Skip to content

digitalartlab/ckc-oauth2-auth0

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

41 Commits
src
src
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
.travis.yml
.travis.yml
 
 
CHANGELOG.md
CHANGELOG.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
composer.json
composer.json
 
 
phpunit.xml.dist
phpunit.xml.dist
 
 

Repository files navigation

Auth0 Provider for OAuth 2.0 Client

Build Status License Latest Stable Version

This package provides Auth0 OAuth 2.0 support for the PHP League's OAuth 2.0 Client.

This version, which is a fork from RiskioFr/oauth2-auth0, has our special Digital Art Lab flavour, with support for Auth0 custom domains and getting user roles and permissions on login.

Installation

This version currently isn't on Packagist or the likes, so install it like this:

First, add this to your composer.json:

{
    "repositories": [
        {
            "url": "https://github.com/digitalartlab/oauth2-auth0.git",
            "type": "git"
        }
    ],
    "require": {
        "digitalartlab/oauth2-auth0": "^3.0"
    }
}

Then, run composer update.

composer update

Usage

Usage is the same as The League's OAuth client, using DigitalArtLab\OAuth2\Client\Provider\Auth0 as the provider.

Authorization Code Flow

You have to provide some parameters to the provider:

  • region (optional):
    • description: Auth0 region
    • values:
      • DigitalArtLab\OAuth2\Client\Provider\Auth0::REGION_US
      • DigitalArtLab\OAuth2\Client\Provider\Auth0::REGION_EU (default value)
      • DigitalArtLab\OAuth2\Client\Provider\Auth0::REGION_AU
  • account:
    • description: Auth0 account name
  • customDomain (optional):
    • description: Auth0 custom domain, without https:// or a trailing slash
  • clientId
    • description: The client ID assigned to you by the provider
  • clientSecret
    • description: The client password assigned to you by the provider
  • redirectUri
$provider = new DigitalArtLab\OAuth2\Client\Provider\Auth0([
    'region'       => '{region}',
    'account'      => '{account}',
    'customDomain' => 'auth.example.com',
    'clientId'     => '{auth0-client-id}',
    'clientSecret' => '{auth0-client-secret}',
    'redirectUri'  => 'https://example.com/callback-url'
]);

if (!isset($_GET['code'])) {

    // If we don't have an authorization code then get one
    $authUrl = $provider->getAuthorizationUrl();
    $_SESSION['oauth2state'] = $provider->state;
    header('Location: ' . $authUrl);
    exit;

// Check given state against previously stored one to mitigate CSRF attack
} elseif (empty($_GET['state']) || ($_GET['state'] !== $_SESSION['oauth2state'])) {

    unset($_SESSION['oauth2state']);
    exit('Invalid state');

} else {

    // Try to get an access token (using the authorization code grant)
    $token = $provider->getAccessToken('authorization_code', [
        'code' => $_GET['code']
    ]);

    // Optional: Now you have a token you can look up a users profile data
    try {

        // We got an access token, let's now get the user's details
        $user = $provider->getResourceOwner($token);

        // Use these details to create a new profile
        printf('Hello %s!', $user->getName());

    } catch (Exception $e) {

        // Failed to get user details
        exit('Oh dear...');
    }

    // Use this to interact with an API on the users behalf
    echo $token->getToken();
}

Refreshing a Token

Auth0's OAuth implementation does not use refresh tokens.

About

Auth0 provider for the OAuth 2.0 Client

Topics

php oauth2 authentication auth0

Resources

Readme

License

MIT license

Code of conduct

Code of conduct
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 3

v5.0.0 Latest
Apr 15, 2020
+ 2 releases

Packages

No packages published

Languages

  • PHP 100.0%