tweet_live: web/lib/Zend/OpenId/Provider.php@80e5b9543cac (annotated)

0 4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	1	<?php
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	2
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	3	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	4	* Zend Framework
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	5	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	6	* LICENSE
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	7	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	8	* This source file is subject to the new BSD license that is bundled
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	9	* with this package in the file LICENSE.txt.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	10	* It is also available through the world-wide-web at this URL:
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	11	* http://framework.zend.com/license/new-bsd
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	12	* If you did not receive a copy of the license and are unable to
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	13	* obtain it through the world-wide-web, please send an email
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	14	* to license@zend.com so we can send you a copy immediately.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	15	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	16	* @category Zend
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	17	* @package Zend_OpenId
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	18	* @subpackage Zend_OpenId_Provider
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	19	* @copyright Copyright (c) 2005-2010 Zend Technologies USA Inc. (http://www.zend.com)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	20	* @license http://framework.zend.com/license/new-bsd New BSD License
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	21	* @version $Id: Provider.php 23088 2010-10-11 19:53:24Z padraic $
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	22	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	23
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	24	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	25	* @see Zend_OpenId
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	26	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	27	require_once "Zend/OpenId.php";
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	28
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	29	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	30	* @see Zend_OpenId_Extension
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	31	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	32	require_once "Zend/OpenId/Extension.php";
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	33
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	34	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	35	* OpenID provider (server) implementation
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	36	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	37	* @category Zend
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	38	* @package Zend_OpenId
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	39	* @subpackage Zend_OpenId_Provider
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	40	* @copyright Copyright (c) 2005-2010 Zend Technologies USA Inc. (http://www.zend.com)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	41	* @license http://framework.zend.com/license/new-bsd New BSD License
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	42	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	43	class Zend_OpenId_Provider
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	44	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	45
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	46	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	47	* Reference to an implementation of storage object
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	48	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	49	* @var Zend_OpenId_Provider_Storage $_storage
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	50	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	51	private $_storage;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	52
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	53	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	54	* Reference to an implementation of user object
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	55	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	56	* @var Zend_OpenId_Provider_User $_user
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	57	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	58	private $_user;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	59
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	60	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	61	* Time to live of association session in secconds
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	62	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	63	* @var integer $_sessionTtl
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	64	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	65	private $_sessionTtl;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	66
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	67	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	68	* URL to peform interactive user login
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	69	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	70	* @var string $_loginUrl
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	71	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	72	private $_loginUrl;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	73
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	74	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	75	* URL to peform interactive validation of consumer by user
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	76	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	77	* @var string $_trustUrl
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	78	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	79	private $_trustUrl;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	80
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	81	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	82	* The OP Endpoint URL
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	83	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	84	* @var string $_opEndpoint
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	85	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	86	private $_opEndpoint;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	87
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	88	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	89	* Constructs a Zend_OpenId_Provider object with given parameters.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	90	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	91	* @param string $loginUrl is an URL that provides login screen for
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	92	* end-user (by default it is the same URL with additional GET variable
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	93	* openid.action=login)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	94	* @param string $trustUrl is an URL that shows a question if end-user
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	95	* trust to given consumer (by default it is the same URL with additional
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	96	* GET variable openid.action=trust)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	97	* @param Zend_OpenId_Provider_User $user is an object for communication
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	98	* with User-Agent and store information about logged-in user (it is a
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	99	* Zend_OpenId_Provider_User_Session object by default)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	100	* @param Zend_OpenId_Provider_Storage $storage is an object for keeping
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	101	* persistent database (it is a Zend_OpenId_Provider_Storage_File object
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	102	* by default)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	103	* @param integer $sessionTtl is a default time to live for association
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	104	* session in seconds (1 hour by default). Consumer must reestablish
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	105	* association after that time.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	106	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	107	public function __construct($loginUrl = null,
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	108	$trustUrl = null,
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	109	Zend_OpenId_Provider_User $user = null,
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	110	Zend_OpenId_Provider_Storage $storage = null,
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	111	$sessionTtl = 3600)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	112	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	113	if ($loginUrl === null) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	114	$loginUrl = Zend_OpenId::selfUrl() . '?openid.action=login';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	115	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	116	$loginUrl = Zend_OpenId::absoluteUrl($loginUrl);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	117	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	118	$this->_loginUrl = $loginUrl;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	119	if ($trustUrl === null) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	120	$trustUrl = Zend_OpenId::selfUrl() . '?openid.action=trust';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	121	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	122	$trustUrl = Zend_OpenId::absoluteUrl($trustUrl);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	123	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	124	$this->_trustUrl = $trustUrl;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	125	if ($user === null) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	126	require_once "Zend/OpenId/Provider/User/Session.php";
