OAuth2 support #205
OAuth2 support #205
Conversation
|
Hi. Thanks for your project. This pull request been a while in review state, may be I need to fix something here? |
|
OK,thanks.
Can you try with *FILTER_SANITIZE_NUMBER_INT* ?
2018-04-09 19:00 GMT+03:00 kpirbhai <[email protected]>:
… filter_input causing an error using AMPPS but not laravel/homestead. Line
267 IntuitAnywhereOauth2.php. If FILTER_VALIDATE_INT is removed then
$realmId is returned correctly. With the validation, $realmId is blank.
—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub
<#205 (comment)>,
or mute the thread
<https://github.com/notifications/unsubscribe-auth/AA4UFHaEsEC3KVwrditOgmMRmCCdITgrks5tm4WdgaJpZM4SqgOp>
.
--
Regards,
Evgeniy Bogdanov
Mobile: +7 (928) 197-26-61
Skype: evgeniy_bogdanov
|
My previous commit was a bit hasty, there is an additional parameter that must be passed before user. The CodeIgniter web connector example passes null for this parameter by default, and that seems to work in my application.
Remove create_function to improve php 7.2 compatibility
… were inadvertantly reported as successes.
|
Has this pull request been merged? Keen to get OAuth 2. Thanks, |
|
@galapogos01 No, it's not, I did not got any feedback about it. |
|
Thanks @ebogdanov. I have just had a look at this and can't work out how to switch my App to using OAuth 2 in the QuickBooks Developer Portal. Maybe they sent me the OAuth deprecation email a bit early because there is nowhere I can enable OAuth 2 in my App. |
|
Galapogos01, I sent email to quickbooks support because I couldn't find the new keys for my app at the developer.intuit.com. The existing account was setup before oauth2 and doesn't have the new keys. Turns out you either have to create a new developer account or migrate your existing account. I created a new account to test this code. I didn't know how to pull the changes, so I screen scraped all he changes from the 14 changed files. Seems to be working OK. I can connect with my new sandbox using oauth2 creds. Any idea when this will be merged? |
|
@galapogos01 If you'll try to create new app, the only one choice is OAuth2. @tangofour |
|
I found a couple of issues when I tried to integrate my changes into the existing auth1.0 app. The config.php was already using $token for the application token in auth1.0. I didn't like clearing out the oauth2 key when using auth1.0 so I added a flag instead. if ( ! $UsingAuth2 ) I can use the same code for oauth1.0 test and production Thanks for making these changes, really helped me out. |
|
I have tried and i cannot get this to work at all. After trying to "connect" to a company in QB, i just get stuck in a continuous loop of selecting a company and then clicking continue... Help? |
|
@Jxckaroo As I understand this can happen if there is problem with DB structure or records in it. quickbooks-php/QuickBooks/IPP/IntuitAnywhereOAuth2.php Can you verify this way, please? |
|
@ebogdanov I have debugged throughout the code and it came down to scopes. I changed this: $quickbooks_oauth_url = $helper->getAuthorizationURL($quickbooks_oauth_url);To this: // Production scopes
// $scope = 'com.intuit.quickbooks.accounting,com.intuit.quickbooks.payment';
// Dev scopes
$scope = 'com.intuit.quickbooks.payment';
$quickbooks_oauth_url = $helper->getAuthorizationURL($quickbooks_oauth_url, $scope);I think this is something to do with the dev apps that QB provide dont have the right scopes available? Or could just be QB account setup, havent managed to try in prod yet. Either way, it doesnt seem to like the default of the accounting scope, which is why i set my own and pass them through. This is the default it doesnt seem to like: public function handle($app_username, $app_tenant, $scope = QuickBooks_IPP_OAuth2Helper::SCOPE_ACCOUNTING, $status = '')Would it not be better to fail and display a failure than defaulting scopes that the user may not have? |
|
@Jxckaroo Thanks for your research and feedback. A bit more info about how to start with Quickbooks API can be found here: https://developer.intuit.com/app/developer/qbo/docs/develop/authentication-and-authorization/oauth-2.0#download-the-oauth-library I'm quoting here all available scopes for reference:
|
|
@ebogdanov No problem - Yes, I got the scope which i needed from the API docs, thanks. Would it bet better if this was handled via failures rather than a default? - Id be more than happy to make the change on your repo and submit a pull request 😄 |
|
@Jxckaroo Sure, you're welcome to send pull request. 👍 |
|
Intuit's news about migration to OAuth2. |
|
Heads-up -- we should have this stuff working sometime next week. |
Thanks @consolibyte . Will there be any migration guide so that as library user we'll know how to update our code as well? |
|
@consolibyte Any updates? |
|
@consolibyte Keith any update? @ebogdanov did Keith accept your pull request? |
|
@ebogdanov I think Keith is referring to non-OAuth2 commits in https://github.com/consolibyte/quickbooks-php/pull/205/commits Hoping to get some progress on this soon. QB are doing a drive to have people converted by May. |
|
@galapogos01 Those commits are from the main branch and git able to supress them automatically during merge. |
|
I got sick of waiting for upstream to merge this pull so I tried your repo @ebogdanov . Also the temptation of the Quickbooks hoodie got me motivated. Upon granting access and being redirected back to my App I am seeing the following errors and no connection: `Notice: unserialize(): Error at offset 11 of 736 bytes in /wp-content/plugins/tiper-quickbooks/QuickBooks/Encryption/Aes.php on line 82 Warning: current() expects parameter 1 to be array, boolean given in /wp-content/plugins/tiper-quickbooks/QuickBooks/Encryption/Aes.php on line 83 Notice: unserialize(): Error at offset 11 of 736 bytes in /wp-content/plugins/tiper-quickbooks/QuickBooks/Encryption/Aes.php on line 82 Warning: current() expects parameter 1 to be array, boolean given in /wp-content/plugins/tiper-quickbooks/QuickBooks/Encryption/Aes.php on line 83` Any tips appreciated. |
|
Hoodie? :) Intuits sends hoodies for developers who will do early migration? I've to force employer to do this fast... :)
let me know if this will help or not, please. |
|
This is what the latest Intuit Developer emails have been saying!
edit: so $decrypted is an 800+ char string, truncated at 736 chars. Not sure if this is a limitation of mcrypt Thanks for your help. Cheers, |
|
Yes, sounds like there is issue with encryption and truncation. I will research it on weekend and let know, either by commit here, or via comment if for some reason there is not backwards-compatible solution. |
|
Thanks Evgeniy. I couldn't find any obvious reason for the truncation but I'm no encryption expert! |
|
Hey! @ebogdanov and @galapogos01 - I know this is off topic on this PR - but the link is here if you're app needs updating and want a hoodie! |
|
@busbyjon Thanks for pointing. |
|
@galapogos01 |
|
Quick heads-up -- we're merging in support for OAuth2. Should have things for new apps ready tomorrow. Some commits were merged in today for the initial pieces. More later today. A migration process from OAuth1 to OAuth2 should follow this week. |
|
@consolibyte Do you merge your own implementation or I should solve conflicts? |
|
Any update on OAuth2.0 support? Can i clone this repo and use it for oAuth2.0 app? |
|
I have cloned this repo and getting following error: Fatal error: Error Num.: 1054 Error Msg.:Unknown column 'oauth_state' in 'field list' SQL: INSERT INTO quickbooks_oauthv2 ( app_tenant, oauth_state, request_datetime ) VALUES ( '12345', 'b5663992657ee74a14f77e449fe3rr35', '2019-05-09 08:58:42' ) Database: /quickbook in /opt/lampp/htdocs/quickbooks-php/QuickBooks/Driver/Sql/Mysqli.php on line 374 |
|
Three fields are missing from quickbooks_oauthv2 when they are created. oauth_state, last_access_datetime, and last_refresh_datetime. Once you add those fields, the db errors go away. I was able to get connected to my sandbox company, but I am getting ERROR_XML when I try to query the customer info or item list. This is the same code that works with oauth1. I didn't think I would have to change things that far downstream from getting connected. Are there parameter changes etc that I need to do to get this to work? |
|
