git.cweiske.de / phorkie.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
request full name from OpenID provider (sreg)
[phorkie.git] / www / login.php
1 <?php
2 /**
3  * OpenID 
4  * 
5  * PHP Version 5.2.0+
6  * 
7  * @category  Auth
8  * @package   OpenID
9  * @author    Bill Shupp <hostmaster@shupp.org> 
10  * @copyright 2009 Bill Shupp
11  * @license   http://www.opensource.org/licenses/bsd-license.php FreeBSD
12  * @link      http://github.com/shupp/openid
13  */
14 namespace phorkie;
15 // A tool for testing Relying Party functionality
16 set_include_path(
17     __DIR__ . '/../../src/'
18     . PATH_SEPARATOR . get_include_path()
19 );
20
21 $pageRequiresLogin = false;
22 require_once 'www-header.php';
23 require_once 'openid/config.php';
24
25
26 if (isset($_REQUEST['logout'])) {
27     unset($_SESSION);
28     session_destroy();
29     $redirect = 'http://' . $_SERVER['HTTP_HOST'];
30     header('Location: ' . filter_var($redirect, FILTER_SANITIZE_URL));
31     exit;
32 }
33
34 if (!count($_GET) && !count($_POST)) {
35     render(
36         'login',
37         null
38     );
39     exit;
40 }
41
42 // Hackaround Non-Javascript Login Page
43 if (!count($_POST) && isset($_GET['start'])) {
44     $_POST = $_GET;
45 }
46
47 if (isset($_POST['openid_url'])) {
48     $openid_url = $_POST['openid_url'];
49 } else if (isset($_SESSION['openid_url'])) {
50     $openid_url = $_SESSION['openid_url'];
51 } else {
52     $openid_url = null;
53 }
54
55 try {
56     $o = new \OpenID_RelyingParty($returnTo, $realm, $openid_url);
57 } catch (OpenID_Exception $e) {
58     $contents  = "<div class='openid_results'>\n";
59     $contents .= "<pre>" . $e->getMessage() . "</pre>\n";
60     $contents .= "</div class='openid_results'>";
61     include_once 'openid/wrapper.php';
62     exit;
63 }
64
65 if (!empty($_POST['disable_associations']) || !empty($_SESSION['disable_associations'])) {
66     $o->disableAssociations();
67     $_SESSION['disable_associations'] = true;
68 }
69
70 $log = new \OpenID_Observer_Log;
71 \OpenID::attach($log);
72
73 if (isset($_POST['start'])) {
74
75     $_SESSION['openid_url'] = $openid_url;
76     try {
77         $authRequest = $o->prepare();
78     } catch (OpenID_Exception $e) {
79         $contents  = "<div class='openid_results'>\n";
80         $contents .= "<pre>" . $e->getMessage() . "</pre>\n";
81         $contents .= "</div class='openid_results'>";
82         include_once 'openid/wrapper.php';
83         exit;
84     }
85
86     // checkid_immediate
87     if (!empty($_POST['checkid_immediate'])) {
88         $authRequest->setMode('checkid_immediate');
89     }
90
91     // SREG
92     $sreg = new \OpenID_Extension_SREG11(\OpenID_Extension::REQUEST);
93     $sreg->set('required', 'email,fullname');
94     $authRequest->addExtension($sreg);
95
96     // AX
97     $ax = new \OpenID_Extension_AX(\OpenID_Extension::REQUEST);
98     $ax->set('type.email', 'http://axschema.org/contact/email');
99     $ax->set('type.firstname', 'http://axschema.org/namePerson/first');
100     $ax->set('type.lastname', 'http://axschema.org/namePerson/last');
101     $ax->set('mode', 'fetch_request');
102     $ax->set('required', 'email,firstname,lastname');
103     $authRequest->addExtension($ax);
104
105     // UI
106     if (!empty($_POST['ui'])) {
107         $ui = new \OpenID_Extension_UI(\OpenID_Extension::REQUEST);
108         $ui->set('mode', 'popup');
109         $ui->set('language', 'en-US');
110         $authRequest->addExtension($ui);
111     }
112
113     // OAuth
114     if (!empty($_POST['oauth'])) {
115         $oauth = new \OpenID_Extension_OAuth(\OpenID_Extension::REQUEST);
116         $oauth->set('consumer', $_POST['oauth_consumer_key']);
117         $_SESSION['OAuth_consumer_key']    = $_POST['oauth_consumer_key'];
118         $_SESSION['OAuth_consumer_secret'] = $_POST['oauth_consumer_secret'];
119
120         $oauth->set('scope', $_POST['oauth_scope']);
121         $_SESSION['OAuth_scope'] = $_POST['oauth_scope'];
122
123         $_SESSION['OAuth_access_token_url']    = $_POST['oauth_access_token_url'];
124         $_SESSION['OAuth_access_token_method'] = $_POST['oauth_access_token_method'];
125
