2 Situare - A location system for Facebook
3 Copyright (C) 2010 Ixonos Plc. Authors:
5 Ville Tiensuu - ville.tiensuu@ixonos.com
6 Kaj Wallin - kaj.wallin@ixonos.com
7 Henri Lampela - henri.lampela@ixonos.com
9 Situare is free software; you can redistribute it and/or
10 modify it under the terms of the GNU General Public License
11 version 2 as published by the Free Software Foundation.
13 Situare is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
18 You should have received a copy of the GNU General Public License
19 along with Situare; if not, write to the Free Software
20 Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301,
24 #include <qjson/parser.h>
28 #include <QNetworkReply>
30 #include <QStringList>
31 #include <QVariantMap>
35 #include <QMaemo5InformationBox>
36 #endif // Q_WS_MAEMO_5
40 #include "network/networkcookiejar.h"
41 #include "situareservice/situarecommon.h"
42 #include "ui/mainwindow.h"
44 #include "facebookauthentication.h"
46 const QString FB_LOGIN_SUCCESS_URL = "http://www.facebook.com/connect/login_success.html";
47 const QString FB_LOGIN_URL = "https://www.facebook.com/login.php";
49 const QString URL_SESSION_PARAMETER_BEGIN("session={");
51 FacebookAuthentication::FacebookAuthentication(MainWindow *mainWindow, QObject *parent)
55 m_mainWindow(mainWindow)
57 qDebug() << __PRETTY_FUNCTION__;
60 void FacebookAuthentication::browserDestroyed()
62 qDebug() << __PRETTY_FUNCTION__;
64 m_mainWindow->toggleProgressIndicator(false);
68 void FacebookAuthentication::clearAccountInformation(bool clearUserInformation)
70 /// @todo Parameter not needed
71 qDebug() << __PRETTY_FUNCTION__ << "clearUserInformation:" << clearUserInformation;
73 if (clearUserInformation) {
74 NetworkCookieJar::clearCookiesSetting();
75 QSettings settings(SETTINGS_ORGANIZATION_NAME, SETTINGS_APPLICATION_NAME);
76 settings.remove(SETTINGS_AUTOMATIC_UPDATE_ENABLED);
77 settings.remove(SETTINGS_AUTOMATIC_UPDATE_INTERVAL);
81 void FacebookAuthentication::destroyLogin()
83 qDebug() << __PRETTY_FUNCTION__;
85 m_mainWindow->destroyLoginDialog();
86 m_browser->deleteLater();
89 bool FacebookAuthentication::isLoggedIn() const
91 qDebug() << __PRETTY_FUNCTION__;
96 void FacebookAuthentication::login()
98 qDebug() << __PRETTY_FUNCTION__;
101 m_browser = new QWebView(m_mainWindow);
104 m_browser->page()->networkAccessManager()->setCookieJar(new NetworkCookieJar());
106 connect(m_browser, SIGNAL(urlChanged(QUrl)),
107 this, SLOT(urlChanged(QUrl)));
109 connect(m_browser, SIGNAL(destroyed(QObject*)),
110 this, SLOT(browserDestroyed()));
112 connect(m_browser->page()->networkAccessManager(),
113 SIGNAL(sslErrors(QNetworkReply*, QList<QSslError>)),
114 this, SLOT(sslErrors(QNetworkReply*, QList<QSslError>)));
116 connect(m_browser->page()->networkAccessManager(), SIGNAL(finished(QNetworkReply*)),
117 this, SLOT(networkReplyHandler(QNetworkReply*)));
122 QString url = FB_LOGIN_URL + "?";
123 url.append("api_key=" + API_KEY +"&");
124 url.append("display=touch&");
125 url.append("fbconnect=1&");
126 url.append("next=" + FB_LOGIN_SUCCESS_URL + "&");
127 url.append("return_session=1&");
128 url.append("session_version=3&");
129 url.append("v=1.0&");
130 url.append("req_perms=publish_stream");
132 m_browser->load(QUrl(url));
134 m_mainWindow->toggleProgressIndicator(true);
138 void FacebookAuthentication::logOut(bool clearUserInformation)
140 qDebug() << __PRETTY_FUNCTION__;
142 clearAccountInformation(clearUserInformation);
147 void FacebookAuthentication::networkReplyHandler(QNetworkReply *reply)
