Add token list to profile

Author: rmccue

inc/admin/profile/namespace.php

@@ -0,0 +1,115 @@
+<?php
+/**
+ * Administration UI and utilities
+ */
+
+namespace WP\OAuth2\Admin\Profile;
+
+use WP\OAuth2\Tokens\Access_Token;
+use WP_User;
+
+/**
+ * Bootstrap actions for the profile screen.
+ */
+function bootstrap() {
+	add_action( 'personal_options', __NAMESPACE__ . '\\render_profile_section', 50 );
+	add_action( 'all_admin_notices', __NAMESPACE__ . '\\output_profile_messages' );
+	add_action( 'personal_options_update',  __NAMESPACE__ . '\\handle_revocation', 10, 1 );
+	add_action( 'edit_user_profile_update', __NAMESPACE__ . '\\handle_revocation', 10, 1 );
+}
+
+/**
+ * Render current tokens for a user.
+ *
+ * @param WP_User $user User whose profile is being rendered.
+ */
+function render_profile_section( WP_User $user ) {
+	$tokens = Access_Token::get_for_user( $user );
+	?>
+		<table class="form-table">
+			<tbody>
+			<tr>
+				<th scope="row"><?php _e( 'Authorized Applications', 'rest_oauth1' ) ?></th>
+				<td>
+					<?php if ( ! empty( $tokens ) ): ?>
+						<table class="widefat">
+							<thead>
+							<tr>
+								<th style="padding-left:10px;"><?php esc_html_e( 'Application Name', 'rest_oauth1' ); ?></th>
+								<th></th>
+							</tr>
+							</thead>
+							<tbody>
+							<?php foreach ( $tokens as $token ): ?>
+								<?php
+								/** @var Access_Token $token */
+								$client = $token->get_client();
+								?>
+								<tr>
+									<td><?php echo $client->get_name() ?></td>
+									<td><button class="button" name="oauth2_revoke" value="<?php echo esc_attr( $token->get_key() ) ?>"><?php esc_html_e( 'Revoke', 'rest_oauth1' ) ?></button>
+								</tr>
+
+							<?php endforeach ?>
+							</tbody>
+						</table>
+					<?php else: ?>
+						<p class="description"><?php esc_html_e( 'No applications authorized.', 'rest_oauth1' ) ?></p>
+					<?php endif ?>
+				</td>
+			</tr>
+			</tbody>
+		</table>
+	<?php
+}
+
+/**
+ * Output messages based on previous actions.
+ */
+function output_profile_messages() {
+	global $pagenow;
+	if ( $pagenow !== 'profile.php' && $pagenow !== 'user-edit.php' ) {
+		return;
+	}
+
+	if ( ! empty( $_GET['oauth2_revoked'] ) ) {
+		echo '<div id="message" class="updated"><p>' . __( 'Token revoked.', 'oauth2' ) . '</p></div>';
+	}
+	if ( ! empty( $_GET['oauth2_revocation_failed'] ) ) {
+		echo '<div id="message" class="updated"><p>' . __( 'Unable to revoke token.', 'oauth2' ) . '</p></div>';
+	}
+}
+
+/**
+ * Handle a revocation.
+ *
+ * @param int $user_id
+ */
+function handle_revocation( $user_id ) {
+	if ( empty( $_POST['oauth2_revoke'] ) ) {
+		return;
+	}
+
+	$key = wp_unslash( $_POST['oauth2_revoke'] );
+	$token = Access_Token::get_by_id( $key );
+	if ( empty( $token ) ) {
+		var_dump( $key, $token );
+		wp_safe_redirect( add_query_arg( 'oauth2_revocation_failed', true, get_edit_user_link( $user_id ) ) );
+		exit;
+	}
+
+	// Check it's for the right user.
+	if ( $token->get_user_id() !== $user_id ) {
+		wp_die();
+	}
+
+	$result = $token->revoke();
+	if ( is_wp_error( $result ) ) {
+		wp_safe_redirect( add_query_arg( 'oauth2_revocation_failed', true, get_edit_user_link( $user_id ) ) );
+		exit;
+	}
+
+	// Success, redirect and tell the user.
+	wp_safe_redirect( add_query_arg( 'oauth2_revoked', $key, get_edit_user_link( $user_id ) ) );
+	exit;
+}

plugin.php

@@ -31,6 +31,7 @@ function bootstrap() {
 	// Admin-related.
 	add_action( 'init', __NAMESPACE__ . '\\rest_oauth2_load_authorize_page' );
 	add_action( 'admin_menu', array( __NAMESPACE__ . '\\admin\\Admin', 'register' ) );
+	Admin\Profile\bootstrap();
 }
 
 function load() {
@@ -48,6 +49,7 @@ function load() {
 	require __DIR__ . '/inc/types/class-authorization-code.php';
 	require __DIR__ . '/inc/types/class-implicit.php';
 	require __DIR__ . '/inc/admin/class-admin.php';
+	require __DIR__ . '/inc/admin/profile/namespace.php';
 }
 
 /**