veryroundbird.house / smallbird-social
friendship ended with social-app. php is my new best friend
fork atom

Compare changes

Choose any two refs to compare.

options
unified split
Changed files
+77 -74
index.php
templates
_partials
nav.latte
layout.latte
+72 -73
index.php 
···

       
67

       
67

       
 

       
Flight::set('publicApi', PUBLIC_API);


     

       
68

       
68

       
 

       
Flight::set('frontpageFeed', FRONTPAGE_FEED);


     

       
69

       
69

       
 

       
Flight::set('defaultRelay', DEFAULT_RELAY);


     

       
70

       

       
-

       
Flight::set('userAuth', $_SESSION['sbs_'.SITE_DOMAIN]);


     

       

       
70

       
+

       
Flight::set('userAuth', array_key_exists('sbs_'.SITE_DOMAIN, $_SESSION) ? $_SESSION['sbs_'.SITE_DOMAIN] : null);


     

       

       
71

       
+

       
Flight::set('userPds', array_key_exists('sbs_'.SITE_DOMAIN.'_pds', $_SESSION) ? $_SESSION['sbs_'.SITE_DOMAIN.'_pds'] : null);


     

       

       
72

       
+

       
Flight::set('userInfo', array_key_exists('sbs_'.SITE_DOMAIN.'_userinfo', $_SESSION) ? $_SESSION['sbs_'.SITE_DOMAIN.'_userinfo'] : null);


     

       
71

       
73

       
 

       
Flight::set('flight.log_errors', false);


     

       
72

       
74

       
 

       
Flight::set('flight.handle_errors', false);


     

       
73

       
75

       
 

       
Flight::set('flight.content_length', false);


     
···

       
79

       
81

       
 

       
  'setTheme' => array_key_exists('sbs_theme', $_COOKIE) ? $_COOKIE['sbs_theme'] : DEFAULT_THEME,


     

       
80

       
82

       
 

       
  'setFont' => array_key_exists('sbs_font', $_COOKIE) ? $_COOKIE['sbs_font'] : DEFAULT_FONT,


     

       
81

       
83

       
 

       
  'userAuth' => Flight::get('userAuth'),


     

       

       
84

       
+

       
  'userPds' => Flight::get('userPds'),


     

       

       
85

       
+

       
  'userInfo' => Flight::Get('userInfo'),


     

       
82

       
86

       
 

       
  'favFeeds' => $favoriteFeeds,


     

       
83

       
87

       
 

       
  'pages' => PAGES,


     

       
84

       
88

       
 

       
  'links' => LINKS,


     
···

       
178

       
182

       
 

       
});


     

       
179

       
183

       
 

       



     

       
180

       
184

       
 

       
Flight::route('/login', function(): void {


     

       
181

       

       
-

       
  if (!array_key_exists('username', $_GET)) {


     

       

       
185

       
+

       
  if (isset($_GET['username'])) {


     

       

       
186

       
+

       
  $username = $_GET['username'];


     

       

       
187

       
+

       
    $bskyToucher = new BskyToucher();


     

       

       
188

       
+

       
    $userInfo = $bskyToucher->getUserInfo($username);


     

       

       
189

       
+

       
    if (!$userInfo) die(1);


     

       

       
190

       
+

       
    $pds = $userInfo->pds;


     

       

       
191

       
+

       
    $options = new OAuthOptions([


     

       

       
192

       
+

       
      'key'          => 'https://'.SITE_DOMAIN.CLIENT_ID,


     

       

       
193

       
+

       
      'secret'       => CLIENT_SECRET,


     

       

       
194

       
+

       
      'callbackURL'  => 'https://'.SITE_DOMAIN.'/login',


     

       

       
195

       
+

       
      'sessionStart' => true,


     

       

       
196

       
+

       
      'sessionStorageVar' => 'sbs_'.SITE_DOMAIN


     

       

       
197

       
+

       
    ]);


     

       

       
198

       
+

       
    $storage = new SessionStorage($options);


     

       

       
199

       
+

       
    $connector = new React\Socket\Connector([


     

       

       
200

       
+

       
      'dns' => '1.1.1.1'


