friendica/mod/openid.php

<?php
/**
 * @file mod/openid.php
 */

use Friendica\App;
use Friendica\BaseObject;
use Friendica\Core\Authentication;
use Friendica\Core\Config;
use Friendica\Core\L10n;
use Friendica\Core\Logger;
use Friendica\Core\Session;
use Friendica\Database\DBA;
use Friendica\Util\Strings;

function openid_content(App $a) {

	if (Config::get('system','no_openid')) {
		$a->internalRedirect();
	}

	Logger::log('mod_openid ' . print_r($_REQUEST,true), Logger::DATA);

	if (!empty($_GET['openid_mode']) && !empty($_SESSION['openid'])) {

		$openid = new LightOpenID($a->getHostName());

		if ($openid->validate()) {
			$authid = $openid->data['openid_identity'];

			if (empty($authid)) {
				Logger::log(L10n::t('OpenID protocol error. No ID returned.') . EOL);
				$a->internalRedirect();
			}

			// NOTE: we search both for normalised and non-normalised form of $authid
			//       because the normalization step was removed from setting
			//       mod/settings.php in 8367cad so it might have left mixed
			//       records in the user table
			//
			$condition = ['blocked' => false, 'account_expired' => false, 'account_removed' => false, 'verified' => true,
				'openid' => [$authid, Strings::normaliseOpenID($authid)]];
			$user  = DBA::selectFirst('user', [], $condition);
			if (DBA::isResult($user)) {

				// successful OpenID login

				unset($_SESSION['openid']);

				/** @var Authentication $authentication */
				$authentication = BaseObject::getClass(Authentication::class);
				$authentication->setForUser($a, $user, true, true);

				// just in case there was no return url set
				// and we fell through

				$a->internalRedirect();
			}

			// Successful OpenID login - but we can't match it to an existing account.
			unset($_SESSION['register']);
			Session::set('openid_attributes', $openid->getAttributes());
			Session::set('openid_identity', $authid);

			// Detect the server URL
			$open_id_obj = new LightOpenID($a->getHostName());
			$open_id_obj->identity = $authid;
			Session::set('openid_server', $open_id_obj->discover($open_id_obj->identity));

			if (intval(Config::get('config', 'register_policy')) === \Friendica\Module\Register::CLOSED) {
				notice(L10n::t('Account not found. Please login to your existing account to add the OpenID to it.'));
			} else {
				notice(L10n::t('Account not found. Please register a new account or login to your existing account to add the OpenID to it.'));
			}

