lib/openid.php

   1 <?php
   2 /*
   3  * Laconica - a distributed open-source microblogging tool
   4  * Copyright (C) 2008, Controlez-Vous, Inc.
   5  *
   6  * This program is free software: you can redistribute it and/or modify
   7  * it under the terms of the GNU Affero General Public License as published by
   8  * the Free Software Foundation, either version 3 of the License, or
   9  * (at your option) any later version.
  10  *
  11  * This program is distributed in the hope that it will be useful,
  12  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  13  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  14  * GNU Affero General Public License for more details.
  15  *
  16  * You should have received a copy of the GNU Affero General Public License
  17  * along with this program.  If not, see <http://www.gnu.org/licenses/>.
  18  */
  19
  20 if (!defined('LACONICA')) { exit(1); }
  21
  22 require_once(INSTALLDIR.'/classes/User_openid.php');
  23
  24 require_once('Auth/OpenID.php');
  25 require_once('Auth/OpenID/Consumer.php');
  26 require_once('Auth/OpenID/SReg.php');
  27 require_once('Auth/OpenID/MySQLStore.php');
  28
  29 function oid_store() {
  30     static $store = NULL;
  31         if (!$store) {
  32                 # Can't be called statically
  33                 $user = new User();
  34                 $conn = $user->getDatabaseConnection();
  35                 $store = new Auth_OpenID_MySQLStore($conn);
  36         }
  37         return $store;
  38 }
  39
  40 function oid_consumer() {
  41         $store = oid_store();
  42         $consumer = new Auth_OpenID_Consumer($store);
  43         return $consumer;
  44 }
  45
  46 function oid_link_user($id, $canonical, $display) {
  47
  48         $oid = new User_openid();
  49         $oid->user_id = $id;
  50         $oid->canonical = $canonical;
  51         $oid->display = $display;
  52         $oid->created = DB_DataObject_Cast::dateTime();
  53
  54         if (!$oid->insert()) {
  55                 $err = PEAR::getStaticProperty('DB_DataObject','lastError');
  56                 common_debug('DB error ' . $err->code . ': ' . $err->message, __FILE__);
  57                 return false;
  58         }
  59
  60         # For some reason, autocommit is turned off
  61
  62         $oid->query('COMMIT');
  63
  64         return true;
  65 }
  66
  67 function oid_authenticate($openid_url, $returnto) {
  68
  69         $consumer = oid_consumer();
  70
  71         if (!$consumer) {
  72                 common_server_error(_t('Cannot instantiate OpenID consumer object.'));
  73                 return false;
  74         }
  75
  76         common_ensure_session();
  77
  78         $auth_request = $consumer->begin($openid_url);
  79
  80         // Handle failure status return values.
  81         if (!$auth_request) {
  82                 return _t('Not a valid OpenID.');
  83         } else if (Auth_OpenID::isFailure($auth_request)) {
  84                 return _t('OpenID failure: ') . $auth_request->message;
  85         }
  86
  87         $sreg_request = Auth_OpenID_SRegRequest::build(// Required
  88                                                                                                    array(),
  89                                                                                                    // Optional
  90                                                                                                    array('nickname',
  91                                                                                                                  'email',
  92                                                                                                                  'fullname',
  93                                                                                                                  'language',
  94                                                                                                                  'timezone',
  95                                                                                                                  'postcode',
  96                                                                                                                  'country'));
  97
  98         if ($sreg_request) {
  99                 $auth_request->addExtension($sreg_request);
 100         }
 101
 102         $trust_root = common_local_url('public');
 103         $process_url = common_local_url($returnto);
 104
 105         if ($auth_request->shouldSendRedirect()) {
 106                 $redirect_url = $auth_request->redirectURL($trust_root,
 107                                                                                                    $process_url);
 108                 if (!$redirect_url) {
 109                 } else if (Auth_OpenID::isFailure($redirect_url)) {
 110                         return _t('Could not redirect to server: ') . $redirect_url->message;
 111                 } else {
 112                         common_redirect($redirect_url);
 113                 }
 114         } else {
 115                 // Generate form markup and render it.
 116                 $form_id = 'openid_message';
 117                 $form_html = $auth_request->formMarkup($trust_root, $process_url,
 118                                                                                            false, array('id' => $form_id));
 119
 120                 # XXX: This is cheap, but things choke if we don't escape ampersands
 121                 # in the HTML attributes
 122
 123                 $form_html = preg_replace('/&/', '&amp;', $form_html);
 124
 125                 // Display an error if the form markup couldn't be generated;
 126                 // otherwise, render the HTML.
 127                 if (Auth_OpenID::isFailure($form_html)) {
 128                         $this->show_form(_t('Could not create OpenID form: ') . $form_html->message);
 129                 } else {
 130                         common_show_header(_t('OpenID Auto-Submit'));
 131                         common_element('p', 'instructions',
 132                                                    _t('This form should automatically submit itself. '.
 133                                                           'If not, click the submit button to go to your '.
 134                                                           'OpenID provider.'));
 135                         common_raw($form_html);
 136                         common_element('script', NULL,
 137                                                    '$(document).ready(function() { ' .
 138                                                    '    $("#'. $form_id .'").submit(); '.
 139                                                    '});');
 140                         common_show_footer();
 141                 }
 142         }
 143 }