     

       

       
201

       
+

       
    ]);


     

       

       
202

       
+

       
    $http = new React\Http\Browser($connector);


     

       

       
203

       
+

       
    $httpFactory = new HttpFactory();


     

       

       
204

       
+

       
    $token_builder = Builder::new(new JoseEncoder(), ChainedFormatter::default());


     

       

       
205

       
+

       
    $algorithm    = new Sha256();


     

       

       
206

       
+

       
    $signing_key   = InMemory::file(CERT_PATH);


     

       

       
207

       
+

       
    $now   = new DateTimeImmutable();


     

       

       
208

       
+

       
    $token = $token_builder


     

       

       
209

       
+

       
      ->withHeader('alg', 'ES256')


     

       

       
210

       
+

       
      ->withHeader('typ', 'JWT')


     

       

       
211

       
+

       
      ->withHeader('kid', 'ocwgKj_O7H9at1sL6yWf9ZZ82NOM7D0xlN8HGIyWH6M')


     

       

       
212

       
+

       
      ->issuedBy('https://'.SITE_DOMAIN.CLIENT_ID)


     

       

       
213

       
+

       
      ->identifiedBy(uniqid())


     

       

       
214

       
+

       
      ->relatedTo('https://'.SITE_DOMAIN.CLIENT_ID)


     

       

       
215

       
+

       
      ->permittedFor($pds)


     

       

       
216

       
+

       
      ->issuedAt($now->modify('-5 seconds'))


     

       

       
217

       
+

       
      ->getToken($algorithm, $signing_key);


     

       

       
218

       
+

       
    $client = new GuzzleHttp\Client([


     

       

       
219

       
+

       
      'verify' => true,


     

       

       
220

       
+

       
      'headers' => [


     

       

       
221

       
+

       
        'User-Agent' => USER_AGENT_STR,


     

       

       
222

       
+

       
        'Authorization' => 'Bearer: '.$token->toString()


     

       

       
223

       
+

       
      ]


     

       

       
224

       
+

       
    ]);


     

       

       
225

       
+

       
    $provider = new BskyProvider($options, $client, $httpFactory, $httpFactory, $httpFactory);


     

       

       
226

       
+

       
    $provider->setPds($pds);


     

       

       
227

       
+

       
    $name = $provider->getName();


     

       

       
228

       
+

       
    if (isset($_GET['login']) && $_GET['login'] === $name) {


     

       

       
229

       
+

       
      $auth_url = $provider->getAuthorizationUrl([


     

       

       
230

       
+

       
        'client_assertion_type' => 'urn:ietf:params:oauth:client-assertion-type:jwt-bearer',


     

       

       
231

       
+

       
        'client_assertion' => $token->toString()


     

       

       
232

       
+

       
      ]);


     

       

       
233

       
+

       
      Flight::redirect($auth_url);


     

       

       
234

       
+

       
      die(1);


     

       

       
235

       
+

       
    } else if (isset($_GET['code'], $_GET['iss'])) {


     

       

       
236

       
+

       
      $storage->storeAccessToken($_GET['code'], $name);


     

       

       
237

       
+

       
      $_SESSION['sbs_'.SITE_DOMAIN.'_pds'] = $_GET['iss'];


     

       

       
238

       
+

       
      $_SESSION['sbs_'.SITE_DOMAIN.'_userinfo'] = $bskyToucher->getUserInfo();


     

       

       
239

       
+

       
      Flight::redirect('/');


     

       

       
240

       
+

       
      die(1);


     

       

       
241

       
+

       
    } else if (isset($_GET['error'])) {


     

       

       
242

       
+

       
      die(1);


     

       

       
243

       
+

       
    }


     

       

       
244

       
+

       
  } else {


     

       
182

       
245

       
 

       
    $latte = new Latte\Engine;


     

       
183

       
246

       
 

       
    $latte->render('./templates/login.latte', array_merge(Flight::get('standardParams'), [


     

       
184

       
247

       
 

       
      'mainClass' => 'form',


     
···

       
187

       
250

       
 

       
      'ogimage' => '',


     

