Merge pull request WP-API#19 from WP-API/allow-callback-on-authorize

rachelbaker · rachelbaker · commit 9dcded14fc24 · 2014-07-07T07:57:17.000-05:00
Set the callback on authorization if given
diff --git a/lib/class-wp-json-authentication-oauth1-authorize.php b/lib/class-wp-json-authentication-oauth1-authorize.php
@@ -75,6 +75,13 @@ public function render_page() {
 			return $this->token;
 		}
 
+		if ( ! empty( $_REQUEST['oauth_callback'] ) ) {
+			$resp = $authenticator->set_request_token_callback( $this->token['key'], $_REQUEST['oauth_callback'] );
+			if ( is_wp_error( $resp ) ) {
+				return $resp;
+			}
+		}
+
 		if ( $this->token['authorized'] === true ) {
 			return $this->handle_callback_redirect( $this->token['verifier'] );
 		}
diff --git a/lib/class-wp-json-authentication-oauth1.php b/lib/class-wp-json-authentication-oauth1.php
@@ -357,6 +357,21 @@ public function generate_request_token( $params ) {
 		return $data;
 	}
 
+	public function set_request_token_callback( $key, $callback ) {
+		$token = $this->get_request_token( $key );
+		if ( is_wp_error( $token ) ) {
+			return $token;
+		}
+
+		if ( esc_url_raw( $callback ) !== $callback ) {
+			return new WP_Error( 'json_oauth1_invalid_callback', __( 'Callback URL is invalid' ) );
+		}
+
+		$token['callback'] = $callback;
+		update_option( 'oauth1_request_' . $key, $token );
+		return $token['verifier'];
+	}
+
 	/**
 	 * Authorize a request token
 	 *

Original file line number	Diff line number	Diff line change
`@@ -75,6 +75,13 @@ public function render_page() {`
`75`	`75`	`return $this->token;`
`76`	`76`	`}`
`77`	`77`
	`78`	`+ if ( ! empty( $_REQUEST['oauth_callback'] ) ) {`
	`79`	`+ $resp = $authenticator->set_request_token_callback( $this->token['key'], $_REQUEST['oauth_callback'] );`
	`80`	`+ if ( is_wp_error( $resp ) ) {`
	`81`	`+ return $resp;`
	`82`	`+ }`
	`83`	`+ }`
	`84`	`+`
`78`	`85`	`if ( $this->token['authorized'] === true ) {`
`79`	`86`	`return $this->handle_callback_redirect( $this->token['verifier'] );`
`80`	`87`	`}`