Skip to content

OpenID

Jump to bottom Edit New page
World Wide Web Server edited this page Jul 4, 2012 · 18 revisions

Openid.php (Library) [code] <?php if (!defined('BASEPATH')) exit('No direct script access allowed'); /**

  • ...
  • ...
  • @package CodeIgniter
  • @subpackage Libraries
  • @author ...
  • @link ... */

class Openid{

// change me var $storePath = 'tmp';

var $sreg_enable = false; var $sreg_required = null; var $sreg_optional = null; var $sreg_policy = null;

var $pape_enable = false; var $pape_policy_uris = null;

function Openid()
{        
        $this->object =& get_instance();        
        $this->_doIncludes();
        
  log_message('debug', "OpenID Class Initialized");
}

function _doIncludes()
{
  set_include_path(dirname(__FILE__) . PATH_SEPARATOR . get_include_path());
/**
 * Require the OpenID consumer code.
 */
require_once "Auth/OpenID/Consumer.php";

/**
 * Require the "file store" module, which we'll need to store
 * OpenID information.
 */
require_once "Auth/OpenID/FileStore.php";

/**
 * Require the Simple Registration extension API.
 */
require_once "Auth/OpenID/SReg.php";

/**
 * Require the PAPE extension module.
 */
require_once "Auth/OpenID/PAPE.php";

}

function set_sreg($required = null, $optional = null, $policy = null)
{
$this->sreg_enable = true;
$this->sreg_required = $required;
$this->sreg_optional = $optional;
$this->sreg_policy = $policy;
}

function unset_sreg()
{
$this->sreg_enable = false;
$this->sreg_required = null;
$this->sreg_optional = null;
$this->sreg_policy = null;
}

function set_pape($policy_uris)
{
$this->pape_enable = true;
$this->pape_policy_uris = $policy_uris;
}

function unset_pape()
{
$this->pape_enable = false;
$this->pape_policy_uris = null;
}

function authenticate($openId, $processUrl, $trustRoot, $extensionArguments = null)
{
        $consumer = $this->_getConsumer();
        $authRequest = $consumer->begin($openId);
        
        // No auth request means we can't begin OpenID.
  if (!$authRequest) {
    echo 'Authentication error; not a valid OpenID.';
    exit;
  }
  
  if ($this->sreg_enable)
  {
    $sreg_request = Auth_OpenID_SRegRequest::build($this->sreg_required, $this->sreg_optional, $this->sreg_policy);

    if ($sreg_request)
    {
        $authRequest->addExtension($sreg_request);
    }
    else
    {
        echo 'SREG failed';
        exit;
    }
  }
 
  if ($this->pape_enable)
  {
    $pape_request = new Auth_OpenID_PAPE_Request($this->pape_policy_uris);
    
    if ($pape_request)
    {
        $authRequest->addExtension($pape_request);
    }
    else
    {
        echo 'PAPE failed';
        exit;
    }
  }
        
        if ($extensionArguments != null) {
            foreach ($extensionArguments as $extensionArgument) {
                if (count($extensionArgument) == 3)
                {
                    $authRequest->addExtensionArg($extensionArgument[0], $extensionArgument[1], $extensionArgument[2]);
                }
            }
        }
        
    // Redirect the user to the OpenID server for authentication.
// Store the token for this authentication so we can verify the
// response.

// For OpenID 1, send a redirect.  For OpenID 2, use a Javascript
// form to send a POST request to the server.
if ($authRequest->shouldSendRedirect())
{
    $redirect_url = $authRequest->redirectURL($trustRoot, $processUrl);

    // If the redirect URL can't be built, display an error
    // message.
    if (Auth_OpenID::isFailure($redirect_url))
    {
        echo 'Could not redirect to server: ' . $redirect_url->message;
        exit;
    }
    else
    {
        // Send redirect.
        header("Location: ".$redirect_url);
    }
}
else
{
    // Generate form markup and render it.
    $form_id = 'openid_message';
    $form_html = $authRequest->formMarkup($trustRoot, $processUrl, false, array('id' => $form_id));

    // Display an error if the form markup couldn't be generated;
    // otherwise, render the HTML.
    if (Auth_OpenID::isFailure($form_html))
    {
        echo 'Could not redirect to server: ' . $form_html->message;
        exit;
    }
    else
    {
        $page_contents = array(
           "&lt;html&gt;&lt;head&gt;&lt;title&gt;",
           "OpenID transaction in progress",
           "&lt;/title&gt;&lt;/head&gt;",
           "&lt;body onload='document.getElementById(\"".$form_id."\").submit()'&gt;",
           $form_html,
           "&lt;/body&gt;&lt;/html&gt;");

        print implode("\n", $page_contents);
    }
}

    }
    
    function getResponse($input)
    {
        $consumer = $this->_getConsumer();
        $response = $consumer->complete($input);
        
        return $response;
    }
    
    function _getConsumer()
    {
        if (!file_exists($this->storePath) && !mkdir($this->storePath)) {
            echo 'Could not create the FileStore directory ' . $this->storePath . '. Please check the effective permissions.';
            exit;
        }

        $store = new Auth_OpenID_FileStore($this->storePath);
        $consumer = new Auth_OpenID_Consumer($store);
        
        return $consumer;
    }

} [/code]

Add a custom footer
Add a custom sidebar

Clone this wiki locally