USA.
*/
-#include <QtGui>
+#include <qjson/parser.h>
+
#include <QtDebug>
#include <QDateTime>
+#include <QNetworkReply>
+#include <QSettings>
+#include <QStringList>
+#include <QVariantMap>
+#include <QWebView>
#ifdef Q_WS_MAEMO_5
#include <QMaemo5InformationBox>
#endif // Q_WS_MAEMO_5
+#include "common.h"
+#include "../error.h"
+#include "network/networkcookiejar.h"
+#include "situareservice/situarecommon.h"
+#include "ui/mainwindow.h"
+
#include "facebookauthentication.h"
-#include "facebookcommon.h"
-#include "parser.h"
-
-FacebookAuthentication::FacebookAuthentication(QWidget *parent)
- : QMainWindow(parent),
- m_email(),
- m_loginAttempts(0),
- m_password(),
- m_refresh(0),
- m_webView(0)
+
+const QString FB_LOGIN_SUCCESS_URL = "http://www.facebook.com/connect/login_success.html";
+const QString FB_LOGIN_URL = "https://www.facebook.com/login.php";
+
+const QString URL_SESSION_PARAMETER_BEGIN("session={");
+
+FacebookAuthentication::FacebookAuthentication(MainWindow *mainWindow, QObject *parent)
+ : QObject(parent),
+ m_loggedIn(false),
+ m_browser(0),
+ m_mainWindow(mainWindow)
{
qDebug() << __PRETTY_FUNCTION__;
+}
- m_mainlayout = new QHBoxLayout;
-
- connect(this, SIGNAL(loginFailure()),
- this, SLOT(loginFailed()));
+void FacebookAuthentication::browserDestroyed()
+{
+ qWarning() << __PRETTY_FUNCTION__;
- readCredentials(m_loginCredentials);
+ m_mainWindow->toggleProgressIndicator(false);
+ m_browser = 0;
}
-FacebookAuthentication::~FacebookAuthentication()
+void FacebookAuthentication::clearAccountInformation(bool clearUserInformation)
{
- qDebug() << __PRETTY_FUNCTION__;
+ /// @todo Parameter not needed
+ qWarning() << __PRETTY_FUNCTION__ << "clearUserInformation:" << clearUserInformation;
+
+ if (clearUserInformation) {
+ NetworkCookieJar::clearCookiesSetting();
+ QSettings settings(SETTINGS_ORGANIZATION_NAME, SETTINGS_APPLICATION_NAME);
+ settings.remove(SETTINGS_AUTOMATIC_UPDATE_ENABLED);
+ settings.remove(SETTINGS_AUTOMATIC_UPDATE_INTERVAL);
+ }
+}
- if(m_webView)
- delete m_webView;
+void FacebookAuthentication::destroyLogin()
+{
+ qWarning() << __PRETTY_FUNCTION__;
- delete m_mainlayout;
+ m_mainWindow->destroyLoginDialog();
+ m_browser->deleteLater();
}
-void FacebookAuthentication::loginDialogDone(const QString &email, const QString &password)
+bool FacebookAuthentication::isLoggedIn() const
{
- qDebug() << __PRETTY_FUNCTION__;
+ qWarning() << __PRETTY_FUNCTION__;
- m_email = email;
- m_password = password;
+ return m_loggedIn;
}
-void FacebookAuthentication::start()
+void FacebookAuthentication::login()
{
- qDebug() << __PRETTY_FUNCTION__;
+ qWarning() << __PRETTY_FUNCTION__;
- if (!verifyCredentials(m_loginCredentials)) {
+ if (!m_browser) {
+ m_browser = new QWebView(m_mainWindow);
- m_webView = new QWebView;
- m_loginDialog = new LoginDialog(this);
+ if (m_browser) {
+ m_browser->page()->networkAccessManager()->setCookieJar(new NetworkCookieJar());
- connect(m_webView, SIGNAL(urlChanged(const QUrl &)),
- this, SLOT(updateCredentials(const QUrl &)));
- connect(m_webView, SIGNAL(loadFinished(bool)),
- this, SLOT(loadDone(bool)));
+ connect(m_browser, SIGNAL(urlChanged(QUrl)),
+ this, SLOT(urlChanged(QUrl)));
- connect(m_loginDialog, SIGNAL(loginDialogDone(QString,QString)),
- this, SLOT(loginDialogDone(QString,QString)));
+ connect(m_browser, SIGNAL(destroyed(QObject*)),