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	127	$this->_user = new Zend_OpenId_Provider_User_Session();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	128	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	129	$this->_user = $user;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	130	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	131	if ($storage === null) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	132	require_once "Zend/OpenId/Provider/Storage/File.php";
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	133	$this->_storage = new Zend_OpenId_Provider_Storage_File();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	134	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	135	$this->_storage = $storage;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	136	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	137	$this->_sessionTtl = $sessionTtl;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	138	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	139
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	140	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	141	* Sets the OP Endpoint URL
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	142	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	143	* @param string $url the OP Endpoint URL
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	144	* @return null
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	145	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	146	public function setOpEndpoint($url)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	147	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	148	$this->_opEndpoint = $url;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	149	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	150
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	151	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	152	* Registers a new user with given $id and $password
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	153	* Returns true in case of success and false if user with given $id already
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	154	* exists
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	155	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	156	* @param string $id user identity URL
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	157	* @param string $password encoded user password
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	158	* @return bool
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	159	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	160	public function register($id, $password)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	161	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	162	if (!Zend_OpenId::normalize($id) \|\| empty($id)) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	163	return false;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	164	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	165	return $this->_storage->addUser($id, md5($id.$password));
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	166	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	167
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	168	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	169	* Returns true if user with given $id exists and false otherwise
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	170	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	171	* @param string $id user identity URL
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	172	* @return bool
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	173	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	174	public function hasUser($id) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	175	if (!Zend_OpenId::normalize($id)) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	176	return false;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	177	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	178	return $this->_storage->hasUser($id);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	179	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	180
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	181	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	182	* Performs login of user with given $id and $password
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	183	* Returns true in case of success and false otherwise
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	184	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	185	* @param string $id user identity URL
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	186	* @param string $password user password
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	187	* @return bool
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	188	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	189	public function login($id, $password)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	190	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	191	if (!Zend_OpenId::normalize($id)) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	192	return false;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	193	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	194	if (!$this->_storage->checkUser($id, md5($id.$password))) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	195	return false;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	196	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	197	$this->_user->setLoggedInUser($id);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	198	return true;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	199	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	200
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	201	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	202	* Performs logout. Clears information about logged in user.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	203	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	204	* @return void
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	205	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	206	public function logout()
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	207	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	208	$this->_user->delLoggedInUser();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	209	return true;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	210	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	211
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	212	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	213	* Returns identity URL of current logged in user or false
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	214	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	215	* @return mixed
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	216	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	217	public function getLoggedInUser() {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	218	return $this->_user->getLoggedInUser();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	219	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	220
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	221	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	222	* Retrieve consumer's root URL from request query.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	223	* Returns URL or false in case of failure
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	224	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	225	* @param array $params query arguments
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	226	* @return mixed
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	227	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	228	public function getSiteRoot($params)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	229	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	230	$version = 1.1;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	231	if (isset($params['openid_ns']) &&
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	232	$params['openid_ns'] == Zend_OpenId::NS_2_0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	233	$version = 2.0;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	234	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	235	if ($version >= 2.0 && isset($params['openid_realm'])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	236	$root = $params['openid_realm'];
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	237	} else if ($version < 2.0 && isset($params['openid_trust_root'])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	238	$root = $params['openid_trust_root'];
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	239	} else if (isset($params['openid_return_to'])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	240	$root = $params['openid_return_to'];
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	241	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	242	return false;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	243	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	244	if (Zend_OpenId::normalizeUrl($root) && !empty($root)) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	245	return $root;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	246	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	247	return false;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	248	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	249
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	250	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	251	* Allows consumer with given root URL to authenticate current logged
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	252	* in user. Returns true on success and false on error.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	253	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	254	* @param string $root root URL
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	255	* @param mixed $extensions extension object or array of extensions objects
