Changeset 31948 in spip-zone

Timestamp:

Oct 6, 2009, 2:57:25 AM (10 years ago)

Author:

kent1@…

Message:

Une configuration qui doit être compatible de deux méthodes :

• par l'intermédiaire de defines et non plus $GLOBALS
• par l'intermédiaire de CFG

Puisque l'on utilise la bibliothèque originale de opensocial, un fichier doit être ajouté (auth/osapiFCAuth) et un doit surcharger la librairie originale (auth/osapiSecurityToken), la seule manière simple de le faire est de modifier le set_include_path mais je ne suis pas sur que ce soit la meilleure solution

Location:

_plugins_/gfc

Files:

• action/gfc_auth.php (modified) (6 diffs)
• auth (added)
• auth/osapiFCAuth.php (added)
• auth/osapiSecurityToken.php (added)
• balise/gfc.php (modified) (1 diff)
• balise/gfc_login_button.php (modified) (1 diff)
• fonds (added)
• fonds/cfg_gfc.html (added)
• formulaires/config_gfc.html (added)
• gfc_options.php (modified) (2 diffs)
• gfc_pipelines.php (modified) (3 diffs)
• lang (added)
• lang/gfc_fr.php (added)

_plugins_/gfc/action/gfc_auth.php

@@ -1 +1 @@
 <?
 
+/**
+ * Action d'autentification par GFC
+ * 
+ * @return 
+ */
+include_spip('base/abstract_sql');
 function action_gfc_auth_dist() {
         //ini_set("error_reporting", E_ALL);
@@ -8 +14 @@
         //date_default_timezone_set('America/Los_Angeles');
         
+        if(function_exists('lire_config')){
+                $id = lire_config('gfc/consumer_id') ? lire_config('gfc/consumer_id') : _GFC_CONSUMER_ID;
+                $key = lire_config('gfc/consumer_key') ? lire_config('gfc/consumer_key') : _GFC_CONSUMER_KEY;
+                $secret = lire_config('gfc/consumer_secret') ? str_replace('*:','',lire_config('gfc/consumer_secret')) : str_replace('*:','',_GFC_CONSUMER_SECRET);
+                $default_email = lire_config('gfc/default_email') ? str_replace('*:','',lire_config('gfc/default_email')) : str_replace('*:','',_GFC_DEFAULT_EMAIL);
+        }else{
+                $id = _GFC_CONSUMER_ID;
+                $secret = _GFC_CONSUMER_SECRET;
+                $default_email = _GFC_DEFAULT_EMAIL;
+        }
+        $token = $_COOKIE['fcauth'.$id];
+        spip_log("token = $token");
         //get osapi info
         $display_name = $member_id = false;
-        include_spip(_DIR_OSAPI.'osapi');
+        include_spip(_DIR_OSAPI."osapi");
+        //include_spip("auth/osapiSecurityToken");
+        include_spip("auth/osapiFCAuth");
         include_spip('inc/texte');
         include_spip('base/abstract_sql');
         $provider = new osapiFriendConnectProvider();
-        $auth = new osapiFCAuth($GLOBALS['gfc']['cookie_value']);
+        //$auth = new osapiOAuth2Legged($key, $secret);
+        $auth = new osapiFCAuth($token);
         $osapi = new osapi($provider, $auth);
         $strictMode = true;
         if ($osapi) {
-                $request = $osapi->people->get(array('userId'=>'@me', 'groupId'=>'@self'));
                 $batch = $osapi->newBatch();
-                $batch->add($request, 'me');
+                //$request = $osapi->people->get($self_request_params), 'self');
+                $request = $osapi->people->get(array('userId'=>'@viewer', 'groupId'=>'@self'));
+                $batch->add($request, 'self');
                 $result = $batch->execute();
-                $me = $result['me'];
+                $me = $result['self'];
+                spip_log($result);
                 if ($me instanceof osapiError) {
                         $code = $me->getErrorCode();
-                $message = $me->getErrorMessage();      
-                        //die("$code - $message");
+                $message = $me->getErrorMessage();
+                        die("$code - $message");
                 }
                 else{
@@ -33 +56 @@
                         if(trim($display_name) == '') $display_name = $member_id;
                 }
+                spip_log("member_id = $member_id");
         }
         //END get osapi info
@@ -38 +62 @@
         if($member_id){
                 //try to login SPIP if google friend account already binded
-                if (login_spip($member_id)){}
+                if (login_spip($member_id)){
+                        
+                }
                 //elseif member already connected in SPIP...
-                elseif($GLOBALS['auteur_session']['id_auteur']!=''){
+                else if($GLOBALS['visiteur_session']['id_auteur'] !=''){
                         //if he already has a gfc_id, we do nothing !!THIS IS BAD, WE NEED TO WORK ON THIS CASE!!
-                        $res = spip_query("select gfc_uid from spip_auteurs where id_auteur=".sql_quote($GLOBALS['auteur_session']['id_auteur'])." and gfc_uid!='' limit 1");
-                        if(sql_count($res)==1){}
+                        $id_auteur = sql_getfetsel("id_auteur","spip_auteurs","id_auteur=".intval($GLOBALS['visiteur_session']['id_auteur'])." AND gfc_uid=''");
                         // else we consider this is an attempt to bind a spip account to a google friend account, we automatically bind the 2 account
-                        else spip_query("update spip_auteurs set gfc_uid=".sql_quote($member_id)." where id_auteur=".sql_quote($GLOBALS['auteur_session']['id_auteur']));
+                        if($id_auteur){
+                                sql_updateq("spip_auteurs",array('gfc_uid'=> $member_id),"id_auteur=".intval($GLOBALS['visiteur_session']['id_auteur']));
+                        }
                 }
                 //if not connected to SPIP and gfc_id not in our system, we create a new SPIP account
-                else{
+                else if(!sql_getfetsel("id_auteur","spip_auteurs","gfc_uid='$member_id'")){
                         $declaration = array();
-                        $declaration['statut'] = 'nouveau';
-                        $declaration['bio'] = 'forum';
+                        spip_log($_COOKIE['GAUSER']);
+                        $declaration['statut'] = '6forum';
                         $declaration['nom'] = safehtml($display_name);
-                        $declaration['login'] = $declaration['url_propre'] = ereg_replace("[^a-zA-Z0-9_]", "_", $display_name);;
-                        $declaration['email'] = $GLOBALS['gfc']['default_email'];
+                        $declaration['login'] = preg_replace("[^a-zA-Z0-9_]", "_", $declaration['nom']);
+                        $declaration['email'] = $default_email;
                         $declaration['gfc_uid'] = $member_id;
-                        $n = sql_insert('spip_auteurs', ('(en_ligne,' .join(',',array_keys($declaration)).')'), ("(NOW()," .join(", ",array_map('sql_quote', $declaration)) .")"));
+                        $declaration['en_ligne'] = 'NOW()';
+                        $n = sql_insertq('spip_auteurs',$declaration);
                         $declaration['id_auteur'] = $n;
-                        
-                        //then we log user in
-                        login_spip($member_id);
                 }
+                login_spip($member_id);
         }
         if($_SESSION["gfc"]["login_redirect"] != '') $url_retour = $_SESSION["gfc"]["login_redirect"];
@@ -70 +96 @@
 
