aboutsummaryrefslogtreecommitdiff
path: root/app/session/oauth/embed/index.php
blob: ff47ef04fadbe6b9fc45cbd337188faf415d308f (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52

<?php

header("Content-Type: text/plain");
// TODO: handle errors
$_CONFIG = json_decode(file_get_contents("/mnt/familine/private/FamilineConfig.json"), true);

if (!isset($_GET['code'])) {
    die();
}

$appdata = json_decode(file_get_contents("/mnt/familine/private/app.json"), true);

$crl = curl_init('https://' . $_CONFIG["Global"]["federation"]. '/auth/realms/Familine/protocol/openid-connect/token');
curl_setopt($crl, CURLOPT_RETURNTRANSFER, true);
curl_setopt($crl, CURLINFO_HEADER_OUT, true);
curl_setopt($crl, CURLOPT_POST, true);
curl_setopt($crl, CURLOPT_HTTPHEADER, [
    "Authorization: Basic " . base64_encode($appdata["id"] . ":" . $appdata["secret"]),
    "Content-Type: application/x-www-form-urlencoded",
    "Accept: application/json"
]);
curl_setopt($crl, CURLOPT_POSTFIELDS, "grant_type=authorization_code&redirect_uri=" . urlencode("https://session." . $_CONFIG["Global"]["domain"] . "/oauth/embed") . "&code=" . $_GET['code']);

$result = curl_exec($crl);
var_dump($result);
$result = json_decode($result, true);

curl_close($crl);

if (isset($result["access_token"])) {
    $crl = curl_init('https://' . $_CONFIG["Global"]["federation"]. '/auth/realms/Familine/protocol/openid-connect/userinfo');
    curl_setopt($crl, CURLOPT_RETURNTRANSFER, true);
    curl_setopt($crl, CURLINFO_HEADER_OUT, true);
    curl_setopt($crl, CURLOPT_HTTPHEADER, [
        "Authorization: Bearer " . $result["access_token"],
        "Accept: application/json"
    ]);

    $result = curl_exec($crl);
    var_dump($result);
    $result = json_decode($result, true);

    $token = bin2hex(random_bytes(32));
    $result["login"] = $result["preferred_username"];
    $result["name_internal"] = $result["name"];
    $result["name"] = $result["family_name"] . " " . $result["given_name"];
    $result["id"] = $result["sub"];
    file_put_contents("/mnt/familine/private/tokens/" . $token, json_encode($result));
    setcookie("FL_SESSION_TOKEN", $token, 0, "/", "." . $_CONFIG["Global"]["cdn"], true, true);

    header("Location: /statusbar.php");
}
© Floofi Systems, Some rights reserved. Powered by cgit.