       
188

       
251

       
 

       
      'ogurl' => 'https://'.SITE_DOMAIN.'/login'


     

       
189

       
252

       
 

       
    ]));


     

       
190

       

       
-

       
    die(1);


     

       
191

       
253

       
 

       
  }


     

       
192

       

       
-

       
  $username = $_GET['username'];


     

       
193

       

       
-

       
  $bskyToucher = new BskyToucher();


     

       
194

       

       
-

       
  $userInfo = $bskyToucher->getUserInfo($username);


     

       
195

       

       
-

       
  if (!$userInfo) die(1);


     

       
196

       

       
-

       
  $pds = $userInfo->pds;


     

       
197

       

       
-

       
  $options = new OAuthOptions([


     

       
198

       

       
-

       
  	'key'          => 'https://'.SITE_DOMAIN.CLIENT_ID,


     

       
199

       

       
-

       
  	'secret'       => CLIENT_SECRET,


     

       
200

       

       
-

       
  	'callbackURL'  => 'https://'.SITE_DOMAIN.'/login',


     

       
201

       

       
-

       
  	'sessionStart' => true,


     

       
202

       

       
-

       
    'sessionStorageVar' => 'sbs_'.SITE_DOMAIN


     

       
203

       

       
-

       
  ]);


     

       
204

       

       
-

       
  $connector = new React\Socket\Connector([


     

       
205

       

       
-

       
    'dns' => '1.1.1.1'


     

       
206

       

       
-

       
  ]);


     

       
207

       

       
-

       
  $http = new React\Http\Browser($connector);


     

       
208

       

       
-

       
  $httpFactory = new HttpFactory();


     

       
209

       

       
-

       
  $token_builder = Builder::new(new JoseEncoder(), ChainedFormatter::default());


     

       
210

       

       
-

       
  $algorithm    = new Sha256();


     

       
211

       

       
-

       
  $signing_key   = InMemory::file(CERT_PATH);


     

       
212

       

       
-

       
  $now   = new DateTimeImmutable();


     

       
213

       

       
-

       
  $token = $token_builder


     

       
214

       

       
-

       
    ->withHeader('alg', 'ES256')


     

       
215

       

       
-

       
    ->withHeader('typ', 'JWT')


     

       
216

       

       
-

       
    ->withHeader('kid', 'ocwgKj_O7H9at1sL6yWf9ZZ82NOM7D0xlN8HGIyWH6M')


     

       
217

       

       
-

       
    ->issuedBy('https://'.SITE_DOMAIN.CLIENT_ID)


     

       
218

       

       
-

       
    ->identifiedBy(uniqid())


     

       
219

       

       
-

       
    ->relatedTo('https://'.SITE_DOMAIN.CLIENT_ID)


     

       
220

       

       
-

       
    ->permittedFor($pds)


     

       
221

       

       
-

       
    ->issuedAt($now->modify('-5 seconds'))


     

       
222

       

       
-

       
    ->getToken($algorithm, $signing_key);


     

       
223

       

       
-

       
  $client = new GuzzleHttp\Client([


     

       
224

       

       
-

       
    'verify' => true,


     

       
225

       

       
-

       
    'headers' => [


     

       
226

       

       
-

       
      'User-Agent' => USER_AGENT_STR,


     

       
227

       

       
-

       
      'Authorization' => 'Bearer: '.$token->toString()


     

       
228

       

       
-

       
    ]


     

       
229

       

       
-

       
  ]);


     

       
230

       

       
-

       
  $provider = new BskyProvider($options, $client, $httpFactory, $httpFactory, $httpFactory);


     

       
231

       

       
-

       
  $provider->setPds($pds);


     

       
232

       

       
-

       
  $name = $provider->getName();


     

       
233

       

       
-

       
  


     

       
234

       

       
-

       
  if (isset($_GET['login']) && $_GET['login'] === $name) {


     

       
235

       

       
-

       
    $auth_url = $provider->getAuthorizationUrl([


     

       
236

       

       
-

       
      'client_assertion_type' => 'urn:ietf:params:oauth:client-assertion-type:jwt-bearer',


