri\UriInterface;
    8. 

  8. use OAuth\Common\Storage\TokenStorageInterface;
    9. 

  9. use OAuth\OAuth2\Token\StdOAuth2Token;
    10. 

  10. use OAuth\Common\Http\Exception\TokenResponseException;
    11. 

  11. use OAuth\OAuth2\Service\Exception\InvalidAccessTypeException;
    12. 

  12. use OAuth\Common\Http\Uri\Uri;
    13. 

  13. 

  14. class Google extends AbstractService
    15. 

  15. {
    16. 

  16. 	/**
    17. 

  17. 	 * Defined scopes - More scopes are listed here:
    18. 

  18. 	 * https://developers.google.com/oauthplayground/
    19. 

  19. 	 *
    20. 

  20. 	 * Make a pull request if you need more scopes.
    21. 

  21. 	 */
    22. 

  22. 

  23. 	// Basic
    24. 

  24. 	const SCOPE_EMAIL                       = 'email';
    25. 

  25. 	const SCOPE_PROFILE                     = 'profile';
    26. 

  26. 

  27. 	const SCOPE_USERINFO_EMAIL              = 'https://www.googleapis.com/auth/userinfo.email';
    28. 

  28. 	const SCOPE_USERINFO_PROFILE            = 'https://www.googleapis.com/auth/userinfo.profile';
    29. 

  29. 

  30. 	// Google+
    31. 

  31. 	const SCOPE_GPLUS_ME                    = 'https://www.googleapis.com/auth/plus.me';
    32. 

  32. 	const SCOPE_GPLUS_LOGIN                 = 'https://www.googleapis.com/auth/plus.login';
    33. 

  33. 	const SCOPE_GPLUS_CIRCLES_READ          = 'https://www.googleapis.com/auth/plus.circles.read';
    34. 

  34. 	const SCOPE_GPLUS_CIRCLES_WRITE         = 'https://www.googleapis.com/auth/plus.circles.write';
    35. 

  35. 	const SCOPE_GPLUS_STREAM_READ           = 'https://www.googleapis.com/auth/plus.stream.read';
    36. 

  36. 	const SCOPE_GPLUS_STREAM_WRITE          = 'https://www.googleapis.com/auth/plus.stream.write';
    37. 

  37. 	const SCOPE_GPLUS_MEDIA                 = 'https://www.googleapis.com/auth/plus.media.upload';
    38. 

  38. 

  39. 	// Google Drive
    40. 

  40. 	const SCOPE_DOCUMENTSLIST               = 'https://docs.google.com/feeds/';
    41. 

  41. 	const SCOPE_SPREADSHEETS                = 'https://spreadsheets.google.com/feeds/';
    42. 

  42. 	const SCOPE_GOOGLEDRIVE                 = 'https://www.googleapis.com/auth/drive';
    43. 

  43. 	const SCOPE_DRIVE_APPS                  = 'https://www.googleapis.com/auth/drive.appdata';
    44. 

  44. 	const SCOPE_DRIVE_APPS_READ_ONLY        = 'https://www.googleapis.com/auth/drive.apps.readonly';
    45. 

  45. 	const SCOPE_GOOGLEDRIVE_FILES           = 'https://www.googleapis.com/auth/drive.file';
    46. 

  46. 	const SCOPE_DRIVE_METADATA_READ_ONLY    = 'https://www.googleapis.com/auth/drive.metadata.readonly';
    47. 

  47. 	const SCOPE_DRIVE_READ_ONLY             = 'https://www.googleapis.com/auth/drive.readonly';
    48. 

  48. 	const SCOPE_DRIVE_SCRIPTS               = 'https://www.googleapis.com/auth/drive.scripts';
    49. 

  49. 

  50. 	// Cloud Print
    51. 

  51. 	const SCOPE_CLOUD_PRINT                 = 'https://www.googleapis.com/auth/cloudprint';
    52. 

  52. 

