新增：整合新北市 Open ID 認證

laravel-dojo · Jul 12, 2015 · 279d6df · 279d6df
1 parent 1eb3fc2
commit 279d6df
Show file tree

Hide file tree

Showing 9 changed files with 172 additions and 9 deletions.
diff --git a/app/Http/Controllers/Auth/OpenIdController.php b/app/Http/Controllers/Auth/OpenIdController.php
@@ -0,0 +1,63 @@
+<?php
+
+namespace App\Http\Controllers\Auth;
+
+use App\User;
+use Illuminate\Http\Request;
+
+use App\Http\Requests;
+use App\Http\Controllers\Controller;
+
+class OpenIdController extends Controller
+{
+    public function redirect(Request $request)
+    {
+        $openId = new \LightOpenID($request->getHttpHost());
+
+        if(!$openId->mode) {
+            $openId->identity = config('openid.identity');
+            $openId->required = config('openid.required');
+            return redirect($openId->authUrl());
+        } else {
+            return redirect('login.index')->with('error', '登入失敗');
+        }
+    }
+
+    public function process(Request $request)
+    {
+        $openId = new \LightOpenID($request->getHttpHost());
+
+        if ($openId->mode == 'cancel') {
+            return redirect()->route('login.index')
+                             ->with('warning', '使用者取消授權');
+        }
+
+        if (!$openId->validate()) {
+            return redirect()->route('login.index')
+                             ->with('warning', '授權有誤');
+        }
+
+        $account = collect(array_values(explode('/', $openId->identity)))->last();
+
+        $attributes = $openId->getAttributes();
+        $name  = $attributes['namePerson']; // 姓名
+        $email = $attributes['contact/email']; // 公務信箱
+
+        $user = User::firstOrNew([
+            'openid' => $account
+        ]);
+
+        if (!$user->exists) {
+            $user->name = $name;
+            $user->email = $email;
+            $user->password = bcrypt(str_random(15));
+            $user->openid = $account;
+            $user->save();
+        }
+
+        \Auth::login($user);
+
+        return redirect()->route('posts.index')
+                         ->with('success', '登入成功');
+    }
+}
diff --git a/app/Http/routes.php b/app/Http/routes.php
@@ -52,4 +52,7 @@
 Route::post('password/email', ['as' => 'forgetpassword.process', 'uses' => 'Auth\PasswordController@postEmail']);
 
 Route::get('password/reset/{token}', ['as' => 'resetpassword.index'  , 'uses' => 'Auth\PasswordController@getReset']);
-Route::post('password/reset'       , ['as' => 'resetpassword.process', 'uses' => 'Auth\PasswordController@postReset']);
+Route::post('password/reset'       , ['as' => 'resetpassword.process', 'uses' => 'Auth\PasswordController@postReset']);
+
+Route::get('auth/openid' , ['as' => 'openid.process' , 'uses' => 'Auth\OpenIdController@process']);
+Route::post('auth/openid', ['as' => 'openid.redirect', 'uses' => 'Auth\OpenIdController@redirect']);
diff --git a/app/User.php b/app/User.php
@@ -24,7 +24,7 @@ class User extends Model implements AuthenticatableContract, CanResetPasswordCon
      *
      * @var array
      */
-    protected $fillable = ['name', 'email', 'password'];
+    protected $fillable = ['name', 'email', 'password', 'openid'];
 
     /**
      * The attributes excluded from the model's JSON form.

diff --git a/composer.json b/composer.json
@@ -10,7 +10,8 @@
         "guidovanbiemen/laravel-whoops": "^1.0",
         "barryvdh/laravel-debugbar": "^2.0",
         "doctrine/dbal": "^2.5",
-        "laravelcollective/html": "^5.1"
+        "laravelcollective/html": "^5.1",
+        "kounta/lightopenid": "^0.7"
     },
     "require-dev": {
         "fzaninotto/faker": "~1.4",

diff --git a/composer.lock b/composer.lock
diff --git a/config/openid.php b/config/openid.php
@@ -0,0 +1,19 @@
+<?php
+
+return [
+
+    'identity' => 'http://openid.ntpc.edu.tw/',
+
+    'required' => [
+        'namePerson/friendly',
+        'contact/email',
+        'namePerson',
+        'birthDate',
+        'person/gender',
+        'contact/postalCode/home',
+        'contact/country/home',
+        'pref/language',
+        'pref/timezone'
+    ],
+
+];
diff --git a/database/migrations/2015_07_10_215939_add_openid_in_users_table.php b/database/migrations/2015_07_10_215939_add_openid_in_users_table.php
@@ -0,0 +1,35 @@
+<?php
+
+use Illuminate\Database\Schema\Blueprint;
+use Illuminate\Database\Migrations\Migration;
+
+class AddOpenidInUsersTable extends Migration
+{
+    /**
+     * Run the migrations.
+     *
+     * @return void
+     */
+    public function up()
+    {
+        Schema::table('users', function (Blueprint $table) {
+
+            $table->string('openid')->after('password')->nullable()->index();
+
+        });
+    }
+
+    /**
+     * Reverse the migrations.
+     *
+     * @return void
+     */
+    public function down()
+    {
+        Schema::table('users', function (Blueprint $table) {
+
+            $table->dropColumn('openid');
+
+        });
+    }
+}
diff --git a/resources/views/auth/login.blade.php b/resources/views/auth/login.blade.php
@@ -58,6 +58,10 @@
                     </div>
                 </div>
             {!! Form::close() !!}
+
+            {!! Form::open(['route' => 'openid.redirect', 'method' => 'post']) !!}
+                {!! Form::submit('OpenID 登入', ['class' => 'btn btn-warning']) !!}
+            {!! Form::close() !!}
         </div>
     </div>
 </div>

diff --git a/resources/views/auth/register.blade.php b/resources/views/auth/register.blade.php
@@ -63,6 +63,10 @@
                     </div>
                 </div>
             {!! Form::close() !!}
+
+            {!! Form::open(['route' => 'openid.redirect', 'method' => 'post']) !!}
+                {!! Form::submit('OpenID 登入', ['class' => 'btn btn-warning']) !!}
+            {!! Form::close() !!}
         </div>
     </div>
 </div>