使用QOAuth来进行新浪/腾讯微博验证（二）

在上篇文章使用QOAuth来进行新浪/腾讯微博验证（一）中我们介绍了微博开发的基本流程，搭建了程序的基本框架，定义了接口，在这篇文章中，我们来实现OAuth验证的两个基本接口

• requestToken
• accessToken

如果不知道Qt如何在VS2010下使用或者如何编译QOAuth的话，请查看我的这两篇文章

微博是个大金矿，使用VS2010编译QOAuth支持微博通用认证OAuth实现SINA微博登陆

Qt简介以及如何配置Qt使用VS2010进行开发

上次我们已经定义了IMicroblog接口，并且定义了借口如下

其中customAouth是虚函数，留个各个实例自行实现，在这篇文章中，我们来实现其余的基本OAuth验证

首先添加QOAuth引用

在MyMicro-blogLib库中设置附加头文件目录，将QOAuth的Include文件夹和QCA的include文件夹加入Additional Include Directories中

在类中添加QOAuth定义，添加好后是这样

#ifndef IMICROBLOG_H
#define IMICROBLOG_H

#include <QtCrypto>

namespace QOAuth
{
    class Interface;
}


class IMicroblog
{
public:

    IMicroblog();
    ~IMicroblog();

    virtual bool requestToken();
    virtual bool customAouth(const QString & userName,const QString & password) = 0;
    virtual bool accessToken();
    virtual int error() const;

    QString appKey() const;
    void setAppKey(const QString & appkey);
    QString appSecret() const;
    void setAppSecret(const QString & appsecret);
    QString oauthToken() const;
    QString oauthTokenSecret() const;

protected:
    QString _appKey;
    QString _appSecret;
    QString _oauthToken;
    QString _oauthTokenSecret;
    QOAuth::Interface *m;
};

#endif // IMICROBLOG_H

6-9行中添加了对QOAuth的操作类的预定义

36行中定义了QOAuth的操作类的指针m

 

在类源文件中中实现

首先我们来实现requestToken函数

通过查看QOAuth的代码，可以使用Interface::requestToken函数来实现，该函数的定义是

QOAuth::ParamMap QOAuth::Interface::requestToken( const QString &requestUrl, HttpMethod httpMethod,
                                                  SignatureMethod signatureMethod, const ParamMap &params )

在这里HttpMethod有下面几种模式

enum HttpMethod {
        GET,   //!< Sets the HTTP method to GET
        POST,  //!< Sets the HTTP method to POST
        HEAD,  //!< Sets the HTTP method to HEAD
        PUT   //!< Sets the HTTP method to PUT
#ifndef Q_WS_WIN
        , DELETE //!< Sets the HTTP method to DELETE
#endif
    };

为了简化类的使用，默认使用POST方式，如果大家有兴趣可以自行增加个成员变量对方法进行控制

SignatureMethod有以下几种模式

enum SignatureMethod {
       HMAC_SHA1, //!< Sets the signature method to HMAC-SHA1
       RSA_SHA1,  //!< Sets the signature method to RSA-SHA1 (not implemented yet)
       PLAINTEXT  //!< Sets the signature method to PLAINTEXT (not implemented yet)
   };

通过注释我们可以看到QOAuth只实现了HMAC_SHA1模式，那么我们就默认使用这种模式

可以看到为了实现requestToken我们还需要一个参数requestUrl，为此我们需要在类中额外增加一个属性requestUrl

最后在实现requestToken之前，QOAuth的Interface类还有一个重要的参数需要设置，那就是timeout，同样的我们在类中额外增加一个属性timeout

新的类图如下

完成后，我们可以开始实现requestToken了

m->setRequestTimeout( timeout() );
m->setConsumerKey( appKey().toAscii() );
m->setConsumerSecret( appSecret().toAscii() );
ParamMap map = m->requestToken( requestTokenUrl(), POST, HMAC_SHA1 );

if( m->error() == 200 )
{
    _oauthToken = map.value( tokenParameterName() );
    _oauthTokenSecret = map.value( tokenSecretParameterName() );
    return true;
}
else
{
    return false;
}

可以看到，代码现将必要的参数设置给Interface，后调用Interface的requestToken方法进行验证，当返回后判断错误码，如果出错返回false，否则设置_oauthToken和_oauthTokenSecret

错误代码的定义如下

enum ErrorCode {
       NoError = 200,              //!< No error occured (so far :-) )
       BadRequest = 400,           //!< Represents HTTP status code \c 400 (Bad Request)
       Unauthorized = 401,         //!< Represents HTTP status code \c 401 (Unauthorized)
       Forbidden = 403,            //!< Represents HTTP status code \c 403 (Forbidden)
       Timeout = 1001,             //!< Represents a request timeout error
       ConsumerKeyEmpty,           //!< Consumer key has not been provided
       ConsumerSecretEmpty,        //!< Consumer secret has not been provided
       UnsupportedHttpMethod,      /*!< The HTTP method is not supported by the request.
                                        \note \ref QOAuth::Interface::requestToken() and
                                        \ref QOAuth::Interface::accessToken()
                                        accept only HTTP GET and POST requests. */

       RSAPrivateKeyEmpty = 1101,  //!< RSA private key has not been provided
       //    RSAPassphraseError,         //!< RSA passphrase is incorrect (or has not been provided)
       RSADecodingError,           /*!< There was a problem decoding the RSA private key
                                    (the key is invalid or the provided passphrase is incorrect)*/
       RSAKeyFileError,            //!< The provided key file either doesn't exist or is unreadable.
       OtherError                  //!< A network-related error not specified above
   };

在这篇文章的最后，将现在的的CPP文件贴出来，供大家参考

#include "imicroblog.h"
#include <QtOAuth>
#include <interface.h>

using namespace QOAuth;

IMicroblog::IMicroblog()
{
    m = new Interface;
}

IMicroblog::~IMicroblog()
{
    delete m;
}

bool IMicroblog::requestToken()
{
    m->setRequestTimeout( timeout() );
    m->setConsumerKey( appKey().toAscii() );
    m->setConsumerSecret( appSecret().toAscii() );
    ParamMap map = m->requestToken( requestTokenUrl(), POST, HMAC_SHA1 );

    if( m->error() == 200 )
    {
        _oauthToken = map.value( tokenParameterName() );
        _oauthTokenSecret = map.value( tokenSecretParameterName() );
        return true;
    }
    else
    {
        return false;
    }
}

bool IMicroblog::accessToken()
{
    return true;
}

int IMicroblog::error() const
{
    return m->error();
}

QString IMicroblog::appKey() const
{
    return _appKey;
}

void IMicroblog::setAppKey(const QString & appkey)
{
    _appKey = appkey;
}

QString IMicroblog::appSecret() const
{
    return _appSecret;
}

void IMicroblog::setAppSecret(const QString & appsecret)
{
    _appSecret = appsecret;
}

QString IMicroblog::oauthToken() const
{
    return _oauthToken;
}

QString IMicroblog::oauthTokenSecret() const
{
    return _oauthTokenSecret;
}

uint IMicroblog::timeout() const
{
    return _timeout;
}

void IMicroblog::setTimeout(uint timeout)
{
    _timeout = timeout;
}

QString IMicroblog::requestTokenUrl() const
{
    return _requestTokenUrl;
}

void IMicroblog::setRequestTokenUrl(const QString & url)
{
    _requestTokenUrl = url;
}