Replaced the old twitter authentication method by the oauth based one.

Author: eschnou

images/twitter_login.png

@@ -938,9 +938,17 @@ private function createArray($from, $to) {
 	}
 
 	private function notifyTwitter($item) {		
-		// Get twitter credentials
-		$username   = $this->_properties->getProperty('twitter_username');
-		$password	= $this->_properties->getProperty('twitter_password');
+		// Get twitter consumer tokens and user secrets
+		$consumer_key = $this->_config->twitter->consumer_key;
+		$consumer_secret = $this->_config->twitter->consumer_secret;
+		$oauth_token = $this->_properties->getProperty('twitter_oauth_token');
+		$oauth_token_secret = $this->_properties->getProperty('twitter_oauth_token_secret');
+		
+		if (!$consumer_key || !$consumer_secret || !$oauth_token || !$oauth_token_secret) {
+			$this->addErrorMessage("Missing twitter OAuth credentials to continue");
+		}
+
+		// Should we append a text before the tweet ?
 		$has_preamble   = $this->_properties->getProperty('preamble', true);		
 
 		// Get item
@@ -962,10 +970,13 @@ private function notifyTwitter($item) {
 		}
 
 		try {
-			$twitter = new Stuffpress_Services_Twitter($username, $password);
-			$twitter->sendTweet($tweet);
+			$connection = new TwitterOAuth_Client($consumer_key, $consumer_secret, $oauth_token, $oauth_token_secret);
+			$response = $connection->post('statuses/update', array('status' => $tweet));
+			if (isset($response->error)) {
+				$this->addErrorMessage("Failed posting to Twitter with error " . $response->error);
+			}			
 		} catch (Exception $e) {
-			//
+			$this->addErrorMessage("Failed posting to Twitter with unknwon error");
 		}
 	}
 

protected/application/admin/controllers/PostController.php

@@ -21,28 +21,27 @@ class Admin_SnsController extends Admin_BaseController
 	protected $_section = 'config';
 
 	public function indexAction() {
-		// Get the user properties
-		$values 	= $this->_properties->getProperties(array("twitter_auth", "twitter_username", "twitter_services"));
-		
+
 		// If not logged in, get the login form
-		if (!$values['twitter_auth']) {
+		if (!$this->_properties->getProperty('twitter_auth',false)) {
 			if (!$this->view->twitter_login_form) {
-				$this->view->twitter_login_form = $this->getTwitterLoginForm();
+				$this->view->twitter_login = true;
 			}
 		} 
 		// Else get the config form
 		else {
 			if (!$this->view->twitter_config_form) {
 				$form = $this->getTwitterConfigForm();
-				$form->twitter_services->setValue(unserialize($values['twitter_services']));
+				$form->twitter_services->setValue($this->_properties->getProperty('twitter_services'));
 				$this->view->twitter_config_form = $form;
 			}
+			
+			$this->view->twitter_username = $this->_properties->getProperty('twitter_username');
 		}
 
 		// Prepare view
 		$this->common();
-		$this->view->twitter_auth 	 = $values['twitter_auth'];
-		$this->view->twitter_user 	 = $values['twitter_username'];
+		$this->view->twitter_auth = $this->_properties->getProperty('twitter_auth', false);
 		$this->view->status_messages = $this->getStatusMessages();
 		$this->view->error_messages	 = $this->getErrorMessages();		
 		$this->view->headScript()->appendFile('js/controllers/sns.js');
@@ -71,6 +70,98 @@ public function submitAction()
 		return $this->_helper->json->sendJson(false);
 	}
 
