provider = new Discord(
[
'clientId' => OAUTH_CLIENTID,
'clientSecret' => OAUTH_SECRET,
'redirectUri' => OAUTH_REDIRECT_URI,
]
);
}
public function handle() :void
{
if (!isset($_GET['code'])) {
// Step 1. Get authorization code
$authUrl = $this->provider->getAuthorizationUrl([
'scope' => ['identify', 'guilds'],
]);
$_SESSION['oauth2state'] = $this->provider->getState();
header('Location: '.$authUrl);
die();
}
if (empty($_GET['state']) || ($_GET['state'] !== $_SESSION['oauth2state'])) {
unset($_SESSION['oauth2state']);
throw new RuntimeException('Invalid OAuth state');
}
$token = $this->provider->getAccessToken('authorization_code', ['code' => $_GET['code']]);
try {
/** @var DiscordResourceOwner $user */
$user = $this->provider->getResourceOwner($token);
echo 'Resource owner details:
';
printf('Hello %s#%s!
', $user->getUsername(), $user->getDiscriminator());
var_export($user->toArray());
$_SESSION['logged_in'] = true;
$url = $this->provider->getResourceOwnerDetailsUrl($token).'/guilds';
$request = $this->provider->getAuthenticatedRequest(Discord::METHOD_GET, $url, $token);
$response = $this->provider->getParsedResponse($request);
if (is_array($response) === false) {
throw new UnexpectedValueException(
'Invalid response received from Authorization Server. Expected JSON.'
);
}
if (in_array(DISCORD_GUILD_ID, array_column($response, 'id')) === true) {
$_SESSION['logged_in'] = true;
redirect($_SESSION['return_uri']);
die();
}
redirect('/denied');
} catch (Exception $e) {
// Failed to get user details
handle_error($e);
}
}
}