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	256	* @return bool
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	257	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	258	public function allowSite($root, $extensions=null)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	259	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	260	$id = $this->getLoggedInUser();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	261	if ($id === false) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	262	return false;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	263	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	264	if ($extensions !== null) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	265	$data = array();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	266	Zend_OpenId_Extension::forAll($extensions, 'getTrustData', $data);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	267	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	268	$data = true;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	269	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	270	$this->_storage->addSite($id, $root, $data);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	271	return true;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	272	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	273
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	274	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	275	* Prohibit consumer with given root URL to authenticate current logged
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	276	* in user. Returns true on success and false on error.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	277	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	278	* @param string $root root URL
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	279	* @return bool
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	280	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	281	public function denySite($root)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	282	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	283	$id = $this->getLoggedInUser();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	284	if ($id === false) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	285	return false;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	286	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	287	$this->_storage->addSite($id, $root, false);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	288	return true;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	289	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	290
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	291	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	292	* Delete consumer with given root URL from known sites of current logged
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	293	* in user. Next time this consumer will try to authenticate the user,
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	294	* Provider will ask user's confirmation.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	295	* Returns true on success and false on error.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	296	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	297	* @param string $root root URL
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	298	* @return bool
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	299	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	300	public function delSite($root)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	301	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	302	$id = $this->getLoggedInUser();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	303	if ($id === false) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	304	return false;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	305	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	306	$this->_storage->addSite($id, $root, null);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	307	return true;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	308	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	309
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	310	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	311	* Returns list of known consumers for current logged in user or false
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	312	* if he is not logged in.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	313	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	314	* @return mixed
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	315	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	316	public function getTrustedSites()
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	317	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	318	$id = $this->getLoggedInUser();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	319	if ($id === false) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	320	return false;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	321	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	322	return $this->_storage->getTrustedSites($id);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	323	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	324
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	325	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	326	* Handles HTTP request from consumer
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	327	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	328	* @param array $params GET or POST variables. If this parameter is omited
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	329	* or set to null, then $_GET or $_POST superglobal variable is used
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	330	* according to REQUEST_METHOD.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	331	* @param mixed $extensions extension object or array of extensions objects
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	332	* @param Zend_Controller_Response_Abstract $response an optional response
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	333	* object to perform HTTP or HTML form redirection
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	334	* @return mixed
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	335	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	336	public function handle($params=null, $extensions=null,
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	337	Zend_Controller_Response_Abstract $response = null)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	338	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	339	if ($params === null) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	340	if ($_SERVER["REQUEST_METHOD"] == "GET") {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	341	$params = $_GET;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	342	} else if ($_SERVER["REQUEST_METHOD"] == "POST") {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	343	$params = $_POST;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	344	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	345	return false;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	346	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	347	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	348	$version = 1.1;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	349	if (isset($params['openid_ns']) &&
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	350	$params['openid_ns'] == Zend_OpenId::NS_2_0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	351	$version = 2.0;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	352	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	353	if (isset($params['openid_mode'])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	354	if ($params['openid_mode'] == 'associate') {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	355	$response = $this->_associate($version, $params);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	356	$ret = '';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	357	foreach ($response as $key => $val) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	358	$ret .= $key . ':' . $val . "\n";
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	359	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	360	return $ret;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	361	} else if ($params['openid_mode'] == 'checkid_immediate') {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	362	$ret = $this->_checkId($version, $params, 1, $extensions, $response);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	363	if (is_bool($ret)) return $ret;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	364	if (!empty($params['openid_return_to'])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	365	Zend_OpenId::redirect($params['openid_return_to'], $ret, $response);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	366	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	367	return true;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	368	} else if ($params['openid_mode'] == 'checkid_setup') {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	369	$ret = $this->_checkId($version, $params, 0, $extensions, $response);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	370	if (is_bool($ret)) return $ret;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	371	if (!empty($params['openid_return_to'])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	372	Zend_OpenId::redirect($params['openid_return_to'], $ret, $response);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	373	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	374	return true;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	375	} else if ($params['openid_mode'] == 'check_authentication') {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	376	$response = $this->_checkAuthentication($version, $params);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	377	$ret = '';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	378	foreach ($response as $key => $val) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	379	$ret .= $key . ':' . $val . "\n";
