archive
/
poidsy
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 2 Wiki Activity
PHP OpenID consumer
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
55 Commits
3 Branches
Tree: a4369dee50
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'a4369dee50'
${ noResults }
poidsy/examples/basic/index.php

index.php 7.1KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180 
  1. <?PHP

  2. 

  3. /* Poidsy 0.6 - http://chris.smith.name/projects/poidsy

  4.  * Copyright (c) 2008-2010 Chris Smith

  5.  *

  6.  * Permission is hereby granted, free of charge, to any person obtaining a copy

  7.  * of this software and associated documentation files (the "Software"), to deal

  8.  * in the Software without restriction, including without limitation the rights

  9.  * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell

  10.  * copies of the Software, and to permit persons to whom the Software is

  11.  * furnished to do so, subject to the following conditions:

  12.  *

  13.  * The above copyright notice and this permission notice shall be included in

  14.  * all copies or substantial portions of the Software.

  15.  *

  16.  * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR

  17.  * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,

  18.  * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE

  19.  * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER

  20.  * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,

  21.  * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE

  22.  * SOFTWARE.

  23.  */

  24. 

  25.  // Poidsy returns its results in a session variable, so we need to start the

  26.  // session here in order to get access to the results

  27.  session_start();

  28. 

  29.  // Request some information from the identity provider. Note that providers 

  30.  // don't have to implement the extension that provides this, so you can't

  31.  // rely on getting results back. You can use OPENID_SREG_REQUEST to more

  32.  // strongly request the information (it implies that the user will have to

  33.  // manually enter the data if the provider doesn't supply it).

  34.  //

  35.  // The fields listed here are all the valid SREG fields. Anything else

  36.  // almost certainly won't work (but you can of course omit ones you don't

  37.  // need).

  38.  define('OPENID_SREG_OPTIONAL',

  39.       'nickname,email,fullname,dob,gender,postcode,country,language,timezone');

  40. 

  41.  if (isset($_POST['openid_url']) || isset($_REQUEST['openid_mode'])) {

  42.   // There are two cases when poidsy's processor needs to be invoked - firstly,

  43.   // when the user has just submitted an OpenID identifier to be verified, in

  44.   // which case $_POST['openid_url'] will be present (poidsy has special

  45.   // handling for inputs named openid_url. If you want to use a URL from

  46.   // another source, you can define the OPENID_URL constant instead.).

  47.   // Secondly, if the user is being redirected back from their provider, the

  48.   // openid.mode parameter will be present (which PHP translates to openid_mode)

  49. 

  50.   if (isset($_POST['openid_type']) && $_POST['openid_type'] != 'openid_url') {

  51.    // This allows users to select one of the pre-defined identity providers

  52.    // using the provided radio buttons. The values of the radio buttons specify

  53.    // an URL on which we can perform Yadis discovery to find the OpenID

  54.    // endpoint.

  55.    define('OPENID_URL', $_POST['openid_type']);

  56.   }

  57. 

  58.   // Include the simple registration extension

  59.   require('../../sreg.ext.php');

  60. 

  61.   // Include and configure the attribute exchange extension

  62.   require('../../ax.ext.php');

  63.   AttributeExchange::addRequiredType('email', AttributeExchange::EMAIL);

  64. 

  65.   require('../../processor.php');

  66. 

  67.  } else {

  68.   // If we don't have any processing to be doing, show them the form and

  69.   // results.

  70. 

  71. ?>

  72. <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN"

  73.                       "http://www.w3.org/TR/html4/strict.dtd">

  74. <html>

  75.  <head>

  76.   <title>OpenID consumer demonstration</title>

  77.   <style type="text/css">

  78.    input#openid_url {

  79.     background: url('../../openid.gif') no-repeat; padding-left: 20px;

  80.     margin: 5px 0px 0px 40px;

  81.    }

  82. 

  83.    p { padding-left: 10px; }

  84.    p.error { border-left: 10px solid #f00; }

  85.    p.succ { border-left: 10px solid #0f0; }

  86.    caption { text-align: left; } 

  87.    table { margin: 10px; }

  88. 

  89.    ul { list-style-type: none; }

  90.    input[type="radio"] { width: 20px; }

  91.   </style>

  92.  </head>

  93.  <body>

  94.   <h1>OpenID consumer demo</h1>

  95. <?PHP

  96. 