+	public function connectAction() {
+		
+		if (! isset($this->_config->twitter->consumer_key) && !isset($this->_config->twitter->consumer_secret)) {
+			$this->addErrorMessage("Missing OAuth consumer key and secret");
+			$this->_forward('index');
+			return;
+		} 
+		
+		$consumer_key = $this->_config->twitter->consumer_key;
+		$consumer_secret = $this->_config->twitter->consumer_secret;
+		$oauth_callback = $this->getStaticUrl() . "/admin/sns/callback";
+		
+		/* Create a new twitter client */
+		$connection = new TwitterOAuth_Client($consumer_key, $consumer_secret);
+ 
+		/* Get temporary credentials. */
+		$request_token = $connection->getRequestToken($oauth_callback);
+		
+		/* Save temporary credentials to session. */
+		$oauth_token = $request_token['oauth_token'];
+		$oauth_token_secret = $request_token['oauth_token_secret'];
+		$this->_properties->setProperty("twitter_oauth_token", $oauth_token);
+		$this->_properties->setProperty("twitter_oauth_token_secret", $oauth_token_secret); 
+		
+		/* If last connection failed don't display authorization link. */
+		switch ($connection->http_code) {
+		  case 200:
+		    /* Build authorize URL and redirect user to Twitter. */
+		    $this->_redirect($connection->getAuthorizeURL($oauth_token));
+		    break;
+		  default:
+		    /* Show notification if something went wrong. */
+		    $this->addErrorMessage('Could not connect to Twitter. Refresh the page or try again later.');
+		}	
+		
+		$this->_forward('index');
+	}
+	
+	public function callbackAction() {
+		/* Get the saved tokens */
+		$oauth_token = $this->_properties->getProperty('twitter_oauth_token');
+		$oauth_token_secret = $this->_properties->getProperty('twitter_oauth_token_secret');
+		
+		if (!isset($oauth_token) && !isset($oauth_token_secret)) {
+			$this->addErrorMessage("Missing temporary OAuth tokens");
+			$this->_forward('index');
+			return;			
+		}
+		
+		/* Get the consumer key and secret from the config */
+		if (! isset($this->_config->twitter->consumer_key) && !isset($this->_config->twitter->consumer_secret)) {
+			$this->addErrorMessage("Missing OAuth consumer key and secret");
+			$this->_forward('index');
+			return;
+		} 
+		
+		$consumer_key = $this->_config->twitter->consumer_key;
+		$consumer_secret = $this->_config->twitter->consumer_secret;
+		$oauth_callback = $this->getStaticUrl() . "/admin/sns/callback";
+		
+		/* If the oauth_token is old redirect to the connect page. */
+		if (isset($_REQUEST['oauth_token'])) {
+			if ($oauth_token != $_REQUEST['oauth_token']) {
+				$this->_properties->deleteProperty("twitter_auth");
+				die("Session should be cleared");
+			}
+		}
+		
+		/* Create TwitteroAuth object with app key/secret and token key/secret from default phase */
+		$connection = new TwitterOAuth_Client($consumer_key, $consumer_secret, $oauth_token, $oauth_token_secret);
+		
+		/* Request access tokens from twitter */
+		$access_token = $connection->getAccessToken($_REQUEST['oauth_verifier']);
+		
+		/* Save the access tokens. Normally these would be saved in a database for future use. */
+		$this->_properties->setProperty('twitter_oauth_token', $access_token['oauth_token']);
+		$this->_properties->setProperty('twitter_oauth_token_secret', $access_token['oauth_token_secret']);
+		$this->_properties->setProperty('twitter_user_id', $access_token['user_id']);
+		$this->_properties->setProperty('twitter_username', $access_token['screen_name']);
+		
+		/* If HTTP response is 200 continue otherwise send to connect page to retry */
+		if (200 == $connection->http_code) {
+		  /* The user has been verified and the access tokens can be saved for future use */
+		  $this->_properties->setProperty('twitter_auth', true);
+		} else {
+		  /* Save HTTP status for error dialog on connnect page.*/
+		  die("Error, We should clear the session.");
+		}
+		
+		$this->_forward('index');
+	}
+	
 	public function loginAction()
 	{
 		// Is the form correctly posted ?
@@ -147,51 +238,7 @@ private function getTwitterConfigForm() {
 
 		return $form;
 	}
-	
-	private function getTwitterLoginForm() {
-		$form = new Stuffpress_Form();
-			
-		// Add the form element details
-		$form->setMethod('post');
-		$form->setName('formTwitterLogin');
-		$form->setAction('admin/sns/login');
 
