X-Git-Url: https://git.cweiske.de/phorkie.git/blobdiff_plain/97c4ac59eed8b66b2e7f85d8ac325b063fb8a0ce..44a673a5864e2f2b9d14d7c67d9f5baf41f957c9:/www/login.php
diff --git a/www/login.php b/www/login.php
index 87c34f4..150cf25 100644
--- a/www/login.php
+++ b/www/login.php
@@ -1,11 +1,156 @@
\n";
+ $contents .= "
" . $e->getMessage() . "
\n";
+ $contents .= "";
+ include_once 'openid/wrapper.php';
+ exit;
+}
+
+if (!empty($_POST['disable_associations']) || !empty($_SESSION['disable_associations'])) {
+ $o->disableAssociations();
+ $_SESSION['disable_associations'] = true;
+}
+
+$log = new \OpenID_Observer_Log;
+\OpenID::attach($log);
+
+if (isset($_POST['openid_url'])) {
+
+ $_SESSION['openid_url'] = $openid_url;
+ try {
+ $authRequest = $o->prepare();
+ } catch (OpenID_Exception $e) {
+ $contents = "\n";
+ $contents .= "
" . $e->getMessage() . "
\n";
+ $contents .= "
";
+ include_once 'openid/wrapper.php';
+ exit;
+ }
+
+ // SREG
+ $sreg = new \OpenID_Extension_SREG11(\OpenID_Extension::REQUEST);
+ $sreg->set('required', 'email,fullname');
+ $authRequest->addExtension($sreg);
+
+ // AX
+ $ax = new \OpenID_Extension_AX(\OpenID_Extension::REQUEST);
+ $ax->set('type.email', 'http://axschema.org/contact/email');
+ $ax->set('type.firstname', 'http://axschema.org/namePerson/first');
+ $ax->set('type.lastname', 'http://axschema.org/namePerson/last');
+ $ax->set('mode', 'fetch_request');
+ $ax->set('required', 'email,firstname,lastname');
+ $authRequest->addExtension($ax);
+
+ $url = $authRequest->getAuthorizeURL();
+
+ header("Location: $url");
+ exit;
+
+}
+
+if (isset($_SESSION['openid_url'])) {
+ $usid = $_SESSION['openid_url'];
+ unset($_SESSION['openid_url']);
+} else {
+ $usid = null;
+}
+
+unset($_SESSION['disable_associations']);
+
+if (!count($_POST)) {
+ list(, $queryString) = explode('?', $_SERVER['REQUEST_URI']);
+} else {
+ // I hate php sometimes
+ $queryString = file_get_contents('php://input');
+}
+
+$message = new \OpenID_Message($queryString, \OpenID_Message::FORMAT_HTTP);
+$id = $message->get('openid.claimed_id');
+$mode = $message->get('openid.mode');
+
+try {
+ $result = $o->verify(new \Net_URL2($returnTo . '?' . $queryString), $message);
+
+ if ($result->success()) {
+ $status = "Status: | SUCCESS!";
+ $status .= " ({$result->getAssertionMethod()}) |
";
+ } else {
+ $status = "Status: | FAIL!";
+ $status .= " ({$result->getAssertionMethod()}) |
";
+ }
+} catch (OpenID_Exception $e) {
+ $status = "Status: | EXCEPTION!";
+ $status .= " ({$e->getMessage()} : {$e->getCode()}) |
";
+ }
+
+
+$openid = $message->getArrayFormat();
+
+$email = isset($openid['openid.ext1.value.email'])
+ ? $openid['openid.ext1.value.email']
+ : null;
+$email = isset($openid['openid.ext2.value.email']) && !isset($email)
+ ? $openid['openid.ext2.value.email']
+ : $email;
+$email = isset($openid['openid.sreg.email']) && !isset($email)
+ ? $openid['openid.sreg.email']
+ : $email;
+$email = isset($openid['openid.ax.value.email']) && !isset($email)
+ ? $openid['openid.ax.value.email']
+ : $email;
+$_SESSION['email'] = isset($email)
+ ? $email
+ : $GLOBALS['phorkie']['auth']['anonymousEmail'];
+
+$name = isset($openid['openid.ext1.value.firstname'])
+ && isset($openid['openid.ext1.value.lastname'])
+ ? $openid['openid.ext1.value.firstname'] . ' '
+ . $openid['openid.ext1.value.lastname']
+ : null;
+$name = isset($openid['openid.sreg.fullname']) && !isset($name)
+ ? $openid['openid.sreg.fullname']
+ : $name;
+
+$_SESSION['name'] = isset($name) ? $name : $_SERVER['REMOTE_ADDR'];
+$_SESSION['identity'] = $openid['openid.identity'];
+
+$redirect = 'http://' . $_SERVER['HTTP_HOST'] . $_SESSION['REQUEST_URI'];
+header('Location: ' . filter_var($redirect, FILTER_SANITIZE_URL));
+exit;
?>