+ $global_length = count($this->acl_options['global']);

+ $local_length = count($this->acl_options['local']);

+ if (count($this->acl))

+ if ($negate && count($this->acl_forum_ids))

+ if (count($hold_ary))

+ global $db, $cache, $phpbb_dispatcher;

+ /**

+ * Event is triggered after user(s) permission settings cache has been cleared

+ *

+ * @event core.acl_clear_prefetch_after

+ * @var mixed user_id User ID(s)

+ * @since 3.1.11-RC1

+ */

+ $vars = array('user_id');

+ extract($phpbb_dispatcher->trigger_event('core.acl_clear_prefetch_after', compact($vars)));

+

+ global $phpbb_dispatcher;

+ /* @var $provider_collection \phpbb\auth\provider_collection */

+ /**

+ * Event is triggered after checking for valid username and password, and before the actual session creation.

+ *

+ * @event core.auth_login_session_create_before

+ * @var array login Variable containing login array

+ * @var bool admin Boolean variable whether user is logging into the ACP

+ * @var string username Username of user to log in

+ * @var bool autologin Boolean variable signaling whether login is triggered via auto login

+ * @since 3.1.7-RC1

+ */

+ $vars = array(

+ 'login',

+ 'admin',

+ 'username',

+ 'autologin',

+ );

+ extract($phpbb_dispatcher->trigger_event('core.auth_login_session_create_before', compact($vars)));

+

+ public function get_auth_link_data($user_id = 0)

+ /* @var $captcha_factory \phpbb\captcha\factory */

+ if (!is_array($result) || count($result) < 2)

+ if (is_array($ldap_result) && count($ldap_result) > 1)

+ 'AUTH_LDAP_BASE_DN' => $new_config['ldap_base_dn'],

+ 'AUTH_LDAP_PASSORD' => $new_config['ldap_password'] !== '' ? '********' : '',

+ * OAuth state table

+ *

+ * @var string

+ */

+ protected $auth_provider_oauth_state_table;

+

+ /**

+ * phpBB event dispatcher

+ *

+ * @var \phpbb\event\dispatcher_interface

+ */

+ protected $dispatcher;

+

+ /**

+ * @param string $auth_provider_oauth_state_table

+ * @param \phpbb\event\dispatcher_interface $dispatcher phpBB event dispatcher

+ public function __construct(\phpbb\db\driver\driver_interface $db, \phpbb\config\config $config, \phpbb\passwords\manager $passwords_manager, \phpbb\request\request_interface $request, \phpbb\user $user, $auth_provider_oauth_token_storage_table, $auth_provider_oauth_state_table, $auth_provider_oauth_token_account_assoc, \phpbb\di\service_collection $service_providers, $users_table, \Symfony\Component\DependencyInjection\ContainerInterface $phpbb_container, \phpbb\event\dispatcher_interface $dispatcher, $phpbb_root_path, $php_ext)

+ $this->auth_provider_oauth_state_table = $auth_provider_oauth_state_table;

+ $this->dispatcher = $dispatcher;

+ $storage = new \phpbb\auth\provider\oauth\token_storage($this->db, $this->user, $this->auth_provider_oauth_token_storage_table, $this->auth_provider_oauth_state_table);

+ if (($service::OAUTH_VERSION === 2 && $this->request->is_set('code', \phpbb\request\request_interface::GET))

+ || ($service::OAUTH_VERSION === 1 && $this->request->is_set('oauth_token', \phpbb\request\request_interface::GET)))

+ /**

+ * Event is triggered before check if provider is already associated with an account

+ *

+ * @event core.oauth_login_after_check_if_provider_id_has_match

+ * @var array row User row

+ * @var array data Provider data

+ * @var \OAuth\Common\Service\ServiceInterface service OAuth service

+ * @since 3.2.3-RC1

+ */

+ $vars = array(

+ 'row',

+ 'data',

+ 'service',

+ );

+ extract($this->dispatcher->trigger_event('core.oauth_login_after_check_if_provider_id_has_match', compact($vars)));

+

+ /**

+ * Event is triggered after user is successfuly logged in via OAuth.