 function login_spip($gfc_id, $spip_id=''){
-        if($gfc_id != '') $res = sql_select("*","spip_auteurs","gfc_uid=".sql_quote($gfc_id)." limit 1");
-        elseif($spip_id != '') $res = spip_query("select * from spip_auteurs where id_auteur=".sql_quote($spip_id)." limit 1");
-        if ($row = sql_fetch($res)){
+        if(intval($gfc_id)){
+                spip_log($gfc_id);
+                $res = sql_select("*","spip_auteurs","gfc_uid='$gfc_id'");
+                $res = sql_fetch($res);
+                spip_log($res);
+        } 
+        elseif($spip_id != '') $res = sql_fetsel("*","spip_auteurs","id_auteur=".sql_quote($spip_id),"","","1");
+        if ($res){
+                spip_log($res);
                 $auth_source = 'gfc';
-                $row['auth'] = $auth_source;
+                $res['auth'] = $auth_source;
                 // create session
                 $session = charger_fonction('session','inc');
-                $spip_session = $session($row);
+                $spip_session = $session($res);
                 // create cookie
                 $_COOKIE['spip_session'] = $spip_session;
@@ -83 +115 @@
                            url_de_base(),
                            $r);
+                spip_log($r);
                 include_spip('inc/cookie');
                 spip_setcookie('spip_session', $spip_session, time() + 3600 * 24 * 14, $r[1]);

_plugins_/gfc/balise/gfc.php

@@ -8 +8 @@
 
 function balise_GFC_dyn($param) {
+        if(function_exists('lire_config')){
+                $key = lire_config('gfc/consumer_id') ? str_replace('*:','',lire_config('gfc/consumer_id')) : str_replace('*:','',_GFC_CONSUMER_ID);
+                $cookie_name = lire_config('gfc/cookie_name') ? lire_config('gfc/cookie_name') : _GFC_COOKIE_NAME;
+        }else{
+                $key = str_replace('*:','',_GFC_CONSUMER_ID);
+                $cookie_name = _GFC_COOKIE_NAME;
+        }
         switch($param){
                 case "consumer_id":
-                        echo $GLOBALS["gfc"]["consumer_id"];
+                        echo $key;
                         break;
                         
                 case "cookie_name":
-                        echo $GLOBALS["gfc"]["cookie_name"];
+                        echo $cookie_name;
                         break;
         }
 }
-        
-
-
 
