token

auth/linkedin/callback.php

@@ -9,8 +9,7 @@
 require_once "./function.php";
 
 session_start();
-
-$state = 'x1Dr3Nu0AaxM1TuLVuGwAJWM';
+$state = $_SESSION['state'];
 
 // step 1: get access token by code
 function getAccessToken($code)
@@ -74,6 +73,8 @@ if ($_GET['state'] != $state) {
     die('hack');
 }
 
-//$access_token = getAccessToken($_GET['code']);
-
+dump($_REQUEST);
 dump($_SESSION);
+
+$access_token = getAccessToken($_GET['code']);
+

auth/linkedin/index.php

@@ -6,15 +6,13 @@
  * Time: 15:17
  */
 
-session_start();
-$_SESSION['auth_name'] = '小小';
-
 require_once "./function.php";
 
 // get_code_url = "https://www.linkedin.com/oauth/v2/authorization?response_type=code&client_id=81cc4t9fuu9bpu&redirect_uri=https%3A%2F%2Ffengyuexingzi.top%2Fauth%2Flinkedin&state=Wf6tYXQ7y86iRulBOC%2FUXraHneM%3D&scope=r_fullprofile%20r_emailaddress%20w_share";
 
-// $state = base64_encode(openssl_random_pseudo_bytes(20));
-$state = 'x1Dr3Nu0AaxM1TuLVuGwAJWM';
+$state = base64_encode(openssl_random_pseudo_bytes(20));
+session_start();
+$_SESSION['$state'] = $state;
 
 function getCodeUrl()
 {