我写了一段代码来使用Azure AD登录,它工作正常,但是当我将它重定向到下一页时,带有值的会话变量为空,我粘贴了代码以供参考。
$appid = "xxxxxxxxxxxx"; //(MASKING DATA FOR OBVIOUS REASONS)
$tennantid = "xxxxxxxxxxxx"; //(MASKING DATA FOR OBVIOUS REASONS)
$secret = "xxxxxxxxxxxx"; //(MASKING DATA FOR OBVIOUS REASONS)
$login_url = "https://login.microsoftonline.com/" . $tennantid . "/oauth2/v2.0/authorize";
session_start();
$_SESSION['state'] = session_id();
echo "MS OAuth2.0 Demo ";
if (isset($_SESSION['msatg'])) {
echo "Authenticated " . $_SESSION["uname"] . " ";
echo 'Log Out';
} else {
echo 'You can Log In with Microsoft';
}
if (isset($_GET['action']) && $_GET['action'] == 'login') {
$params = array('client_id' => $appid, 'redirect_uri' => 'https://abc.xyz.com/sso/', 'response_type' => 'token', 'response_mode' => 'form_post', 'scope' => 'https://graph.microsoft.com/User.Read', 'state' => $_SESSION['state']);
header('Location: ' . $login_url . '?' . http_build_query($params));
}
if (array_key_exists('access_token', $_POST)) {
$_SESSION['t'] = $_POST['access_token'];
$t = $_SESSION['t'];
$ch = curl_init();
curl_setopt($ch, CURLOPT_HTTPHEADER, array(
'Authorization: Bearer ' . $t,
'Content-type: application/json'
));
curl_setopt($ch, CURLOPT_URL, "https://graph.microsoft.com/v1.0/me/");
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$rez = json_decode(curl_exec($ch), 1);
if (array_key_exists('error', $rez)) {
var_dump($rez);
die();
} else {
$_SESSION['msatg'] = 1; //auth and verified
$_SESSION['uname'] = $rez["displayName"];
$_SESSION['id'] = $rez["id"];
}
curl_close($ch);
header('Location: https://abc.xyz.com/sso/welcome.php');
}
if (isset($_GET['action']) && $_GET['action'] == 'logout') {
unset($_SESSION['msatg']);
header('Location: https://abc.xyz.com/sso/');
}字符串
当它被重定向到welcome.php页面时,当我var_dump $_SESSION时,它给予我一个空的会话数组;
我希望我的会话的数据得到反映在welcome.php页面
有人能解释一下我做错了什么吗?
1条答案
按热度按时间mfpqipee1#
在这里,我使用
ob_start()和ob_end_flush()输出缓冲有时会干扰会话数据。产品代码:
字符串
我添加了下面的URL到应用程序重定向URL如下,
的数据
输出:
成功运行如下,
的
我得到了下面的输出与上面的输出URL.然后,我点击登录与微软如下,
的
我是用下面的账号登录的,
的
下面是我可以检索的数据,这是PHP配置中会话的工作方式。
的