Merge remote-tracking branch 'origin/0.13.3'

# Conflicts:
#	satellizer.min.js

Author: sahat

examples/client/controllers/login.js

@@ -28,4 +28,4 @@ angular.module('MyApp')
           }
         });
     };
-  });
+  });

examples/server/node/config.js

@@ -18,4 +18,4 @@ module.exports = {
   // OAuth 1.0
   TWITTER_KEY: process.env.TWITTER_KEY || 'YOUR_TWITTER_CONSUMER_KEY',
   TWITTER_SECRET: process.env.TWITTER_SECRET || 'YOUR_TWITTER_CONSUMER_SECRET'
-};
+};

examples/server/node/server.js

@@ -556,7 +556,6 @@ app.post('/auth/facebook', function(req, res) {
       if (response.statusCode !== 200) {
         return res.status(500).send({ message: profile.error.message });
       }
-      console.log(profile);
       if (req.headers.authorization) {
         User.findOne({ facebook: profile.id }, function(err, existingUser) {
           if (existingUser) {

examples/server/php/app/Http/Controllers/AuthController.php

@@ -1,9 +1,9 @@
 <?php namespace App\Http\Controllers;
 
-use JWT;
 use Hash;
 use Config;
 use Validator;
+use Firebase\JWT\JWT;
 use Illuminate\Http\Request;
 use GuzzleHttp;
 use GuzzleHttp\Subscriber\Oauth\Oauth1;
@@ -99,8 +99,7 @@ public function signup(Request $request)
      */
     public function facebook(Request $request)
     {
-        $accessTokenUrl = 'https://graph.facebook.com/v2.3/oauth/access_token';
-        $graphApiUrl = 'https://graph.facebook.com/v2.3/me';
+        $client = new GuzzleHttp\Client();
 
         $params = [
             'code' => $request->input('code'),
@@ -109,13 +108,18 @@ public function facebook(Request $request)
             'client_secret' => Config::get('app.facebook_secret')
         ];
 
-        $client = new GuzzleHttp\Client();
-
         // Step 1. Exchange authorization code for access token.
-        $accessToken = $client->get($accessTokenUrl, ['query' => $params])->json();
+        $accessTokenResponse = $client->request('GET', 'https://graph.facebook.com/v2.5/oauth/access_token', [
+            'query' => $params
+        ]);
+        $accessToken = json_decode($accessTokenResponse->getBody(), true);
 
         // Step 2. Retrieve profile information about the current user.
-        $profile = $client->get($graphApiUrl, ['query' => $accessToken])->json();
+        $profileResponse = $client->request('GET', 'https://graph.facebook.com/v2.5/me', [
+            'query' => $accessToken
+        ]);
+        $profile = json_decode($profileResponse->getBody(), true);
+
 
 
         // Step 3a. If user is already signed in then link accounts.
@@ -162,8 +166,7 @@ public function facebook(Request $request)
      */
     public function google(Request $request)
     {
-        $accessTokenUrl = 'https://accounts.google.com/o/oauth2/token';
-        $peopleApiUrl = 'https://www.googleapis.com/plus/v1/people/me/openIdConnect';
+        $client = new GuzzleHttp\Client();
 
         $params = [
             'code' => $request->input('code'),
@@ -173,18 +176,17 @@ public function google(Request $request)
             'grant_type' => 'authorization_code',
         ];
 
-        $client = new GuzzleHttp\Client();
-
         // Step 1. Exchange authorization code for access token.
-        $accessTokenResponse = $client->post($accessTokenUrl, ['body' => $params]);
-        $accessToken = $accessTokenResponse->json()['access_token'];
-
-        $headers = array('Authorization' => 'Bearer ' . $accessToken);
+        $accessTokenResponse = $client->request('POST', 'https://accounts.google.com/o/oauth2/token', [
+            'form_params' => $params
+        ]);
+        $accessToken = json_decode($accessTokenResponse->getBody(), true);
 
