See Release Notes
Long Term Support Release
<?php // This file is part of Moodle - http://moodle.org/ // // Moodle is free software: you can redistribute it and/or modify // it under the terms of the GNU General Public License as published by // the Free Software Foundation, either version 3 of the License, or // (at your option) any later version. // // Moodle is distributed in the hope that it will be useful, // but WITHOUT ANY WARRANTY; without even the implied warranty of // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the // GNU General Public License for more details. // // You should have received a copy of the GNU General Public License // along with Moodle. If not, see <http://www.gnu.org/licenses/>. /** * Confirm self oauth2 user. * * @package auth_oauth2 * @copyright 2017 Damyon Wiese * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later */ require('../../config.php'); require_once($CFG->libdir . '/authlib.php'); $token = required_param('token', PARAM_RAW); $username = required_param('username', PARAM_USERNAME); $userid = required_param('userid', PARAM_INT); $issuerid = required_param('issuerid', PARAM_INT); $redirect = optional_param('redirect', '', PARAM_LOCALURL); // Where to redirect the browser once the user has been confirmed. $PAGE->set_url('/auth/oauth2/confirm-linkedlogin.php'); $PAGE->set_context(context_system::instance()); if (!\auth_oauth2\api::is_enabled()) { throw new \moodle_exception('notenabled', 'auth_oauth2'); } $confirmed = \auth_oauth2\api::confirm_link_login($userid, $username, $issuerid, $token); if ($confirmed) { // The user has confirmed successfully, let's log them in. if (!$user = get_complete_user_data('id', $userid)) {< print_error('cannotfinduser', '', '', $userid);> throw new \moodle_exception('cannotfinduser', '', '', $userid);}< if (!$user->suspended) { < complete_user_login($user); < < \core\session\manager::apply_concurrent_login_limit($user->id, session_id()); <> if ($user->id == $USER->id) {// Check where to go, $redirect has a higher preference. if (empty($redirect) and !empty($SESSION->wantsurl) ) { $redirect = $SESSION->wantsurl; unset($SESSION->wantsurl); } if (!empty($redirect)) { redirect($redirect); } } $PAGE->navbar->add(get_string("confirmed")); $PAGE->set_title(get_string("confirmed")); $PAGE->set_heading($COURSE->fullname); echo $OUTPUT->header(); echo $OUTPUT->box_start('generalbox centerpara boxwidthnormal boxaligncenter');< echo "<h3>".get_string("thanks").", ". fullname($USER) . "</h3>\n";> echo "<h3>".get_string("thanks").", ". fullname($user) . "</h3>\n";echo "<p>".get_string("confirmed")."</p>\n";> // If $wantsurl and $redirect are empty, then the button will navigate the identical user to the dashboard. echo $OUTPUT->single_button("$CFG->wwwroot/course/", get_string('courses')); > if ($user->id == $USER->id) {echo $OUTPUT->box_end();> } else if (!isloggedin() || isguestuser()) { echo $OUTPUT->footer(); > echo $OUTPUT->single_button(get_login_url(), get_string('login')); exit; > } else { } else { > echo $OUTPUT->single_button("$CFG->wwwroot/login/logout.php", get_string('logout')); \core\notification::error(get_string('confirmationinvalid', 'auth_oauth2')); > }}> // Avoid error if logged-in user visiting the page. > if (!isloggedin()) {redirect("$CFG->wwwroot/");> }