oxd-php-library#
oxd-php-library is a client library for the Gluu oxd Server. For information about oxd, visit http://oxd.gluu.org
Installation#
Source#
oxd-php-library source is available on Github:
Composer: oxd-php-api#
This is the preferred method. See the composer website for installation instructions if you do not already have it installed.
To install oxd-php-api via Composer, execute the following command in your project root:
$ composer install `composer require "gluufederation/oxd-php-api": "2.4.4"`
Note: OpenID Connect requires https. This library will not work if your website uses http only.
Configuration#
The oxd-php-library configuration file is located in 'oxd-rp-settings.json'. The values here are used during registration. For a full list of supported oxd configuration parameters, see the oxd documentation Below is a typical configuration data set for registration:
{
"oxd_host_port":8099,
"authorization_redirect_uri" : ["https://www.myapplication.com/welcome" ],
"post_logout_redirect_uri" : "https://www.myapplication.com/logout",
"scope" : ["openid", "profile"],
"acr_values" : ["u2f"]
}
- oxd_host_port - oxd port or socket
Sample code#
Register_site.php#
Example
Register_site_test:
session_start();
session_destroy();
include_once '../Register_site.php';
$register_site = new Register_site();
$register_site->setRequestOpHost(Oxd_RP_config::$op_host);
$register_site->setRequestAcrValues(Oxd_RP_config::$acr_values);
$register_site->setRequestAuthorizationRedirectUri(Oxd_RP_config::$authorization_redirect_uri);
$register_site->setRequestPostLogoutRedirectUri(Oxd_RP_config::$post_logout_redirect_uri);
$register_site->setRequestContacts(["test@test.test"]);
$register_site->setRequestGrantTypes(Oxd_RP_config::$grant_types);
$register_site->setRequestResponseTypes(Oxd_RP_config::$response_types);
$register_site->setRequestScope(Oxd_RP_config::$scope);
$register_site->request();
$_SESSION['oxd_id'] = $register_site->getResponseOxdId();
Update_site_registration.php#
Example
Update_site_registration_test:
session_start();
include_once '../Update_site_registration.php';
$update_site_registration = new Update_site_registration();
$update_site_registration->setRequestAcrValues(Oxd_RP_config::$acr_values);
$update_site_registration->setRequestOxdId($_SESSION['oxd_id']);
$update_site_registration->setRequestAuthorizationRedirectUri(Oxd_RP_config::$authorization_redirect_uri);
$update_site_registration->setRequestPostLogoutRedirectUri(Oxd_RP_config::$post_logout_redirect_uri);
$update_site_registration->setRequestContacts(["test@test.test"]);
$update_site_registration->setRequestGrantTypes(Oxd_RP_config::$grant_types);
$update_site_registration->setRequestResponseTypes(Oxd_RP_config::$response_types);
$update_site_registration->setRequestScope(Oxd_RP_config::$scope);
$update_site_registration->request();
print_r($update_site_registration->getResponseObject());
Get_authorization_url.php#
Example
Get_authorization_url_test:
session_start();
require_once '../Get_authorization_url.php';
$get_authorization_url = new Get_authorization_url();
$get_authorization_url->setRequestOxdId($_SESSION['oxd_id']);
$get_authorization_url->setRequestAcrValues(Oxd_RP_config::$acr_values);
$get_authorization_url->setRequestScope(Oxd_RP_config::$scope);
$get_authorization_url->request();
echo $get_authorization_url->getResponseAuthorizationUrl();
Get_tokens_by_code.php#
Example
Get_tokens_by_code_test:
session_start();
require_once '../Get_tokens_by_code.php';
$get_tokens_by_code = new Get_tokens_by_code();
$get_tokens_by_code->setRequestOxdId($_SESSION['oxd_id']);
//getting code from redirecting url, when user allowed.