+ *

+ * @event core.auth_oauth_login_after

+ * @var array row User row

+ * @since 3.1.11-RC1

+ */

+ $vars = array(

+ 'row',

+ );

+ extract($this->dispatcher->trigger_event('core.auth_oauth_login_after', compact($vars)));

+

+ if ($service::OAUTH_VERSION === 1)

+ {

+ $token = $service->requestRequestToken();

+ $url = $service->getAuthorizationUri(array('oauth_token' => $token->getRequestToken()));

+ }

+ else

+ {

+ $url = $service->getAuthorizationUri();

+ }

+ $super_globals = $this->request->get_super_global(\phpbb\request\request_interface::SERVER);

+ if (!empty($super_globals['HTTP_X_FORWARDED_PROTO']) && $super_globals['HTTP_X_FORWARDED_PROTO'] === 'https')

+ {

+ $super_globals['HTTPS'] = 'on';

+ $super_globals['SERVER_PORT'] = 443;

+ }

+ $current_uri = $uri_factory->createFromSuperGlobalArray($super_globals);

+ $storage = new \phpbb\auth\provider\oauth\token_storage($this->db, $this->user, $this->auth_provider_oauth_token_storage_table, $this->auth_provider_oauth_state_table);

+ $storage = new \phpbb\auth\provider\oauth\token_storage($this->db, $this->user, $this->auth_provider_oauth_token_storage_table, $this->auth_provider_oauth_state_table);

+ if (($service::OAUTH_VERSION === 2 && $this->request->is_set('code', \phpbb\request\request_interface::GET))

+ || ($service::OAUTH_VERSION === 1 && $this->request->is_set('oauth_token', \phpbb\request\request_interface::GET)))

+ if ($service::OAUTH_VERSION === 1)

+ {

+ $token = $service->requestRequestToken();

+ $url = $service->getAuthorizationUri(array('oauth_token' => $token->getRequestToken()));

+ }

+ else

+ {

+ $url = $service->getAuthorizationUri();

+ }

+

+ /**

+ * Event is triggered after user links account.

+ *

+ * @event core.auth_oauth_link_after

+ * @var array data User row

+ * @since 3.1.11-RC1

+ */

+ $vars = array(

+ 'data',

+ );

+ extract($this->dispatcher->trigger_event('core.auth_oauth_link_after', compact($vars)));

+ $storage = new \phpbb\auth\provider\oauth\token_storage($this->db, $this->user, $this->auth_provider_oauth_token_storage_table, $this->auth_provider_oauth_state_table);

+ public function get_auth_link_data($user_id = 0)

+ 'user_id' => ($user_id <= 0) ? (int) $this->user->data['user_id'] : (int) $user_id,

+ if ($rows !== false && count($rows))

+ // Remove user specified in $link_data if possible

+ $user_id = isset($link_data['user_id']) ? $link_data['user_id'] : $this->user->data['user_id'];

+

+ AND user_id = " . (int) $user_id;

+ $storage = new \phpbb\auth\provider\oauth\token_storage($this->db, $this->user, $this->auth_provider_oauth_token_storage_table, $this->auth_provider_oauth_state_table);

+<?php

+/**

+*

+* This file is part of the phpBB Forum Software package.

+*

+* @copyright (c) phpBB Limited <https://www.phpbb.com>

+* @license GNU General Public License, version 2 (GPL-2.0)

+*

+* For full copyright and license information, please see

+* the docs/CREDITS.txt file.

+*

+*/

+

+namespace phpbb\auth\provider\oauth\service;

+

+/**

+* Twitter OAuth service

+*/

+class twitter extends \phpbb\auth\provider\oauth\service\base

+{

+ /**

+ * phpBB config

+ *

+ * @var \phpbb\config\config

+ */

+ protected $config;

+

+ /**

+ * phpBB request

+ *

+ * @var \phpbb\request\request_interface

+ */

+ protected $request;

+

+ /**

+ * Constructor

+ *

+ * @param \phpbb\config\config $config

+ * @param \phpbb\request\request_interface $request

+ */

+ public function __construct(\phpbb\config\config $config, \phpbb\request\request_interface $request)

+ {

+ $this->config = $config;

+ $this->request = $request;

+ }

+

+ /**

+ * {@inheritdoc}

+ */

+ public function get_service_credentials()

+ {

+ return array(

+ 'key' => $this->config['auth_oauth_twitter_key'],

+ 'secret' => $this->config['auth_oauth_twitter_secret'],

+ );

+ }

+

+ /**

+ * {@inheritdoc}

+ */

+ public function perform_auth_login()

+ {

+ if (!($this->service_provider instanceof \OAuth\OAuth1\Service\Twitter))