  53. 	// Adwords
    54. 

  54. 	const SCOPE_ADSENSE                     = 'https://www.googleapis.com/auth/adsense';
    55. 

  55. 	const SCOPE_ADWORDS                     = 'https://www.googleapis.com/auth/adwords/';
    56. 

  56. 	const SCOPE_GAN                         = 'https://www.googleapis.com/auth/gan'; // google affiliate network...?
    57. 

  57. 

  58. 	// Google Analytics
    59. 

  59. 	const SCOPE_ANALYTICS                   = 'https://www.googleapis.com/auth/analytics';
    60. 

  60. 	const SCOPE_ANALYTICS_EDIT              = 'https://www.googleapis.com/auth/analytics.edit';
    61. 

  61. 	const SCOPE_ANALYTICS_MANAGE_USERS      = 'https://www.googleapis.com/auth/analytics.manage.users';
    62. 

  62. 	const SCOPE_ANALYTICS_READ_ONLY         = 'https://www.googleapis.com/auth/analytics.readonly';
    63. 

  63. 

  64. 	//Gmail
    65. 

  65. 	const SCOPE_GMAIL_MODIFY                = 'https://www.googleapis.com/auth/gmail.modify';
    66. 

  66. 	const SCOPE_GMAIL_READONLY              = 'https://www.googleapis.com/auth/gmail.readonly';
    67. 

  67. 	const SCOPE_GMAIL_COMPOSE               = 'https://www.googleapis.com/auth/gmail.compose';
    68. 

  68. 	const SCOPE_GMAIL_SEND                  = 'https://www.googleapis.com/auth/gmail.send';
    69. 

  69. 	const SCOPE_GMAIL_INSERT                = 'https://www.googleapis.com/auth/gmail.insert';
    70. 

  70. 	const SCOPE_GMAIL_LABELS                = 'https://www.googleapis.com/auth/gmail.labels';
    71. 

  71. 	const SCOPE_GMAIL_FULL                  = 'https://mail.google.com/';
    72. 

  72. 

  73. 	// Other services
    74. 

  74. 	const SCOPE_BOOKS                       = 'https://www.googleapis.com/auth/books';
    75. 

  75. 	const SCOPE_BLOGGER                     = 'https://www.googleapis.com/auth/blogger';
    76. 

  76. 	const SCOPE_CALENDAR                    = 'https://www.googleapis.com/auth/calendar';
    77. 

  77. 	const SCOPE_CALENDAR_READ_ONLY          = 'https://www.googleapis.com/auth/calendar.readonly';
    78. 

  78. 	const SCOPE_CONTACT                     = 'https://www.google.com/m8/feeds/';
    79. 

  79. 	const SCOPE_CONTACTS_RO                 = 'https://www.googleapis.com/auth/contacts.readonly';
    80. 

  80. 	const SCOPE_CHROMEWEBSTORE              = 'https://www.googleapis.com/auth/chromewebstore.readonly';
    81. 

  81. 	const SCOPE_GMAIL                       = 'https://mail.google.com/mail/feed/atom';
    82. 

  82. 	const SCOPE_GMAIL_IMAP_SMTP             = 'https://mail.google.com';
    83. 

  83. 	const SCOPE_PICASAWEB                   = 'https://picasaweb.google.com/data/';
    84. 

  84. 	const SCOPE_SITES                       = 'https://sites.google.com/feeds/';
    85. 

  85. 	const SCOPE_URLSHORTENER                = 'https://www.googleapis.com/auth/urlshortener';
    86. 

  86. 	const SCOPE_WEBMASTERTOOLS              = 'https://www.google.com/webmasters/tools/feeds/';
    87. 

  87. 	const SCOPE_TASKS                       = 'https://www.googleapis.com/auth/tasks';
    88. 

  88. 

  89. 	// Cloud services
    90. 

  90. 	const SCOPE_CLOUDSTORAGE                = 'https://www.googleapis.com/auth/devstorage.read_write';
    91. 

