Resource icon

[TH] OAuth Integration 1.0.1

No permission to download
Overview History Discussion
GameNet said:
where do I add the OAuth2 client credentials to my other site?
Click to expand...
It would depend entirely on what the other site is, we wouldn't be able to know where to enter the settings in every other site that exists. You would enter them during the setup process of whatever it is you need the OAuth client for. Unless I'm misunderstanding what you're asking or trying to do?
 
mattrogowski said:
It would depend entirely on what the other site is, we wouldn't be able to know where to enter the settings in every other site that exists. You would enter them during the setup process of whatever it is you need the OAuth client for.
Click to expand...
Ok I am using Xenforo 2.2.12 on my other site and do I enter it in OAuth client
 
When trying to install:

Code: 
TypeError: openssl_pkey_get_details(): Argument #1 ($key) must be of type OpenSSLAsymmetricKey, bool given in src\addons\Audentio\API\Setup.php at line 283
openssl_pkey_get_details() in src\addons\Audentio\API\Setup.php at line 283
Audentio\API\Setup->generateDefaultOptionValues() in src\addons\Audentio\API\Setup.php at line 121
Audentio\API\Setup->postInstall() in src\XF\AddOn\AddOn.php at line 544
XF\AddOn\AddOn->postInstall() in src\XF\Admin\Controller\AddOn.php at line 771
XF\Admin\Controller\AddOn->actionFinalize() in src\XF\Mvc\Dispatcher.php at line 352
XF\Mvc\Dispatcher->dispatchClass() in src\XF\Mvc\Dispatcher.php at line 259
XF\Mvc\Dispatcher->dispatchFromMatch() in src\XF\Mvc\Dispatcher.php at line 115
XF\Mvc\Dispatcher->dispatchLoop() in src\XF\Mvc\Dispatcher.php at line 57
XF\Mvc\Dispatcher->run() in src\XF\App.php at line 2483
XF\App->run() in src\XF.php at line 524
XF::runApp() in admin.php at line 13
 
I'm my host. As far as the php logs go, there's nothing. Does it maybe return false because I'm running via IIS?

1682785509674.png

There are some reports about that, albeit being ancient.

Web Server Build :: Openssl_pkey_new() result: FAIL :: Configuration Fix

Purpose: This fix is specifically for people using MS IIS on Windows machines, if you are using apache or some other way to host your sites files… this may...
community.spiceworks.com community.spiceworks.com
github.com

[5.0.11] Cannot enable encryption on Windows · Issue #5079 · owncloud/core

Expected behavior Ability to enable encryption Actual behavior Error upon enabling encryption Steps to reproduce Customer has ownCloud 5.0.11 running on Windows Server 2008 R2 and can not enable en...
github.com github.com
 
Last edited:
It might be because you’re running on Windows. There’s a comment about a config file path needing to be passed in on Windows, we probably don’t support Windows edge cases like this (I didn’t think Windows itself even officially supported PHP any more).
 
That's strange, because, according to phpinfo, OpenSSL is working just fine:
1682786315351.png

Update:
Found the "fix". C:\Program Files\Common Files\SSL\openssl.cnf did not exist. So I copied over PHPs openssl.cnf and it installed.
 
No idea, just going by what the comment says on php.net there. I don't have any Windows machines to test with.

Create a test PHP file and put this in it:

PHP: 
<?php

$configargs = array(
  "config" => "/path/to/openssl.cnf",
  'private_key_bits'=> 2048,
);

// Create the keypair
$res=openssl_pkey_new($configargs);

var_dump($res);

Change /path/to/openssl.cnf to the path from your phpinfo there, then run it in your browser, what does it output?
 
Thanks for your swift responses.

I'm now running in the following error:
Code: 
ErrorException: [E_USER_NOTICE] Key file "file://D:\inetpub\php\temp/*CLIENT ID*.key" permissions are not correct, recommend changing to 600 or 660 instead of 666 src\addons\Audentio\API\vendor\league\oauth2-server\src\CryptKey.php:63

This is most likely because of windows permissions not working as well with thephpleague's OAuth 2 server:
github.com

Key file permissions are not correct · Issue #453 · laravel/passport

I am a Windows user and use Git Bash for my development terminal. I am using PHP version 7.1.7 Default Browser is Chrome Canary or Chrome. After installing Laravel Passport, when I run php artisan ...
github.com github.com
github.com

Public/Private Key Permissions on Windows · Issue #779 · thephpleague/oauth2-server

Dear @alexbilbie , as you have requested in #778 , I can give some more details about my current development machine. I am currently running Windows 8.1 (latest patches installed). As a "developmen...
github.com github.com
github.com

Send CryptKey instance to oauth2 with new permission check disabled. by valeryan · Pull Request #454 · laravel/passport

This will fix #453 that is caused by the changes to thephpleague/oauth2-server from here thephpleague/oauth2-server#776. This disables the new permission check that was added in version 6.0.2 of oa...
github.com github.com

Is there any way this could be remedied on your side, for example with the ability to pass false to $keyPermissionsCheck?

For a quick fix I've simply gone ahead and set it to false in the vendor files, myself.

Also: Is there any more documentation about this? For example an overview about the routed urls used for oauth2? I've gone ahead and skimmed the code a bit for the following results:
Authorization endpoint: /audapi/oauth2/authorize
Token endpoint: /api/audapi-oauth2/token (a bit inconsistent... would have guessed /audapi/oauth2/token

But what is, for example, the user info endpoint? What are the claims that are being returned? Is there any documentation about that? Because it doesn't seem to return any claims at all (let alone claims that I could identify the user with).
 
Last edited:
SeToY said:
But what is, for example, the user info endpoint? What are the claims that are being returned? Is there any documentation about that? Because it doesn't seem to return any claims at all (let alone claims that I could identify the user with).
Click to expand...

The addon doesn’t add any additional endpoints other than the ones for authenticating the user. Once you have an access token you can access the default XF api as that user the same as if you had generated an API key for the user. Just use bearer / token authentication
 
Any chance of getting this working with Xenforo Cloud? Right now it won't let me install it.

"Could not process Audentio-API-1.0.1.zip: The add-on 'OAuth Integration 1.0.1' may not be compatible with XenForo Cloud: An unexpected response was received. Please try again later."
 
Is this when installing via the ACP? Can you open the zip archive on your computer? It depends at which stage of installing you see that as to what may be wrong. You may need to ask the XF Cloud team for more info on what's causing that, as far as I'm aware there's nothing different about this addon compared to any other but we're not familiar with any Cloud-specific restrictions or checks that might be carried out. I imagine it'll be something to do with the key generation or something if there is an incompatibility.
 
Add-ons may be reviewed before being approved for Cloud installations.

I have the ticket and will respond once I have checked it over.
 
Also is it possible to confirm what the token url is,
Code: 
/api/audapi-oauth2/token
isn't working for me as suggested earlier
 
You must log in or register to reply here.
Top Bottom