Code Coverage for /srv/web-content/subdomains/skeleton/module/Social/src/Providers/TwitterProvider.php

	Code Coverage
	Classes and Traits			Functions and Methods				Lines
Total	0.00% covered (danger)	0.00%	0 / 1	92.86% covered (success)	92.86%	13 / 14	CRAP	98.20% covered (success)	98.20%	109 / 111
Social\Providers\TwitterProvider	0.00% covered (danger)	0.00%	0 / 1	92.86% covered (success)	92.86%	13 / 14	42	98.20% covered (success)	98.20%	109 / 111
__construct				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	3 / 3
setProviderName				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	2 / 2
getRedirectRoute				100.00% covered (success)	100.00%	1 / 1	7	100.00% covered (success)	100.00%	9 / 9
sendClientRequest				100.00% covered (success)	100.00%	1 / 1	5	100.00% covered (success)	100.00%	12 / 12
getCredentials				100.00% covered (success)	100.00%	1 / 1	4	100.00% covered (success)	100.00%	15 / 15
checkCredentials				100.00% covered (success)	100.00%	1 / 1	4	100.00% covered (success)	100.00%	10 / 10
makeRequest				100.00% covered (success)	100.00%	1 / 1	5	100.00% covered (success)	100.00%	18 / 18
setDefaultParams				100.00% covered (success)	100.00%	1 / 1	3	100.00% covered (success)	100.00%	12 / 12
buildAuthorisation				0.00% covered (danger)	0.00%	0 / 1	5.12	83.33% covered (success)	83.33%	10 / 12
getSignature				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	5 / 5
getSignatureBaseString				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	5 / 5
getNonce				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	1 / 1
getTimestamp				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	1 / 1
urlencodeRfc3986				100.00% covered (success)	100.00%	1 / 1	3	100.00% covered (success)	100.00%	6 / 6

1	<?php
2
3	/**
4	* Class TwitterProvider
5	*
6	* @package Social\Providers
7	* @author Nigel Hurnell
8	* @version v 1.0.0
9	* @license BSD
10	* @copyright Copyright (c) 2017, Nigel Hurnell
11	*/
12
13	namespace Social\Providers;
14
15	use Social\Providers\ProviderInterface\ProviderInterface;
16	use Social\Service\SocialManager;
17
18	/**
19	* Class GoogleProvider
20	* Social Media OAuth1 provider for TWITTER
21	*
22	* @package Social\Providers
23	* @author Nigel Hurnell
24	* @version v 1.0.0
25	* @license BSD
26	* @copyright Copyright (c) 2017, Nigel Hurnell
27	*/
28	class TwitterProvider implements ProviderInterface
29	{
30
31	/**
32	* TWITTER's base authorisation URL
33	*
34	* @var string
35	*/
36	protected $baseUrl = 'https://api.twitter.com/'; // oauth/authenticate
37
38	/**
39	* Part of URL to append
40	*
41	* @var string
42	*/
43	protected $preUrl = 'oauth/request_token';
44
45	/**
46	* Type of hash to use
47	*
48	* @var string
49	*/
50	protected $signatureMethod = 'HMAC-SHA1';
51
52	/**
53	* TWITTER API version
54	*
55	* @var string
56	*/
57	protected $oauthVersion = '1.0';
58
59	/**
60	* Default parameters to use in the URL request
61	*
62	* @var array
63	*/
64	protected $defaultParams = [];
65
66	/**
67	* social login or registration
68	*
69	* @var string
70	*/
71	protected $action;
72
73	/**
74	* Constructor Instantiate class and pass Social manager and
75	* set the extending social provider name.
