123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559 |
- <?php
- /**
- * OpenID server configuration script.
- *
- * This script generates a config.php file needed by the server
- * example.
- *
- * @package OpenID.Examples
- * @author JanRain, Inc. <openid@janrain.com>
- * @copyright 2005-2008 Janrain, Inc.
- * @license http://www.apache.org/licenses/LICENSE-2.0 Apache
- */
- $path_extra = dirname(dirname(dirname(__FILE__)));
- $path = ini_get('include_path');
- $path = $path_extra . PATH_SEPARATOR . $path;
- ini_set('include_path', $path);
- require_once "Auth/OpenID.php";
- /**
- * Data.
- */
- $store_types = array("Filesystem" => "Auth_OpenID_FileStore",
- "MySQL" => "Auth_OpenID_MySQLStore",
- "PostgreSQL" => "Auth_OpenID_PostgreSQLStore",
- "SQLite" => "Auth_OpenID_SQLiteStore");
- /**
- * Main.
- */
- $messages = array();
- session_start();
- init_session();
- if (!check_session() ||
- isset($_GET['add_openid'])) {
- render_form();
- } else {
- print generate_config(isset($_GET['download']));
- }
- /**
- * Functions.
- */
- function check_url($url) {
- return (Auth_OpenID::normalizeUrl($url) !== null);
- }
- function build_url() {
- $port = (($_SERVER['SERVER_PORT'] == 80) ? null : $_SERVER['SERVER_PORT']);
- $parts = explode("/", $_SERVER['SERVER_PROTOCOL']);
- $scheme = strtolower($parts[0]);
- if ($port) {
- return sprintf("%s://%s:%s%s/server.php", $scheme, $_SERVER['SERVER_NAME'],
- $port, dirname($_SERVER['PHP_SELF']));
- } else {
- return sprintf("%s://%s%s/server.php", $scheme, $_SERVER['SERVER_NAME'],
- dirname($_SERVER['PHP_SELF']));
- }
- }
- function check_open_basedir($path) {
- if (ini_get('open_basedir')) {
- $parts = explode(PATH_SEPARATOR, ini_get('open_basedir'));
- $found = false;
- foreach ($parts as $p) {
- if (strpos($path, $p) === 0) {
- $found = true;
- break;
- }
- }
- return $found;
- } else {
- return true;
- }
- }
- function check_session() {
- global $messages;
- if ($_GET && isset($_GET['clear'])) {
- session_destroy();
- $_SESSION = array();
- init_session();
- return false;
- }
- $bad_path = false;
- if (isset($_GET['generate'])) {
- if (!$_SESSION['server_url']) {
- $messages[] = "Please enter a server URL.";
- }
- if (!isset($_SESSION['store_type'])) {
- $messages[] = "No store type chosen.";
- } else {
- switch ($_SESSION['store_type']) {
- case "Filesystem":
- if (!@$_SESSION['store_data']['fs_path']) {
- $messages[] = "Please specify a filesystem store path.";
- } else {
- if (!check_open_basedir($_SESSION['store_data']['fs_path'])) {
- $messages[] = "The filesystem store path violates PHP's <code>open_basedir</code> setting.";
- $bad_path = true;
- }
- }
- break;
- case "SQLite":
- if (!@$_SESSION['store_data']['sqlite_path']) {
- $messages[] = "Please specify a SQLite database path.";
- } else {
- if (!check_open_basedir($_SESSION['store_data']['sqlite_path'])) {
- $messages[] = "The SQLite store path violates PHP's <code>open_basedir</code> setting.";
- $bad_path = true;
- }
- }
- break;
- default:
- if (!($_SESSION['store_data']['host'] &&
- $_SESSION['store_data']['database'] &&
- $_SESSION['store_data']['username'] &&
- $_SESSION['store_data']['password'])) {
- $messages[] = "Please specify database connection details.";
- }
- }
- }
- }
- if ($_SESSION['store_type'] &&
- $_SESSION['server_url'] &&
- (parse_url($_SESSION['server_url']) !== false) &&
- ((($_SESSION['store_type'] == 'Filesystem') &&
- $_SESSION['store_data']['fs_path']) ||
- (($_SESSION['store_type'] == 'SQLite') &&
- $_SESSION['store_data']['sqlite_path']) ||
- ($_SESSION['store_data']['host'] &&
- $_SESSION['store_data']['username'] &&
- $_SESSION['store_data']['database'] &&
- $_SESSION['store_data']['password'])) &&
- !$bad_path) {
- return true;
- }
- return false;
- }
- function render_form() {
- global $store_types, $fields, $messages;
- $basedir_msg = "";
- if (ini_get('open_basedir')) {
- $basedir_msg = "</br><span class=\"notice\">Note: Due to the ".