+ {

+ throw new \phpbb\auth\provider\oauth\service\exception('AUTH_PROVIDER_OAUTH_ERROR_INVALID_SERVICE_TYPE');

+ }

+

+ $storage = $this->service_provider->getStorage();

+ $token = $storage->retrieveAccessToken('Twitter');

+ $tokensecret = $token->getRequestTokenSecret();

+

+ // This was a callback request from twitter, get the token

+ $this->service_provider->requestAccessToken(

+ $this->request->variable('oauth_token', ''),

+ $this->request->variable('oauth_verifier', ''),

+ $tokensecret

+ );

+

+ // Send a request with it

+ $result = json_decode($this->service_provider->request('account/verify_credentials.json'), true);

+

+ // Return the unique identifier returned from twitter

+ return $result['id'];

+ }

+

+ /**

+ * {@inheritdoc}

+ */

+ public function perform_token_auth()

+ {

+ if (!($this->service_provider instanceof \OAuth\OAuth1\Service\Twitter))

+ {

+ throw new \phpbb\auth\provider\oauth\service\exception('AUTH_PROVIDER_OAUTH_ERROR_INVALID_SERVICE_TYPE');

+ }

+

+ // Send a request with it

+ $result = json_decode($this->service_provider->request('account/verify_credentials.json'), true);

+

+ // Return the unique identifier returned from twitter

+ return $result['id'];

+ }

+}

+use OAuth\Common\Storage\Exception\AuthorizationStateNotFoundException;

+ protected $oauth_token_table;

+

+ /**

+ * OAuth state table

+ *

+ * @var string

+ */

+ protected $oauth_state_table;

+ * @var string

+ */

+ protected $cachedState;

+

+ /**

+ * @param string $oauth_token_table

+ * @param string $oauth_state_table

+ public function __construct(\phpbb\db\driver\driver_interface $db, \phpbb\user $user, $oauth_token_table, $oauth_state_table)

+ $this->oauth_token_table = $oauth_token_table;

+ $this->oauth_state_table = $oauth_state_table;

+ $sql = 'UPDATE ' . $this->oauth_token_table . '

+ SET ' . $this->db->sql_build_array('UPDATE', $data) . '

+ WHERE user_id = ' . (int) $this->user->data['user_id'] . '

+ ' . ((int) $this->user->data['user_id'] === ANONYMOUS ? "AND session_id = '" . $this->db->sql_escape($this->user->data['session_id']) . "'" : '') . "

+ AND provider = '" . $this->db->sql_escape($service) . "'";

+

+ if (!$this->db->sql_affectedrows())

+ {

+ $data = array(

+ 'user_id' => (int) $this->user->data['user_id'],

+ 'provider' => $service,

+ 'oauth_token' => $this->json_encode_token($token),

+ 'session_id' => $this->user->data['session_id'],

+ );

+

+ $sql = 'INSERT INTO ' . $this->oauth_token_table . $this->db->sql_build_array('INSERT', $data);

+

+ $this->db->sql_query($sql);

+ }

+

+ return $this;

+ if ($this->cachedToken)

+ {

+ $sql = 'DELETE FROM ' . $this->oauth_token_table . '

+

+ return $this;

+ $sql = 'DELETE FROM ' . $this->oauth_token_table . '

+ WHERE user_id = ' . (int) $this->user->data['user_id'];

+

+ if ((int) $this->user->data['user_id'] === ANONYMOUS)

+ {

+ $sql .= " AND session_id = '" . $this->db->sql_escape($this->user->data['session_id']) . "'";

+ }

+

+ $this->db->sql_query($sql);

+

+ return $this;

+ }

+

+ /**

+ * {@inheritdoc}

+ */

+ public function storeAuthorizationState($service, $state)

+ {

+ $service = $this->get_service_name_for_db($service);

+

+ $this->cachedState = $state;

+

+ $data = array(

+ 'user_id' => (int) $this->user->data['user_id'],

+ 'provider' => $service,

+ 'oauth_state' => $state,

+ 'session_id' => $this->user->data['session_id'],

+ );

+

+ $sql = 'INSERT INTO ' . $this->oauth_state_table . '

+ ' . $this->db->sql_build_array('INSERT', $data);

+ $this->db->sql_query($sql);

+

+ return $this;

+ }

+

+ /**

+ * {@inheritdoc}

+ */

+ public function hasAuthorizationState($service)

+ {

+ $service = $this->get_service_name_for_db($service);

+

+ if ($this->cachedState)