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	380	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	381	return $ret;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	382	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	383	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	384	return false;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	385	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	386
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	387	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	388	* Generates a secret key for given hash function, returns RAW key or false
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	389	* if function is not supported
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	390	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	391	* @param string $func hash function (sha1 or sha256)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	392	* @return mixed
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	393	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	394	protected function _genSecret($func)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	395	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	396	if ($func == 'sha1') {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	397	$macLen = 20; /* 160 bit */
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	398	} else if ($func == 'sha256') {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	399	$macLen = 32; /* 256 bit */
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	400	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	401	return false;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	402	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	403	return Zend_OpenId::randomBytes($macLen);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	404	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	405
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	406	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	407	* Processes association request from OpenID consumerm generates secret
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	408	* shared key and send it back using Diffie-Hellman encruption.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	409	* Returns array of variables to push back to consumer.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	410	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	411	* @param float $version OpenID version
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	412	* @param array $params GET or POST request variables
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	413	* @return array
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	414	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	415	protected function _associate($version, $params)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	416	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	417	$ret = array();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	418
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	419	if ($version >= 2.0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	420	$ret['ns'] = Zend_OpenId::NS_2_0;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	421	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	422
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	423	if (isset($params['openid_assoc_type']) &&
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	424	$params['openid_assoc_type'] == 'HMAC-SHA1') {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	425	$macFunc = 'sha1';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	426	} else if (isset($params['openid_assoc_type']) &&
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	427	$params['openid_assoc_type'] == 'HMAC-SHA256' &&
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	428	$version >= 2.0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	429	$macFunc = 'sha256';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	430	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	431	$ret['error'] = 'Wrong "openid.assoc_type"';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	432	$ret['error-code'] = 'unsupported-type';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	433	return $ret;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	434	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	435
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	436	$ret['assoc_type'] = $params['openid_assoc_type'];
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	437
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	438	$secret = $this->_genSecret($macFunc);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	439
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	440	if (empty($params['openid_session_type']) \|\|
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	441	$params['openid_session_type'] == 'no-encryption') {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	442	$ret['mac_key'] = base64_encode($secret);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	443	} else if (isset($params['openid_session_type']) &&
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	444	$params['openid_session_type'] == 'DH-SHA1') {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	445	$dhFunc = 'sha1';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	446	} else if (isset($params['openid_session_type']) &&
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	447	$params['openid_session_type'] == 'DH-SHA256' &&
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	448	$version >= 2.0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	449	$dhFunc = 'sha256';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	450	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	451	$ret['error'] = 'Wrong "openid.session_type"';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	452	$ret['error-code'] = 'unsupported-type';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	453	return $ret;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	454	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	455
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	456	if (isset($params['openid_session_type'])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	457	$ret['session_type'] = $params['openid_session_type'];
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	458	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	459
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	460	if (isset($dhFunc)) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	461	if (empty($params['openid_dh_consumer_public'])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	462	$ret['error'] = 'Wrong "openid.dh_consumer_public"';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	463	return $ret;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	464	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	465	if (empty($params['openid_dh_gen'])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	466	$g = pack('H*', Zend_OpenId::DH_G);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	467	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	468	$g = base64_decode($params['openid_dh_gen']);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	469	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	470	if (empty($params['openid_dh_modulus'])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	471	$p = pack('H*', Zend_OpenId::DH_P);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	472	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	473	$p = base64_decode($params['openid_dh_modulus']);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	474	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	475
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	476	$dh = Zend_OpenId::createDhKey($p, $g);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	477	$dh_details = Zend_OpenId::getDhKeyDetails($dh);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	478
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	479	$sec = Zend_OpenId::computeDhSecret(
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	480	base64_decode($params['openid_dh_consumer_public']), $dh);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	481	if ($sec === false) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	482	$ret['error'] = 'Wrong "openid.session_type"';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	483	$ret['error-code'] = 'unsupported-type';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	484	return $ret;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	485	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	486	$sec = Zend_OpenId::digest($dhFunc, $sec);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	487	$ret['dh_server_public'] = base64_encode(
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	488	Zend_OpenId::btwoc($dh_details['pub_key']));
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	489	$ret['enc_mac_key'] = base64_encode($secret ^ $sec);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	490	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	491
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	492	$handle = uniqid();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	493	$expiresIn = $this->_sessionTtl;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	494
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	495	$ret['assoc_handle'] = $handle;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	496	$ret['expires_in'] = $expiresIn;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	497
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	498	$this->_storage->addAssociation($handle,
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	499	$macFunc, $secret, time() + $expiresIn);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	500
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	501	return $ret;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	502	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	503
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	504	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	505	* Performs authentication (or authentication check).
