如何在 PHP 中获取 OAuth 2.0 令牌?
[英]How to get an OAuth 2.0 token in PHP?
问题描述
I need to connect to a REST API of a customer.
我需要连接到客户的 REST API。 The first step is to get an OAuth 2.0 access token.第一步是获取 OAuth 2.0 访问令牌。 I got the following information from the customer:我从客户那里得到以下信息:
- Login (I assume it's the
client_id)登录(我假设它是client_id) - Password (I assume it's the
client_secret)密码(我假设它是client_secret) - The flow is
password流程是password - The regular API URL常规 API URL
- The Token API URL令牌 API 网址
I found code at http://tutorialspage.com/simple-oauth2-example-using-php-curl/ and changed it, just for testing, to this:我在http://tutorialspage.com/simple-oauth2-example-using-php-curl/找到了代码并将其更改为仅用于测试:
private function getToken() {
$curl = curl_init();
$params = array(
CURLOPT_URL => self::API_TOKEN_URL,
CURLOPT_RETURNTRANSFER => true,
CURLOPT_MAXREDIRS => 10,
CURLOPT_TIMEOUT => 30,
CURLOPT_POST => 1,
CURLOPT_NOBODY => false,
CURLOPT_HTTPHEADER => array(
"cache-control: no-cache",
"content-type: application/x-www-form-urlencoded",
"accept: *",
"accept-encoding: gzip, deflate",
),
CURLOPT_POSTFIELDS => array(
'username' => urlencode('example@swagger.foo'),
'password' => urlencode('123 and 4'),
'grant_type' => 'password'
)
);
curl_setopt_array($curl, $params);
// test
//curl_setopt($curl, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
//curl_setopt($curl, CURLOPT_USERPWD, 'example@swagger.foo'.':'.'123 and 4');
$response = curl_exec($curl);
$err = curl_error($curl);
curl_close($curl);
if ($err) {
echo "cURL Error #01: " . $err;
} else {
$response = json_decode($response, true);
if(array_key_exists("access_token", $response)) return $response;
if(array_key_exists("error", $response)) echo $response["error_description"];
echo "cURL Error #02: Something went wrong! Please contact admin.";
}
}
I would expect to get a JSON response containing valid OAuth 2.0 access_token , but instead I get an error:我希望得到一个包含有效 OAuth 2.0 access_token的 JSON 响应,但我收到了一个错误:
{"error":"unsupported_grant_type"}
How to change the code to make it work?如何更改代码以使其工作?
Edit: It works over the shell-curl on my mac:编辑:它适用于我的 mac 上的 shell-curl:
curl -i \
-X POST \
-H 'Content-Type: application/x-www-form-urlencoded' \
-d 'grant_type=password&username=example@swagger.foo&password=123 and 4' \
https://the-token-api-url.foo
Verbose Informations Curl (MacShell):详细信息卷曲 (MacShell):
* Trying <IP HOST>
* TCP_NODELAY set
* Connected to <DNS HOST> (<IP HOST>) port 443 (#0)
* ALPN, offering http/1.1
* Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH
* successfully set certificate verify locations:
* CAfile: /opt/local/share/curl/curl-ca-bundle.crt
CApath: none
* TLSv1.2 (OUT), TLS header, Certificate Status (22):
* TLSv1.2 (OUT), TLS handshake, Client hello (1):
* TLSv1.2 (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
* TLSv1.2 (IN), TLS handshake, Server finished (14):
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
* TLSv1.2 (OUT), TLS change cipher, Client hello (1):
* TLSv1.2 (OUT), TLS handshake, Finished (20):
* TLSv1.2 (IN), TLS change cipher, Client hello (1):
* TLSv1.2 (IN), TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / <something>
* ALPN, server did not agree to a protocol
* Server certificate:
* subject: CN=<CN>
* start date: <date>
* expire date: <date>
* subjectAltName: host "<DNS HOST>" matched cert's "<DNS HOST>"
* issuer: C=US; O=Let's Encrypt; CN=Let's Encrypt Authority X3
* SSL certificate verify ok.