+ this, SLOT(browserDestroyed()));
- if(m_loginDialog->exec() != QDialog::Accepted) {
- // if login dialog was canceled we need to stop processing webview
- // stop and disconnect m_webView;
- m_webView->stop();
- disconnect(m_webView, SIGNAL(loadFinished(bool)),
- this, SLOT(loadDone(bool)));
- disconnect(m_webView, SIGNAL(urlChanged(const QUrl &)),
- this, SLOT(updateCredentials(const QUrl &)));
+ connect(m_browser->page()->networkAccessManager(),
+ SIGNAL(sslErrors(QNetworkReply*, QList<QSslError>)),
+ this, SLOT(sslErrors(QNetworkReply*, QList<QSslError>)));
- emit quitSituare();
+ connect(m_browser->page()->networkAccessManager(), SIGNAL(finished(QNetworkReply*)),
+ this, SLOT(networkReplyHandler(QNetworkReply*)));
}
- QStringList list;
- list.append(FACEBOOK_LOGINBASE);
- list.append(SITUARE_PUBLIC_FACEBOOKAPI_KEY);
- list.append(INTERVAL1);
- list.append(SITUARE_LOGIN_SUCCESS);
- list.append(INTERVAL2);
- list.append(SITUARE_LOGIN_FAILURE);
- list.append(FACEBOOK_LOGIN_ENDING);
-
- m_webView->load(formLoginPageUrl(list));
- toggleProgressIndicator(true);
- m_refresh = true;
- setCentralWidget(m_webView);
- m_webView->hide();
- this->show();
}
- else
- emit credentialsReady(m_loginCredentials);
-}
-void FacebookAuthentication::loadDone(bool done)
-{
- qDebug() << __PRETTY_FUNCTION__;
+ if (m_browser) {
+ QString url = FB_LOGIN_URL + "?";
+ url.append("api_key=" + API_KEY +"&");
+ url.append("display=touch&");
+ url.append("fbconnect=1&");
+ url.append("next=" + FB_LOGIN_SUCCESS_URL + "&");
+ url.append("return_session=1&");
+ url.append("session_version=3&");
+ url.append("v=1.0&");
+ url.append("req_perms=publish_stream");
- // for the first time the login page is opened, we need to refresh it to get cookies working
- if(m_refresh) {
- QStringList list;
- list.append(FACEBOOK_LOGINBASE);
- list.append(SITUARE_PUBLIC_FACEBOOKAPI_KEY);
- list.append(INTERVAL1);
- list.append(SITUARE_LOGIN_SUCCESS);
- list.append(INTERVAL2);
- list.append(SITUARE_LOGIN_FAILURE);
- list.append(FACEBOOK_LOGIN_ENDING);
-
- m_webView->load(formLoginPageUrl(list));
- m_refresh = false;
- }
+ m_browser->load(QUrl(url));
- if (done)
- {
- QWebFrame* frame = m_webView->page()->currentFrame();
- if (frame!=NULL)
- {
- // set email box
- QWebElementCollection emailCollection = frame->findAllElements("input[name=email]");
-
- foreach (QWebElement element, emailCollection) {
- element.setAttribute("value", m_email.toAscii());
- }
- // set password box
- QWebElementCollection passwordCollection = frame->findAllElements("input[name=pass]");
- foreach (QWebElement element, passwordCollection) {
- element.setAttribute("value", m_password.toAscii());
- }
- // find connect button
- QWebElementCollection buttonCollection = frame->findAllElements("input[name=login]");
- foreach (QWebElement element, buttonCollection)
- {
- QPoint pos(element.geometry().center());
-
- // send a mouse click event to the web page
- QMouseEvent event0(QEvent::MouseButtonPress, pos, Qt::LeftButton, Qt::LeftButton,
- Qt::NoModifier);
- QApplication::sendEvent(m_webView->page(), &event0);
- QMouseEvent event1(QEvent::MouseButtonRelease, pos, Qt::LeftButton, Qt::LeftButton,
- Qt::NoModifier);
- QApplication::sendEvent(m_webView->page(), &event1);
- }
- }
+ m_mainWindow->toggleProgressIndicator(true);
}
}
-void FacebookAuthentication::loginFailed()
