<fieldset>
<legend>Access Denied</legend>
- <img src="images/access_denied.png">
+ <img src="images/access_denied.png" align='left'>
+ <p>We're sorry, your identity is not authorized:</p>
+ <p><code>{{ identity }}</code></p>
+ <p>If you feel this message is in error, please notify the site admin
+ and include your identity.</p>
</fieldset>
{% endblock %}
}
$openid = $message->getArrayFormat();
- if ($GLOBALS['phorkie']['auth']['secure'] > 0 &&
- $GLOBALS['phorkie']['auth']['userlist']) {
- if (!in_array($openid['openid.identity'], $GLOBALS['phorkie']['users'])) {
- $redirect = 'http://' . $_SERVER['HTTP_HOST'] . "/forbidden";
- header('Location: ' . filter_var($redirect, FILTER_SANITIZE_URL));
- exit;
- }
- }
- // include_once 'openid/wrapper.php';
$email = (isset($openid['openid.ext1.value.email'])) ? $openid['openid.ext1.value.email'] : null;
$email = (isset($openid['openid.ext2.value.email']) && !isset($email)) ? $openid['openid.ext2.value.email'] : $email;
header("Location: /login");
exit;
}
+if ($GLOBALS['phorkie']['auth']['secure'] > 0 &&
+ $GLOBALS['phorkie']['auth']['userlist']) {
+ if (!in_array($_SESSION['identity'], $GLOBALS['phorkie']['users'])) {
+ $redirect = 'http://' . $_SERVER['HTTP_HOST'] . "/forbidden";
+ header('Location: ' . filter_var($redirect, FILTER_SANITIZE_URL));
+ exit;
+ }
+}
?>