  91. 	const SCOPE_CONTENTFORSHOPPING          = 'https://www.googleapis.com/auth/structuredcontent'; // what even is this
    92. 

  92. 	const SCOPE_USER_PROVISIONING           = 'https://apps-apis.google.com/a/feeds/user/';
    93. 

  93. 	const SCOPE_GROUPS_PROVISIONING         = 'https://apps-apis.google.com/a/feeds/groups/';
    94. 

  94. 	const SCOPE_NICKNAME_PROVISIONING       = 'https://apps-apis.google.com/a/feeds/alias/';
    95. 

  95. 

  96. 	// Old
    97. 

  97. 	const SCOPE_ORKUT                       = 'https://www.googleapis.com/auth/orkut';
    98. 

  98. 	const SCOPE_GOOGLELATITUDE =
    99. 

  99. 		'https://www.googleapis.com/auth/latitude.all.best https://www.googleapis.com/auth/latitude.all.city';
    100. 

  100. 	const SCOPE_OPENID                      = 'openid';
    101. 

  101. 

  102. 	// YouTube
    103. 

  103. 	const SCOPE_YOUTUBE_GDATA               = 'https://gdata.youtube.com';
    104. 

  104. 	const SCOPE_YOUTUBE_ANALYTICS_MONETARY  = 'https://www.googleapis.com/auth/yt-analytics-monetary.readonly';
    105. 

  105. 	const SCOPE_YOUTUBE_ANALYTICS           = 'https://www.googleapis.com/auth/yt-analytics.readonly';
    106. 

  106. 	const SCOPE_YOUTUBE                     = 'https://www.googleapis.com/auth/youtube';
    107. 

  107. 	const SCOPE_YOUTUBE_READ_ONLY           = 'https://www.googleapis.com/auth/youtube.readonly';
    108. 

  108. 	const SCOPE_YOUTUBE_UPLOAD              = 'https://www.googleapis.com/auth/youtube.upload';
    109. 

  109. 	const SCOPE_YOUTUBE_PARTNER             = 'https://www.googleapis.com/auth/youtubepartner';
    110. 

  110. 	const SCOPE_YOUTUBE_PARTNER_AUDIT       = 'https://www.googleapis.com/auth/youtubepartner-channel-audit';
    111. 

  111. 

  112. 	// Google Glass
    113. 

  113. 	const SCOPE_GLASS_TIMELINE              = 'https://www.googleapis.com/auth/glass.timeline';
    114. 

  114. 	const SCOPE_GLASS_LOCATION              = 'https://www.googleapis.com/auth/glass.location';
    115. 

  115. 

  116. 	// Android Publisher
    117. 

  117. 	const SCOPE_ANDROID_PUBLISHER           = 'https://www.googleapis.com/auth/androidpublisher';
    118. 

  118. 

  119. 

  120. 	// Google Gsuite
    121. 

  121. 	const SCOPE_ADMIN_DIRECTORY_USER =        "https://www.googleapis.com/auth/admin.directory.user";
    122. 

  122. 	const SCOPE_ADMIN_DIRECTORY_CUSTOMER =        "https://www.googleapis.com/auth/admin.directory.customer";
    123. 

  123. 

  124. 	protected $accessType = 'online';
    125. 

  125. 

  126. 	public function __construct(
    127. 

  127. 		CredentialsInterface $credentials,
    128. 

  128. 		ClientInterface $httpClient,
    129. 

  129. 		TokenStorageInterface $storage,
    130. 

  130. 		$scopes = array(),
    131. 

  131. 		UriInterface $baseApiUri = null
    132. 

  132. 	) {
    133. 

  133. 		parent::__construct($credentials, $httpClient, $storage, $scopes, $baseApiUri, true);
    134. 

  134. 

  135. 		if (null === $baseApiUri) {
    136. 