+void FacebookAuthentication::logOut(bool clearUserInformation)
{
- qDebug() << __PRETTY_FUNCTION__;
-
- m_email.clear();
- m_password.clear();
-
- toggleProgressIndicator(false);
+ qWarning() << __PRETTY_FUNCTION__;
-#ifdef Q_WS_MAEMO_5
- QMaemo5InformationBox::information(this, tr("Invalid E-mail address or password"),
- QMaemo5InformationBox::NoTimeout);
+ clearAccountInformation(clearUserInformation);
+ m_loggedIn = false;
+ emit loggedOut();
+}
-#endif // Q_WS_MAEMO_5
+void FacebookAuthentication::networkReplyHandler(QNetworkReply *reply)
+{
+ qWarning() <<__PRETTY_FUNCTION__;
- if(m_loginDialog->exec() != QDialog::Accepted) {
- // if login dialog was canceled we need to stop processing webview
- // stop and disconnect m_webView;
- m_webView->stop();
- disconnect(m_webView, SIGNAL(loadFinished(bool)),
- this, SLOT(loadDone(bool)));
- disconnect(m_webView, SIGNAL(urlChanged(const QUrl &)),
- this, SLOT(updateCredentials(const QUrl &)));
+ if ((reply->error() != QNetworkReply::NoError)
+ && (reply->error() != QNetworkReply::OperationCanceledError)) {
- emit quitSituare();
- }
- else {
- // re-load login page for webview
- toggleProgressIndicator(true);
- QStringList list;
- list.append(FACEBOOK_LOGINBASE);
- list.append(SITUARE_PUBLIC_FACEBOOKAPI_KEY);
- list.append(INTERVAL1);
- list.append(SITUARE_LOGIN_SUCCESS);
- list.append(INTERVAL2);
- list.append(SITUARE_LOGIN_FAILURE);
- list.append(FACEBOOK_LOGIN_ENDING);
-
- m_webView->load(formLoginPageUrl(list));
+ qCritical() << __PRETTY_FUNCTION__ << "error:" << reply->error() << reply->errorString();
+ emit error(ErrorContext::NETWORK, reply->error());
+ destroyLogin();
}
}
-bool FacebookAuthentication::updateCredentials(const QUrl &url)
+QString FacebookAuthentication::parseSession(const QUrl &url)
{
- qDebug() << __PRETTY_FUNCTION__;
+ qWarning() << __PRETTY_FUNCTION__;
- bool found = false;
+ const QString END("}");
- if (url.isValid()){
- qDebug() << "url is valid";
+ QString urlString = url.toString();
- QString callbackUrl = url.toString();
- qDebug() << "callbackUrl: " << callbackUrl.toAscii();
+ int begin = urlString.indexOf(URL_SESSION_PARAMETER_BEGIN);
+ int end = urlString.indexOf(END, begin);
- if (callbackUrl.indexOf(LOGIN_SUCCESS_REPLY) == 0) {
- qDebug() << "login success";
-
- disconnect(m_webView, SIGNAL(loadFinished(bool)),
- this, SLOT(loadDone(bool)));
- disconnect(m_webView, SIGNAL(urlChanged(const QUrl &)),
- this, SLOT(updateCredentials(const QUrl &)));
-
- // let's find out session credentials
- if(callbackUrl.contains(SESSION_KEY)) {
-
- QJson::Parser parser;
- bool ok;
-
- // split string into string part and json part
- QStringList list = url.toString().split("=");
-
- for(int i=0;i<list.count();i++) {
- // if string starts with json item
- if(list.at(i).startsWith("{")) {
- QByteArray jsonString = list.at(i).toAscii();
- QVariantMap result = parser.parse (jsonString, &ok).toMap();
- if (!ok) {
-
- qFatal("An error occurred during parsing");
- exit (1);
- }
- qDebug() << "Session Key" << result[SESSION_KEY].toString();
- m_loginCredentials.setSessionKey(result[SESSION_KEY].toString());
-
- qDebug() << "userID" << result[USER_ID].toString();
- m_loginCredentials.setUserID(result[USER_ID].toString());
-
- qDebug() << "Expires" << result[EXPIRES].toString();
- m_loginCredentials.setExpires(result[EXPIRES].toString());
-
