added method in OAuth for checking redirect url

sergeysviridenko · sergeysviridenko · commit e8525c27be89 · 2017-08-23T12:05:58.000+03:00
diff --git a/app/library/Exception/InvalidCalbackUrlException.php b/app/library/Exception/InvalidCalbackUrlException.php
@@ -0,0 +1,22 @@
+<?php
+
+/*
+ +------------------------------------------------------------------------+
+ | Phosphorum                                                             |
+ +------------------------------------------------------------------------+
+ | Copyright (c) 2013-2017 Phalcon Team and contributors                  |
+ +------------------------------------------------------------------------+
+ | This source file is subject to the New BSD License that is bundled     |
+ | with this package in the file LICENSE.txt.                             |
+ |                                                                        |
+ | If you did not receive a copy of the license and are unable to         |
+ | obtain it through the world-wide-web, please send an email             |
+ | to license@phalconphp.com so we can send you a copy immediately.       |
+ +------------------------------------------------------------------------+
+*/
+
+namespace Phosphorum\Exception;
+
+class InvalidCalbackUrlException extends \LogicException
+{
+}
diff --git a/app/library/Github/OAuth.php b/app/library/Github/OAuth.php
@@ -21,6 +21,7 @@
 use Phalcon\Config;
 use Phalcon\Di\Injectable;
 use Guzzle\Http\Client as HttpClient;
+use Phosphorum\Exception\UrlException;
 
 /**
  * Class OAuth
@@ -46,10 +47,12 @@ class OAuth extends Injectable
      */
     public function __construct(Config $config)
     {
+        $this->logger               = $this->getDI()->get('logger', ['auth']);
+        $this->checkRedirectGitPath($config->get('redirectUri'));
+
         $this->redirectUriAuthorize = $config->get('redirectUri');
         $this->clientId             = $config->get('clientId');
         $this->clientSecret         = $config->get('clientSecret');
-        $this->logger               = $this->getDI()->get('logger', ['auth']);
     }
 
     public function authorize()
@@ -132,4 +135,31 @@ public function send($url, $parameters, $method = 'post')
             return false;
         }
     }
+
+    /**
+     * @param string $url
+     *
+     */
+    protected function checkRedirectGitPath($url)
+    {
+        $validationFlags = FILTER_FLAG_SCHEME_REQUIRED | FILTER_FLAG_HOST_REQUIRED | FILTER_FLAG_PATH_REQUIRED;
+
+        if (!filter_var($url, $validationFlags)) {
+            throw new UrlException("current URL '{$url}' isn't valid.");
+        }
+
+        if (stristr($url, '://', true) != $this->request->getScheme()) {
+            $errorMessage = 'The same protocol should be used for the authorization callback URL and forum settings. ';
+            $errorMessage .= 'Please, check setting in your config file and on Github.';
+
+            $this->logger->error($errorMessage);
+        }
+
+        if (substr($url, -1) != '/') {
+            $errorMessage = 'Authorization callback URL should contain slash in the end. ';
+            $errorMessage .= 'Please, check setting in your config file and on Github.';
+
+            $this->logger->error($errorMessage);
+        }
+    }
 }