  136. 			$this->baseApiUri = new Uri('https://www.googleapis.com/oauth2/v1/');
    137. 

  137. 		}
    138. 

  138. 	}
    139. 

  139. 

  140. 	public function setAccessType($accessType)
    141. 

  141. 	{
    142. 

  142. 		if (!in_array($accessType, array('online', 'offline'), true)) {
    143. 

  143. 			throw new InvalidAccessTypeException('Invalid accessType, expected either online or offline');
    144. 

  144. 		}
    145. 

  145. 		$this->accessType = $accessType;
    146. 

  146. 	}
    147. 

  147. 

  148. 	// LDR CHANGE Add approval_prompt to force the prompt if value is set to 'force' so it force return of a "refresh token" in addition to "standard token"
    149. 

  149. 	public $approvalPrompt='auto';
    150. 

  150. 	public function setApprouvalPrompt($prompt)
    151. 

  151. 	{
    152. 

  152. 		if (!in_array($prompt, array('auto', 'force'), true)) {
    153. 

  153. 			// @todo Maybe could we rename this exception
    154. 

  154. 			throw new InvalidAccessTypeException('Invalid approuvalPrompt, expected either auto or force.');
    155. 

  155. 		}
    156. 

  156. 		$this->approvalPrompt = $prompt;
    157. 

  157. 	}
    158. 

  158. 

  159. 	/**
    160. 

  160. 	 * {@inheritdoc}
    161. 

  161. 	 */
    162. 

  162. 	public function getAuthorizationEndpoint()
    163. 

  163. 	{
    164. 

  164. 		// LDR CHANGE Add approval_prompt to force the prompt if value is set to 'force' so it force return of a "refresh token" in addition to "standard token"
    165. 

  165. 		//return new Uri('https://accounts.google.com/o/oauth2/auth?access_type='.$this->accessType);
    166. 

  166. 		$url = 'https://accounts.google.com/o/oauth2/auth?'.($this->approvalPrompt?'approval_prompt='.$this->approvalPrompt.'&':'').'access_type='.$this->accessType;
    167. 

  167. 

  168. 		return new Uri($url);
    169. 

  169. 	}
    170. 

  170. 

  171. 	/**
    172. 

  172. 	 * {@inheritdoc}
    173. 

  173. 	 */
    174. 

  174. 	public function getAccessTokenEndpoint()
    175. 

  175. 	{
    176. 

  176. 		return new Uri('https://accounts.google.com/o/oauth2/token');
    177. 

  177. 	}
    178. 

  178. 

  179. 	/**
    180. 

  180. 	 * {@inheritdoc}
    181. 

  181. 	 */
    182. 

  182. 	protected function parseAccessTokenResponse($responseBody)
    183. 

  183. 	{
    184. 

  184. 		$data = json_decode($responseBody, true);
    185. 

  185. 

  186. 		if (null === $data || !is_array($data)) {
    187. 

  187. 			throw new TokenResponseException('Unable to parse response.');
    188. 

  188. 		} elseif (isset($data['error'])) {
    189. 

  189. 			throw new TokenResponseException('Error in retrieving token: "' . $data['error'] . '"');
    190. 

  190. 		}
    191. 

  191. 

  192. 		$token = new StdOAuth2Token();
    193. 

  193. 		$token->setAccessToken($data['access_token']);
    194. 

  194. 		$token->setLifetime($data['expires_in']);
    195. 

  195. 

  196. 		if (isset($data['refresh_token'])) {
    197. 

  197. 			$token->setRefreshToken($data['refresh_token']);
    198. 

  198. 			unset($data['refresh_token']);
    199. 

  199. 		}
    200. 

  200. 

  201. 		unset($data['access_token']);
    202. 

  202. 		unset($data['expires_in']);
    203. 

  203. 

  204. 		$token->setExtraParams($data);
    205. 

  205. 

  206. 		return $token;
    207. 

  207. 	}
    208. 

  208. }
    209.