 ?>

_plugins_/gfc/balise/gfc_login_button.php

@@ -8 +8 @@
 
 function balise_GFC_LOGIN_BUTTON_dyn($url_retour = '') {
+        if(function_exists('lire_config')){
+                $cookie_name = lire_config('gfc/cookie_name') ? lire_config('gfc/cookie_name') : _GFC_COOKIE_NAME;
+        }else{
+                $cookie_name = _GFC_COOKIE_NAME;
+        }
         //don't show button if already logged in, based on the Cookie check
-        if(isset($_COOKIE[$GLOBALS['gfc']['cookie_name']])) return;
         
-        if($url_retour != '') $_SESSION["gfc"]["login_redirect"] = $url_retour;
-        else $_SESSION["gfc"]["login_redirect"] = self();
-        //display google friend login template
-        return array('formulaires/gfc_login_button', 0, array( 
-        ));
+        if(!isset($_COOKIE[$cookie_name]) OR !isset($GLOBAL['visiteur_session']['id_auteur'])){
+                if($url_retour != '') $_SESSION["gfc"]["login_redirect"] = $url_retour;
+                else $_SESSION["gfc"]["login_redirect"] = self();
+                        //display google friend login template
+                return array('formulaires/gfc_login_button', 0, array());
+        }
 }
 

_plugins_/gfc/gfc_options.php

@@ -1 +1 @@
 <?php
+
+set_include_path(get_include_path() . PATH_SEPARATOR . getcwd().'/'._DIR_PLUGIN_GFC.'auth');
 
 /**
@@ -5 +7 @@
  * (telechargee automatiquement ou manuellement a l'installation
  */
-define('_DIR_OSAPI',_DIR_RACINE.'lib/opensocial-php-client/osapi/');
+define('_DIR_OSAPI','lib/opensocial-php-client/osapi/');
+
 // USER CONFIG
 
 //consumer id
-$GLOBALS['gfc']['consumer_id'] = '';
+define('_GFC_CONSUMER_ID','');
 //consumer key
-$GLOBALS['gfc']['consumer_key'] = '';
+define('_GFC_CONSUMER_KEY','');
 //consumer secret
-$GLOBALS['gfc']['consumer_secret'] = '';
+define('_GFC_CONSUMER_SECRET','');
 //email of members automatically created with this plugin
-$GLOBALS['gfc']['default_email'] = 'nobody@noone.com';
+define('_GFC_DEFAULT_EMAIL','nobody@noone.com');
 
 //END USER CONFIG
-
-$GLOBALS['gfc']['cookie_name'] = 'fcauth'.$GLOBALS['gfc']['consumer_id'];
+define('_GFC_COOKIE_NAME','fcauth'._GFC_CONSUMER_ID);
 $GLOBALS['gfc']['cookie_value'] = $_COOKIE[$GLOBALS['gfc']['cookie_name']];
 ?>

_plugins_/gfc/gfc_pipelines.php

@@ -1 +1 @@
 <?php
-
+/**
+ * Insertion dans le pipeline insert_head
+ * 
+ * @param array $flux
+ * @return array $flux (le flux modifie)
+ */
 function gfc_insert_head($flux){
-        $flux .= "<script src='http://www.google.com/jsapi'></script>";
+        if(function_exists('lire_config')){
+                $key = lire_config('gfc/consumer_id') ? lire_config('gfc/consumer_id') : _GFC_CONSUMER_ID;
+                $cookie_name = lire_config('gfc/cookie_name') ? lire_config('gfc/cookie_name') : _GFC_COOKIE_NAME;
+        }else{
+                $key = _GFC_CONSUMER_ID;
+        }
+        $cookie_name = 'fcauth'.$key;
+        
+        $flux .= "<script type='text/javascript' src='http://www.google.com/jsapi'></script>";
         $flux .= "<script type='text/javascript'>google.load('friendconnect', '0.8');</script>";
     $flux .= 
@@ -8 +21 @@
           google.friendconnect.container.setParentUrl('/' /* location of rpc_relay.html and canvas.html */);
           google.friendconnect.container.initOpenSocialApi({
-                site: '".$GLOBALS['gfc']['consumer_id']."',
+                site: '".$key."',
                 onload: function() {
                         if (!window.timesloaded) window.timesloaded = 1;
@@ -19 +32 @@
           function gfc_signout(logout_url){
                   //we add this line to manage our login synchronisation, and wether we display the google login button or not
-                  document.cookie = 'name=".$GLOBALS['gfc']['cookie_name'].";path=\"/\";expires=Thu, 01-Jan-1970 00:00:01 GMT;';
+                  document.cookie = 'name=".$cookie_name.";path=\"/\";expires=Thu, 01-Jan-1970 00:00:01 GMT;';
                   google.friendconnect.requestSignOut();
-                  window.top.location.href = logout_url;
+                  if(logout_url){
+                        window.top.location.href = logout_url;
+                  }
           };
         </script>";