X-Git-Url: https://git.cweiske.de/phorkie.git/blobdiff_plain/97c4ac59eed8b66b2e7f85d8ac325b063fb8a0ce..44a673a5864e2f2b9d14d7c67d9f5baf41f957c9:/www/login.php diff --git a/www/login.php b/www/login.php index 87c34f4..150cf25 100644 --- a/www/login.php +++ b/www/login.php @@ -1,11 +1,156 @@ \n"; + $contents .= "
" . $e->getMessage() . "
\n"; + $contents .= ""; + include_once 'openid/wrapper.php'; + exit; +} + +if (!empty($_POST['disable_associations']) || !empty($_SESSION['disable_associations'])) { + $o->disableAssociations(); + $_SESSION['disable_associations'] = true; +} + +$log = new \OpenID_Observer_Log; +\OpenID::attach($log); + +if (isset($_POST['openid_url'])) { + + $_SESSION['openid_url'] = $openid_url; + try { + $authRequest = $o->prepare(); + } catch (OpenID_Exception $e) { + $contents = "
\n"; + $contents .= "
" . $e->getMessage() . "
\n"; + $contents .= "
"; + include_once 'openid/wrapper.php'; + exit; + } + + // SREG + $sreg = new \OpenID_Extension_SREG11(\OpenID_Extension::REQUEST); + $sreg->set('required', 'email,fullname'); + $authRequest->addExtension($sreg); + + // AX + $ax = new \OpenID_Extension_AX(\OpenID_Extension::REQUEST); + $ax->set('type.email', 'http://axschema.org/contact/email'); + $ax->set('type.firstname', 'http://axschema.org/namePerson/first'); + $ax->set('type.lastname', 'http://axschema.org/namePerson/last'); + $ax->set('mode', 'fetch_request'); + $ax->set('required', 'email,firstname,lastname'); + $authRequest->addExtension($ax); + + $url = $authRequest->getAuthorizeURL(); + + header("Location: $url"); + exit; + +} + +if (isset($_SESSION['openid_url'])) { + $usid = $_SESSION['openid_url']; + unset($_SESSION['openid_url']); +} else { + $usid = null; +} + +unset($_SESSION['disable_associations']); + +if (!count($_POST)) { + list(, $queryString) = explode('?', $_SERVER['REQUEST_URI']); +} else { + // I hate php sometimes + $queryString = file_get_contents('php://input'); +} + +$message = new \OpenID_Message($queryString, \OpenID_Message::FORMAT_HTTP); +$id = $message->get('openid.claimed_id'); +$mode = $message->get('openid.mode'); + +try { + $result = $o->verify(new \Net_URL2($returnTo . '?' . $queryString), $message); + + if ($result->success()) { + $status = "Status:SUCCESS!"; + $status .= " ({$result->getAssertionMethod()})"; + } else { + $status = "Status:FAIL!"; + $status .= " ({$result->getAssertionMethod()})"; + } +} catch (OpenID_Exception $e) { + $status = "Status:EXCEPTION!"; + $status .= " ({$e->getMessage()} : {$e->getCode()})"; + } + + +$openid = $message->getArrayFormat(); + +$email = isset($openid['openid.ext1.value.email']) + ? $openid['openid.ext1.value.email'] + : null; +$email = isset($openid['openid.ext2.value.email']) && !isset($email) + ? $openid['openid.ext2.value.email'] + : $email; +$email = isset($openid['openid.sreg.email']) && !isset($email) + ? $openid['openid.sreg.email'] + : $email; +$email = isset($openid['openid.ax.value.email']) && !isset($email) + ? $openid['openid.ax.value.email'] + : $email; +$_SESSION['email'] = isset($email) + ? $email + : $GLOBALS['phorkie']['auth']['anonymousEmail']; + +$name = isset($openid['openid.ext1.value.firstname']) + && isset($openid['openid.ext1.value.lastname']) + ? $openid['openid.ext1.value.firstname'] . ' ' + . $openid['openid.ext1.value.lastname'] + : null; +$name = isset($openid['openid.sreg.fullname']) && !isset($name) + ? $openid['openid.sreg.fullname'] + : $name; + +$_SESSION['name'] = isset($name) ? $name : $_SERVER['REMOTE_ADDR']; +$_SESSION['identity'] = $openid['openid.identity']; + +$redirect = 'http://' . $_SERVER['HTTP_HOST'] . $_SESSION['REQUEST_URI']; +header('Location: ' . filter_var($redirect, FILTER_SANITIZE_URL)); +exit; ?>