2014-04-30 02:20:09 +04:00
# OAuth 2.0 Client
2013-03-15 15:26:41 +04:00
2014-01-23 07:39:53 +04:00
[](https://travis-ci.org/thephpleague/oauth2-client)
2013-11-18 06:18:23 +04:00
[](https://packagist.org/packages/league/oauth2-client)
[](https://packagist.org/packages/league/oauth2-client)
2014-04-30 02:20:09 +04:00
Everyone is used to seeing those "Connect with Facebook/Google/etc" buttons around the Internet and social network
integration is an important feature of most web-apps these days. Many of these sites use an Authentication and Authorization standard called OAuth 2.0.
2013-03-15 15:26:41 +04:00
2014-04-30 02:20:09 +04:00
It will work with any OAuth 2.0 provider (be it your own [PHP OAuth 2.0 Server] or Facebook) and provides support for
popular systems out of the box. This package abstracts out some of the subtle but important differences between various providers, handles access tokens and refresh tokens, and allows you easy access to profile information on these other sites.
2013-03-15 15:26:41 +04:00
2014-04-30 02:20:09 +04:00
This package is compliant with [PSR-1][], [PSR-2][] and [PSR-4][]. If you notice compliance oversights, please send
a patch via pull request.
2013-03-25 16:59:42 +04:00
2014-04-30 02:20:09 +04:00
[PSR-1]: https://github.com/php-fig/fig-standards/blob/master/accepted/PSR-1-basic-coding-standard.md
[PSR-2]: https://github.com/php-fig/fig-standards/blob/master/accepted/PSR-2-coding-style-guide.md
[PSR-4]: https://github.com/php-fig/fig-standards/blob/master/accepted/PSR-4-autoloader.md
### Built-In Providers
This package currently has built-in support for:
- Eventbrite
- Facebook
- Github
- Google
- Instagram
- LinkedIn
- Microsoft
These are as many OAuth 2 services as we plan to support officially. Maintaining a wide selection of providers
damages our ability to make this package the best it can be, especially as we progress towards v1.0.
### Third-Party Providers
If you would like to support other providers, please make them available as a Composer package, then link to them
below.
These providers allow integration with other providers not supported by `oauth2-client` . They may require an older version
so please help them out with a pull request if you notice this.
- _Insert providers here_
## Install
Via Composer
``` json
{
"require": {
"league/oauth2-client": "~0.3"
}
}
```
## Requirements
The following versions of PHP are supported.
* PHP 5.4
* PHP 5.5
* PHP 5.6
* HHVM
2013-03-25 16:59:42 +04:00
## Usage
2014-04-30 02:20:09 +04:00
### Authorization Code Flow
2013-03-25 16:59:42 +04:00
```php
2014-04-30 02:20:09 +04:00
$provider = new League\OAuth2\Client\Provider\<ProviderName>(array(
2013-03-25 16:59:42 +04:00
'clientId' => 'XXXXXXXX',
'clientSecret' => 'XXXXXXXX',
2014-04-30 02:20:09 +04:00
'redirectUri' => 'https://your-registered-redirect-uri/'
2013-03-25 16:59:42 +04:00
));
if ( ! isset($_GET['code'])) {
2014-04-30 02:20:09 +04:00
// If we don't have an authorization code then get one
header('Location: '.$provider->getAuthorizationUrl());
exit;
2013-03-25 16:59:42 +04:00
} else {
2014-04-30 02:20:09 +04:00
// Try to get an access token (using the authorization code grant)
$token = $provider->getAccessToken('authorization_code', [
'code' => $_GET['code']
]);
2013-03-25 16:59:42 +04:00
2014-04-30 02:20:09 +04:00
// If you are using Eventbrite you will need to add the grant_type parameter (see below)
$token = $provider->getAccessToken('authorization_code', [
'code' => $_GET['code'],
'grant_type' => 'authorization_code'
]);
2013-03-25 16:59:42 +04:00
2014-04-30 02:20:09 +04:00
// Optional: Now you have a token you can look up a users profile data
try {
2013-03-25 16:59:42 +04:00
2014-04-30 02:20:09 +04:00
// We got an access token, let's now get the user's details
$userDetails = $provider->getUserDetails($token);
2013-03-25 16:59:42 +04:00
2014-04-30 02:20:09 +04:00
// Use these details to create a new profile
printf('Hello %s!', $userDetails->firstName);
2013-03-25 16:59:42 +04:00
} catch (Exception $e) {
2014-04-30 02:20:09 +04:00
// Failed to get user details
exit('Oh dear...');
2013-03-25 16:59:42 +04:00
}
2014-04-30 02:20:09 +04:00
// Use this to interact with an API on the users behalf
echo $token->access_token;
// Use this to get a new access token if the old one expires
echo $token->refresh_token;
2014-04-30 01:53:42 +04:00
2014-04-30 02:20:09 +04:00
// Number of seconds until the access token will expire, and need refreshing
echo $token->expires_in;
}
```
2014-04-30 01:53:42 +04:00
2014-04-30 02:20:09 +04:00
### Refreshing a Token
2014-04-30 01:53:42 +04:00
2014-04-30 02:20:09 +04:00
```php
$provider = new League\OAuth2\Client\Provider\<ProviderName>(array(
'clientId' => 'XXXXXXXX',
'clientSecret' => 'XXXXXXXX',
'redirectUri' => 'https://your-registered-redirect-uri/'
));
2014-04-30 01:53:42 +04:00
2014-04-30 02:20:09 +04:00
$grant = new \League\OAuth2\Client\Grant\RefreshToken();
$token = $provider->getAccessToken($grant, ['refresh_token' => $refreshToken]);
```
2014-04-30 01:53:42 +04:00
2014-04-30 02:20:09 +04:00
## Testing
2014-04-30 01:53:42 +04:00
2014-04-30 02:20:09 +04:00
``` bash
$ phpunit
```
2013-11-18 06:18:44 +04:00
## License
2014-01-23 07:39:53 +04:00
The MIT License (MIT). Please see [License File ](https://github.com/thephpleague/oauth2-client/blob/master/LICENSE ) for more information.
2013-12-06 01:20:59 +04:00
2014-01-23 07:39:53 +04:00
[](https://bitdeli.com/free "Bitdeli Badge")