- "<code>open_basedir</code> php.ini setting, be sure to ".
- "choose a path in one of the following directories:<ul><li>".
- implode("<li>",
- explode(PATH_SEPARATOR, ini_get('open_basedir'))).
- "</ul></span>";
- }
- $sqlite_found = false;
- if (extension_loaded('sqlite') ||
- (function_exists('dl') && @dl('sqlite.' . PHP_SHLIB_SUFFIX))) {
- $sqlite_found = true;
- }
- $mysql_found = false;
- if (extension_loaded('mysql') ||
- (function_exists('dl') && @dl('mysql.' . PHP_SHLIB_SUFFIX))) {
- $mysql_found = true;
- }
- $pgsql_found = false;
- if (extension_loaded('pgsql') ||
- (function_exists('dl') && @dl('pgsql.' . PHP_SHLIB_SUFFIX))) {
- $pgsql_found = true;
- }
- ?>
- <html>
- <head>
- <style type="text/css">
- span.label {
- float: left;
- width: 2in;
- }
- span.notice {
- color: red;
- font-size: 80%;
- }
- div p {
- border-top: 1px solid #ccc;
- font-style: italic;
- padding-top: 0.5em;
- }
- div {
- padding: 3px;
- }
- div.store_fields {
- margin-left: 2in;
- padding: default;
- }
- div.store_fields label.field {
- float: left;
- width: 1.75in;
- }
- div.store_fields > div {
- border: 1px solid gray;
- margin-bottom: 0.5em;
- background: #eee;
- }
- div.store_fields > div > div {
- margin-left: 0.4in;
- }
- div.errors {
- background: #faa;
- border: 1px solid red;
- }
- </style>
- </head>
- <body>
- <h2>OpenID Example Server Configuration</h2>
- <?php
- if ($messages) {
- print "<div class=\"errors\">";
- foreach ($messages as $m) {
- print "<div>$m</div>";
- }
- print "</div>";
- }
- ?>
- <p>
- Your browser has been redirected to this page so you can configure the
- server example. This form will auto-generate an OpenID example server
- configuration for use with the OpenID server example.
- </p>
- <form>
- <div>
- <p>
- The server URL is the URL that points to the "server.php" file. It
- looks like your server URL should be <code><?php print build_url(); ?></code>.
- </p>
- <span class="label"><label for="i_server_url">Server URL:</label></span>
- <span>
- <input type="text" id="i_server_url" size="35" name="server_url"
- value="<?php print $_SESSION['server_url'] ?>">
- </span>
- </div>
- <div>
- <p>
- If this package isn't installed in the PHP include path, the package's
- directory should be added. For example, if the package is in
- <code>/home/me/PHP-OpenID/</code>, you should enter that directory here.