> POST /<URI PART>/token HTTP/1.1
> Host: <DNS HOST>
> User-Agent: curl/7.58.0
> Accept: */*
> Content-Type: application/x-www-form-urlencoded
> Content-Length: 73
>
* upload completely sent off: 73 out of 73 bytes
< HTTP/1.1 200 OK
HTTP/1.1 200 OK
< Cache-Control: no-cache
Cache-Control: no-cache
< Pragma: no-cache
Pragma: no-cache
< Content-Type: application/json;charset=UTF-8
Content-Type: application/json;charset=UTF-8
< Expires: -1
Expires: -1
< Server: Microsoft-IIS/8.5
Server: Microsoft-IIS/8.5
< X-Powered-By: ASP.NET
X-Powered-By: ASP.NET
< Date: Tue, 05 Feb 2019 17:26:21 GMT
Date: Tue, 05 Feb 2019 17:26:21 GMT
< Content-Length: 671
Content-Length: 671
Verbose Informstions cURL PHP:详细信息 cURL PHP:
* Hostname in DNS cache was stale, zapped
* Trying <IP>
* TCP_NODELAY set
* Connected to <DNS> (<IP>) port 443 (#0)
* ALPN, offering http/1.1
* Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH
* successfully set certificate verify locations:
* CAfile: /opt/local/share/curl/curl-ca-bundle.crt
CApath: none
* SSL connection using TLSv1.2 / <something>
* ALPN, server did not agree to a protocol
* Server certificate:
* subject: CN=<DNS>
* start date: <date>
* expire date: <date>
* subjectAltName: host "<dns>" matched cert's "<dns>"
* issuer: C=US; O=Let's Encrypt; CN=Let's Encrypt Authority X3
* SSL certificate verify ok.
> POST /<uri part>/token HTTP/1.1
Host: <dns>
cache-control: no-cache
accept: *
accept-encoding: gzip, deflate
Content-Length: 384
Content-Type: application/x-www-form-urlencoded; boundary=------------------------<a hash>
< HTTP/1.1 400 Bad Request
< Cache-Control: no-cache
< Pragma: no-cache
< Content-Type: application/json;charset=UTF-8
< Expires: -1
< Server: Microsoft-IIS/8.5
< X-Powered-By: ASP.NET
< Date: Tue, 05 Feb 2019 17:25:39 GMT
< Content-Length: 34
* HTTP error before end of send, stop sending
<
* Closing connection 0
I didn't find the problem.我没有发现问题。
1 个解决方案
解决方案1
5 已采纳 2019-02-06 13:12:33
OK, thanks to Helen it works now.好的,多亏了海伦,它现在可以工作了。
private function getToken(){
$curl = curl_init();
$params = [
CURLOPT_URL => self::API_TOKEN_URL,
CURLOPT_RETURNTRANSFER => true,
CURLOPT_MAXREDIRS => 10,
CURLOPT_TIMEOUT => 30,
CURLOPT_POST => 1,
CURLOPT_NOBODY => false,
CURLOPT_HTTPHEADER => array(
"cache-control: no-cache",
"content-type: application/x-www-form-urlencoded",
"accept: */*",
"accept-encoding: gzip, deflate",
),
CURLOPT_POSTFIELDS => "grant_type=password&username=username@example.foo&password=123and4"
];
curl_setopt_array($curl, $params);
$response = curl_exec($curl);
curl_close($curl);
}
The Problem was solved as I entered the Post Data as String: CURLOPT_POSTFIELDS => "grant_type=password&username=username@example.foo&password=123and4" Instead of a array:当我将 Post Data 作为字符串输入时,问题得到了解决: CURLOPT_POSTFIELDS => "grant_type=password&username=username@example.foo&password=123and4"而不是数组:
CURLOPT_POSTFIELDS => array(
'username' => urlencode('username@example.foo'),
'password' => urlencode('123and4'),
'grant_type' => 'password'
)
Thanks <3!谢谢<3!
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.
相关问题
PHP - 如何获取OAuth 2.0令牌 - PHP - How to get OAuth 2.0 Token
如何使用 PHP 在谷歌 oauth 2.0 api 中获取刷新令牌 - how to get Refresh token in google oauth 2.0 api with PHP
如何在PHP中使用oAuth获得oauth_token - How to get an oauth_token with oAuth in PHP
PHP。 如何获取访问令牌。 使用OAuth 2.0 for Google API进行身份验证 - PHP. How to get the access token. Authenticating with OAuth 2.0 for Google API
刷新令牌PHP的Oauth 2.0问题 - Oauth 2.0 issues with refresh token PHP
获取Spotify API OAuth 2.0 token with PHP - Obtain Spotify API OAuth 2.0 token with PHP
获取OAuth 2.0访问令牌以获取Adsense - Get Oauth 2.0 access token to adsense
有没有办法直接用 CURL 获得 OAuth 2.0 令牌? - Is there a way to get OAuth 2.0 token directly with CURL?
您可以在 PHP 中为 Firebase 获得一个短期的 OAuth 2.0 访问令牌吗? - Can you get a short-lived OAuth 2.0 access token for Firebase in PHP?
如何解决OAuth 2.0中的access_token - how to solve access_token in OAuth 2.0
相关标签