PHPackages priorist/zf-reverseoauth2 - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Authentication & Authorization](/categories/authentication) 4. / 5. priorist/zf-reverseoauth2 ActiveModule[Authentication & Authorization](/categories/authentication) priorist/zf-reverseoauth2 ========================= Oauth2 client for zf2. Facebook, github and google is supported. 1137PHP Since Feb 5Pushed 9y ago2 watchersCompare [ Source](https://github.com/priorist/ZF-ReverseOAuth2)[ Packagist](https://packagist.org/packages/priorist/zf-reverseoauth2)[ RSS](/packages/priorist-zf-reverseoauth2/feed)WikiDiscussions master Synced 1mo ago READMEChangelogDependenciesVersions (2)Used By (0) ReverseOAuth2 ============= [](#reverseoauth2) Another OAuth2 client for ZF2. It provides clients for github, google, facebook and linkedin others soon to come. The library is kept as simple as possible, it does not provide routes or controllers. Demo ---- [](#demo) Minimum rights are used. If you feel intimidated revoke the rights. Click the login button. Github: Google: Facebook: Installation with Composer -------------------------- [](#installation-with-composer) 1. Add this project in your `composer.json`: ``` "require": { "priorist/zf-reverseoauth2": "dev-master", } ``` 2. Fetch the repository with composer: ``` $ php composer.phar update ``` 3. Enable it in your `config/application.config.php` file: ``` return array( 'modules' => array( // ... 'ReverseOAuth2', ), // ... ); ``` Usage ----- [](#usage) As usual add it to your application.config.php 'ReverseOAuth2'. Copy & rename the `config/reverseoauth2.local.php.dist` to your autoload folder and fill the information needed. ### In your controller/action do: [](#in-your-controlleraction-do) ``` public function callbackAction() { $me = $this->getServiceLocator()->get('ReverseOAuth2\Google'); //$me = $this->getServiceLocator()->get('ReverseOAuth2\Github'); //$me = $this->getServiceLocator()->get('ReverseOAuth2\Facebook'); //$me = $this->getServiceLocator()->get('ReverseOAuth2\LinkedIn'); if (strlen($this->params()->fromQuery('code')) > 10) { if($me->getToken($this->request)) { $token = $me->getSessionToken(); // token in session } else { $token = $me->getError(); // last returned error (array) } $info = $me->getInfo(); } else { $url = $me->getUrl(); } return array('token' => $token, 'info' => $info, 'url' => $url); } ``` The action name depends on your settings. getUrl() will return the url where you should redirect the user, there is no automatic redirection do it yourself. ### Client Configuration [](#client-configuration) Beside the configuration options in `module.config.php` and `reverseoath2.local.php` you can change the client configuration on runtime. ``` public function callbackAction() { $me = $this->getServiceLocator()->get('ReverseOAuth2\Google'); //$me = $this->getServiceLocator()->get('ReverseOAuth2\Github'); //$me = $this->getServiceLocator()->get('ReverseOAuth2\Facebook'); //$me = $this->getServiceLocator()->get('ReverseOAuth2\LinkedIn'); $me->getOptions()->setScope(array('email', 'user')); $me->getOptions()->setAuthUri('http://google.com/'); $me->getOptions()->setTokenUri('http://google.com/'); $me->getOptions()->setInfoUri('http://google.com/'); $me->getOptions()->setClientId('my-id.com'); $me->getOptions()->setClientSecret('my-secret'); $me->getOptions()->setRedirectUri('http://my-server.com/'); } ``` ### The ReverseOAuth2 authentication adapter [](#the-reverseoauth2-authentication-adapter) The module provides also an zend\\authentication\\adapter. ``` public function authGithubAction() // controller action { $me = $this->getServiceLocator()->get('ReverseOAuth2\Github'); $auth = new AuthenticationService(); // zend if (strlen($this->params()->fromQuery('code')) > 10) { if($me->getToken($this->request)) { // if getToken is true, the user has authenticated successfully by the provider, not yet by us. $token = $me->getSessionToken(); // token in session } else { $token = $me->getError(); // last returned error (array) } $adapter = $this->getServiceLocator()->get('ReverseOAuth2\Auth\Adapter'); // added in module.config.php $adapter->setOAuth2Client($me); // $me is the oauth2 client $rs = $auth->authenticate($adapter); // provides an eventManager 'oauth2.success' if (!