X-Git-Url: https://git.cweiske.de/shpub.git/blobdiff_plain/971586c9391e1c6c0b3f6561644d8acd05f3ae8b..6c791f2d0c159d56c570802c8d9bd3612262aa9e:/src/shpub/Command/Connect.php diff --git a/src/shpub/Command/Connect.php b/src/shpub/Command/Connect.php index 68a4e18..6634267 100644 --- a/src/shpub/Command/Connect.php +++ b/src/shpub/Command/Connect.php @@ -14,6 +14,43 @@ class Command_Connect $this->cfg = $cfg; } + public static function opts(\Console_CommandLine $optParser) + { + $cmd = $optParser->addCommand('connect'); + $cmd->description = 'Obtain access token from a micropub server'; + $cmd->addOption( + 'force', + array( + 'short_name' => '-f', + 'long_name' => '--force-update', + 'description' => 'Force token update if token already available', + 'action' => 'StoreTrue', + 'default' => false, + ) + ); + $cmd->addArgument( + 'server', + [ + 'optional' => false, + 'description' => 'Server URL', + ] + ); + $cmd->addArgument( + 'user', + [ + 'optional' => true, + 'description' => 'User URL', + ] + ); + $cmd->addArgument( + 'key', + [ + 'optional' => true, + 'description' => 'Short name (key)', + ] + ); + } + public function run($server, $user, $newKey, $force) { $server = Validator::url($server, 'server'); @@ -36,9 +73,10 @@ class Command_Connect list($redirect_uri, $socketStr) = $this->getHttpServerData(); $state = time(); - echo "To authenticate, open the following URL:\n" + Log::msg( + "To authenticate, open the following URL:\n" . $this->getBrowserAuthUrl($host, $user, $redirect_uri, $state) - . "\n"; + ); $authParams = $this->startHttpServer($socketStr); if ($authParams['state'] != $state) { @@ -47,7 +85,6 @@ class Command_Connect } $code = $authParams['code']; $userUrl = $authParams['me']; - $this->verifyAuthCode($host, $code, $state, $redirect_uri, $userUrl); $accessToken = $this->fetchAccessToken( $host, $userUrl, $code, $redirect_uri, $state @@ -73,7 +110,7 @@ class Command_Connect } $this->cfg->hosts[$hostKey] = $host; $this->cfg->save(); - echo "Server configuration $hostKey saved successfully.\n"; + Log::info("Server configuration $hostKey saved successfully."); } protected function fetchAccessToken( @@ -98,6 +135,12 @@ class Command_Connect ) ); $res = $req->send(); + if (intval($res->getStatus() / 100) !== 2) { + Log::err('Failed to fetch access token'); + Log::err('Server responded with HTTP status code ' . $res->getStatus()); + Log::err($res->getBody()); + exit(2); + } if ($res->getHeader('content-type') != 'application/x-www-form-urlencoded') { Log::err('Wrong content type in auth verification response'); exit(2); @@ -158,39 +201,6 @@ class Command_Connect return [$redirect_uri, $socketStr]; } - protected function verifyAuthCode($host, $code, $state, $redirect_uri, $me) - { - $req = new \HTTP_Request2($host->endpoints->authorization, 'POST'); - if (version_compare(PHP_VERSION, '5.6.0', '<')) { - //correct ssl validation on php 5.5 is a pain, so disable - $req->setConfig('ssl_verify_host', false); - $req->setConfig('ssl_verify_peer', false); - } - $req->setHeader('Content-Type: application/x-www-form-urlencoded'); - $req->setBody( - http_build_query( - [ - 'code' => $code, - 'state' => $state, - 'client_id' => static::$client_id, - 'redirect_uri' => $redirect_uri, - ] - ) - ); - $res = $req->send(); - if ($res->getHeader('content-type') != 'application/x-www-form-urlencoded') { - Log::err('Wrong content type in auth verification response'); - exit(2); - } - parse_str($res->getBody(), $verifiedParams); - if (!isset($verifiedParams['me']) - || $verifiedParams['me'] !== $me - ) { - Log::err('Non-matching "me" values'); - exit(2); - } - } - protected function startHttpServer($socketStr) { $responseOk = "HTTP/1.0 200 OK\r\n"