Inicio Explorar Ayuda
Iniciar sesión
hlm
/
hlm_pl_mall
9
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Árbol: 40947df727
Ramas Etiquetas
hlm_pl_mall
/
plugins
/
login
/
qq_h5
/
oauth
/
qq_callback.php

qq_callback.php 2.3 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172 
  1. <?php 
    2. 

  2. require_once(PLUGINS_PATH.DIRECTORY_SEPARATOR.'login'.DIRECTORY_SEPARATOR.'qq_h5'.DIRECTORY_SEPARATOR.'comm'.DIRECTORY_SEPARATOR."config.php");
    3. 

  3. require_once(PLUGINS_PATH.DIRECTORY_SEPARATOR.'login'.DIRECTORY_SEPARATOR.'qq_h5'.DIRECTORY_SEPARATOR.'comm'.DIRECTORY_SEPARATOR."utils.php");
    4. 

  4. 

  5. function qq_callback()
    6. 

  6. {
    7. 

  7.     if(input('param.state') == session('state')) //CSRF
    8. 

  8.     {
    9. 

  9.         //构造请求获取access_token的url
    10. 

  10.         $token_url = "https://graph.qq.com/oauth2.0/token?grant_type=authorization_code&"
    11. 

  11.             . "client_id=" . session('appid'). "&redirect_uri=" . urlencode(session('callback'))
    12. 

  12.             . "&client_secret=" . session('appkey'). "&code=" . input('param.code');
    13. 

  13. 

  14.         $response = get_url_contents($token_url);
    15. 

  15.         if (strpos($response, "callback") !== false)
    16. 

  16.         {
    17. 

  17.             $lpos = strpos($response, "(");
    18. 

  18.             $rpos = strrpos($response, ")");
    19. 

  19.             $response  = substr($response, $lpos + 1, $rpos - $lpos -1);
    20. 

  20.             $msg = json_decode($response);
    21. 

  21.             if (isset($msg->error))
    22. 

  22.             {
    23. 

  23.                 echo "<h3>error:</h3>" . $msg->error;
    24. 

  24.                 echo "<h3>msg  :</h3>" . $msg->error_description;
    25. 

  25.             }
    26. 

  26.         }
    27. 

  27. 

  28.         $params = array();
    29. 

  29.         parse_str($response, $params);
    30. 

  30. 

  31.         //set access token to session
    32. 

  32.        session('access_token',$params["access_token"]);
    33. 

  33. 

  34.     }
    35. 

  35.     else 
    36. 

  36.     {
    37. 

  37.         echo("The state does not match. You may be a victim of CSRF.");
    38. 

  38.     }
    39. 

  39. }
    40. 

  40. 

  41. function get_openid()
    42. 

  42. {
    43. 

  43.     //构造请求获取openid的url
    44. 

  44.     $graph_url = "https://graph.qq.com/oauth2.0/me?access_token=" . session('access_token');
    45. 

  45.     $str  = get_url_contents($graph_url);
    46. 

  46.     if (strpos($str, "callback") !== false)
    47. 

  47.     {
    48. 

  48.         $lpos = strpos($str, "(");
    49. 

  49.         $rpos = strrpos($str, ")");
    50. 

  50.         $str  = substr($str, $lpos + 1, $rpos - $lpos -1);
    51. 

  51.     }
    52. 

  52. 

  53.     $user = json_decode($str);
    54. 

  54.     if (isset($user->error))
    55. 

  55.     {
    56. 

  56.         echo "<h3>error:</h3>" . $user->error;
    57. 

  57.         echo "<h3>msg  :</h3>" . $user->error_description;
    58. 

  58.     }
    59. 

  59. 

  60. 

  61.     //set openid to session
    62. 

  62.     session('openid',$user->openid);
    63. 

  63. }
    64. 

  64. 

  65. //QQ登录成功后的回调地址,主要保存access token
    66. 

  66. qq_callback();
    67. 

  67. 

  68. //获取用户标示id
    69. 

  69. get_openid();
    70. 

  70. 

  71. @header('location: '.API_SITE_URL.'/connectqq');
    72. 

  72. ?>
    73.