126         $authRequest->addExtension($oauth);
127     }
128     
129     $url = $authRequest->getAuthorizeURL();
130     
131     if (empty($_POST['debug'])) {
132         header("Location: $url");
133         exit;
134     }
135     
136 } else {
137     if (isset($_SESSION['openid_url'])) {
138         $usid = $_SESSION['openid_url'];
139         unset($_SESSION['openid_url']);
140     } else {
141         $usid = null;
142     }
143
144     unset($_SESSION['disable_associations']);
145
146     if (!count($_POST)) {
147         list(, $queryString) = explode('?', $_SERVER['REQUEST_URI']);
148     } else {
149         // I hate php sometimes
150         $queryString = file_get_contents('php://input');
151     }
152
153     $message = new \OpenID_Message($queryString, \OpenID_Message::FORMAT_HTTP);
154     $id      = $message->get('openid.claimed_id');
155     $mode    = $message->get('openid.mode');
156
157     try {
158         $result = $o->verify(new \Net_URL2($returnTo . '?' . $queryString), $message);
159
160         if ($result->success()) {
161             $status  = "<tr><td>Status:</td><td><font color='green'>SUCCESS!";
162             $status .= " ({$result->getAssertionMethod()})</font></td></tr>";
163         } else {
164             $status  = "<tr><td>Status:</td><td><font color='red'>FAIL!";
165             $status .= " ({$result->getAssertionMethod()})</font></td></tr>";
166         }
167     } catch (OpenID_Exception $e) {
168         $status  = "<tr><td>Status:</td><td><font color='red'>EXCEPTION!";
169         $status .= " ({$e->getMessage()} : {$e->getCode()})</font></td></tr>";
170     }
171
172     // OAuth hyprid fetching access token
173     if (isset($_SESSION['OAuth_consumer_key'],
174               $_SESSION['OAuth_consumer_secret'],
175               $_SESSION['OAuth_access_token_url'],
176               $_SESSION['OAuth_access_token_method'])) {
177
178         try {
179             $oauth = new \OpenID_Extension_OAuth(\OpenID_Extension::RESPONSE,
180                                                 $message);
181
182             // Fix line lengths.
183             $consumerKey    = $_SESSION['OAuth_consumer_key'];
184             $consumerSecret = $_SESSION['OAuth_consumer_key'];
185             $tokenURL       = $_SESSION['OAuth_access_token_url'];
186             $tokenMethod    = $_SESSION['OAuth_access_token_method'];
187
188             $oauthData = $oauth->getAccessToken($consumerKey,
189                                                 $consumerSecret,
190                                                 $tokenURL,
191                                                 array(),
192                                                 $tokenMethod);
193
194         } catch (Exception $e) {
195         }
196     }
197
198     $openid = $message->getArrayFormat();
199
200     $email = (isset($openid['openid.ext1.value.email'])) ? $openid['openid.ext1.value.email'] : null;
201     $email = (isset($openid['openid.ext2.value.email']) && !isset($email)) ? $openid['openid.ext2.value.email'] : $email;
202     $email = (isset($openid['openid.sreg.email']) && !isset($email)) ? $openid['openid.sreg.email'] : $email;
203     $email = (isset($openid['openid.ax.value.email']) && !isset($email)) ? $openid['openid.ax.value.email'] : $email;
204     $_SESSION['email'] = (isset($email)) ? $email : $GLOBALS['phorkie']['auth']['anonymousEmail'];
205
206     $name = (isset($openid['openid.ext1.value.firstname']) && isset($openid['openid.ext1.value.lastname'])) ? $openid['openid.ext1.value.firstname']." ".$openid['openid.ext1.value.lastname'] : null;
207     $name = (isset($openid['openid.sreg.fullname']) && !isset($name)) ? $openid['openid.sreg.fullname'] : $name;
208     $_SESSION['name'] = (isset($name)) ? $name : $_SERVER['REMOTE_ADDR'];
209
210     $_SESSION['identity'] = $openid['openid.identity'];
211
212     $redirect = 'http://' . $_SERVER['HTTP_HOST'] . $_SESSION['REQUEST_URI'];
213     header('Location: ' . filter_var($redirect, FILTER_SANITIZE_URL));
214     exit;
215 }
216
217 ?>
Self-hosted pastebin software written in PHP. Pastes are editable, may have multiple files and are stored in git repositories.