-		// Twitter account
-		$e = $form->createElement('text', 'username',  array('size' => 12, 'label' => 'Username', 'decorators' => array('ViewHelper', 'Errors')));
-        $e->setRequired(true);
-        $form->addElement($e);
-
-        // Twitter account
-		$e = $form->createElement('password', 'password',  array('size' => 12, 'label' => 'Password', 'decorators' => array('ViewHelper', 'Errors')));
-        $e->setRequired(true);
-        $form->addElement($e);
-
-		// Save button
-		$form->addElement('submit', 'login', array('label' => 'Sign in', 'decorators' => $form->buttonDecorators));
-
-		return $form;
-	}
-	
-	private function validateTwitterAccount($username, $password) {
-		$url  = "http://twitter.com/account/verify_credentials.json";
-		$curl = curl_init();
-		curl_setopt($curl, CURLOPT_URL,$url);  
-		curl_setopt($curl, CURLOPT_HEADER, false);
-		curl_setopt($curl, CURLOPT_RETURNTRANSFER, true);
-		curl_setopt($curl, CURLOPT_USERPWD, "$username:$password"); 
-		curl_setopt($curl, CURLOPT_USERAGENT,'Storytlr/1.0');
-	
-		$response = curl_exec($curl);
-		$http_code = curl_getinfo($curl, CURLINFO_HTTP_CODE);
-		curl_close ($curl);
-
-		if ($http_code != 200) {
-			return false;
-		} else {
-			return true;
-		}
-	}
-	
 	private function getAvailableSources() {
 		$sourcesTable 	= new Sources();
 		$sources 		= $sourcesTable->getSources();

protected/application/admin/controllers/SnsController.php

@@ -302,12 +302,22 @@ protected function updateTwitter($items) {
 		$shortUrl = new ShortUrl(); 
 		$user  = $users->getUser($this->getUserID());
 
+		// Get twitter consumer tokens and user secrets
+		$config = Zend_Registry::get("configuration");
+		$consumer_key = $config->twitter->consumer_key;
+		$consumer_secret = $config->twitter->consumer_secret;
+		
 		// Get twitter credentials
 		$properties = new Properties(array(Properties::KEY => $user->id));
 		$auth	    = $properties->getProperty('twitter_auth');
 		$services   = $properties->getProperty('twitter_services');
-		$username   = $properties->getProperty('twitter_username');
-		$password   = $properties->getProperty('twitter_password');
+		$oauth_token = $properties->getProperty('twitter_oauth_token');
+		$oauth_token_secret = $properties->getProperty('twitter_oauth_token_secret');
+		
+		if (!$consumer_key || !$consumer_secret || !$oauth_token || !$oauth_token_secret) {
+			return;
+		}
+		
 		$has_preamble   = $properties->getProperty('preamble', true);
 
 		// Return if not all conditions are met
@@ -341,8 +351,8 @@ protected function updateTwitter($items) {
 				}
 
 				try {
-					$twitter = new Stuffpress_Services_Twitter($username, $password);
-					$twitter->sendTweet($tweet);
+					$connection = new TwitterOAuth_Client($consumer_key, $consumer_secret, $oauth_token, $oauth_token_secret);
+					$response = $connection->post('statuses/update', array('status' => $tweet));	
 				} catch (Exception $e) {}
 			}
 		} else {

protected/application/admin/models/SourceModel.php

@@ -21,19 +21,10 @@ something directly to Storytlr.
 			</td>
 			<td class='element'>
 				<?php if (!$this->twitter_auth) :?>
-					You must first login into Twitter.
-					<div id='twitter_login_form'>
-						<form id="<?= $this->escape($this->twitter_login_form->getName()) ?>"" action="<?= $this->escape($this->twitter_login_form->getAction()) ?>" method="<?= $this->escape($this->twitter_login_form->getMethod()) ?>">
-							<table>
-								<tr><td>Username:</td><td><?= $this->twitter_login_form->username ?></td></tr>
-								<tr><td>Password:</td><td><?= $this->twitter_login_form->password ?></td></tr>
-								<tr><td></td><td><?= $this->twitter_login_form->login ?></td></tr>
-							</table>
-						</form>
-					</div>
+					<a href="admin/sns/connect"><img src="images/twitter_login.png"/></a>
 				<?php else : ?>
 					<div id='twitter_account'>
-						You are logged in as <a href="http://twitter.com/<?= $this->twitter_user ?>"><?= $this->twitter_user ?></a> on Twitter (<a href="admin/sns/logout/service/twitter">logout</a>)
+						You are logged in as <a href="http://twitter.com/<?= $this->twitter_username ?>"><?= $this->twitter_username ?></a> on Twitter (<a href="admin/sns/logout/service/twitter">logout</a>)
 				<?php endif ?>
 			</td>
 		</tr>	

protected/application/admin/views/scripts/sns/index.phtml

@@ -44,8 +44,8 @@ rss.default.hide_content=1
 ;;flickr.api_key=
 
 ;; Twitter settings
-;;twitter.username=
-;;twitter.password=
+;;twitter.consumer_key=
+;;twitter.consumer_secret=
 ;;twitter.default.hide_replies=1
 
 ;; Seesmic settings