M_Viper/Authentik-Login
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
e224f1c7c7cc6540bd1cfa69223e9653df0c2a78
Authentik-Login/includes/oauth.php
Git Manager GUI 5d6c2d73be Upload folder via GUI - includes
2026-06-05 22:23:21 +02:00

74 lines
2.2 KiB
PHP
Raw Blame History

<?php
if ( ! defined( 'ABSPATH' ) ) exit;
function authentik_get_authorize_url() {
return get_option( 'authentik_oidc_authorize_url', '' );
}
function authentik_get_token_url() {
return get_option( 'authentik_oidc_token_url', '' );
}
function authentik_get_userinfo_url() {
return get_option( 'authentik_oidc_userinfo_url', '' );
}
function authentik_get_logout_url() {
return get_option( 'authentik_oidc_logout_url', '' );
}
function authentik_build_login_url() {
$s = authentik_get_settings();
$state = wp_generate_password( 16, false );
set_transient( 'authentik_state_' . $state, 1, 300 );
$params = [
'response_type' => 'code',
'client_id' => $s['client_id'],
'redirect_uri' => $s['redirect_uri'],
'scope' => 'openid email profile',
'state' => $state,
];
return authentik_get_authorize_url() . '?' . http_build_query( $params );
}
function authentik_exchange_code( $code ) {
$s = authentik_get_settings();
$res = wp_remote_post( authentik_get_token_url(), [
'timeout' => (int) $s['timeout'],
'body' => [
'grant_type' => 'authorization_code',
'code' => $code,
'redirect_uri' => $s['redirect_uri'],
'client_id' => $s['client_id'],
'client_secret' => $s['client_secret'],
],
] );
if ( is_wp_error( $res ) ) {
return new WP_Error( 'token_request_failed', $res->get_error_message() );
}
$body = json_decode( wp_remote_retrieve_body( $res ), true );
if ( empty( $body['access_token'] ) ) {
return new WP_Error( 'token_missing', 'Kein Access-Token erhalten.' );
}
return $body;
}
function authentik_get_userinfo( $access_token ) {
$s = authentik_get_settings();
$res = wp_remote_get( authentik_get_userinfo_url(), [
'timeout' => (int) $s['timeout'],
'headers' => [ 'Authorization' => 'Bearer ' . $access_token ],
] );
if ( is_wp_error( $res ) ) {
return new WP_Error( 'userinfo_failed', $res->get_error_message() );
}
return json_decode( wp_remote_retrieve_body( $res ), true );
}
Reference in New Issue View Git Blame Copy Permalink