- qDebug() << "Session Secret" << result[SESSION_SECRET].toString();
- m_loginCredentials.setSessionSecret(result[SESSION_SECRET].toString());
-
- qDebug() << "Signature" << result[SIGNATURE].toString();
- m_loginCredentials.setSig(result[SIGNATURE].toString());
- }
- }
- found = true;
- }
- writeCredentials(m_loginCredentials);
- emit credentialsReady(m_loginCredentials);
- }
- else if ( callbackUrl.indexOf(LOGIN_FAILURE_REPLY) == 0){
- qWarning() << "login failure" << endl;
- qDebug() << callbackUrl;
- ++m_loginAttempts;
- /* emit loginFailure for every second login attemps, since webview loads login
- error page (loadingDone() signal is emitted) and we need to avoid that because
- at this point we don't have new login parameters */
- if(m_loginAttempts % 2) {
- emit loginFailure();
- }
- }
- else if(callbackUrl.indexOf(LOGIN_PAGE) == 0) {
- qDebug() << "correct loginPage";
- }
- else {
- qDebug() << "totally wrong webPage";
- // we should not get a wrong page at this point
- emit loginFailure();
- }
- }
- else {
- qDebug() << " Loading of page failed invalid URL" << endl;
- // we should not get a wrong page at this point
- emit loginFailure();
- return false;
- }
- return found;
+ if ((begin > -1) && (end > -1))
+ return urlString.mid(begin, end - begin + 1);
+ else
+ return QString();
}
-void FacebookAuthentication::writeCredentials(const FacebookCredentials &credentials)
+void FacebookAuthentication::sslErrors(QNetworkReply *reply, const QList<QSslError> &errors)
{
- qDebug() << __PRETTY_FUNCTION__;
- QSettings settings(DIRECTORY_NAME, FILE_NAME);
+ qWarning() << __PRETTY_FUNCTION__;
- settings.setValue(SESSION_KEY, credentials.sessionKey());
- settings.setValue(USER_ID, credentials.userID());
- settings.setValue(EXPIRES, credentials.expires());
- settings.setValue(SESSION_SECRET, credentials.sessionSecret());
- settings.setValue(SIGNATURE, credentials.sig());
+ Q_UNUSED(errors);
+ reply->ignoreSslErrors();
}
-void FacebookAuthentication::readCredentials(FacebookCredentials &credentialsFromFile)
+void FacebookAuthentication::urlChanged(const QUrl &url)
{
- qDebug() << __PRETTY_FUNCTION__;
-
- QSettings settings(DIRECTORY_NAME, FILE_NAME);
-
- credentialsFromFile.setSessionKey(settings.value(SESSION_KEY, ERROR).toString());
- credentialsFromFile.setUserID(settings.value(USER_ID, ERROR).toString());
- credentialsFromFile.setExpires(settings.value(EXPIRES, ERROR).toString());
- credentialsFromFile.setSessionSecret(settings.value(SESSION_SECRET, ERROR).toString());
- credentialsFromFile.setSig(settings.value(SIGNATURE, ERROR).toString());
+ qWarning() << __PRETTY_FUNCTION__ << url.toString();
+
+ const QString WALL_POST_PERMISSION = "publish_stream";
+
+ /*
+ URL changes in different use cases:
+ * Login with cookie failed:
+ 1) http://m.facebook.com/login.php?api_key=cf77865a5070f2c2ba3b52cbf3371579&cancel_url=http://www.facebook.com/connect/login_failure.html&display=touch&fbconnect=1&next=http://www.facebook.com/connect/uiserver.php?app_id=286811277465&next=http%3A%2F%2Fwww.facebook.com%2Fconnect%2Flogin_success.html&display=touch&cancel_url=http%3A%2F%2Fwww.facebook.com%2Fconnect%2Flogin_failure.html&perms=publish_stream&return_session=1&session_version=3&fbconnect=1&canvas=0&legacy_return=1&method=permissions.request&return_session=1&session_version=3&v=1.0&req_perms=publish_stream&app_id=286811277465&refsrc=http://www.facebook.com/login.php&fbb=ra985c5e9