76	*
77	* @param SocialManager $socialManager
78	*/
79	public function __construct(SocialManager $socialManager)
80	{
81	$this->socialManager = $socialManager;
82	$this->setProviderName();
83	}
84
85	/**
86	* Set the provider name
87	*/
88	protected function setProviderName()
89	{
90	$this->providerName = 'twitter';
91	}
92
93	/**
94	* Get the full redirect URL (including query string)
95	*
96	* @param string $callback
97	* @return string full redirect URL
98	*/
99	public function getRedirectRoute($callback)
100	{
101	$this->callback = $callback;
102	$this->setDefaultParams();
103	$path = 'oauth/request_token';
104	if (false !== $response = $this->makeRequest($path, 'POST')) {
105	$result = [];
106	parse_str($response->getBody(), $result);
107	if (200 == $response->getStatusCode() && array_key_exists('oauth_callback_confirmed', $result) && $result['oauth_callback_confirmed'] == 'true' && array_key_exists('oauth_token', $result) && array_key_exists('oauth_token_secret', $result)) {
108	return $this->baseUrl . 'oauth/authenticate' . '?' . 'oauth_token=' . $result['oauth_token'];
109	}
110	}
111	throw new \Exception('Twitter returned an error');
112	}
113
114	/**
115	* Send Client Request
116	* Form client request URL with query params and send via Zend Client
117	*
118	* @param string $callback the callback URL
119	* @param array $queryParams parameters to append to end of callback URL
120	* @return array that contains the user profile
121	*/
122	public function sendClientRequest($callback, $queryParams)
123	{
124	$this->callback = $callback;
125	if (array_key_exists('oauth_token', $queryParams) && array_key_exists('oauth_verifier', $queryParams)) {
126	$this->setDefaultParams($queryParams['oauth_token'], $queryParams['oauth_verifier']);
127	$path = 'oauth/access_token';
128	if (false !== $response = $this->makeRequest($path, 'POST', ['oauth_verifier' => $queryParams['oauth_verifier']])) {
129	$result = [];
130	parse_str($response->getBody(), $result);
131	if (200 == $response->getStatusCode()) {
132	$result = [];
133	parse_str($response->getBody(), $result);
134	return $this->getCredentials($result);
135	}
136	}
137	}
138	throw new \Exception('Twitter returned an error (1).');
139	}
140
141	/**
142	* Get TWITTER user's credentials
143	*
144	* @param type $queryParams
145	* @return type
146	* @throws \Exception
147	*/
148	protected function getCredentials($queryParams)
149	{
150	$this->checkCredentials($queryParams);
151	$this->setDefaultParams($queryParams['oauth_token']);
152	$path = '1.1/account/verify_credentials.json';
153	$params = array('include_email' => 'true', 'include_entities' => 'false', 'skip_status' => 'true');
154	if (false !== $response = $this->makeRequest($path, 'GET', $params, $queryParams['oauth_token_secret'])) {
155	$result = [];
156	parse_str($response->getBody(), $result);
157	if (200 == $response->getStatusCode()) {
158	$user = json_decode($response->getBody());
159	if (isset($user->email)) {
160	return [
161	'name' => var_export($user->name, true),
162	'email' => $user->email,
163	'id' => $user->id,
164	'provider' => $this->providerName
165	];
166	}
167	}
168	}
169	throw new \Exception('Twitter could not get valid credentials.');
170	}
171
172	/**
173	* CHeck that the returned array has the required keys
174	*
175	* @param array $queryParams
176	* @return JSON object
177	* @throws \Exception when returned object does not conform to requirements
178	*/
179	protected function checkCredentials($queryParams)
180	{
181	$error = '';
182	switch (true) {
183	case (!array_key_exists('oauth_token', $queryParams)):
184	$error = 'oauth_token not in array';
185	break;
186	case (!array_key_exists('oauth_token_secret', $queryParams)):
187	$error = 'oauth_token_secret not in array';
188	break;
189	}
190	if ('' !== $error) {
191	throw new \Exception('Twitter returned an error "' . $error . '".');
192	}
193	}
194
195	/**
196	* Make HTTP request
197	*
198	* @param string $path
199	* @param string $method
200	* @param array $params
201	* @param string $tokenSecret
202	* @return Response
203	*/
204	protected function makeRequest($path, $method, $params = [], $tokenSecret = '')
205	{
206	$authorization = $this->buildAuthorisation($path, $method, $tokenSecret, $params);
