2010-02-23 12:10:06 +00:00
|
|
|
/*
|
|
|
|
current specification:
|
|
|
|
http://tools.ietf.org/html/draft-hammer-oauth-10
|
|
|
|
|
|
|
|
older ones:
|
|
|
|
http://oauth.net/core/1.0a/
|
|
|
|
http://oauth.net/core/1.0/
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include <net.h>
|
|
|
|
#include <tls.h>
|
2010-02-23 19:34:26 +00:00
|
|
|
#include <ht/http.h>
|
2010-02-23 12:10:06 +00:00
|
|
|
|
2011-08-24 08:57:50 +00:00
|
|
|
volatile string consumer_key;
|
|
|
|
volatile string consumer_secret;
|
|
|
|
volatile string request_token_url;
|
|
|
|
persistent mapping request_params = ([ ]);
|
|
|
|
persistent mapping access_params = ([ ]);
|
|
|
|
volatile string access_token_url;
|
|
|
|
volatile string authorize_url;
|
|
|
|
volatile string callback_url = HTTPS_OR_HTTP_URL + "/oauth";
|
|
|
|
volatile object user;
|
|
|
|
volatile int authorized = 0;
|
|
|
|
|
|
|
|
oauth_success() {}
|
|
|
|
oauth_error() {}
|
2010-02-23 12:10:06 +00:00
|
|
|
|
2010-02-23 18:43:26 +00:00
|
|
|
varargs void fetch(object ua, string url, string method, mapping post, mapping oauth) {
|
2010-02-23 12:10:06 +00:00
|
|
|
P3((">> oauth:fetch(%O, %O, %O)\n", url, method, oauth))
|
|
|
|
unless (method) method = "GET";
|
2010-02-23 17:46:50 +00:00
|
|
|
unless (post) post = ([]);
|
2010-02-23 12:10:06 +00:00
|
|
|
unless (oauth) oauth = ([]);
|
2010-02-23 18:43:26 +00:00
|
|
|
mapping get = ([]);
|
|
|
|
string qs, base_url = url;
|
|
|
|
if (sscanf(url, "%s?%s", base_url, qs))
|
|
|
|
url_parse_query(get, qs);
|
2010-02-23 12:10:06 +00:00
|
|
|
|
2010-02-23 17:46:50 +00:00
|
|
|
oauth["oauth_consumer_key"] = consumer_key;
|
|
|
|
string token;
|
|
|
|
if (token = access_params["oauth_token"] || request_params["oauth_token"])
|
|
|
|
oauth["oauth_token"] = token;
|
|
|
|
string token_secret = access_params["oauth_token_secret"] || request_params["oauth_token_secret"] || "";
|
|
|
|
oauth["oauth_timestamp"] = time();
|
|
|
|
oauth["oauth_nonce"] = sprintf("%x", random(oauth["oauth_timestamp"] ^ 98987));
|
|
|
|
oauth["oauth_signature_method"] = "HMAC-SHA1";
|
|
|
|
oauth["oauth_version"] = "1.0";
|
2010-02-23 12:10:06 +00:00
|
|
|
|
2010-02-23 17:46:50 +00:00
|
|
|
P3(("token: %O, token_secret: %O, access: %O, request: %O\n", token, token_secret, access_params, request_params))
|
2010-02-23 18:43:26 +00:00
|
|
|
string base_str = method + "&" + urlencode(base_url) + "&" + urlencode(make_query_string(get + post + oauth, 1));
|
2010-02-23 17:46:50 +00:00
|
|
|
oauth["oauth_signature"] = hmac_base64(TLS_HASH_SHA1, urlencode(consumer_secret) + "&" + urlencode(token_secret), base_str);
|
2010-02-23 12:10:06 +00:00
|
|
|
|
2010-02-23 17:46:50 +00:00
|
|
|
string p = "";
|
2010-02-23 12:10:06 +00:00
|
|
|
foreach (string key, string value : oauth)
|
2010-02-23 17:46:50 +00:00
|
|
|
p += (strlen(p) ? "," : "") + key + "=\"" + urlencode(to_string(value)) + "\"";
|
2010-02-23 12:10:06 +00:00
|
|
|
|
2010-02-23 18:10:19 +00:00
|
|
|
ua->fetch(url, method, post, (["authorization": "OAuth " + p]));
|
2010-02-23 12:10:06 +00:00
|
|
|
}
|
|
|
|
|
2010-02-23 19:34:26 +00:00
|
|
|
void parse_request_token(string body, mapping headers, int http_status) {
|
|
|
|
P3((">> oauth:parse_request_token(%O, %O, %O)\n", body, headers, http_status))
|
|
|
|
if (http_status == R_OK) {
|
|
|
|
request_params = ([]);
|
|
|
|
url_parse_query(request_params, body);
|
|
|
|
if (strlen(request_params["oauth_token"]) && strlen(request_params["oauth_token_secret"])) {
