Accueil Explorer Aide
S'inscrire Connexion
aj
/
chamilo-lms2
1
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Aborescence: 0b42a6a88c
Branches Tags
chamilo-lms2
/
plugin
/
ims_lti
/
outcome_service.php

outcome_service.php 1.7 KB
Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869 
  1. <?php
    2. 

  2. /* For license terms, see /license.txt */
    3. 

  3. 

  4. use Chamilo\PluginBundle\Entity\ImsLti\ImsLtiTool;
    5. 

  5. 

  6. require_once __DIR__.'/../../main/inc/global.inc.php';
    7. 

  7. 

  8. header('Content-Type: application/xml');
    9. 

  9. 

  10. $url = api_get_path(WEB_PATH).'lti/os';
    11. 

  11. 

  12. $em = Database::getManager();
    13. 

  13. $toolRepo = $em->getRepository('ChamiloPluginBundle:ImsLti\ImsLtiTool');
    14. 

  14. 

  15. $headers = OAuthUtil::get_headers();
    16. 

  16. 

  17. if (empty($headers['Authorization'])) {
    18. 

  18.     error_log('Authorization header missed');
    19. 

  19. 

  20.     exit;
    21. 

  21. }
    22. 

  22. 

  23. $authParams = OAuthUtil::split_header($headers['Authorization']);
    24. 

  24. 

  25. if (empty($authParams) || empty($authParams['oauth_consumer_key']) || empty($authParams['oauth_signature'])) {
    26. 

  26.     error_log('Authorization params not found');
    27. 

  27. 

  28.     exit;
    29. 

  29. }
    30. 

  30. 

  31. $tools = $toolRepo->findBy(['consumerKey' => $authParams['oauth_consumer_key']]);
    32. 

  32. $toolIsFound = false;
    33. 

  33. 

  34. /** @var ImsLtiTool $tool */
    35. 

  35. foreach ($tools as $tool) {
    36. 

  36.     $consumer = new OAuthConsumer($tool->getConsumerKey(), $tool->getSharedSecret());
    37. 

  37.     $hmacMethod = new OAuthSignatureMethod_HMAC_SHA1();
    38. 

  38. 

  39.     $request = OAuthRequest::from_request('POST', $url);
    40. 

  40.     $request->sign_request($hmacMethod, $consumer, '');
    41. 

  41.     $signature = $request->get_parameter('oauth_signature');
    42. 

  42. 

  43.     if ($signature === $authParams['oauth_signature']) {
    44. 

  44.         $toolIsFound = true;
    45. 

  45. 

  46.         break;
    47. 

  47.     }
    48. 

  48. }
    49. 

  49. 

  50. if (false === $toolIsFound) {
    51. 

  51.     error_log('Tool not found. Signature is not valid');
    52. 

  52. 

  53.     exit;
    54. 

  54. }
    55. 

  55. 

  56. $body = file_get_contents('php://input');
    57. 

  57. $bodyHash = base64_encode(sha1($body, true));
    58. 

  58. 

  59. if ($bodyHash !== $authParams['oauth_body_hash']) {
    60. 

  60.     error_log('Authorization request not valid');
    61. 

  61. 

  62.     exit;
    63. 

  63. }
    64. 

  64. 

  65. $plugin = ImsLtiPlugin::create();
    66. 

  66. 

  67. $process = $plugin->processServiceRequest();
    68. 

  68. 

  69. echo $process;
    70.