smtech/oauth-negotiator

This package is abandoned and no longer maintained. The author suggests using the smtech/oauth2-canvaslms package instead.

Negotiate an OAuth 2 authentication or API token

Maintainers

Details

github.com/smtech/obsolete__oauth-negotiator

Source

Issues

Installs: 115

Dependents: 0

Suggesters: 0

Security: 0

Stars: 1

Watchers: 2

Forks: 0

Open Issues: 0

v1.1.2 2016-02-15 19:30 UTC

Requires

LGPL-3.0 79f1ec4e80f0eba390fb23ac23ad110197961dd7

  • Seth Battis <sethbattis.woop@stmarksschool.org>

This package is auto-updated.

Last update: 2021-12-18 23:35:36 UTC

README

Abandoned in favor of smtech/oauth2-canvaslms, which extends the PHP League's excellent OAuth2 Client.

OAuthNegotiator

Latest Version

I find it difficult to wrap my head around negotiating for OAuth tokens -- and I would prefer not to have to think about it. This is particularly focused on negotiating with Instructure Canvas for OAuth tokens, to be sure.

Usage

Include in your composer.json file:

{
  "requires" : {
    "smtech/oauth-negotiator": "1.0"
  }
}

When you would like to acquire a token, the easiest use of this is to provide three pages (keep reading for a single page variant):

page1.php

<html>
  <body>
    <form action="page2.php" method="post">
      <label>Enter the URL of your canvas instance</label>
      <input type="text" name="url" placeholder="https://canvas.instructure.com" />
      <input type="submit" value="Negotiate!" />
    </form>
  </body>
</html>

page2.php

page2.php will be re-loaded several times throughout the negotiation, so it's easiest to simply isolate this part of the negotiation on its own page and redirect in and out of that page.

<?php
  $oauth = new OAuthNegotiator(
    $_REQUEST['url'] . '/login/oauth2',
    '0000000001', // Canvas developer ID
    '6987c1e292a98deff97c97f2cbc49985', // Canvas developer key/secret (referred to both ways in their documentation)
    'page3.php', // where to go when we're done
    'OAuthNegotiator' // your purpose for this token (displayed on the user settings page in Canvas)
  );
?>

page3.php

<?php
  $oauth = new OAuthNegotiator();
  
  // get your token
  echo $oauth->getToken();
  
  // get the user information associated with that token
  print_r($oauth->getUser());
?>

###Single Page Usage

/* attempt to create a simple OAuthNegotiator for the intermediate steps in the workflow */
try {
	$oauth = new OAuthNegotiator();
} catch (OAuthNegotiator_Exception $e) {}

/* otherwise, check what step in the workflow we're at */
if (isset($_REQUEST['oauth'])) {
	switch ($_REQUEST['oauth']) {
		case 'request': { // explain what's up to the user
			echo '
<html>
	<body>
		<h1>Token Request</h1>
		<p>Explain why you&rsquo;re requesting a token.</p>
		<p><a href="' . $_SERVER['PHP_SELF'] . '?oauth=process">Click to continue</a></p>
	</body>
</html>';
			exit;
		}
		case 'process': { // start the negotiation process
			$oauth = new OAuthNegotiator(
				"https://canvas.instructure.com/login/oauth2", // replace with your OAuth provider endpoint
				(string) $secrets->oauth->id,
				(string) $secrets->oauth->key,
				"{$_SERVER['PHP_SELF']}?oauth=complete",
				(string) $secrets->app->name
			);
			break;
		}
		case 'complete': { // negotiation is complete
			/* do something productive with your token */
			$_SESSION['apiToken'] = $oauth->getToken();

      /* on to the next page, token in hand! */
			header("Location: ./next.php");
			exit;
		}
	}
}

Complete documentation is in the package online.