|
|
|
|
shared_memory("oauth_request_tokens")[request_params["oauth_token"]] = ME;
|
2010-02-23 22:42:54 +00:00
|
|
|
//P3((">>> adding token: %O to shm: %O\n", request_params["oauth_token"], shared_memory("oauth_request_tokens")))
|
2011-08-24 08:57:50 +00:00
|
|
|
if (user) sendmsg(user, "_notice_oauth_authorize_url", "Open [_url] to perform authorization.",
|
|
|
|
(["_url": authorize_url + "?oauth_token=" + request_params["oauth_token"]]));
|
|
|
|
P1(("OAuth: open %s to perform authorization.\n", authorize_url + "?oauth_token=" + request_params["oauth_token"]));
|
2010-02-23 19:34:26 +00:00
|
|
|
return;
|
|
|
|
}
|
2010-02-23 12:10:06 +00:00
|
|
|
}
|
2011-08-24 08:57:50 +00:00
|
|
|
if (user) sendmsg(user, "_error_oauth_token_request", "OAuth failed: could not get a request token.");
|
|
|
|
P1(("OAuth failed: could not get a request token.\n"));
|
|
|
|
authorized = -1;
|
|
|
|
oauth_error();
|
2010-02-23 12:10:06 +00:00
|
|
|
}
|
|
|
|
|
2010-02-23 19:34:26 +00:00
|
|
|
void parse_access_token(string body, mapping headers, int http_status) {
|
|
|
|
P3((">> oauth:parse_access_token(%O, %O, %O)\n", body, headers, http_status))
|
|
|
|
if (http_status == R_OK) {
|
|
|
|
access_params = ([]);
|
|
|
|
url_parse_query(access_params, body);
|
|
|
|
if (strlen(access_params["oauth_token"]) && strlen(access_params["oauth_token_secret"])) {
|
2011-08-24 08:57:50 +00:00
|
|
|
if (user) sendmsg(user, "_notice_oauth_success", "OAuth successful.");
|
|
|
|
P1(("OAuth successful.\n"));
|
|
|
|
authorized = 1;
|
|
|
|
oauth_success();
|
2010-02-23 19:34:26 +00:00
|
|
|
return;
|
|
|
|
}
|
2010-02-23 12:10:06 +00:00
|
|
|
}
|
2011-08-24 08:57:50 +00:00
|
|
|
if (user) sendmsg(user, "_error_oauth_token_access", "OAuth failed: could not get an access token.");
|
|
|
|
P1(("OAuth failed: could not get an access token.\n"));
|
|
|
|
authorized = -1;
|
|
|
|
oauth_error();
|
2010-02-23 12:10:06 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
void verified(string verifier) {
|
|
|
|
P3((">> oauth:verified(%O)\n", verifier))
|
|
|
|
object ua = clone_object(NET_PATH "http/fetch");
|
|
|
|
ua->content(#'parse_access_token, 1, 1); //');
|
2010-02-23 18:43:26 +00:00
|
|
|
fetch(ua, access_token_url, "POST", 0, (["oauth_verifier": verifier]));
|
2010-02-23 12:10:06 +00:00
|
|
|
}
|
|
|
|
|
2011-08-24 08:57:50 +00:00
|
|
|
void oauth() {
|
|
|
|
if (!request_token_url) return;
|
|
|
|
|
|
|
|
request_params = ([ ]);
|
|
|
|
access_params = ([ ]);
|
|
|
|
authorized = 0;
|
|
|
|
|
|
|
|
object ua = clone_object(NET_PATH "http/fetch");
|
|
|
|
ua->content(#'parse_request_token, 1, 1); //');
|
|
|
|
fetch(ua, request_token_url, "POST", 0, (["oauth_callback": callback_url]));
|
|
|
|
}
|
|
|
|
|
|
|
|
object load(object usr, mapping opts) {
|
2010-02-23 12:10:06 +00:00
|
|
|
if (usr) user = usr;
|
2011-08-24 08:57:50 +00:00
|
|
|
unless (mappingp(opts)) opts = ([]);
|
|
|
|
if (opts["consumer_key"]) consumer_key = opts["consumer_key"];
|
|
|
|
if (opts["consumer_secret"]) consumer_secret = opts["consumer_secret"];
|
|
|
|
if (opts["request_token_url"]) request_token_url = opts["request_token_url"];
|
|
|
|
if (opts["access_token_url"]) access_token_url = opts["access_token_url"];
|
|
|
|
if (opts["authorize_url"]) authorize_url = opts["authorize_url"];
|
|
|
|
|
|
|
|
if (access_params["oauth_token"])
|
|
|
|
authorized = 1;
|
|
|
|
else
|
|
|
|
oauth();
|
2010-02-23 12:10:06 +00:00
|
|
|
return ME;
|
|
|
|
}
|