2013-06-16 10:15:16 -07:00
|
|
|
<?php
|
|
|
|
|
2014-07-22 21:04:13 +10:00
|
|
|
final class PhabricatorFacebookAuthProvider
|
|
|
|
extends PhabricatorOAuth2AuthProvider {
|
2013-06-16 10:15:16 -07:00
|
|
|
|
2013-06-18 15:52:01 -07:00
|
|
|
const KEY_REQUIRE_SECURE = 'oauth:facebook:require-secure';
|
|
|
|
|
2013-06-16 10:15:16 -07:00
|
|
|
public function getProviderName() {
|
|
|
|
return pht('Facebook');
|
|
|
|
}
|
|
|
|
|
2014-04-09 11:09:50 -07:00
|
|
|
protected function getProviderConfigurationHelp() {
|
2014-03-13 13:00:47 -07:00
|
|
|
$uri = PhabricatorEnv::getProductionURI($this->getLoginURI());
|
2013-06-20 11:18:48 -07:00
|
|
|
return pht(
|
|
|
|
'To configure Facebook OAuth, create a new Facebook Application here:'.
|
|
|
|
"\n\n".
|
|
|
|
'https://developers.facebook.com/apps'.
|
|
|
|
"\n\n".
|
|
|
|
'You should use these settings in your application:'.
|
|
|
|
"\n\n".
|
2014-03-13 13:00:47 -07:00
|
|
|
" - **Site URL**: Set this to `%s`\n".
|
|
|
|
" - **Valid OAuth redirect URIs**: You should also set this to `%s`\n".
|
|
|
|
" - **Client OAuth Login**: Set this to **OFF**.\n".
|
|
|
|
" - **Embedded browser OAuth Login**: Set this to **OFF**.\n".
|
|
|
|
"\n\n".
|
|
|
|
"Some of these settings may be in the **Advanced** tab.\n\n".
|
2013-06-20 11:18:48 -07:00
|
|
|
"After creating your new application, copy the **App ID** and ".
|
|
|
|
"**App Secret** to the fields above.",
|
|
|
|
(string)$uri,
|
2014-03-13 13:00:47 -07:00
|
|
|
(string)$uri);
|
2013-06-20 11:18:48 -07:00
|
|
|
}
|
|
|
|
|
2013-06-20 11:17:53 -07:00
|
|
|
public function getDefaultProviderConfig() {
|
|
|
|
return parent::getDefaultProviderConfig()
|
|
|
|
->setProperty(self::KEY_REQUIRE_SECURE, 1);
|
|
|
|
}
|
|
|
|
|
2013-06-16 10:15:16 -07:00
|
|
|
protected function newOAuthAdapter() {
|
2013-06-20 11:18:11 -07:00
|
|
|
$require_secure = $this->getProviderConfig()->getProperty(
|
|
|
|
self::KEY_REQUIRE_SECURE);
|
|
|
|
|
2014-07-22 21:04:13 +10:00
|
|
|
return id(new PhutilFacebookAuthAdapter())
|
2013-06-20 11:18:11 -07:00
|
|
|
->setRequireSecureBrowsing($require_secure);
|
2013-06-16 10:15:16 -07:00
|
|
|
}
|
|
|
|
|
2013-06-16 16:31:57 -07:00
|
|
|
protected function getLoginIcon() {
|
|
|
|
return 'Facebook';
|
|
|
|
}
|
|
|
|
|
2013-06-18 15:52:01 -07:00
|
|
|
public function readFormValuesFromProvider() {
|
2013-06-20 11:18:11 -07:00
|
|
|
$require_secure = $this->getProviderConfig()->getProperty(
|
|
|
|
self::KEY_REQUIRE_SECURE);
|
2013-06-18 15:52:01 -07:00
|
|
|
|
|
|
|
return parent::readFormValuesFromProvider() + array(
|
|
|
|
self::KEY_REQUIRE_SECURE => $require_secure,
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
|
|
|
public function readFormValuesFromRequest(AphrontRequest $request) {
|
|
|
|
return parent::readFormValuesFromRequest($request) + array(
|
|
|
|
self::KEY_REQUIRE_SECURE => $request->getBool(self::KEY_REQUIRE_SECURE),
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
|
|
|
public function extendEditForm(
|
|
|
|
AphrontRequest $request,
|
|
|
|
AphrontFormView $form,
|
|
|
|
array $values,
|
|
|
|
array $issues) {
|
|
|
|
|
|
|
|
parent::extendEditForm($request, $form, $values, $issues);
|
|
|
|
|
|
|
|
$key_require = self::KEY_REQUIRE_SECURE;
|
|
|
|
$v_require = idx($values, $key_require);
|
|
|
|
|
|
|
|
$form
|
|
|
|
->appendChild(
|
|
|
|
id(new AphrontFormCheckboxControl())
|
|
|
|
->addCheckbox(
|
|
|
|
$key_require,
|
|
|
|
$v_require,
|
|
|
|
pht(
|
|
|
|
"%s ".
|
|
|
|
"Require users to enable 'secure browsing' on Facebook in order ".
|
|
|
|
"to use Facebook to authenticate with Phabricator. This ".
|
|
|
|
"improves security by preventing an attacker from capturing ".
|
|
|
|
"an insecure Facebook session and escalating it into a ".
|
|
|
|
"Phabricator session. Enabling it is recommended.",
|
2013-11-11 09:23:23 -08:00
|
|
|
phutil_tag('strong', array(), pht('Require Secure Browsing:')))));
|
2013-06-18 15:52:01 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
public function renderConfigPropertyTransactionTitle(
|
|
|
|
PhabricatorAuthProviderConfigTransaction $xaction) {
|
|
|
|
|
|
|
|
$author_phid = $xaction->getAuthorPHID();
|
|
|
|
$old = $xaction->getOldValue();
|
|
|
|
$new = $xaction->getNewValue();
|
|
|
|
$key = $xaction->getMetadataValue(
|
|
|
|
PhabricatorAuthProviderConfigTransaction::PROPERTY_KEY);
|
|
|
|
|
|
|
|
switch ($key) {
|
|
|
|
case self::KEY_REQUIRE_SECURE:
|
|
|
|
if ($new) {
|
|
|
|
return pht(
|
|
|
|
'%s turned "Require Secure Browsing" on.',
|
|
|
|
$xaction->renderHandleLink($author_phid));
|
|
|
|
} else {
|
|
|
|
return pht(
|
|
|
|
'%s turned "Require Secure Browsing" off.',
|
|
|
|
$xaction->renderHandleLink($author_phid));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return parent::renderConfigPropertyTransactionTitle($xaction);
|
|
|
|
}
|
|
|
|
|
2013-06-20 11:18:11 -07:00
|
|
|
public static function getFacebookApplicationID() {
|
|
|
|
$providers = PhabricatorAuthProvider::getAllProviders();
|
|
|
|
$fb_provider = idx($providers, 'facebook:facebook.com');
|
|
|
|
if (!$fb_provider) {
|
|
|
|
return null;
|
|
|
|
}
|
|
|
|
|
2013-06-24 12:02:53 -07:00
|
|
|
return $fb_provider->getProviderConfig()->getProperty(
|
2014-04-11 04:24:58 -07:00
|
|
|
self::PROPERTY_APP_ID);
|
2013-06-20 11:18:11 -07:00
|
|
|
}
|
2013-06-18 15:52:01 -07:00
|
|
|
|
2013-06-16 10:15:16 -07:00
|
|
|
}
|