1.Oauth(開放授權)是一個開放標准,允許用戶讓第三方應用訪問該用戶在某一網站上存儲的私密資源(如照片,視頻,聯系人列表),而無需將用戶名和密碼提供給第三方
關鍵字:appKey appSecret token(令牌)
2.SSO授權
如果本地手機裝有微博客戶端,則直接跳轉到微博客戶端,只需點擊授權按鈕,就可以登陸了
qq第三方登陸使用Oauth2.0實現,測試代碼
點擊下面的連接
https://graph.qq.com/oauth2.0/authorize?response_type=code&client_id=101334262&redirect_uri=http://www.qingguow.cn/sso.php
具體代碼sso.php文件:
<?php
// qq登陸類
class Sso{
const APP_ID="101334262";
const APP_KEY="xxxxxxxxxxxxxxx";
//初始化
public static function init(){
header("content-type:text/html;charset=utf-8");
}
//主函數
public static function main(){
//請求控制
$action=$_GET['action'];
if(!empty($action)){
Sso::$action();
return;
}
$par = 'grant_type=authorization_code'
. '&client_id='.Sso::APP_ID
. '&client_secret='.Sso::APP_KEY
. '&code='.$_REQUEST['code']
. '&redirect_uri='.urlencode('http://www.qingguow.cn/sso.php');
$rec=Sso::postUrlContents("https://graph.qq.com/oauth2.0/token",$par);
if(strpos($rec, 'access_token') !== false) {
parse_str($rec, $accessToken);
$openidJson=Sso::getUrlContents("https://graph.qq.com/oauth2.0/me?callback=callback&access_token={$accessToken['access_token']}");
$openidJson=str_replace("callback( ", "", $openidJson);
$openidJson=str_replace(");", "", $openidJson);
$openidJson=json_decode($openidJson,true);
header("location:sso.php?action=getQQinfo&openid={$openidJson['openid']}&access_token={$accessToken['access_token']}");
}
}
//獲取用戶信息
public static function getQQinfo(){
Sso::init();
$openid=$_GET['openid'];
$access_token=$_GET['access_token'];
$userJson=Sso::getUrlContents("https://graph.qq.com/user/get_user_info?openid={$openid}&access_token={$access_token}&oauth_consumer_key=".Sso::APP_ID);
$user=json_decode($userJson,true);
print_r($user);
}
//get方式請求數據
public static function getUrlContents($url){
$ch = curl_init();
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE);
curl_setopt($ch, CURLOPT_HEADER, false);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_REFERER, $url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, TRUE);
$result = curl_exec($ch);
curl_close($ch);
return $result;
}
//post請求數據
public static function postUrlContents($url,$data = null){
$curl = curl_init();
curl_setopt($curl, CURLOPT_URL, $url);
curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, FALSE);
curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, FALSE);
if (!empty($data)){
curl_setopt($curl, CURLOPT_POST, 1);
curl_setopt($curl, CURLOPT_POSTFIELDS, $data);
}
curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
$output = curl_exec($curl);
curl_close($curl);
return $output;
}
}
Sso::main();