         // Step 2. Retrieve profile information about the current user.
-        $profileResponse = $client->get($peopleApiUrl, ['headers' => $headers]);
-
-        $profile = $profileResponse->json();
+        $profileResponse = $client->request('GET', 'https://www.googleapis.com/plus/v1/people/me/openIdConnect', [
+            'headers' => array('Authorization' => 'Bearer ' . $accessToken['access_token'])
+        ]);
+        $profile = json_decode($profileResponse->getBody(), true);
 
         // Step 3a. If user is already signed in then link accounts.
         if ($request->header('Authorization'))
@@ -230,8 +232,7 @@ public function google(Request $request)
      */
     public function linkedin(Request $request)
     {
-        $accessTokenUrl = 'https://www.linkedin.com/uas/oauth2/accessToken';
-        $peopleApiUrl = 'https://api.linkedin.com/v1/people/~:(id,first-name,last-name,email-address)';
+        $client = new GuzzleHttp\Client();
 
         $params = [
             'code' => $request->input('code'),
@@ -241,19 +242,20 @@ public function linkedin(Request $request)
             'grant_type' => 'authorization_code',
         ];
 
-        $client = new GuzzleHttp\Client();
-
         // Step 1. Exchange authorization code for access token.
-        $accessTokenResponse = $client->post($accessTokenUrl, ['body' => $params]);
-
-        $apiParams = array(
-            'oauth2_access_token' => $accessTokenResponse->json()['access_token'],
-            'format' => 'json'
-        );
+        $accessTokenResponse = $client->request('POST', 'https://www.linkedin.com/uas/oauth2/accessToken', [
+            'form_params' => $params
+        ]);
+        $accessToken = json_decode($accessTokenResponse->getBody(), true);
 
         // Step 2. Retrieve profile information about the current user.
-        $peopleApiResponse = $client->get($peopleApiUrl, ['query' => $apiParams]);
-        $profile = $peopleApiResponse->json();
+        $profileResponse = $client->request('GET', 'https://api.linkedin.com/v1/people/~:(id,first-name,last-name,email-address)', [
+            'query' => [
+                'oauth2_access_token' => $accessToken['access_token'],
+                'format' => 'json'
+            ]
+        ]);
+        $profile = json_decode($profileResponse->getBody(), true);
 
         // Step 3a. If user is already signed in then link accounts.
         if ($request->header('Authorization'))
@@ -299,25 +301,30 @@ public function linkedin(Request $request)
      */
     public function twitter(Request $request)
     {
-        $requestTokenUrl = 'https://api.twitter.com/oauth/request_token';
-        $accessTokenUrl = 'https://api.twitter.com/oauth/access_token';
-        $profileUrl = 'https://api.twitter.com/1.1/users/show.json?screen_name=';
-
-        $client = new GuzzleHttp\Client();
+        $stack = GuzzleHttp\HandlerStack::create();
 
         // Part 1 of 2: Initial request from Satellizer.
         if (!$request->input('oauth_token') || !$request->input('oauth_verifier'))
         {
+            $stack = GuzzleHttp\HandlerStack::create();
+
             $requestTokenOauth = new Oauth1([
               'consumer_key' => Config::get('app.twitter_key'),
               'consumer_secret' => Config::get('app.twitter_secret'),
-              'callback' => Config::get('app.twitter_callback')
+              'callback' => $request->input('redirectUri'),
+              'token' => '',
+              'token_secret' => ''
             ]);
+            $stack->push($requestTokenOauth);
 
-            $client->getEmitter()->attach($requestTokenOauth);
+            $client = new GuzzleHttp\Client([
+                'handler' => $stack
+            ]);
 
             // Step 1. Obtain request token for the authorization popup.
-            $requestTokenResponse = $client->post($requestTokenUrl, ['auth' => 'oauth']);
+            $requestTokenResponse = $client->request('POST', 'https://api.twitter.com/oauth/request_token', [
+                'auth' => 'oauth'
+            ]);
 
