Home Explore Help
Sign In
diogo
/
gnu-social
Watch 19
Star 39
Fork 35
Files Issues 116 Pull Requests 5 Wiki
Branch: master
Branches Tags
gnu-social
/
vendor
/
openid
/
php-openid
/
examples
/
consumer
/
finish_auth.php

finish_auth.php 3.1 KB
Permalink History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798 
  1. <?php
    2. 

  2. 

  3. require_once "common.php";
    4. 

  4. session_start();
    5. 

  5. 

  6. function escape($thing) {
    7. 

  7.     return htmlentities($thing);
    8. 

  8. }
    9. 

  9. 

  10. function run() {
    11. 

  11.     $consumer = getConsumer();
    12. 

  12. 

  13.     // Complete the authentication process using the server's
    14. 

  14.     // response.
    15. 

  15.     $return_to = getReturnTo();
    16. 

  16.     $response = $consumer->complete($return_to);
    17. 

  17. 

  18.     // Check the response status.
    19. 

  19.     if ($response->status == Auth_OpenID_CANCEL) {
    20. 

  20.         // This means the authentication was cancelled.
    21. 

  21.         $msg = 'Verification cancelled.';
    22. 

  22.     } else if ($response->status == Auth_OpenID_FAILURE) {
    23. 

  23.         // Authentication failed; display the error message.
    24. 

  24.         $msg = "OpenID authentication failed: " . $response->message;
    25. 

  25.     } else if ($response->status == Auth_OpenID_SUCCESS) {
    26. 

  26.         // This means the authentication succeeded; extract the
    27. 

  27.         // identity URL and Simple Registration data (if it was
    28. 

  28.         // returned).
    29. 

  29.         $openid = $response->getDisplayIdentifier();
    30. 

  30.         $esc_identity = escape($openid);
    31. 

  31. 

  32.         $success = sprintf('You have successfully verified ' .
    33. 

  33.                            '<a href="%s">%s</a> as your identity.',
    34. 

  34.                            $esc_identity, $esc_identity);
    35. 

  35. 

  36.         if ($response->endpoint->canonicalID) {
    37. 

  37.             $escaped_canonicalID = escape($response->endpoint->canonicalID);
    38. 

  38.             $success .= '  (XRI CanonicalID: '.$escaped_canonicalID.') ';
    39. 

  39.         }
    40. 

  40. 

  41.         $sreg_resp = Auth_OpenID_SRegResponse::fromSuccessResponse($response);
    42. 

  42. 

  43.         $sreg = $sreg_resp->contents();
    44. 

  44. 

  45.         if (@$sreg['email']) {
    46. 

  46.             $success .= "  You also returned '".escape($sreg['email']).
    47. 

  47.                 "' as your email.";
    48. 

  48.         }
    49. 

  49. 

  50.         if (@$sreg['nickname']) {
    51. 

  51.             $success .= "  Your nickname is '".escape($sreg['nickname']).
    52. 

  52.                 "'.";
    53. 

  53.         }
    54. 

  54. 

  55.         if (@$sreg['fullname']) {
    56. 

  56.             $success .= "  Your fullname is '".escape($sreg['fullname']).
    57. 

  57.                 "'.";
    58. 

  58.         }
    59. 

  59. 

  60. 	$pape_resp = Auth_OpenID_PAPE_Response::fromSuccessResponse($response);
    61. 

  61. 

  62. 	if ($pape_resp) {
    63. 

  63.             if ($pape_resp->auth_policies) {
    64. 

  64.                 $success .= "<p>The following PAPE policies affected the authentication:</p><ul>";
    65. 

  65. 

  66.                 foreach ($pape_resp->auth_policies as $uri) {
    67. 

  67.                     $escaped_uri = escape($uri);
    68. 

  68.                     $success .= "<li><tt>$escaped_uri</tt></li>";
    69. 

  69.                 }
    70. 

  70. 

  71.                 $success .= "</ul>";
    72. 

  72.             } else {
    73. 

  73.                 $success .= "<p>No PAPE policies affected the authentication.</p>";
    74. 

  74.             }
    75. 

  75. 

  76.             if ($pape_resp->auth_age) {
    77. 

  77.                 $age = escape($pape_resp->auth_age);
    78. 

  78.                 $success .= "<p>The authentication age returned by the " .
    79. 

  79.                     "server is: <tt>".$age."</tt></p>";
    80. 

  80.             }
    81. 

  81. 

  82.             if ($pape_resp->nist_auth_level) {
    83. 

  83.                 $auth_level = escape($pape_resp->nist_auth_level);
    84. 

  84.                 $success .= "<p>The NIST auth level returned by the " .
    85. 

  85.                     "server is: <tt>".$auth_level."</tt></p>";
    86. 

  86.             }
    87. 

  87. 

  88. 	} else {
    89. 

  89.             $success .= "<p>No PAPE response was sent by the provider.</p>";
    90. 

  90. 	}
    91. 

  91.     }
    92. 

  92. 

  93.     include 'index.php';
    94. 

  94. }
    95. 

  95. 

  96. run();
    97. 

  97. 

  98. ?>
    99.