170 lines
6.4 KiB
PHP
170 lines
6.4 KiB
PHP
<?php
|
||
|
||
namespace app\service;
|
||
|
||
use GuzzleHttp\Client;
|
||
use think\facade\Db as ThinkDb;
|
||
use app\model\ThirdUserAdvertiser;
|
||
|
||
class GoogleOAuthService
|
||
{
|
||
public function getAuthUrl()
|
||
{
|
||
$clientId = getenv('GOOGLE_CLIENT_ID');
|
||
$redirectUri = getenv('GOOGLE_REDIRECT_URI');
|
||
$scope = 'https://www.googleapis.com/auth/adwords';
|
||
$responseType = 'code';
|
||
$accessType = 'offline';
|
||
|
||
// $state = 'state_parameter_passthrough_value'; // 可选,保护防止CSRF
|
||
// 生成随机的state参数,防止CSRF攻击
|
||
// $state = bin2hex(random_bytes(16)); // 生成一个随机字符串
|
||
// 将state保存到会话或数据库中,稍后验证
|
||
// $_SESSION['oauth_state'] = $state; // 使用PHP会话来保存state
|
||
|
||
// $authUrl = "https://accounts.google.com/o/oauth2/v2/auth?client_id=$clientId&redirect_uri=$redirectUri&scope=$scope&response_type=$responseType&state=$state";
|
||
$authUrl = "https://accounts.google.com/o/oauth2/v2/auth?client_id=$clientId&redirect_uri=$redirectUri&scope=$scope&response_type=$responseType&access_type=$accessType";
|
||
|
||
return $authUrl;
|
||
}
|
||
|
||
|
||
public function getRefreshToken($authCode)
|
||
{
|
||
$client = new Client();
|
||
$response = $client->post('https://oauth2.googleapis.com/token', [
|
||
'form_params' => [
|
||
'code' => $authCode,
|
||
'client_id' => getenv('GOOGLE_CLIENT_ID'),
|
||
'client_secret' => getenv('GOOGLE_CLIENT_SECRET'),
|
||
'redirect_uri' => getenv('GOOGLE_REDIRECT_URI'),
|
||
'grant_type' => 'authorization_code',
|
||
],
|
||
]);
|
||
|
||
return json_decode($response->getBody(), true);
|
||
}
|
||
|
||
public function saveRefreshToken($refreshToken, $accessToken)
|
||
{
|
||
// 使用ThinkORM保存数据到bps_third_user表
|
||
// $thirdUser = new \App\Models\ThirdUser();
|
||
// $thirdUser->access_token = $accessToken;
|
||
// $thirdUser->is_default = true;
|
||
// $thirdUser->random_code = bin2hex(random_bytes(16)); // 生成随机码
|
||
// $thirdUser->third_type = 'google';
|
||
// $thirdUser->user_id = $userId;
|
||
// $thirdUser->save();
|
||
$data = [
|
||
'access_token' => $refreshToken,
|
||
'is_default' => 't',
|
||
'third_type' => 'google',
|
||
];
|
||
$tableName = 'bps_third_user';
|
||
$tableName = getenv('DB_PG_SCHEMA') ? getenv('DB_PG_SCHEMA') . '.' . $tableName : 'bps' . $tableName;
|
||
|
||
$sql = "
|
||
INSERT INTO {$tableName}
|
||
(access_token, is_default, third_type)
|
||
VALUES (:access_token, :is_default, :third_type)
|
||
ON CONFLICT (user_id)
|
||
DO UPDATE SET
|
||
access_token = EXCLUDED.access_token,
|
||
is_default = EXCLUDED.is_default,
|
||
";
|
||
// $sql = "
|
||
// INSERT INTO {$tableName}
|
||
// (access_token, is_default, random_code, third_type, user_id, facebook_user_id)
|
||
// VALUES (:access_token, :is_default, :random_code, :third_type, :user_id, :facebook_user_id)
|
||
// ON CONFLICT (user_id)
|
||
// DO UPDATE SET
|
||
// access_token = EXCLUDED.access_token,
|
||
// is_default = EXCLUDED.is_default,
|
||
// random_code = EXCLUDED.random_code,
|
||
// third_type = EXCLUDED.third_type,
|
||
// ";
|
||
|
||
ThinkDb::execute($sql, $data);
|
||
}
|
||
|
||
public function updateRefreshToken($refreshToken)
|
||
{
|
||
$customer_id = getenv('GOOGLE_ADS_CUSTOMER_ID');
|
||
//暂时update进行绑定
|
||
$tableName = "bps.bps_third_user";
|
||
// $sql = "UPDATE {$tableName} SET access_token = :access_token WHERE random_code = :random_code";
|
||
$sql = "UPDATE {$tableName} SET access_token = :access_token WHERE user_id = :user_id";
|
||
$data = [
|
||
'access_token' => $refreshToken, // 这里的 $accessToken 是您想要匹配的值
|
||
'user_id' => $customer_id, // 这里的 $accessToken 是您想要匹配的值
|
||
];
|
||
// 执行 SQL 语句
|
||
$result = ThinkDb::execute($sql, $data);
|
||
}
|
||
|
||
|
||
public function revokeToken($accessToken)
|
||
{
|
||
$client = new Client();
|
||
$client->post('https://oauth2.googleapis.com/revoke', [
|
||
'form_params' => [
|
||
'token' => $accessToken,
|
||
],
|
||
]);
|
||
|
||
// 在数据库中删除或标记该`access_token(其实是refresh_token)`为无效
|
||
// ThirdUserModel::where('access_token', $accessToken)->delete();
|
||
$tableName = "bps.bps_third_user";
|
||
$sql = "UPDATE {$tableName} SET access_token = '' WHERE access_token = :access_token";
|
||
|
||
$data = [
|
||
'access_token' => $accessToken // 这里的 $accessToken 是您想要匹配的值
|
||
];
|
||
|
||
// 执行 SQL 语句
|
||
ThinkDb::execute($sql, $data);
|
||
}
|
||
|
||
public function useRefreshToken($refreshToken)
|
||
{
|
||
$client = new Client();
|
||
$response = $client->post('https://oauth2.googleapis.com/token', [
|
||
'form_params' => [
|
||
'refresh_token' => $refreshToken,
|
||
'client_id' => getenv('GOOGLE_CLIENT_ID'),
|
||
'client_secret' => getenv('GOOGLE_CLIENT_SECRET'),
|
||
'grant_type' => 'refresh_token',
|
||
],
|
||
]);
|
||
|
||
$data = json_decode($response->getBody(), true);
|
||
return $data['access_token'];
|
||
}
|
||
|
||
|
||
/**
|
||
* 批量获取全部Google广告账号数据
|
||
*
|
||
*/
|
||
public function getGoogleAdCustomers($options = [])
|
||
{
|
||
// 获取符合条件的客户ID数组
|
||
$customers = ThirdUserAdvertiser::alias('tua')
|
||
->join('bps.bps_third_user tu', 'tua.doc_ = tu.id') // 连接 bps_third_user 表
|
||
->where('tu.third_type', 'google') // 筛选 third_type 为 google 的记录
|
||
->field('tua.advertiser_id') // 获取 advertiser_id 字段
|
||
->select(); // 执行查询
|
||
|
||
// 如果没有找到符合条件的广告主,抛出异常
|
||
if ($customers->isEmpty()) {
|
||
return [];
|
||
// throw new ApiException('No customers found for google third type');
|
||
}
|
||
|
||
// 转换为简单的数组(提取 advertiser_id)
|
||
return $customers->column('advertiser_id');
|
||
|
||
}
|
||
|
||
|
||
} |