@bairdj1 @sapangupta2009 We'll have detailed instructions tomorrow morning on how to migrate/cut things over. Am aware that the SQL schema is missing currently (we got held up slightly here because all of Intuit's sandboxes were down Thurs/Fri). |
|
Initial instructions are here; still cleaning them up: |
|
The 3.6 release has working OAuth v2.0 support now. OpenID Connect and an automated OAuth v1 to v2 migration process are coming soon. https://github.com/consolibyte/quickbooks-php/releases/tag/v3.6 Manual migration (e.g. you have to reconnect via the OAuth flow) instructions are here: |
|
ALSO -- Migrate your app to OAuth 2.0 before May 31 and you could win a limited edition Intuit hoodie, PLUS if you tell Intuit about your migration plans, you’ll gain entry to win the entertainment system of your dreams. Find out more here: https://intuit.me/OAuth2 |
|
Worked first go. Staging & Prod now migrated. Thanks Keith! |
|
@galapogos01 Glad to here things are working! Make sure you let Intuit know so you get your hoodie/get entered into their drawing! |
|
I had to adjust the CURL parameters in IntuitAnywhere.php and set the VERIFYHOST/VERIFYPEER to 0, probably because I do not have a cert on my dev machine. After that it worked perfectly and I am all cut over to oauthv2 now as well. Thanks for the tookkit, it made my life a lot easier.
John
From: Keith Palmer [mailto:[email protected]]
Sent: Tuesday, May 21, 2019 8:10 AM
To: consolibyte/quickbooks-php <[email protected]>
Cc: bairdj1 <[email protected]>; Mention <[email protected]>
Subject: Re: [consolibyte/quickbooks-php] OAuth2 support (#205)
@galapogos01 <https://github.com/galapogos01> Glad to here things are working! Make sure you let Intuit know so you get your hoodie/get entered into their drawing!
—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub <#205?email_source=notifications&email_token=AMBVHHQOXHS3H4LRVYJUB3TPWPQ7VA5CNFSM4EVKAOU2YY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGODV3WKSY#issuecomment-494363979> , or mute the thread <https://github.com/notifications/unsubscribe-auth/AMBVHHQQ74M4RDJ4DLY26Q3PWPQ7VANCNFSM4EVKAOUQ> .
|
|
@consolibyte how do I let them know exactly? |
|
@galapogos01 Fill out the form here: https://partnerportal.intuit.com/migration/ |
|
@bairdj1 You too! Fill out the form here to let Intuit know! https://partnerportal.intuit.com/migration/ You'll be entered into a drawing and could win some cool stuff! |
|
Thank you @consolibyte and everyone else on who put in work to get this package updated. It has been a huge help. How are you guys handling updating the token? Do we really need to login to QuickBooks every hour to keep the token alive? |
|
@whobutsb If you're using our code, the token updating happens automatically. You DO NOT have to have the person log in again, ever. The access/refresh tokens are updated whenever the access token expires and the new values get written to MySQL/MariaDB in the |
* master: Update to README for OAuthv2. Fixes consolibyte#181, adds OAuth v2 support. Work on consolibyte#181, clean up of migration to OAuthv2. Work on consolibyte#181, converted first example over to OAuthv2. Work on consolibyte#181, converted first example over to OAuthv2. Work on consolibyte#181, auth and refresh/access token renewal. Work on consolibyte#181, auth and HTTP requests via OAuth2 actually working now. Work on consolibyte#181, changes to allow OAuth2 requests. Work on consolibyte#181, initial OAuth2 authentication flow working; still need to do the actual request signing part of things and OpenID Connect. Work on consolibyte#205, initial support for OAuth2. Adding support for updating estimates in QBO. # Conflicts: # QuickBooks/IPP.php # QuickBooks/IPP/IntuitAnywhere.php
|
@consolibyte, I was testing OAuth2 integration and stumbled upon couple of Fatal Errors. See #269. |
Closing issues: #193, #184, #181.
Since Intuit do not issue OAuth1 keys anymore, it can be very handy for business to migrate their code without any hastle in the future.
Code comments:
Unfortuanelly, I had to split current OAuth1 code into base & child class.
In other places tried to followed original code style and logic as much as possible.