$get_tokens_by_code->setRequestCode($_GET['code']);
$get_tokens_by_code->setRequestState($_GET['state']);
$get_tokens_by_code->request();
$_SESSION['id_token'] = $get_tokens_by_code->getResponseIdToken();
$_SESSION['access_token'] = $get_tokens_by_code->getResponseAccessToken();
print_r($get_tokens_by_code->getResponseObject());
Get_user_info.php#
Example
Get_user_info_test:
session_start();
require_once '../Get_user_info.php';
echo '<br/>Get_user_info <br/>';
$get_user_info = new Get_user_info();
$get_user_info->setRequestOxdId($_SESSION['oxd_id']);
$get_user_info->setRequestAccessToken($_SESSION['access_token']);
$get_user_info->request();
print_r($get_user_info->getResponseObject());
Logout.php#
Example
Logout_test:
session_start();
require_once '../Logout.php';
$logout = new Logout();
$logout->setRequestOxdId($_SESSION['oxd_id']);
$logout->setRequestPostLogoutRedirectUri(Oxd_RP_config::$logout_redirect_uri);
$logout->setRequestIdToken($_SESSION['user_oxd_access_token']);
$logout->setRequestSessionState($_SESSION['session_states']);
$logout->setRequestState($_SESSION['states']);
$logout->request();
echo $logout->getResponseHtml();
Uma_rs_protect.php#
Example
Uma_rs_protect_test:
$uma_rs_protect = new Uma_rs_protect();
$uma_rs_protect->setRequestOxdId($register_site->getResponseOxdId());
$uma_rs_protect->addConditionForPath(["GET"],["http://vlad.umatest.com/dev/actions/view"], ["http://vlad.umatest.com/dev/actions/view"]);
$uma_rs_protect->addConditionForPath(["POST"],[ "http://vlad.umatest.com/dev/actions/add"],[ "http://vlad.umatest.com/dev/actions/add"]);
$uma_rs_protect->addConditionForPath(["DELETE"],["http://vlad.umatest.com/dev/actions/remove"], ["http://vlad.umatest.com/dev/actions/remove"]);
$uma_rs_protect->addResource('/uma/testresource');
$uma_rs_protect->request();
var_dump($uma_rs_protect->getResponseObject());
Uma_rs_check_access.php#
Example
Uma_rs_check_access_test:
session_start();
require_once '../Uma_rs_check_access.php';
$uma_rs_authorize_rpt = new Uma_rs_check_access();
$uma_rs_authorize_rpt->setRequestOxdId($_SESSION['oxd_id']);
$uma_rs_authorize_rpt->setRequestRpt($_SESSION['uma_rpt']);
$uma_rs_authorize_rpt->setRequestPath("/uma/testresource");
$uma_rs_authorize_rpt->setRequestHttpMethod("GET");
$uma_rs_authorize_rpt->request();
var_dump($uma_rs_authorize_rpt->getResponseObject());
$_SESSION['uma_ticket'] = $uma_rs_authorize_rpt->getResponseTicket();
Uma_rp_get_rpt.php#
Example
Uma_rp_get_rpt_test:
$uma_rp_get_rpt = new Uma_rp_get_rpt();
$uma_rp_get_rpt->0setRequestOxdId($_SESSION['oxd_id']);
$uma_rp_get_rpt->request();
var_dump($uma_rp_get_rpt->getResponseObject());
$_SESSION['uma_rpt']= $uma_rp_get_rpt->getResponseRpt();
echo $uma_rp_get_rpt->getResponseRpt();
Uma_rp_authorize_rpt.php#
Example
Uma_rp_authorize_rpt_test:
session_start();
require_once '../Uma_rp_authorize_rpt.php';
$uma_rp_authorize_rpt = new Uma_rp_authorize_rpt();
$uma_rp_authorize_rpt->setRequestOxdId($_SESSION['oxd_id']);
$uma_rp_authorize_rpt->setRequestRpt($_SESSION['uma_rpt']);
$uma_rp_authorize_rpt->setRequestTicket($_SESSION['uma_ticket']);
$uma_rp_authorize_rpt->request();
var_dump($uma_rp_authorize_rpt->getResponseObject());
Uma_rp_get_gat.php#
Example
Uma_rp_get_gat_test:
$uma_rp_get_gat = new Uma_rp_get_gat();
$uma_rp_get_gat->setRequestOxdId($_SESSION['oxd_id']);
$uma_rp_get_gat->setRequestScopes(["http://photoz.example.com/dev/actions/add","http://photoz.example.com/dev/actions/view", "http://photoz.example.com/dev/actions/edit"]);
$uma_rp_get_gat->request();
var_dump($uma_rp_get_gat->getResponseObject());
$_SESSION['uma_gat']= $uma_rp_get_gat->getResponseGat();
echo $uma_rp_get_gat->getResponseGat();