  97.  if (isset($_SESSION['openid']['error'])) {

  98. 

  99.   // If the error variable is set, it means that poidsy has encountered an

  100.   // error while trying to validate the identifier. We just tell the user

  101.   // what went wrong, and unset the session vars so the messages don't persist

  102. 

  103.   echo '<p class="error">An error occured: ', htmlentities($_SESSION['openid']['error']), '</p>';

  104.   unset($_SESSION['openid']['error']);

  105. 

  106.  } else if (isset($_SESSION['openid']['validated']) && $_SESSION['openid']['validated']) {

  107. 

  108.   // Upon a successful validation, the validated field will have been set to

  109.   // true. It's important to check the validated field, as the identity

  110.   // will be specified in the array throughout the process, so it would be

  111.   // possible for the user to request the page with an identity specified

  112.   // but before Poidsy had validated it. As above, we unset the session

  113.   // vars so that the details don't persist.

  114. 

  115.   echo '<p class="succ">Success: your OpenID identifier is <em>', htmlentities($_SESSION['openid']['identity']), '</em></p>';

  116.   unset($_SESSION['openid']['validated']);

  117. 

  118.   // Show the SREG data returned, if any. SREG data is only present if you

  119.   // defined one of the OPENID_SREG constants before the request was sent,

  120.   // if the user's identity provider supports SREG, and if (depending on the

  121.   // provider) the user gives permission for you to have the data.

  122.   if (isset($_SESSION['openid']['sreg'])) {

  123.    echo '<table>';

  124.    echo '<caption>Simple Registration Extension data</caption>';

  125. 

  126.    foreach ($_SESSION['openid']['sreg'] as $type => $data) {

  127.     echo '<tr><th>', htmlentities($type), '</th>';

  128.     echo '<td>', htmlentities($data), '</td></tr>';

  129.    }

  130. 

  131.    echo '</table>';

  132. 

  133.    unset($_SESSION['openid']['sreg']);

  134.   }

  135. 

  136.   // Show the attribute exchange data returned, if any.

  137.   if (isset($_SESSION['openid']['ax'])) {

  138.    echo '<table>';

  139.    echo '<caption>Attribute Exchange Extension data</caption>';

  140. 

  141.    foreach ($_SESSION['openid']['ax']['types'] as $type => $uri) {

  142.     echo '<tr><th>', htmlentities($type), '</th>';

  143.     echo '<td>', htmlentities($uri), '</td>';

  144.     echo '<td>', $count = $_SESSION['openid']['ax']['counts'][$type], '</td>';

  145.     echo '<td>';

  146.     if ($count == 1) {

  147.      echo htmlentities($_SESSION['openid']['ax']['data'][$type]);

  148.     } else if ($count > 1) {

  149.      echo '<ol>';

  150.      foreach ($_SESSION['openid']['ax']['data'][$type] as $value) {

  151.       echo '<li>', htmlentities($value), '</li>';

  152.      }

  153.      echo '</ol>';

  154.     }

  155.     echo '</td>';

  156.     echo '</tr>';

  157.    }

  158. 

  159.    echo '</table>';

  160. 

  161.    unset($_SESSION['openid']['sreg']);

  162.   }

  163. 

  164.  }

  165. ?>

  166.   <form action="<?PHP echo htmlentities($_SERVER['REQUEST_URI']); ?>"

  167. 	method="post">

  168.    <ul>

  169.     <li><label><input type="radio" name="openid_type" value="https://www.google.com/accounts/o8/id"> <img src="google.png" alt="Google"> Login with my Google account</label></li>

  170.     <li><label><input type="radio" name="openid_type" value="yahoo.com"> <img src="yahoo.png" alt="Yahoo!"> Login with my Yahoo! account</label></li>

  171.     <li><label><input type="radio" name="openid_type" value="openid_url" checked="checked"> Login with another OpenID identity:</label> <br>

  172.         <input type="text" name="openid_url" id="openid_url"></li>

  173.    </ul>

  174.    <input type="submit" value="Login">

  175.   </form>

  176.  </body>

  177. </html>

  178. <?PHP

  179.  }

  180. ?>