php - 如何在 PHP 中获取 OAuth 2.0 令牌?
问题描述
我需要连接到客户的 REST API。第一步是获取 OAuth 2.0 访问令牌。我从客户那里得到以下信息:
- 登录(我假设它是
client_id
) - 密码(我假设它是
client_secret
) - 流量是
password
- 常规 API URL
- 令牌 API URL
我在http://tutorialspage.com/simple-oauth2-example-using-php-curl/找到了代码, 并将其更改为:
private function getToken() {
$curl = curl_init();
$params = array(
CURLOPT_URL => self::API_TOKEN_URL,
CURLOPT_RETURNTRANSFER => true,
CURLOPT_MAXREDIRS => 10,
CURLOPT_TIMEOUT => 30,
CURLOPT_POST => 1,
CURLOPT_NOBODY => false,
CURLOPT_HTTPHEADER => array(
"cache-control: no-cache",
"content-type: application/x-www-form-urlencoded",
"accept: *",
"accept-encoding: gzip, deflate",
),
CURLOPT_POSTFIELDS => array(
'username' => urlencode('example@swagger.foo'),
'password' => urlencode('123 and 4'),
'grant_type' => 'password'
)
);
curl_setopt_array($curl, $params);
// test
//curl_setopt($curl, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
//curl_setopt($curl, CURLOPT_USERPWD, 'example@swagger.foo'.':'.'123 and 4');
$response = curl_exec($curl);
$err = curl_error($curl);
curl_close($curl);
if ($err) {
echo "cURL Error #01: " . $err;
} else {
$response = json_decode($response, true);
if(array_key_exists("access_token", $response)) return $response;
if(array_key_exists("error", $response)) echo $response["error_description"];
echo "cURL Error #02: Something went wrong! Please contact admin.";
}
}
我希望得到一个包含有效 OAuth 2.0 的 JSON 响应access_token
,但我得到了一个错误:
{"error":"unsupported_grant_type"}
如何更改代码以使其工作?
编辑: 它适用于我的 mac 上的 shell-curl:
curl -i \
-X POST \
-H 'Content-Type: application/x-www-form-urlencoded' \
-d 'grant_type=password&username=example@swagger.foo&password=123 and 4' \
https://the-token-api-url.foo
详细信息卷曲(MacShell):
* Trying <IP HOST>
* TCP_NODELAY set
* Connected to <DNS HOST> (<IP HOST>) port 443 (#0)
* ALPN, offering http/1.1
* Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH
* successfully set certificate verify locations:
* CAfile: /opt/local/share/curl/curl-ca-bundle.crt
CApath: none
* TLSv1.2 (OUT), TLS header, Certificate Status (22):
* TLSv1.2 (OUT), TLS handshake, Client hello (1):
* TLSv1.2 (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
* TLSv1.2 (IN), TLS handshake, Server finished (14):
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
* TLSv1.2 (OUT), TLS change cipher, Client hello (1):
* TLSv1.2 (OUT), TLS handshake, Finished (20):
* TLSv1.2 (IN), TLS change cipher, Client hello (1):
* TLSv1.2 (IN), TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / <something>
* ALPN, server did not agree to a protocol
* Server certificate:
* subject: CN=<CN>
* start date: <date>
* expire date: <date>
* subjectAltName: host "<DNS HOST>" matched cert's "<DNS HOST>"
* issuer: C=US; O=Let's Encrypt; CN=Let's Encrypt Authority X3
* SSL certificate verify ok.
