Marle
/
webAdministracion
İzle 1
Yıldızla 0
Çatalla 0
Kod Sorunlar 0 Değişiklik İstekleri 0 Sürümler 0 Wiki Aktivite
Açıklama Yok
7 İşlemeler
1 Dal
Ağaç: 868f704eb3
Dallar Biçim İmleri
${ item.name }
Branş ${ searchTerm } oluştur
'868f704eb3'den
${ noResults }
webAdministracion/processes/callback.php

callback.php 3.0KB
Geçmiş Ham

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126 
  1. <?php

  2. 

  3. 	require_once 'config.php';

  4. 

  5. 	// IF A SESSION ALREADY EXISTS, USE EXISTING TOKEN

  6. 	// ELSE IF THERE'S NO SESSION BUT $_GET HAS USER AUTHCODE, OBTAIN NEW TOKEN

  7. 	// ELSE REDIRECT TO ERROR PAGE

  8. 	if(isset($_SESSION['token'])) {

  9. 		$client->setAccessToken($_SESSION['token']);

  10. 	}

  11. 	else if(isset($_GET['code'])) {

  12. 		$token = $client->fetchAccessTokenWithAuthCode($_GET['code']);

  13. 		

  14. 		// IF 'code' IS NOT AUTHENTIC, TOKEN IS AN ARRAY WITH 'error' SET TO SOMETHING (i.e. 'invalid_grant')

  15. 		if(isset($token['error'])) {

  16. 			header('Location: ./logout.php');

  17. 			die();

  18. 		}

  19. 		

  20. 		$_SESSION['token'] = $token;

  21. 	}

  22. 	else {

  23. 		header('Location: ../home.php');

  24. 		exit();

  25. 	}

  26. 	

  27. // 	var_dump($_GET);

  28. // 	var_dump($_SESSION);

  29. 		

  30. 	$oAuth = new Google_Service_Oauth2($client);

  31. 	$userData = $oAuth->userinfo_v2_me->get();

  32. 	

  33. 	/*

  34. 			Algunos keys de los datos que se pueden extraer:

  35. 			

  36. 			(USADOS)

  37. 			-SCOPE 'profile': name, picture

  38. 			-SCOPE 'email': email

  39. 			

  40. 			(NO USADOS)

  41. 			*-SCOPE 'profile': gender, familyName, givenName, hd, id, link*, locale, verifiedEmail

  42. 			*-SCOPE 'profile': internal_gapi_mappings, modelData, processed

  43. 

  44. 			Lista completa de scopes: https://developers.google.com/identity/protocols/googlescopes

  45. 	*/

  46. 	

  47. 	

  48. 	require_once 'dbh.inc.php';

  49. 	

  50. 	

  51. 	$query = 'SELECT * FROM researcher WHERE email = "' . $userData['email'] . '";';

  52. 	$result = mysqli_query($connection, $query);

  53. 	$dbUserData = mysqli_fetch_assoc($result);

  54. 	

  55. 	

  56. 	// IF DB CAN'T FETCH USER DATA, IT MUST BE BECAUSE USER IS UNAUTHORIZED

  57. 	if($dbUserData === NULL) {

  58. 		$_SESSION['error'] = 'unauthorized';

  59. 		header('Location: ../unauthorized.php');

  60. 		exit();

  61. 	}

  62. 	

  63. 

  64. 	// FIRST ASSUME USER IS NOT NEW

  65. 	$_SESSION['newUser'] = false;

  66. 	

  67. 	

  68. 	// IF USER IS NEW, UPDATE DB WITH USER INFO FROM GOOGLE

  69. 	// AND SET 'newUser' SESSION VARIABLE TO TRUE

  70. 	if($dbUserData['picture'] == NULL) { //$dbUserData['name'] == NULL && 

  71. 		$query = 'UPDATE researcher SET name = "' . $userData['name'] . '", picture = "' . $userData['picture'] . '" WHERE email = "' . $userData['email'] . '";';

  72. 		mysqli_query($connection, $query);

  73. 		$_SESSION['newUser'] = true;

  74. 	}

  75. 	

  76. 	

  77. 	// REFETCH INFO FROM DATABASE AND STORE IN SESSION

  78. 	$result = mysqli_query($connection, $query);

  79. 	$dbUserData = mysqli_fetch_assoc($result);

  80. 	$_SESSION['dbUserData'] = $dbUserData;

  81. 	

  82. 

  83. 	//### FOR DEBUGGING ###

  84. // 	$_SESSION['result'] = $result;

  85. 	$_SESSION['error_set'] = isset($_SESSION['error']);

  86. 	//### FOR DEBUGGING ###

  87. 	

  88. 	header('Location: ../home.php');

  89. 	exit();

  90. 

  91. 

  92. 

  93. 

  94. 

  95. 

  96. 

  97. 

  98. 

  99. 

  100. 

  101. 

  102. 

  103. 

  104. 

  105. 

  106. 

  107. 

  108. 

  109. 

  110. 

  111. 

  112. 

  113. 

  114. 

  115. 	/*

  116. 			Additional links that helped:

  117. 			

  118. 			Google Developers Tutorial (Javascript): https://developers.google.com/identity/sign-in/web/sign-in

  119. 			Sample Code: https://github.com/GoogleChromeLabs/google-sign-in

  120. 			Branding Guidelines: https://developers.google.com/identity/branding-guidelines

  121. 			Developer's Console: https://console.developers.google.com

  122. 			

  123. 			Tutorials:

  124. 				-Login With Google Account Using PHP & Client API: https://www.youtube.com/watch?v=hazMyK_cnzk

  125. 				-Login with Google Account using PHP: https://www.codexworld.com/login-with-google-api-using-php/

  126. 	*/