     

       
237

       

       
-

       
      'client_assertion' => $token->toString()


     

       
238

       

       
-

       
    ]);


     

       
239

       

       
-

       
    header('Location: '.$auth_url);


     

       
240

       

       
-

       
    die(1);


     

       
241

       

       
-

       
  } else if (isset($_GET['code'], $_GET['state'])) {


     

       
242

       

       
-

       
    $token = $provider->getAccessToken($_GET['code'], $_GET['state']);


     

       
243

       

       
-

       
    $storage = new SessionStorage($options);


     

       
244

       

       
-

       
    $storage->storeAccessToken($token, $name);


     

       
245

       

       
-

       
  	header('Location: ?granted='.$name);


     

       
246

       

       
-

       
    die(1);


     

       
247

       

       
-

       
  } else if (isset($_GET['granted']) && $_GET['granted'] === $name) {


     

       
248

       

       
-

       
    $tokenJSON = $provider->getAccessTokenFromStorage()->toJSON();


     

       
249

       

       
-

       
    header('Location: https://'.SITE_DOMAIN);


     

       
250

       

       
-

       
    die(1);


     

       
251

       

       
-

       
  } else if (isset($_GET['error'])) {


     

       
252

       

       
-

       
    die(1);


     

       
253

       

       
-

       
  }


     

       
254

       

       
-

       
  $latte = new Latte\Engine;


     

       
255

       

       
-

       
  $latte->render('./templates/login.latte', array_merge(Flight::get('standardParams'), [


     

       
256

       

       
-

       
    'mainClass' => 'form',


     

       
257

       

       
-

       
    'ogtitle' => SITE_TITLE." | login",


     

       
258

       

       
-

       
    'ogdesc' => SITE_DESC,


     

       
259

       

       
-

       
    'ogimage' => '',


     

       
260

       

       
-

       
    'ogurl' => 'https://'.SITE_DOMAIN.'/login'


     

       
261

       

       
-

       
  ]));


     

       

       
254

       
+

       
});


     

       

       
255

       
+

       



     

       

       
256

       
+

       
Flight::route('/logout', function(): void {


     

       

       
257

       
+

       
  unset($_SESSION['sbs_'.SITE_DOMAIN]);


     

       

       
258

       
+

       
  unset($_SESSION['sbs_'.SITE_DOMAIN.'_pds']);


     

       

       
259

       
+

       
  unset($_SESSION['sbs_'.SITE_DOMAIN.'_userinfo']);


     

       

       
260

       
+

       
  Flight::redirect('/');


     

       
262

       
261

       
 

       
});


     

       
263

       
262

       
 

       



     

       
264

       
263

       
 

       
Flight::route('/createaccount', function(): void {
+1 -1
templates/_partials/nav.latte 
···

       
1

       
1

       
 

       
<nav>


     

       
2

       
2

       
 

       
  <ul>


     

       
3

       
3

       
 

       
    {if $userAuth}


     

       
4

       

       
-

       
      <li><a href="/">profile</a></li>


     

       

       
4

       
+

       
      <li><a href="/u/{$userInfo->handle}">profile</a></li>


     

       
5

       
5

       
 

       
      <li><a href="/settings">settings</a></li>


     

       
6

       
6

       
 

       
      <li><a href="/logout">log out</a></li>


     

       
7

       
7

       
 

       
    {else}
+4
templates/layout.latte 
···

       
24

       
24

       
 

       
    data-theme="{$setTheme}"


     

       
25

       
25

       
 

       
    data-font="{$setFont}"


     

       
26

       
26

       
 

       
  >


     

       

       
27

       
+

       
    <!--


     

       

       
28

       
+

       
      {print_r($_SESSION)}


     

       

       
29

       
+

       
      {print_r(PHP_SESSION_DISABLED)}


     

       

       
30

       
+

       
    -->


     

       
27

       
31

       
 

       
    <div id="page">


     

       
28

       
32

       
 

       
      <header>


     

       
29

       
33

       
 

       
        <h1><a href="/">{include '_partials/logo.latte'}{$siteTitle}</a></h1>