207	$client = $this->socialManager->getClient();
208	$client->resetParameters();
209	$headers = [
210	'Accept' => 'application/json',
211	'Authorization' => $authorization,
212	'User-Agent' => 'TwitterOAuth (+https://twitteroauth.com) Adapted for Zend http client',
213	'Expect' => '',
214	];
215	switch (true) {
216	case 'POST' == $method && count($params) > 0:
217	$client->setParameterPost($params);
218	break;
219	case 'GET' == $method && count($params) > 0:
220	$path .= '?' . http_build_query($params);
221	break;
222	default:
223	break;
224	}
225	$client->setUri($this->baseUrl . $path);
226	$client->setMethod($method);
227	$client->setHeaders($headers);
228	return $client->send();
229	}
230
231	/**
232	* Populate defaultParams with TWITTER specific values
233	*
234	* @param string\|false $oauthToken
235	* @param string\|false $oauthVerifier
236	*/
237	protected function setDefaultParams($oauthToken = false, $oauthVerifier = false)
238	{
239	$this->defaultParams = [
240	'oauth_consumer_key' => $this->socialManager->getModuleOptions()->getConsumerKey('twitter'),
241	'oauth_nonce' => $this->getNonce(),
242	'oauth_signature_method' => $this->signatureMethod,
243	'oauth_timestamp' => $this->getTimestamp(),
244	'oauth_version' => $this->oauthVersion,
245	'oauth_extra' => 'action'
246	];
247	if (false !== $oauthToken) {
248	$this->defaultParams['oauth_token'] = $oauthToken;
249	}
250	if (false !== $oauthVerifier) {
251	$this->defaultParams['oauth_verifier'] = $oauthVerifier;
252	}
253	}
254
255	/**
256	* Build special authorisation hashed string specific to twitter
257	*
258	* @param string $path
259	* @param string $method
260	* @param string $tokenSecret
261	* @param array $params
262	* @return string
263	* @throws TwitterOAuthException
264	*/
265	protected function buildAuthorisation($path, $method, $tokenSecret = '', $params = [])
266	{
267	$first = true;
268	$this->defaultParams['oauth_signature'] = $this->getSignature(array_merge($this->defaultParams, $params), $path, $method, $tokenSecret);
269	$out = 'OAuth';
270	foreach ($this->defaultParams as $k => $v) {
271	if (substr($k, 0, 5) != "oauth") {
272	continue;
273	}
274	if (is_array($v)) {
275	throw new \Exception('Arrays not supported in headers');
276	}
277	$out .= ($first) ? ' ' : ', ';
278	$out .= $this->urlencodeRfc3986($k) . '="' . $this->urlencodeRfc3986($v) . '"';
279	$first = false;
280	}
281	return $out;
282	}
283
284	/**
285	* Get specially constructed hashed string for TWITTER
286	*
287	* @param array $params
288	* @param string $path
289	* @param string $method
290	* @param string $tokenSecret
291	* @return string
292	*/
293	protected function getSignature($params, $path, $method, $tokenSecret = '')
294	{
295
296	$signatureBase = $this->getSignatureBaseString($params, $path, $method);
297
298	$secret = $this->socialManager->getModuleOptions()->getSecret('twitter');
299	$key_parts = [$secret, $tokenSecret];
300	$key = implode('&', $this->urlencodeRfc3986($key_parts));
301
302	return base64_encode(hash_hmac('sha1', $signatureBase, $key, true));
303	}
304
305	/**
306	* Get special query string ordered appropriately
307	*
308	* @param array $params
309	* @param string $path
310	* @param string $method
311	* @return string
312	*/
313	protected function getSignatureBaseString($params, $path, $method)
314	{
315	ksort($params);
316	$parts = [
317	$method,
318	$this->baseUrl . $path,
319	http_build_query($params)
320	];
321	return implode('&', $this->urlencodeRfc3986($parts));
322	}
323
324	/**
325	* Get hashed string
326	*
327	* @return string
328	*/
329	protected function getNonce()
330	{
331	return md5(microtime() . mt_rand());
332	}
333
334	/**
335	* Get time stamp
336	*
337	* @return string
338	*/
339	protected function getTimestamp()
340	{
341	return time();
342	}
343
344	/**
345	* Special URL encoding
346	*
347	* @param array\|string $input
348	* @return string
349	*/
350	protected function urlencodeRfc3986($input)
351	{
352	$output = '';
353	if (is_array($input)) {
354	$output = array_map([$this, 'urlencodeRfc3986'], $input);
355	} elseif (is_scalar($input)) {
356	$output = rawurlencode($input);
357	}
358	return $output;
359	}
360
361	}