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	506	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	507	* @param float $version OpenID version
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	508	* @param array $params GET or POST request variables
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	509	* @param bool $immediate enables or disables interaction with user
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	510	* @param mixed $extensions extension object or array of extensions objects
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	511	* @param Zend_Controller_Response_Abstract $response
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	512	* @return array
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	513	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	514	protected function _checkId($version, $params, $immediate, $extensions=null,
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	515	Zend_Controller_Response_Abstract $response = null)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	516	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	517	$ret = array();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	518
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	519	if ($version >= 2.0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	520	$ret['openid.ns'] = Zend_OpenId::NS_2_0;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	521	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	522	$root = $this->getSiteRoot($params);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	523	if ($root === false) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	524	return false;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	525	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	526
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	527	if (isset($params['openid_identity']) &&
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	528	!$this->_storage->hasUser($params['openid_identity'])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	529	$ret['openid.mode'] = ($immediate && $version >= 2.0) ? 'setup_needed': 'cancel';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	530	return $ret;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	531	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	532
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	533	/* Check if user already logged in into the server */
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	534	if (!isset($params['openid_identity']) \|\|
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	535	$this->_user->getLoggedInUser() !== $params['openid_identity']) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	536	$params2 = array();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	537	foreach ($params as $key => $val) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	538	if (strpos($key, 'openid_ns_') === 0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	539	$key = 'openid.ns.' . substr($key, strlen('openid_ns_'));
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	540	} else if (strpos($key, 'openid_sreg_') === 0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	541	$key = 'openid.sreg.' . substr($key, strlen('openid_sreg_'));
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	542	} else if (strpos($key, 'openid_') === 0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	543	$key = 'openid.' . substr($key, strlen('openid_'));
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	544	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	545	$params2[$key] = $val;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	546	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	547	if ($immediate) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	548	$params2['openid.mode'] = 'checkid_setup';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	549	$ret['openid.mode'] = ($version >= 2.0) ? 'setup_needed': 'id_res';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	550	$ret['openid.user_setup_url'] = $this->_loginUrl
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	551	. (strpos($this->_loginUrl, '?') === false ? '?' : '&')
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	552	. Zend_OpenId::paramsToQuery($params2);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	553	return $ret;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	554	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	555	/* Redirect to Server Login Screen */
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	556	Zend_OpenId::redirect($this->_loginUrl, $params2, $response);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	557	return true;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	558	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	559	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	560
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	561	if (!Zend_OpenId_Extension::forAll($extensions, 'parseRequest', $params)) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	562	$ret['openid.mode'] = ($immediate && $version >= 2.0) ? 'setup_needed': 'cancel';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	563	return $ret;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	564	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	565
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	566	/* Check if user trusts to the consumer */
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	567	$trusted = null;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	568	$sites = $this->_storage->getTrustedSites($params['openid_identity']);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	569	if (isset($params['openid_return_to'])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	570	$root = $params['openid_return_to'];
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	571	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	572	if (isset($sites[$root])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	573	$trusted = $sites[$root];
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	574	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	575	foreach ($sites as $site => $t) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	576	if (strpos($root, $site) === 0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	577	$trusted = $t;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	578	break;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	579	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	580	/* OpenID 2.0 (9.2) check for realm wild-card matching */
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	581	$n = strpos($site, '://*.');
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	582	if ($n != false) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	583	$regex = '/^'
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	584	. preg_quote(substr($site, 0, $n+3), '/')
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	585	. '[A-Za-z1-9_\.]+?'