- </p>
- <span class="label">
- <label for="i_include_path">Include path (optional):</label>
- </span>
- <span>
- <input type="text" id="i_include_path" size="35" name="include_path"
- value="<?php print $_SESSION['include_path'] ?>">
- </span>
- </div>
- <div>
- <p>
- The server needs to store OpenID information in a "store". The
- following store types are available on your PHP installation:
- </p>
- <span class="label">Store method:</span>
- <div class="store_fields">
- <div>
- <input type="radio" name="store_type" value="Filesystem"
- id="i_filesystem"<?php if ($_SESSION['store_type'] == 'Filesystem') { print " CHECKED"; } ?>>
- <label for="i_filesystem">Filesystem</label>
- <div>
- <label for="i_fs_path" class="field">Filesystem path:</label>
- <input type="text" name="fs_path" id="i_fs_path"
- value="<?php print @$_SESSION['store_data']['fs_path']; ?>">
- <?php print $basedir_msg; ?>
- </div>
- </div>
- <?php if ($sqlite_found) { ?>
- <div>
- <input type="radio" name="store_type" value="SQLite"
- id="i_sqlite"<?php if ($_SESSION['store_type'] == 'SQLite') { print " CHECKED"; } ?>>
- <label for="i_sqlite">SQLite</label>
- <div>
- <label for="i_sqlite_path" class="field">SQLite database path:</label>
- <input type="text" value="<?php print @$_SESSION['store_data']['sqlite_path']; ?>"
- name="sqlite_path" id="i_sqlite_path">
- <?php print $basedir_msg; ?>
- </div>
- </div>
- <?php } ?>
- <?php if ($mysql_found || $pgsql_found) { ?>
- <div>
- <?php if ($mysql_found) { ?>
- <input type="radio" name="store_type" value="MySQL"
- id="i_mysql"<?php if ($_SESSION['store_type'] == 'MySQL') { print " CHECKED"; } ?>>
- <label for="i_mysql">MySQL</label>
- <?php } ?>
- <?php if ($pgsql_found) { ?>
- <input type="radio" name="store_type" value="PostgreSQL"
- id="i_pgsql"<?php if ($_SESSION['store_type'] == 'PostgreSQL') { print " CHECKED"; } ?>>
- <label for="i_pgsql">PostgreSQL</label>
- <?php } ?>
- <div>
- <label for="i_m_host" class="field">Host:</label>
- <input type="text" value="<?php print @$_SESSION['store_data']['host']; ?>" name="host" id="i_m_host">
- </div>
- <div>
- <label for="i_m_database" class="field">Database:</label>
- <input value="<?php print @$_SESSION['store_data']['database']; ?>" type="text" name="database" id="i_m_database">
- </div>
- <div>
- <label for="i_m_username" class="field">Username:</label>
- <input type="text" name="username" id="i_m_username" value="<?php print @$_SESSION['store_data']['username']; ?>">
- </div>
- <div>
- <label for="i_m_password" class="field">Password:</label>
- <input type="password" name="password" id="i_m_password" value="<?php print @$_SESSION['store_data']['password']; ?>">
- </div>
- </div>
- <?php } ?>
- </div>
- </div>
- <input type="submit" name="generate" value="Generate Configuration">
- </form>
- </body>
- </html>
- <?php
- }
- function init_session() {
- global $messages;
- // Set a guess value for the server url.
- if (!array_key_exists('server_url', $_SESSION)) {
- $_SESSION['server_url'] = build_url();
- }
- foreach (array('server_url', 'include_path', 'store_type') as $key) {
- if (!isset($_SESSION[$key])) {
- $_SESSION[$key] = "";
- }
- }
- if (!isset($_SESSION['store_data'])) {
- $_SESSION['store_data'] = array();
- }
- foreach (array('server_url', 'include_path', 'store_type') as $field) {
- if (array_key_exists($field, $_GET)) {
- $_SESSION[$field] = $_GET[$field];
- }
- }
- foreach (array('username', 'password', 'database', 'host', 'fs_path', 'sqlite_path') as $field) {
- if (array_key_exists($field, $_GET)) {
- $_SESSION['store_data'][$field] = $_GET[$field];
- }
- }
- }
- function generate_config($download = false) {
- if ($download) {
- // Emit headers to force browser download.
