Marvin (42) OAuth 2.0 Client Provider for League OAuth2-Client

1.0.1 2015-11-05 22:39 UTC

This package is not auto-updated.

Last update: 2020-02-21 16:38:31 UTC


This package provides 42 OAuth 2.0 support for the PHP League's OAuth 2.0 Client.


To install, use composer:

composer require bde42/oauth2-marvin


Usage is the same as The League's OAuth client, using \BDE42\OAuth2\Client\Provider\Marvin as the provider.

Authorization Code Flow

if (session('current_user') == null)
    $provider = new \BDE42\OAuth2\Client\Provider\Marvin([
        'clientId'          => 'your_client_id',
        'clientSecret'      => 'your_secret',
        'redirectUri'       => 'https://uri/to/redirect'
    // If we don't have an authorization code then get one
    if (!isset($_GET['code'])) {
        $authUrl = $provider->getAuthorizationUrl(/*options*/);
        session(['oauth2state' => $provider->getState()]);
        return redirect($authUrl);

    // Check given state against previously stored one to mitigate CSRF attack
    } else if (empty($_GET['state']) || $_GET['state'] !== session('oauth2state'))
        session(['oauth2state' => null]);
        exit('Invalid state');
    // Try to get an access token (using the authorization code grant)
    $token = $provider->getAccessToken('authorization_code', [
        'code' => $_GET['code']
    // Try to get an access token (using the authorization code grant)
    try {
        $user = $provider->getResourceOwner($token);
    } catch (Exception $e) {
        exit('Oh dear...');

    session(['current_user' => $user->getUserInfos()]); //Basic informations (uid, email, name and login)
    //$user->toArray() //Get all user informations whose you have the access authorization
    print_r ("NEW USER : ".json_encode(session('current_user')));
} else {
    print_r ("REGISTERED USER : ".json_encode(session('current_user')));


$ ./vendor/bin/phpunit


Please see CONTRIBUTING for details.



The MIT License (MIT). Please see License File for more information.