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	586	. preg_quote(substr($site, $n+4), '/')
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	587	. '/';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	588	if (preg_match($regex, $root)) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	589	$trusted = $t;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	590	break;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	591	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	592	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	593	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	594	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	595	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	596
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	597	if (is_array($trusted)) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	598	if (!Zend_OpenId_Extension::forAll($extensions, 'checkTrustData', $trusted)) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	599	$trusted = null;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	600	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	601	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	602
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	603	if ($trusted === false) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	604	$ret['openid.mode'] = 'cancel';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	605	return $ret;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	606	} else if ($trusted === null) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	607	/* Redirect to Server Trust Screen */
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	608	$params2 = array();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	609	foreach ($params as $key => $val) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	610	if (strpos($key, 'openid_ns_') === 0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	611	$key = 'openid.ns.' . substr($key, strlen('openid_ns_'));
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	612	} else if (strpos($key, 'openid_sreg_') === 0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	613	$key = 'openid.sreg.' . substr($key, strlen('openid_sreg_'));
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	614	} else if (strpos($key, 'openid_') === 0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	615	$key = 'openid.' . substr($key, strlen('openid_'));
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	616	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	617	$params2[$key] = $val;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	618	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	619	if ($immediate) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	620	$params2['openid.mode'] = 'checkid_setup';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	621	$ret['openid.mode'] = ($version >= 2.0) ? 'setup_needed': 'id_res';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	622	$ret['openid.user_setup_url'] = $this->_trustUrl
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	623	. (strpos($this->_trustUrl, '?') === false ? '?' : '&')
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	624	. Zend_OpenId::paramsToQuery($params2);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	625	return $ret;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	626	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	627	Zend_OpenId::redirect($this->_trustUrl, $params2, $response);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	628	return true;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	629	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	630	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	631
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	632	return $this->_respond($version, $ret, $params, $extensions);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	633	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	634
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	635	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	636	* Perepares information to send back to consumer's authentication request,
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	637	* signs it using shared secret and send back through HTTP redirection
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	638	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	639	* @param array $params GET or POST request variables
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	640	* @param mixed $extensions extension object or array of extensions objects
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	641	* @param Zend_Controller_Response_Abstract $response an optional response
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	642	* object to perform HTTP or HTML form redirection
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	643	* @return bool
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	644	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	645	public function respondToConsumer($params, $extensions=null,
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	646	Zend_Controller_Response_Abstract $response = null)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	647	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	648	$version = 1.1;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	649	if (isset($params['openid_ns']) &&
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	650	$params['openid_ns'] == Zend_OpenId::NS_2_0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	651	$version = 2.0;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	652	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	653	$ret = array();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	654	if ($version >= 2.0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	655	$ret['openid.ns'] = Zend_OpenId::NS_2_0;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	656	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	657	$ret = $this->_respond($version, $ret, $params, $extensions);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	658	if (!empty($params['openid_return_to'])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	659	Zend_OpenId::redirect($params['openid_return_to'], $ret, $response);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	660	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	661	return true;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	662	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	663
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	664	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	665	* Perepares information to send back to consumer's authentication request
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	666	* and signs it using shared secret.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	667	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	668	* @param float $version OpenID protcol version
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	669	* @param array $ret arguments to be send back to consumer
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	670	* @param array $params GET or POST request variables
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	671	* @param mixed $extensions extension object or array of extensions objects
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	672	* @return array
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	673	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	674	protected function _respond($version, $ret, $params, $extensions=null)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	675	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	676	if (empty($params['openid_assoc_handle']) \|\|
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	677	!$this->_storage->getAssociation($params['openid_assoc_handle'],
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	678	$macFunc, $secret, $expires)) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	679	/* Use dumb mode */
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	680	if (!empty($params['openid_assoc_handle'])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	681	$ret['openid.invalidate_handle'] = $params['openid_assoc_handle'];
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	682	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	683	$macFunc = $version >= 2.0 ? 'sha256' : 'sha1';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	684	$secret = $this->_genSecret($macFunc);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	685	$handle = uniqid();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	686	$expiresIn = $this->_sessionTtl;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	687	$this->_storage->addAssociation($handle,
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	688	$macFunc, $secret, time() + $expiresIn);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	689	$ret['openid.assoc_handle'] = $handle;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	690	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	691	$ret['openid.assoc_handle'] = $params['openid_assoc_handle'];