$rs->isValid()) { foreach ($rs->getMessages() as $message) { echo "$message\n"; } echo 'no valid'; } else { echo 'valid'; } } else { $url = $me->getUrl(); } $view = new ViewModel(array('token' => $token, 'info' => $info, 'url' => $url, 'error' => $me->getError())); return $view; } ``` The adapter also provides an event called `oauth2.success`. Here you can check the data from the client against your user registry. You will be provided with information from the user, token info and provider type. In your module class you could do: ``` public function onBootstrap(Event $e) { /* Some bad code here, only for demo purposes. */ $userTable = new UserTable($e->getApplication()->getServiceManager()->get('Zend\Db\Adapter\Adapter')); // my user table $e->getApplication()->getServiceManager()->get('ReverseOAuth2\Auth\Adapter')->getEventManager() // the the adapters eventmanager ->attach('oauth2.success', //attach to the event function($e) use ($userTable){ $params = $e->getParams(); //print_r($params); so you see whats in if if($user = $userTable->getUserByRemote($params['provider'], $params['info']['id'])) { // check for user from facebook with id 1000 $user->token = $params['token']['access_token']; $expire = (isset($params['token']['expires'])) ? $params['token']['expires'] : 3600; $user->token_valid = new \Zend\Db\Sql\Expression('DATE_ADD(NOW(), INTERVAL '.$expire.' SECOND)'); $user->date_update = new \Zend\Db\Sql\Expression('NOW()'); $userTable->saveUser($user); } else { $user = new User; $user->token = $params['token']['access_token']; $expire = (isset($params['token']['expires'])) ? $params['token']['expires'] : 3600; $user->token_valid = new \Zend\Db\Sql\Expression('DATE_ADD(NOW(), INTERVAL '.$expire.' SECOND)'); $user->date_update = new \Zend\Db\Sql\Expression('NOW()'); $user->date_create = new \Zend\Db\Sql\Expression('NOW()'); $user->remote_source = $params['provider']; $user->remote_id = $params['info']['id']; $user->name = $params['info']['name']; $user->info = \Zend\Json\Encoder::encode($params['info']); $userTable->saveUser($user); } $user = $userTable->getUserByRemote($params['provider'], $params['info']['id']); $params['info'] = $user->getArrayCopy(); $params['info']['info'] = false; // here the params info is rewitten. The result object returned from the auth object will have the db row. $params['code'] = \Zend\Authentication\Result::FAILURE; // this would deny authentication. default is \Zend\Authentication\Result::SUCCESS. }); } ``` TODO ---- [](#todo) - Add other clients - Write some decent documentation. - Demo module is on it's way. ### Health Score 23 — LowBetter than 27% of packages Maintenance20 Infrequent updates — may be unmaintained Popularity12 Limited adoption so far Community12 Small or concentrated contributor base Maturity43 Maturing project, gaining track record Bus Factor1 Top contributor holds 50% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Community Maintainers ![](https://www.gravatar.com/avatar/994357c5469654d3d187a918046a1700c502c4cd2298dd417b4819ca774c37fa?d=identicon)[priorist](/maintainers/priorist) --- Top Contributors [![intellent](https://avatars.githubusercontent.com/u/2074113?v=4)](https://github.com/intellent "intellent (5 commits)")[![machek](https://avatars.githubusercontent.com/u/2378904?v=4)](https://github.com/machek "machek (2 commits)")[![Thinkscape](https://avatars.githubusercontent.com/u/270528?v=4)](https://github.com/Thinkscape "Thinkscape (2 commits)")[![serusko](https://avatars.githubusercontent.com/u/5665925?v=4)](https://github.com/serusko "serusko (1 commits)") ### Embed Badge ![Health badge](/badges/priorist-zf-reverseoauth2/health.svg) ``` [![Health](https://phpackages.com/badges/priorist-zf-reverseoauth2/health.svg)](https://phpackages.com/packages/priorist-zf-reverseoauth2) ``` ### Alternatives [namshi/jose JSON Object Signing and Encryption library for PHP. 1.8k99.6M101](/packages/namshi-jose)[league/oauth1-client OAuth 1.0 Client Library 99698.8M106](/packages/league-oauth1-client)[bezhansalleh/filament-shield Filament support for `spatie/laravel-permission`. 2.8k2.9M88](/packages/bezhansalleh-filament-shield)[gesdinet/jwt-refresh-token-bundle Implements a refresh token system over Json Web Tokens in Symfony 70516.4M35](/packages/gesdinet-jwt-refresh-token-bundle)[league/oauth2-google Google OAuth 2.0 Client Provider for The PHP League OAuth2-Client 41721.2M118](/packages/league-oauth2-google)[illuminate/auth The Illuminate Auth package. 9327.3M1.0k](/packages/illuminate-auth) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)