             $oauthToken = array();
             parse_str($requestTokenResponse->getBody(), $oauthToken);
@@ -333,28 +340,40 @@ public function twitter(Request $request)
                 'consumer_key' => Config::get('app.twitter_key'),
                 'consumer_secret' => Config::get('app.twitter_secret'),
                 'token' => $request->input('oauth_token'),
-                'verifier' => $request->input('oauth_verifier')
+                'verifier' => $request->input('oauth_verifier'),
+                'token_secret' => ''
             ]);
+            $stack->push($accessTokenOauth);
 
-            $client->getEmitter()->attach($accessTokenOauth);
+            $client = new GuzzleHttp\Client([
+                'handler' => $stack
+            ]);
 
             // Step 3. Exchange oauth token and oauth verifier for access token.
-            $accessTokenResponse = $client->post($accessTokenUrl, ['auth' => 'oauth'])->getBody();
+            $accessTokenResponse = $client->request('POST', 'https://api.twitter.com/oauth/access_token', [
+                'auth' => 'oauth'
+            ]);
 
             $accessToken = array();
-            parse_str($accessTokenResponse, $accessToken);
+            parse_str($accessTokenResponse->getBody(), $accessToken);
 
             $profileOauth = new Oauth1([
                 'consumer_key' => Config::get('app.twitter_key'),
                 'consumer_secret' => Config::get('app.twitter_secret'),
-                'oauth_token' => $accessToken['oauth_token']
+                'oauth_token' => $accessToken['oauth_token'],
+                'token_secret' => ''
             ]);
+            $stack->push($profileOauth);
 
-            $client->getEmitter()->attach($profileOauth);
+            $client = new GuzzleHttp\Client([
+                'handler' => $stack
+            ]);
 
             // Step 4. Retrieve profile information about the current user.
-            $profile = $client->get($profileUrl . $accessToken['screen_name'], ['auth' => 'oauth'])->json();
-
+            $profileResponse = $client->request('GET', 'https://api.twitter.com/1.1/users/show.json?screen_name=' . $accessToken['screen_name'], [
+                'auth' => 'oauth'
+            ]);
+            $profile = json_decode($profileResponse->getBody(), true);
 
             // Step 5a. Link user accounts.
             if ($request->header('Authorization'))
@@ -400,8 +419,7 @@ public function twitter(Request $request)
      */
     public function foursquare(Request $request)
     {
-        $accessTokenUrl = 'https://foursquare.com/oauth2/access_token';
-        $userProfileUrl = 'https://api.foursquare.com/v2/users/self';
+        $client = new GuzzleHttp\Client();
 
         $params = [
             'code' => $request->input('code'),
@@ -411,21 +429,21 @@ public function foursquare(Request $request)
             'grant_type' => 'authorization_code',
         ];
 
-        $client = new GuzzleHttp\Client();
-
         // Step 1. Exchange authorization code for access token.
-        $accessTokenResponse = $client->post($accessTokenUrl, ['body' => $params]);
-        $accessToken = $accessTokenResponse->json()['access_token'];
-
-        $profileParams = [
-            'v' => '20140806',
-            'oauth_token' => $accessToken
-        ];
+        $accessTokenResponse = $client->request('POST', 'https://foursquare.com/oauth2/access_token', [
+            'form_params' => $params
+        ]);
+        $accessToken = json_decode($accessTokenResponse->getBody(), true);
 
         // Step 2. Retrieve profile information about the current user.
-        $profileResponse = $client->get($userProfileUrl, ['query' => $profileParams]);
+        $profileResponse = $client->request('GET', 'https://api.foursquare.com/v2/users/self', [
+            'query' => [
+                'v' => '20140806',
+                'oauth_token' => $accessToken['access_token']
+            ]
+        ]);
 
-        $profile = $profileResponse->json()['response']['user'];
+        $profile = json_decode($profileResponse->getBody(), true)['response']['user'];
 
         // Step 3a. If user is already signed in then link accounts.
         if ($request->header('Authorization'))
@@ -470,7 +488,7 @@ public function foursquare(Request $request)
      */
     public function instagram(Request $request)
     {
-        $accessTokenUrl = 'https://api.instagram.com/oauth/access_token';
+        $client = new GuzzleHttp\Client();
 
