}
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
-
+
# CSRF protection
$token = $this->trimmed('token');
if (!$token || $token != common_session_token()) {
$this->show_form(_('There was a problem with your session token. Try again, please.'));
return;
}
-
+
$this->remote_subscription();
} else {
$this->show_form();
}
# XXX: a little liberal for sites that accidentally put whitespace before the xml declaration
-
+
$xrds =& Auth_Yadis_XRDS::parseXRDS(trim($yadis->response_text));
if (!$xrds) {
$this->show_form(_('That\'s a local profile! Login to subscribe.'));
return;
}
-
+
list($token, $secret) = $this->request_token($omb);
if (!$token || !$secret) {
$fetcher = Auth_Yadis_Yadis::getHTTPFetcher();
$result = $fetcher->post($req->get_normalized_http_url(),
- $req->to_postdata());
+ $req->to_postdata(),
+ array('User-Agent' => 'Laconica/' . LACONICA_VERSION));
if ($result->status != 200) {
return NULL;
$this->server_error(_('User without matching profile'));
return;
}
-
+
if ($profile->fullname) {
$req->set_parameter('omb_listenee_fullname', $profile->fullname);
}
$omb['update_profile_url'] = omb_service_uri($omb[OMB_ENDPOINT_UPDATEPROFILE]);
common_ensure_session();
-
+
$_SESSION['oauth_authorization_request'] = $omb;
# Redirect to authorization service
if (!$posted[$rp->postnoticeurl]) {
common_log(LOG_DEBUG, 'Posting to ' . $rp->postnoticeurl);
if (omb_post_notice_keys($notice, $rp->postnoticeurl, $rp->token, $rp->secret)) {
- common_log(LOG_DEBUG, 'Finished to ' . $rp->postnoticeurl);
+ common_log(LOG_DEBUG, 'Finished to ' . $rp->postnoticeurl);
$posted[$rp->postnoticeurl] = TRUE;
} else {
common_log(LOG_DEBUG, 'Failed posting to ' . $rp->postnoticeurl);
$rp->free();
unset($rp);
-
+
return true;
}
function omb_post_notice_keys($notice, $postnoticeurl, $tk, $secret) {
common_debug('Posting notice ' . $notice->id . ' to ' . $postnoticeurl, __FILE__);
-
+
$user = User::staticGet('id', $notice->profile_id);
if (!$user) {
}
$con = omb_oauth_consumer();
-
+
$token = new OAuthToken($tk, $secret);
-
+
$url = $postnoticeurl;
$parsed = parse_url($url);
$params = array();
parse_str($parsed['query'], $params);
-
+
$req = OAuthRequest::from_consumer_and_token($con, $token,
'POST', $url, $params);
-
+
$req->set_parameter('omb_version', OMB_VERSION_01);
$req->set_parameter('omb_listenee', $user->uri);
$req->set_parameter('omb_notice', $notice->uri);
array('notice' =>
$notice->id)));
$req->set_parameter('omb_notice_license', common_config('license', 'url'));
-
+
$user->free();
unset($user);
-
+
$req->sign_request(omb_hmac_sha1(), $con, $token);
# We re-use this tool's fetcher, since it's pretty good
-
+
$fetcher = Auth_Yadis_Yadis::getHTTPFetcher();
if (!$fetcher) {
common_log(LOG_WARNING, 'Failed to initialize Yadis fetcher.', __FILE__);
return false;
}
-
+
$result = $fetcher->post($req->get_normalized_http_url(),
- $req->to_postdata());
+ $req->to_postdata(),
+ array('User-Agent' => 'Laconica/' . LACONICA_VERSION));
common_debug('Got HTTP result "'.print_r($result,TRUE).'"', __FILE__);
common_debug('request URL = '.$req->get_normalized_http_url(), __FILE__);
common_debug('postdata = '.$req->to_postdata(), __FILE__);
$result = $fetcher->post($req->get_normalized_http_url(),
- $req->to_postdata());
+ $req->to_postdata(),
+ array('User-Agent' => 'Laconica/' . LACONICA_VERSION));
common_debug('Got HTTP result "'.print_r($result,TRUE).'"', __FILE__);
projects / quix0rs-gnu-social.git / commitdiff