- header("Content-type: text/plain");
- header("Content-disposition: attachment; filename=config.php");
- print "<?php\n";
- } else {
- ?>
- <html>
- <body>
- <h2>OpenID Example Server Configuration</h2>
- <p>
- Put the following text into <strong><?php print dirname(__FILE__); print DIRECTORY_SEPARATOR; ?>config.php</strong>.
- </p>
- <p>
- <a href="setup.php?clear=1">Back to form</a> (resets settings)
- </p>
- <p>
- <a href="setup.php?download=1">Download this configuration</a>
- </p>
- <pre style="border: 1px solid gray; background: #eee; padding: 5px;">
- <?php
- print "<?php\n";
- }
- ?>
- <?php if ($_SESSION['include_path']) { ?>
- /**
- * Set any extra include paths needed to use the library
- */
- set_include_path(get_include_path() . PATH_SEPARATOR . "<?php
- print $_SESSION['include_path'];
- ?>");
- <?php } ?>
- /**
- * The URL for the server.
- *
- * This is the location of server.php. For example:
- *
- * $server_url = 'http://example.com/~user/server.php';
- *
- * This must be a full URL.
- */
- $server_url = "<?php
- print $_SESSION['server_url'];
- ?>";
- /**
- * Initialize an OpenID store
- *
- * @return object $store an instance of OpenID store (see the
- * documentation for how to create one)
- */
- function getOpenIDStore()
- {
- <?php
- switch ($_SESSION['store_type']) {
- case "Filesystem":
- print "require_once \"Auth/OpenID/FileStore.php\";\n ";
- print "return new Auth_OpenID_FileStore(\"".$_SESSION['store_data']['fs_path']."\");\n";
- break;
- case "SQLite":
- print "require_once \"Auth/OpenID/SQLiteStore.php\";\n ";
- print "\$s = new Auth_OpenID_SQLiteStore(\"".$_SESSION['store_data']['sqlite_path']."\");\n ";
- print "\$s->createTables();\n ";
- print "return \$s;\n";
- break;
- case "MySQL":
- ?>require_once 'Auth/OpenID/MySQLStore.php';
- require_once 'DB.php';
- $dsn = array(
- 'phptype' => 'mysql',
- 'username' => '<?php print $_SESSION['store_data']['username']; ?>',
- 'password' => '<?php print $_SESSION['store_data']['password']; ?>',
- 'hostspec' => '<?php print $_SESSION['store_data']['host']; ?>'
- );
- $db = DB::connect($dsn);
- if (PEAR::isError($db)) {
- return null;
- }
- $db->query("USE <?php print $_SESSION['store_data']['database']; ?>");
-
- $s = new Auth_OpenID_MySQLStore($db);
- $s->createTables();
- return $s;
- <?php
- break;
- case "PostgreSQL":
- ?>require_once 'Auth/OpenID/PostgreSQLStore.php';
- require_once 'DB.php';
- $dsn = array(
- 'phptype' => 'pgsql',
- 'username' => '<?php print $_SESSION['store_data']['username']; ?>',
- 'password' => '<?php print $_SESSION['store_data']['password']; ?>',
- 'hostspec' => '<?php print $_SESSION['store_data']['host']; ?>',
- 'database' => '<?php print $_SESSION['store_data']['database']; ?>'
- );
- $db = DB::connect($dsn);
- if (PEAR::isError($db)) {
- return null;
- }
- $s = new Auth_OpenID_PostgreSQLStore($db);
- $s->createTables();
- return $s;
- <?php
- break;
- }
- ?>
- }
- <?php
- print "?>";
- if (!$download) {
- ?>
- </pre>
- </body>
- </html>
- <?php
- }
- } // end function generate_config ()
- ?>
|