         $params = [
             'code' => $request->input('code'),
@@ -480,13 +498,11 @@ public function instagram(Request $request)
             'grant_type' => 'authorization_code',
         ];
 
-        $client = new GuzzleHttp\Client();
-
         // Step 1. Exchange authorization code for access token.
-        $accessTokenResponse = $client->post($accessTokenUrl, ['body' => $params]);
-        $accessToken = $accessTokenResponse->json();
-
-
+        $accessTokenResponse = $client->request('POST', 'https://api.instagram.com/oauth/access_token', [
+            'body' => $params
+        ]);
+        $accessToken = json_decode($accessTokenResponse->getBody(), true);
 
         // Step 2a. If user is already signed in then link accounts.
         if ($request->header('Authorization'))
@@ -531,8 +547,7 @@ public function instagram(Request $request)
      */
     public function github(Request $request)
     {
-        $accessTokenUrl = 'https://github.com/login/oauth/access_token';
-        $userApiUrl = 'https://api.github.com/user';
+        $client = new GuzzleHttp\Client();
 
         $params = [
             'code' => $request->input('code'),
@@ -541,22 +556,20 @@ public function github(Request $request)
             'redirect_uri' => $request->input('redirectUri')
         ];
 
-        $client = new GuzzleHttp\Client();
-
         // Step 1. Exchange authorization code for access token.
-        $accessTokenResponse = $client->get($accessTokenUrl, ['query' => $params]);
+        $accessTokenResponse = $client->request('GET', 'https://github.com/login/oauth/access_token', [
+            'query' => $params
+        ]);
 
         $accessToken = array();
         parse_str($accessTokenResponse->getBody(), $accessToken);
 
-        $headers = array('User-Agent' => 'Satellizer');
-
         // Step 2. Retrieve profile information about the current user.
-        $userApiResponse = $client->get($userApiUrl, [
-            'headers' => $headers,
+        $profileResponse = $client->request('GET', 'https://api.github.com/user', [
+            'headers' => ['User-Agent' => 'Satellizer'],
             'query' => $accessToken
         ]);
-        $profile = $userApiResponse->json();
+        $profile = json_decode($profileResponse->getBody(), true);
 
         // Step 3a. If user is already signed in then link accounts.
         if ($request->header('Authorization'))

examples/server/php/app/Http/Controllers/Controller.php

@@ -1,11 +1,11 @@
 <?php namespace App\Http\Controllers;
 
-use Illuminate\Foundation\Bus\DispatchesCommands;
+use Illuminate\Foundation\Bus\DispatchesJobs;
 use Illuminate\Routing\Controller as BaseController;
 use Illuminate\Foundation\Validation\ValidatesRequests;
 
 abstract class Controller extends BaseController {
 
-	use DispatchesCommands, ValidatesRequests;
+	use DispatchesJobs, ValidatesRequests;
 
 }

examples/server/php/app/Providers/AuthServiceProvider.php

@@ -0,0 +1,31 @@
+<?php
+
+namespace App\Providers;
+
+use Illuminate\Contracts\Auth\Access\Gate as GateContract;
+use Illuminate\Foundation\Support\Providers\AuthServiceProvider as ServiceProvider;
+
+class AuthServiceProvider extends ServiceProvider
+{
+    /**
+     * The policy mappings for the application.
+     *
+     * @var array
+     */
+    protected $policies = [
+        'App\Model' => 'App\Policies\ModelPolicy',
+    ];
+
+    /**
+     * Register any application authentication / authorization services.
+     *
+     * @param  \Illuminate\Contracts\Auth\Access\Gate  $gate
+     * @return void
+     */
+    public function boot(GateContract $gate)
+    {
+        $this->registerPolicies($gate);
+
+        //
+    }
+}

examples/server/php/bootstrap/cache/.gitignore

@@ -0,0 +1,2 @@
+*
+!.gitignore