2013-06-16 19:15:16 +02:00
|
|
|
<?php
|
|
|
|
|
|
|
|
final class PhabricatorAuthProviderOAuthFacebook
|
|
|
|
extends PhabricatorAuthProviderOAuth {
|
|
|
|
|
2013-06-19 00:52:01 +02:00
|
|
|
const KEY_REQUIRE_SECURE = 'oauth:facebook:require-secure';
|
|
|
|
|
2013-06-16 19:15:16 +02:00
|
|
|
public function getProviderName() {
|
|
|
|
return pht('Facebook');
|
|
|
|
}
|
|
|
|
|
2013-06-20 20:18:48 +02:00
|
|
|
public function getConfigurationHelp() {
|
|
|
|
$uri = new PhutilURI(PhabricatorEnv::getProductionURI('/'));
|
|
|
|
return pht(
|
|
|
|
'To configure Facebook OAuth, create a new Facebook Application here:'.
|
|
|
|
"\n\n".
|
|
|
|
'https://developers.facebook.com/apps'.
|
|
|
|
"\n\n".
|
|
|
|
'You should use these settings in your application:'.
|
|
|
|
"\n\n".
|
|
|
|
" - **Site URL**: Set this to your full domain with protocol. For ".
|
|
|
|
" this Phabricator install, the correct value is: `%s`\n".
|
|
|
|
" - **Site Domain**: Set this to the full domain without a protocol. ".
|
|
|
|
" For this Phabricator install, the correct value is: `%s`\n\n".
|
|
|
|
"After creating your new application, copy the **App ID** and ".
|
|
|
|
"**App Secret** to the fields above.",
|
|
|
|
(string)$uri,
|
|
|
|
$uri->getDomain());
|
|
|
|
}
|
|
|
|
|
2013-06-20 20:17:53 +02:00
|
|
|
public function getDefaultProviderConfig() {
|
|
|
|
return parent::getDefaultProviderConfig()
|
|
|
|
->setProperty(self::KEY_REQUIRE_SECURE, 1);
|
|
|
|
}
|
|
|
|
|
2013-06-16 19:15:16 +02:00
|
|
|
protected function newOAuthAdapter() {
|
2013-06-20 20:18:11 +02:00
|
|
|
$require_secure = $this->getProviderConfig()->getProperty(
|
|
|
|
self::KEY_REQUIRE_SECURE);
|
|
|
|
|
2013-06-19 00:52:01 +02:00
|
|
|
return id(new PhutilAuthAdapterOAuthFacebook())
|
2013-06-20 20:18:11 +02:00
|
|
|
->setRequireSecureBrowsing($require_secure);
|
2013-06-16 19:15:16 +02:00
|
|
|
}
|
|
|
|
|
2013-06-17 01:31:57 +02:00
|
|
|
protected function getLoginIcon() {
|
|
|
|
return 'Facebook';
|
|
|
|
}
|
|
|
|
|
2013-06-19 00:52:01 +02:00
|
|
|
public function readFormValuesFromProvider() {
|
2013-06-20 20:18:11 +02:00
|
|
|
$require_secure = $this->getProviderConfig()->getProperty(
|
|
|
|
self::KEY_REQUIRE_SECURE);
|
2013-06-19 00:52:01 +02:00
|
|
|
|
|
|
|
return parent::readFormValuesFromProvider() + array(
|
|
|
|
self::KEY_REQUIRE_SECURE => $require_secure,
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
|
|
|
public function readFormValuesFromRequest(AphrontRequest $request) {
|
|
|
|
return parent::readFormValuesFromRequest($request) + array(
|
|
|
|
self::KEY_REQUIRE_SECURE => $request->getBool(self::KEY_REQUIRE_SECURE),
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
|
|
|
public function extendEditForm(
|
|
|
|
AphrontRequest $request,
|
|
|
|
AphrontFormView $form,
|
|
|
|
array $values,
|
|
|
|
array $issues) {
|
|
|
|
|
|
|
|
parent::extendEditForm($request, $form, $values, $issues);
|
|
|
|
|
|
|
|
$key_require = self::KEY_REQUIRE_SECURE;
|
|
|
|
$v_require = idx($values, $key_require);
|
|
|
|
|
|
|
|
$form
|
|
|
|
->appendChild(
|
|
|
|
id(new AphrontFormCheckboxControl())
|
|
|
|
->addCheckbox(
|
|
|
|
$key_require,
|
|
|
|
$v_require,
|
|
|
|
pht(
|
|
|
|
"%s ".
|
|
|
|
"Require users to enable 'secure browsing' on Facebook in order ".
|
|
|
|
"to use Facebook to authenticate with Phabricator. This ".
|
|
|
|
"improves security by preventing an attacker from capturing ".
|
|
|
|
"an insecure Facebook session and escalating it into a ".
|
|
|
|
"Phabricator session. Enabling it is recommended.",
|
|
|
|
hsprintf(
|
|
|
|
'<strong>%s</strong>',
|
|
|
|
pht('Require Secure Browsing:')))));
|
|
|
|
}
|
|
|
|
|
|
|
|
public function renderConfigPropertyTransactionTitle(
|
|
|
|
PhabricatorAuthProviderConfigTransaction $xaction) {
|
|
|
|
|
|
|
|
$author_phid = $xaction->getAuthorPHID();
|
|
|
|
$old = $xaction->getOldValue();
|
|
|
|
$new = $xaction->getNewValue();
|
|
|
|
$key = $xaction->getMetadataValue(
|
|
|
|
PhabricatorAuthProviderConfigTransaction::PROPERTY_KEY);
|
|
|
|
|
|
|
|
switch ($key) {
|
|
|
|
case self::KEY_REQUIRE_SECURE:
|
|
|
|
if ($new) {
|
|
|
|
return pht(
|
|
|
|
'%s turned "Require Secure Browsing" on.',
|
|
|
|
$xaction->renderHandleLink($author_phid));
|
|
|
|
} else {
|
|
|
|
return pht(
|
|
|
|
'%s turned "Require Secure Browsing" off.',
|
|
|
|
$xaction->renderHandleLink($author_phid));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return parent::renderConfigPropertyTransactionTitle($xaction);
|
|
|
|
}
|
|
|
|
|
2013-06-20 20:18:11 +02:00
|
|
|
public static function getFacebookApplicationID() {
|
|
|
|
$providers = PhabricatorAuthProvider::getAllProviders();
|
|
|
|
$fb_provider = idx($providers, 'facebook:facebook.com');
|
|
|
|
if (!$fb_provider) {
|
|
|
|
return null;
|
|
|
|
}
|
|
|
|
|
2013-06-24 21:02:53 +02:00
|
|
|
return $fb_provider->getProviderConfig()->getProperty(
|
2013-06-20 20:18:11 +02:00
|
|
|
PhabricatorAuthProviderOAuth::PROPERTY_APP_ID);
|
|
|
|
}
|
2013-06-19 00:52:01 +02:00
|
|
|
|
2013-06-16 19:15:16 +02:00
|
|
|
}
|