149 qDebug() <<__PRETTY_FUNCTION__;
151 if ((reply->error() != QNetworkReply::NoError)
152 && (reply->error() != QNetworkReply::OperationCanceledError)) {
154 qCritical() << __PRETTY_FUNCTION__ << "error:" << reply->error() << reply->errorString();
155 emit error(ErrorContext::NETWORK, reply->error());
160 QString FacebookAuthentication::parseSession(const QUrl &url)
162 qDebug() << __PRETTY_FUNCTION__;
164 const QString END("}");
166 QString urlString = url.toString();
168 int begin = urlString.indexOf(URL_SESSION_PARAMETER_BEGIN);
169 int end = urlString.indexOf(END, begin);
171 if ((begin > -1) && (end > -1))
172 return urlString.mid(begin, end - begin + 1);
177 void FacebookAuthentication::sslErrors(QNetworkReply *reply, const QList<QSslError> &errors)
179 qDebug() << __PRETTY_FUNCTION__;
182 reply->ignoreSslErrors();
185 void FacebookAuthentication::urlChanged(const QUrl &url)
187 qDebug() << __PRETTY_FUNCTION__ << url.toString();
189 const QString WALL_POST_PERMISSION = "publish_stream";
192 URL changes in different use cases:
193 * Login with cookie failed:
194 1) http://m.facebook.com/login.php?api_key=cf77865a5070f2c2ba3b52cbf3371579&cancel_url=http://www.facebook.com/connect/login_failure.html&display=touch&fbconnect=1&next=http://www.facebook.com/connect/uiserver.php?app_id=286811277465&next=http%3A%2F%2Fwww.facebook.com%2Fconnect%2Flogin_success.html&display=touch&cancel_url=http%3A%2F%2Fwww.facebook.com%2Fconnect%2Flogin_failure.html&perms=publish_stream&return_session=1&session_version=3&fbconnect=1&canvas=0&legacy_return=1&method=permissions.request&return_session=1&session_version=3&v=1.0&req_perms=publish_stream&app_id=286811277465&refsrc=http://www.facebook.com/login.php&fbb=ra985c5e9
196 * Login without cookie, not allowed to publish:
197 1) http://m.facebook.com/login.php?api_key=cf77865a5070f2c2ba3b52cbf3371579&display=touch&fbconnect=1&next=http://www.facebook.com/connect/uiserver.php?app_id=286811277465&next=http%3A%2F%2Fwww.facebook.com%2Fconnect%2Flogin_success.html&display=touch&perms=publish_stream&return_session=1&session_version=3&fbconnect=1&canvas=0&legacy_return=1&method=permissions.request&return_session=1&session_version=3&v=1.0&req_perms=publish_stream&app_id=286811277465&refsrc=http://www.facebook.com/login.php&fbb=r03cdf104"
198 --> browser dialog is invoked, user enters correct username and password
199 2) http://www.facebook.com/connect/uiserver.php?app_id=286811277465&next=http://www.facebook.com/connect/login_success.html&display=touch&perms=publish_stream&return_session=1&session_version=3&fbconnect=1&canvas=0&legacy_return=1&method=permissions.request&session={"session_key":"2.isKv9bMtGmylvP1N6Il3IQ__.3600.1289394000-100001006647973","uid":100001006647973,"expires":1289394000,"secret":"PWiqZ9_aJjfKKJT4hJMTqA__","sig":"8f054aeca3c4d81e7efce3b90fb17d7e"}&installed=1&refsrc=http://www.facebook.com/login.php&fbb=rff1cc1be&refid=9&m_sess=sozzGNi5-SOBSb3AU
201 3) http://www.facebook.com/connect/uiserver.php
202 4) http://www.facebook.com/connect/login_success.html?perms=publish_stream&selected_profiles=100001006647973&session={"session_key":"2.isKv9bMtGmylvP1N6Il3IQ__.3600.1289394000-100001006647973","uid":"100001006647973","expires":1289394000,"secret":"PWiqZ9_aJjfKKJT4hJMTqA__","access_token":"286811277465|2.isKv9bMtGmylvP1N6Il3IQ__.3600.1289394000-100001006647973|bo9YniMczKY7PwlUEy9f40w3v5I","sig":"6b80d6928cf8f61b4c0c59d33d3127b6"}
204 * Login without cookie, not allowed to publish:
205 1) http://m.facebook.com/login.php?api_key=cf77865a5070f2c2ba3b52cbf3371579&display=touch&fbconnect=1&next=http://www.facebook.com/connect/uiserver.php?app_id=286811277465&next=http%3A%2F%2Fwww.facebook.com%2Fconnect%2Flogin_success.html&display=touch&perms=publish_stream&return_session=1&session_version=3&fbconnect=1&canvas=0&legacy_return=1&method=permissions.request&return_session=1&session_version=3&v=1.0&req_perms=publish_stream&app_id=286811277465&refsrc=http://www.facebook.com/login.php&fbb=r3fa0d31d
206 --> browser dialog is invoked, user enters correct username and password
207 2) http://www.facebook.com/connect/uiserver.php?app_id=286811277465&next=http://www.facebook.com/connect/login_success.html&display=touch&perms=publish_stream&return_session=1&session_version=3&fbconnect=1&canvas=0&legacy_return=1&method=permissions.request&session={"session_key":"2.isKv9bMtGmylvP1N6Il3IQ__.3600.1289394000-100001006647973","uid":100001006647973,"expires":1289394000,"secret":"PWiqZ9_aJjfKKJT4hJMTqA__","sig":"8f054aeca3c4d81e7efce3b90fb17d7e"}&installed=1&refsrc=http://www.facebook.com/login.php&fbb=r29076109&refid=9&m_sess=sozzGNi5-SOBSb3AU
209 3) http://www.facebook.com/connect/uiserver.php
210 4) http://www.facebook.com/connect/login_success.html?perms&selected_profiles=100001006647973&session={"session_key":"2.isKv9bMtGmylvP1N6Il3IQ__.3600.1289394000-100001006647973","uid":"100001006647973","expires":1289394000,"secret":"PWiqZ9_aJjfKKJT4hJMTqA__","access_token":"286811277465|2.isKv9bMtGmylvP1N6Il3IQ__.3600.1289394000-100001006647973|bo9YniMczKY7PwlUEy9f40w3v5I","sig":"6b80d6928cf8f61b4c0c59d33d3127b6"}
212 * Login with cookie succeeded, already allowed to publish:
213 1) http://www.facebook.com/connect/uiserver.php?app_id=286811277465&next=http://www.facebook.com/connect/login_success.html&display=touch&cancel_url=http://www.facebook.com/connect/login_failure.html&perms=publish_stream&return_session=1&session_version=3&fbconnect=1&canvas=0&legacy_return=1&method=permissions.request&session={"session_key":"2.iHXi5fLKlHktva2R71xSAw__.3600.1289228400-100001006647973","uid":100001006647973,"expires":1289228400,"secret":"q4_Hn5qRdxnVT_qh3ztv5w__","sig":"c9d29ca857bacec48b952e7d2826a3ca"}&fbb=rb28f24e5
214 2) http://www.facebook.com/connect/login_success.html?perms=publish_stream&selected_profiles=100001006647973&session={"session_key":"2.iHXi5fLKlHktva2R71xSAw__.3600.1289228400-100001006647973","uid":"100001006647973","expires":1289228400,"secret":"q4_Hn5qRdxnVT_qh3ztv5w__","access_token":"286811277465|2.iHXi5fLKlHktva2R71xSAw__.3600.1289228400-100001006647973|LVTHGW82A98SGvv6Fl43DlCrFT0","sig":"8edd8d611047bcd162abbe9983b25a56"}
217 const QString urlString = url.toString();
218 if (!urlString.contains(URL_SESSION_PARAMETER_BEGIN)) {
219 // login page url doesn't contain session
220 /// @todo INVOKE DIALOG ALSO WHEN STOPPED TO PERMISSION PAGE
221 /// @todo case: set cookie, remove situare app, re-login, 1 extra allow page before permissions, redirect from extra page when denying?
222 m_mainWindow->buildLoginDialog(m_browser);
223 } else if (urlString.startsWith(FB_LOGIN_SUCCESS_URL)) {
224 // login succeeded, permissions granted/declined
225 const QString session = parseSession(url);
226 qDebug() << __PRETTY_FUNCTION__ << "login finished, parsed session:" << session;
227 if (!session.isEmpty()) {
230 emit loggedIn(session, urlString.contains(WALL_POST_PERMISSION));
234 qCritical() << __PRETTY_FUNCTION__ << "new url was not recognised, url:" << urlString;