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	692	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	693	if (isset($params['openid_return_to'])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	694	$ret['openid.return_to'] = $params['openid_return_to'];
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	695	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	696	if (isset($params['openid_claimed_id'])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	697	$ret['openid.claimed_id'] = $params['openid_claimed_id'];
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	698	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	699	if (isset($params['openid_identity'])) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	700	$ret['openid.identity'] = $params['openid_identity'];
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	701	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	702
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	703	if ($version >= 2.0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	704	if (!empty($this->_opEndpoint)) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	705	$ret['openid.op_endpoint'] = $this->_opEndpoint;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	706	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	707	$ret['openid.op_endpoint'] = Zend_OpenId::selfUrl();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	708	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	709	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	710	$ret['openid.response_nonce'] = gmdate('Y-m-d\TH:i:s\Z') . uniqid();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	711	$ret['openid.mode'] = 'id_res';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	712
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	713	Zend_OpenId_Extension::forAll($extensions, 'prepareResponse', $ret);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	714
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	715	$signed = '';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	716	$data = '';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	717	foreach ($ret as $key => $val) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	718	if (strpos($key, 'openid.') === 0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	719	$key = substr($key, strlen('openid.'));
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	720	if (!empty($signed)) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	721	$signed .= ',';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	722	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	723	$signed .= $key;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	724	$data .= $key . ':' . $val . "\n";
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	725	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	726	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	727	$signed .= ',signed';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	728	$data .= 'signed:' . $signed . "\n";
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	729	$ret['openid.signed'] = $signed;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	730
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	731	$ret['openid.sig'] = base64_encode(
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	732	Zend_OpenId::hashHmac($macFunc, $data, $secret));
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	733
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	734	return $ret;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	735	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	736
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	737	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	738	* Performs authentication validation for dumb consumers
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	739	* Returns array of variables to push back to consumer.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	740	* It MUST contain 'is_valid' variable with value 'true' or 'false'.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	741	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	742	* @param float $version OpenID version
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	743	* @param array $params GET or POST request variables
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	744	* @return array
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	745	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	746	protected function _checkAuthentication($version, $params)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	747	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	748	$ret = array();
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	749	if ($version >= 2.0) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	750	$ret['ns'] = Zend_OpenId::NS_2_0;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	751	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	752	$ret['openid.mode'] = 'id_res';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	753
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	754	if (empty($params['openid_assoc_handle']) \|\|
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	755	empty($params['openid_signed']) \|\|
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	756	empty($params['openid_sig']) \|\|
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	757	!$this->_storage->getAssociation($params['openid_assoc_handle'],
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	758	$macFunc, $secret, $expires)) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	759	$ret['is_valid'] = 'false';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	760	return $ret;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	761	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	762
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	763	$signed = explode(',', $params['openid_signed']);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	764	$data = '';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	765	foreach ($signed as $key) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	766	$data .= $key . ':';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	767	if ($key == 'mode') {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	768	$data .= "id_res\n";
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	769	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	770	$data .= $params['openid_' . strtr($key,'.','_')]."\n";
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	771	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	772	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	773	if ($this->_secureStringCompare(base64_decode($params['openid_sig']),
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	774	Zend_OpenId::hashHmac($macFunc, $data, $secret))) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	775	$ret['is_valid'] = 'true';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	776	} else {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	777	$ret['is_valid'] = 'false';
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	778	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	779	return $ret;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	780	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	781
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	782	/**
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	783	* Securely compare two strings for equality while avoided C level memcmp()
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	784	* optimisations capable of leaking timing information useful to an attacker
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	785	* attempting to iteratively guess the unknown string (e.g. password) being
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	786	* compared against.
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	787	*
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	788	* @param string $a
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	789	* @param string $b
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	790	* @return bool
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	791	*/
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	792	protected function _secureStringCompare($a, $b)
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	793	{
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	794	if (strlen($a) !== strlen($b)) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	795	return false;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	796	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	797	$result = 0;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	798	for ($i = 0; $i < strlen($a); $i++) {
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	799	$result \|= ord($a[$i]) ^ ord($b[$i]);
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	800	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	801	return $result == 0;
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	802	}
4eba9c11703f first import Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com> parents: diff changeset	803	}

author	Yves-Marie Haussonne <1218002+ymph@users.noreply.github.com>
	Mon, 20 Feb 2012 01:35:15 +0100
changeset 527	80e5b9543cac
parent 207	web/Zend/OpenId/Provider.php@621fa6caec0c
child 807	877f952ae2bd
permissions	-rw-r--r--