+
+ * Login without cookie, not allowed to publish:
+ 1) http://m.facebook.com/login.php?api_key=cf77865a5070f2c2ba3b52cbf3371579&display=touch&fbconnect=1&next=http://www.facebook.com/connect/uiserver.php?app_id=286811277465&next=http%3A%2F%2Fwww.facebook.com%2Fconnect%2Flogin_success.html&display=touch&perms=publish_stream&return_session=1&session_version=3&fbconnect=1&canvas=0&legacy_return=1&method=permissions.request&return_session=1&session_version=3&v=1.0&req_perms=publish_stream&app_id=286811277465&refsrc=http://www.facebook.com/login.php&fbb=r03cdf104"
+ --> browser dialog is invoked, user enters correct username and password
+ 2) http://www.facebook.com/connect/uiserver.php?app_id=286811277465&next=http://www.facebook.com/connect/login_success.html&display=touch&perms=publish_stream&return_session=1&session_version=3&fbconnect=1&canvas=0&legacy_return=1&method=permissions.request&session={"session_key":"2.isKv9bMtGmylvP1N6Il3IQ__.3600.1289394000-100001006647973","uid":100001006647973,"expires":1289394000,"secret":"PWiqZ9_aJjfKKJT4hJMTqA__","sig":"8f054aeca3c4d81e7efce3b90fb17d7e"}&installed=1&refsrc=http://www.facebook.com/login.php&fbb=rff1cc1be&refid=9&m_sess=sozzGNi5-SOBSb3AU
+ --> click allow
+ 3) http://www.facebook.com/connect/uiserver.php
+ 4) http://www.facebook.com/connect/login_success.html?perms=publish_stream&selected_profiles=100001006647973&session={"session_key":"2.isKv9bMtGmylvP1N6Il3IQ__.3600.1289394000-100001006647973","uid":"100001006647973","expires":1289394000,"secret":"PWiqZ9_aJjfKKJT4hJMTqA__","access_token":"286811277465|2.isKv9bMtGmylvP1N6Il3IQ__.3600.1289394000-100001006647973|bo9YniMczKY7PwlUEy9f40w3v5I","sig":"6b80d6928cf8f61b4c0c59d33d3127b6"}
+
+ * Login without cookie, not allowed to publish:
+ 1) http://m.facebook.com/login.php?api_key=cf77865a5070f2c2ba3b52cbf3371579&display=touch&fbconnect=1&next=http://www.facebook.com/connect/uiserver.php?app_id=286811277465&next=http%3A%2F%2Fwww.facebook.com%2Fconnect%2Flogin_success.html&display=touch&perms=publish_stream&return_session=1&session_version=3&fbconnect=1&canvas=0&legacy_return=1&method=permissions.request&return_session=1&session_version=3&v=1.0&req_perms=publish_stream&app_id=286811277465&refsrc=http://www.facebook.com/login.php&fbb=r3fa0d31d
+ --> browser dialog is invoked, user enters correct username and password
+ 2) http://www.facebook.com/connect/uiserver.php?app_id=286811277465&next=http://www.facebook.com/connect/login_success.html&display=touch&perms=publish_stream&return_session=1&session_version=3&fbconnect=1&canvas=0&legacy_return=1&method=permissions.request&session={"session_key":"2.isKv9bMtGmylvP1N6Il3IQ__.3600.1289394000-100001006647973","uid":100001006647973,"expires":1289394000,"secret":"PWiqZ9_aJjfKKJT4hJMTqA__","sig":"8f054aeca3c4d81e7efce3b90fb17d7e"}&installed=1&refsrc=http://www.facebook.com/login.php&fbb=r29076109&refid=9&m_sess=sozzGNi5-SOBSb3AU
+ --> click deny
+ 3) http://www.facebook.com/connect/uiserver.php
+ 4) http://www.facebook.com/connect/login_success.html?perms&selected_profiles=100001006647973&session={"session_key":"2.isKv9bMtGmylvP1N6Il3IQ__.3600.1289394000-100001006647973","uid":"100001006647973","expires":1289394000,"secret":"PWiqZ9_aJjfKKJT4hJMTqA__","access_token":"286811277465|2.isKv9bMtGmylvP1N6Il3IQ__.3600.1289394000-100001006647973|bo9YniMczKY7PwlUEy9f40w3v5I","sig":"6b80d6928cf8f61b4c0c59d33d3127b6"}