> POST /<URI PART>/token HTTP/1.1
> Host: <DNS HOST>
> User-Agent: curl/7.58.0
> Accept: */*
> Content-Type: application/x-www-form-urlencoded
> Content-Length: 73
>
* upload completely sent off: 73 out of 73 bytes
< HTTP/1.1 200 OK
HTTP/1.1 200 OK
< Cache-Control: no-cache
Cache-Control: no-cache
< Pragma: no-cache
Pragma: no-cache
< Content-Type: application/json;charset=UTF-8
Content-Type: application/json;charset=UTF-8
< Expires: -1
Expires: -1
< Server: Microsoft-IIS/8.5
Server: Microsoft-IIS/8.5
< X-Powered-By: ASP.NET
X-Powered-By: ASP.NET
< Date: Tue, 05 Feb 2019 17:26:21 GMT
Date: Tue, 05 Feb 2019 17:26:21 GMT
< Content-Length: 671
Content-Length: 671
详细信息 cURL PHP:
* Hostname in DNS cache was stale, zapped
* Trying <IP>
* TCP_NODELAY set
* Connected to <DNS> (<IP>) port 443 (#0)
* ALPN, offering http/1.1
* Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH
* successfully set certificate verify locations:
* CAfile: /opt/local/share/curl/curl-ca-bundle.crt
CApath: none
* SSL connection using TLSv1.2 / <something>
* ALPN, server did not agree to a protocol
* Server certificate:
* subject: CN=<DNS>
* start date: <date>
* expire date: <date>
* subjectAltName: host "<dns>" matched cert's "<dns>"
* issuer: C=US; O=Let's Encrypt; CN=Let's Encrypt Authority X3
* SSL certificate verify ok.
> POST /<uri part>/token HTTP/1.1
Host: <dns>
cache-control: no-cache
accept: *
accept-encoding: gzip, deflate
Content-Length: 384
Content-Type: application/x-www-form-urlencoded; boundary=------------------------<a hash>
< HTTP/1.1 400 Bad Request
< Cache-Control: no-cache
< Pragma: no-cache
< Content-Type: application/json;charset=UTF-8
< Expires: -1
< Server: Microsoft-IIS/8.5
< X-Powered-By: ASP.NET
< Date: Tue, 05 Feb 2019 17:25:39 GMT
< Content-Length: 34
* HTTP error before end of send, stop sending
<
* Closing connection 0
我没发现问题。
解决方案
好的,多亏了海伦,它现在可以工作了。
private function getToken(){
$curl = curl_init();
$params = [
CURLOPT_URL => self::API_TOKEN_URL,
CURLOPT_RETURNTRANSFER => true,
CURLOPT_MAXREDIRS => 10,
CURLOPT_TIMEOUT => 30,
CURLOPT_POST => 1,
CURLOPT_NOBODY => false,
CURLOPT_HTTPHEADER => array(
"cache-control: no-cache",
"content-type: application/x-www-form-urlencoded",
"accept: */*",
"accept-encoding: gzip, deflate",
),
CURLOPT_POSTFIELDS => "grant_type=password&username=username@example.foo&password=123and4"
];
curl_setopt_array($curl, $params);
$response = curl_exec($curl);
curl_close($curl);
}
当我将发布数据输入为字符串时,问题得到了解决:
CURLOPT_POSTFIELDS => "grant_type=password&username=username@example.foo&password=123and4"
而不是数组:
CURLOPT_POSTFIELDS => array(
'username' => urlencode('username@example.foo'),
'password' => urlencode('123and4'),
'grant_type' => 'password'
)
谢谢<3!
推荐阅读
- java - 如何将 javax.persistence.criteria.* 类添加到 Quarkus 中的 Jandex 索引?
- python - __name__="__main__" 内部或外部有什么不同?
- c# - 我无法让 Razor 语句在 MVC 的视图中呈现“UserOnProjectInRole”
- node.js - 使用 react-native-image-crop-picker 上传 React-Native axios 图像
- docker - 如何在 Docker API 中使用挂载创建容器
- angular - 是否可以在微信小程序中使用现有的 PWA?
- c# - C# MongoDB 2. 查找比较其字段的文档:不支持的过滤器
- django - ModelAdmin 中的 get_form 导致 TypeError
- android - 如何在 TabLayout tabIndicator 和 TabItem 文本之间添加自定义填充?
- java - 使用矩阵和重复平方计算斐波那契数