+ {

+ return true;

+ }

+

+ $data = array(

+ 'user_id' => (int) $this->user->data['user_id'],

+ 'provider' => $service,

+ );

+

+ if ((int) $this->user->data['user_id'] === ANONYMOUS)

+ {

+ $data['session_id'] = $this->user->data['session_id'];

+ }

+

+ return (bool) $this->get_state_row($data);

+ }

+

+ /**

+ * {@inheritdoc}

+ */

+ public function retrieveAuthorizationState($service)

+ {

+ $service = $this->get_service_name_for_db($service);

+

+ if ($this->cachedState)

+ {

+ return $this->cachedState;

+ }

+

+ $data = array(

+ 'user_id' => (int) $this->user->data['user_id'],

+ 'provider' => $service,

+ );

+

+ if ((int) $this->user->data['user_id'] === ANONYMOUS)

+ {

+ $data['session_id'] = $this->user->data['session_id'];

+ }

+

+ return $this->get_state_row($data);

+ }

+

+ /**

+ * {@inheritdoc}

+ */

+ public function clearAuthorizationState($service)

+ {

+ $service = $this->get_service_name_for_db($service);

+

+ $this->cachedState = null;

+

+ $sql = 'DELETE FROM ' . $this->oauth_state_table . '

+ WHERE user_id = ' . (int) $this->user->data['user_id'] . "

+ AND provider = '" . $this->db->sql_escape($service) . "'";

+

+ if ((int) $this->user->data['user_id'] === ANONYMOUS)

+ {

+ $sql .= " AND session_id = '" . $this->db->sql_escape($this->user->data['session_id']) . "'";

+ }

+

+ $this->db->sql_query($sql);

+

+ return $this;

+ }

+

+ /**

+ * {@inheritdoc}

+ */

+ public function clearAllAuthorizationStates()

+ {

+ $this->cachedState = null;

+

+ $sql = 'DELETE FROM ' . $this->oauth_state_table . '

+

+ return $this;

+ $sql = 'UPDATE ' . $this->oauth_token_table . '

+ * Checks to see if a state exists solely by the session_id of the user

+ *

+ * @param string $service The name of the OAuth service

+ * @return bool true if they have state, false if they don't

+ */

+ public function has_state_by_session($service)

+ {

+ $service = $this->get_service_name_for_db($service);

+

+ if ($this->cachedState)

+ {

+ return true;

+ }

+

+ $data = array(

+ 'session_id' => $this->user->data['session_id'],

+ 'provider' => $service,

+ );

+

+ return (bool) $this->get_state_row($data);

+ }

+

+ /**

+ if ($this->cachedToken instanceof TokenInterface)

+ {

+ public function retrieve_state_by_session($service)

+ {

+ $service = $this->get_service_name_for_db($service);

+

+ if ($this->cachedState)

+ {

+ return $this->cachedState;

+ }

+

+ $data = array(

+ 'session_id' => $this->user->data['session_id'],

+ 'provider' => $service,

+ );

+

+ return $this->_retrieve_state($data);

+ }

+

+ * A helper function that performs the query for retrieve state functions

+ *

+ * @param array $data

+ * @return mixed

+ * @throws \OAuth\Common\Storage\Exception\AuthorizationStateNotFoundException

+ */

+ protected function _retrieve_state($data)

+ {

+ $row = $this->get_state_row($data);

+

+ if (!$row)

+ {

+ throw new AuthorizationStateNotFoundException();

+ }

+

+ $this->cachedState = $row['oauth_state'];

+ return $this->cachedState;

+ }

+

+ /**

+ $sql = 'SELECT oauth_token FROM ' . $this->oauth_token_table . '

+ WHERE ' . $this->db->sql_build_array('SELECT', $data);

+ $result = $this->db->sql_query($sql);

+ $row = $this->db->sql_fetchrow($result);

+ $this->db->sql_freeresult($result);

+

+ return $row;

+ }

+

+ /**

+ * A helper function that performs the query for retrieving a state

+ *

+ * @param array $data

+ * @return mixed

+ */

+ protected function get_state_row($data)

+ {

+ $sql = 'SELECT oauth_state FROM ' . $this->oauth_state_table . '

+ * @param int $user_id User ID for whom the data should be retrieved.

+ * defaults to 0, which is not a valid ID. The method

+ * should fall back to the current user's ID in this

+ * case.

+ public function get_auth_link_data($user_id = 0);