From 67c2d56be81a48ba63ce92d5fa0ff339be9ca5a5 Mon Sep 17 00:00:00 2001
From: Tom Needham <needham.thomas@gmail.com>
Date: Thu, 30 Aug 2012 14:02:31 +0000
Subject: [PATCH] Add ownCloud OAuth store backend. WIP
---
lib/oauth/store.php | 74 ++++++++++++++++++++++++++++++++++++++++++---
1 file changed, 69 insertions(+), 5 deletions(-)
diff --git a/lib/oauth/store.php b/lib/oauth/store.php
index 2f58e46b5b0..f1df7d49b93 100644
--- a/lib/oauth/store.php
+++ b/lib/oauth/store.php
@@ -2,10 +2,10 @@
/**
* ownCloud
*
-* @author Tom Needham
* @author Michael Gapczynski
-* @copyright 2012 Tom Needham tom@owncloud.com
+* @author Tom Needham
* @copyright 2012 Michael Gapczynski mtgap@owncloud.com
+* @copyright 2012 Tom Needham tom@owncloud.com
*
* This library is free software; you can redistribute it and/or
* modify it under the terms of the GNU AFFERO GENERAL PUBLIC LICENSE
@@ -22,8 +22,72 @@
*
*/
-class OC_OAuth_Store extends OAuthDataStore {
+class OC_OAuth_Store {
+
+ function lookup_consumer($consumer_key) {
+ $query = OC_DB::prepare("SELECT `key`, `secret`, `callback` FROM `*PREFIX*oauth_consumers` WHERE `key` = ?");
+ $results = $query->execute(array($consumer_key));
+ if($results->numRows()==0){
+ return NULL;
+ } else {
+ $details = $results->fetchRow();
+ $callback = !empty($details['callback']) ? $details['callback'] : NULL;
+ return new OAuthConsumer($details['key'], $details['secret'], $callback);
+ }
+ }
+
+ function lookup_token($consumer, $token_type, $token) {
+ $query = OC_DB::prepare("SELECT `key`, `secret`, `type` FROM `*PREFIX*oauth_tokens` WHERE `consumer_key` = ? AND `key` = ? AND `type` = ?");
+ $results = $query->execute(array($consumer->key, $token->key, $token_type));
+ if($results->numRows()==0){
+ return NULL;
+ } else {
+ $token = $results->fetchRow();
+ return new OAuthToken($token['key'], $token['secret']);
+ }
+ }
+
+ function lookup_nonce($consumer, $token, $nonce, $timestamp) {
+ $query = OC_DB::prepare("INSERT INTO `*PREFIX*oauth_nonce` (`consumer_key`, `token`, `timestamp`, `nonce`) VALUES (?, ?, ?, ?)");
+ $affectedrows = $query->exec(array($consumer->key, $token->key, $timestamp, $nonce));
+ // Delete all timestamps older than the one passed
+ $query = OC_DB::prepare("DELETE FROM `*PREFIX*oauth_nonce` WHERE `consumer_key` = ? AND `token` = ? AND `timestamp` < ?");
+ $query->execute(array($consumer->key, $token->key, $timestamp - self::MAX_TIMESTAMP_DIFFERENCE));
+ return $result;
+ }
+
+ function new_token($consumer, $token_type, $scope = null) {
+ $key = md5(time());
+ $secret = time() + time();
+ $token = new OAuthToken($key, md5(md5($secret)));
+ $query = OC_DB::prepare("INSERT INTO `*PREFIX*oauth_tokens` (`consumer_key`, `key`, `secret`, `type`, `scope`, `timestamp`) VALUES (?, ?, ?, ?, ?, ?)");
+ $result = $query->execute(array($consumer->key, $key, $secret, $token_type, $scope, time()));
+ return $token;
+ }
+
+ function new_request_token($consumer, $scope, $callback = null) {
+ return $this->new_token($consumer, 'request', $scope);
+ }
+
+ function authorise_request_token($token, $consumer, $uid) {
+ $query = OC_DB::prepare("UPDATE `*PREFIX*oauth_tokens` SET uid = ? WHERE `consumer_key` = ? AND `key` = ? AND `type` = ?");
+ $query->execute(array($uid, $consumer->key, $token->key, 'request'));
+ // TODO Return oauth_verifier
+ }
+
+ function new_access_token($token, $consumer, $verifier = null) {
+ $query = OC_DB::prepare("SELECT `timestamp`, `scope` FROM `*PREFIX*oauth_tokens` WHERE `consumer_key` = ? AND `key` = ? AND `type` = ?");
+ $result = $query->execute(array($consumer->key, $token->key, 'request'))->fetchRow();
+ if (isset($result['timestamp'])) {
+ if ($timestamp + self::MAX_REQUEST_TOKEN_TTL < time()) {
+ return false;
+ }
+ $accessToken = $this->new_token($consumer, 'access', $result['scope']);
+ }
+ // Delete request token
+ $query = OC_DB::prepare("DELETE FROM `*PREFIX*oauth_tokens` WHERE `key` = ? AND `type` = ?");
+ $query->execute(array($token->key, 'request'));
+ return $accessToken;
+ }
- // To follow.
-
}
\ No newline at end of file
--
GitLab