+
+ * Login with cookie succeeded, already allowed to publish:
+ 1) http://www.facebook.com/connect/uiserver.php?app_id=286811277465&next=http://www.facebook.com/connect/login_success.html&display=touch&cancel_url=http://www.facebook.com/connect/login_failure.html&perms=publish_stream&return_session=1&session_version=3&fbconnect=1&canvas=0&legacy_return=1&method=permissions.request&session={"session_key":"2.iHXi5fLKlHktva2R71xSAw__.3600.1289228400-100001006647973","uid":100001006647973,"expires":1289228400,"secret":"q4_Hn5qRdxnVT_qh3ztv5w__","sig":"c9d29ca857bacec48b952e7d2826a3ca"}&fbb=rb28f24e5
+ 2) http://www.facebook.com/connect/login_success.html?perms=publish_stream&selected_profiles=100001006647973&session={"session_key":"2.iHXi5fLKlHktva2R71xSAw__.3600.1289228400-100001006647973","uid":"100001006647973","expires":1289228400,"secret":"q4_Hn5qRdxnVT_qh3ztv5w__","access_token":"286811277465|2.iHXi5fLKlHktva2R71xSAw__.3600.1289228400-100001006647973|LVTHGW82A98SGvv6Fl43DlCrFT0","sig":"8edd8d611047bcd162abbe9983b25a56"}
+ */
+
+ const QString urlString = url.toString();
+ if (!urlString.contains(URL_SESSION_PARAMETER_BEGIN)) {
+ // login page url doesn't contain session
+ /// @todo INVOKE DIALOG ALSO WHEN STOPPED TO PERMISSION PAGE
+ /// @todo case: set cookie, remove situare app, re-login, 1 extra allow page before permissions, redirect from extra page when denying?
+ m_mainWindow->buildLoginDialog(m_browser);
+ } else if (urlString.startsWith(FB_LOGIN_SUCCESS_URL)) {
+ // login succeeded, permissions granted/declined
+ const QString session = parseSession(url);
+ qWarning() << __PRETTY_FUNCTION__ << "login finished, parsed session:" << session;
+ if (!session.isEmpty()) {
+ destroyLogin();
+ m_loggedIn = true;
+ emit loggedIn(session, urlString.contains(WALL_POST_PERMISSION));
+ }
+ }
+ else {
+ qCritical() << __PRETTY_FUNCTION__ << "new url was not recognised, url:" << urlString;
+ }
}
-
- FacebookCredentials FacebookAuthentication::loginCredentials() const
- {
- qDebug() << __PRETTY_FUNCTION__;
- return m_loginCredentials;
- }
-
- bool FacebookAuthentication::verifyCredentials(const FacebookCredentials &credentials) const
- {
- qDebug() << __PRETTY_FUNCTION__;
-
- // if expires value is 0, then credentials are valid forever
- if(credentials.expires() == "0") {
- return true;
- }
- else {
- const QString dateTimeFormat = "dd.MM.yyyy hh:mm:ss";
- QString expires = credentials.expires();
- QDateTime expireTime;
- expireTime.setTime_t(expires.toInt());
- QString expiresString = expireTime.toString(dateTimeFormat);
- qDebug() << expiresString.toAscii();
-
- QDateTime currentTime;
- currentTime = QDateTime::currentDateTime();
- QString currentTimeString = currentTime.toString(dateTimeFormat);
- qDebug() << currentTimeString.toAscii();
-
- return currentTime < expireTime;
- }
- }
-
- QUrl FacebookAuthentication::formLoginPageUrl(const QStringList &urlParts) const
- {
- qDebug() << __PRETTY_FUNCTION__;
-
- return QUrl(urlParts.join(EMPTY));
- }
-
- void FacebookAuthentication::toggleProgressIndicator(bool value)
- {
- qDebug() << __PRETTY_FUNCTION__;
- #ifdef Q_WS_MAEMO_5
- setAttribute(Qt::WA_Maemo5ShowProgressIndicator, value);
- #else
- Q_UNUSED(value);
- #endif // Q_WS_MAEMO_5
- }