			$a->internalRedirect('login');
		}
	}
	notice(L10n::t('Login failed.') . EOL);
	$a->internalRedirect();
	// NOTREACHED
}
openid logins working 2010-11-18 02:03:27 +01:00			`<?php`
Many t() calls modify many t() calls. 2018-01-21 19:33:59 +01:00			`/**`
			`* @file mod/openid.php`
			`*/`
Remove references to library/openid 2018-01-27 22:31:49 +01:00
Move App to src - Add `use Friendica\App;` wherever needed 2017-04-30 06:07:00 +02:00			`use Friendica\App;`
Refactor "Authentication" class with four main methods: - withSession() - for auto authentication with Session/Cookie variables - withOpenId() - for authentication with an OpenID account - withPassword() - for authentication with Password - setForUser() - for setting the user auth context of the current session Refactor "Session" class - contains now "native" Session Management methods 2019-12-03 22:29:37 +01:00			`use Friendica\BaseObject;`
			`use Friendica\Core\Authentication;`
Issue-#3873 Replace deprecated functions with new syntax. 2017-11-07 03:22:52 +01:00			`use Friendica\Core\Config;`
Many t() calls modify many t() calls. 2018-01-21 19:33:59 +01:00			`use Friendica\Core\L10n;`
Log function implement log() function. 2018-10-29 22:20:46 +01:00			`use Friendica\Core\Logger;`
Move Authentication::setAuthenticatedSessionForUser to Session::setAuthenticatedForUser 2019-05-13 06:55:26 +02:00			`use Friendica\Core\Session;`
Rename DBM method calls to DBA method calls 2018-07-21 14:40:21 +02:00			`use Friendica\Database\DBA;`
notags calls implement removeTags function 2018-11-08 16:14:37 +01:00			`use Friendica\Util\Strings;`
Revert "Updated modules to allow for partial overrides without errors" This reverts commit db949bb802448184bfe5164d8d3dd86ddf51b187. 2016-02-07 15:11:34 +01:00
Normalize App parameter declaration (mod folder, 2 out of 3) 2017-01-09 13:14:25 +01:00			`function openid_content(App $a) {`
openid logins working 2010-11-18 02:03:27 +01:00
Issue 3229: Switched to other function to receive the identity 2019-09-11 18:46:13 +02:00			`if (Config::get('system','no_openid')) {`
Split goaway to System::externalRedirectTo() and App->internalRedirect() 2018-10-19 20:11:27 +02:00			`$a->internalRedirect();`
Issue 3229: Switched to other function to receive the identity 2019-09-11 18:46:13 +02:00			`}`
localise login template, allow openid to be disabled 2010-11-29 05:58:23 +01:00
Logger Levels update logger levels in calls 2018-10-30 14:58:45 +01:00			`Logger::log('mod_openid ' . print_r($_REQUEST,true), Logger::DATA);`
some openid fixes, use identity url from openid server and normalise it. 2012-03-19 14:48:11 +01:00
Issue 3229: Switched to other function to receive the identity 2019-09-11 18:46:13 +02:00			`if (!empty($_GET['openid_mode']) && !empty($_SESSION['openid'])) {`
cleanup after openid refactoring 2012-03-19 23:10:14 +01:00
Rename App Methods - renamed a lot of App methods to CamelCase - replaced direct public variables with get-/set-Methods 2018-10-09 19:58:58 +02:00			`$openid = new LightOpenID($a->getHostName());`
openid logins working 2010-11-18 02:03:27 +01:00
Issue 3229: Switched to other function to receive the identity 2019-09-11 18:46:13 +02:00			`if ($openid->validate()) {`
Changed OpenID registration 2019-10-24 22:23:26 +02:00			`$authid = $openid->data['openid_identity'];`
some openid fixes, use identity url from openid server and normalise it. 2012-03-19 14:48:11 +01:00
Issue 3229: Switched to other function to receive the identity 2019-09-11 18:46:13 +02:00			`if (empty($authid)) {`
Log function implement log() function. 2018-10-29 22:20:46 +01:00			`Logger::log(L10n::t('OpenID protocol error. No ID returned.') . EOL);`
Split goaway to System::externalRedirectTo() and App->internalRedirect() 2018-10-19 20:11:27 +02:00			`$a->internalRedirect();`
refactor openid logins/registrations 2012-03-19 23:03:09 +01:00			`}`
openid registration 2010-11-18 05:35:50 +01:00
Fix OpenID login The problem was that while openid was stored not-normalized in the database, the checking code was looking for a normalized form instead. The commit removing normalization step on saving user preferences was 8367cad, which might have left old users with normalized openid and new users with non-normalized one. This commit makes the checking code look for both normalized and not normalized form, to be backward compatible. 2016-05-25 12:43:26 +02:00			`// NOTE: we search both for normalised and non-normalised form of $authid`
			`// because the normalization step was removed from setting`
			`// mod/settings.php in 8367cad so it might have left mixed`
			`// records in the user table`
			`//`
Issue 3229: Switched to other function to receive the identity 2019-09-11 18:46:13 +02:00			`$condition = ['blocked' => false, 'account_expired' => false, 'account_removed' => false, 'verified' => true,`
			`'openid' => [$authid, Strings::normaliseOpenID($authid)]];`
			`$user = DBA::selectFirst('user', [], $condition);`
			`if (DBA::isResult($user)) {`
cleanup after openid refactoring 2012-03-19 23:10:14 +01:00
			`// successful OpenID login`

refactor openid logins/registrations 2012-03-19 23:03:09 +01:00			`unset($_SESSION['openid']);`

Refactor "Authentication" class with four main methods: - withSession() - for auto authentication with Session/Cookie variables - withOpenId() - for authentication with an OpenID account - withPassword() - for authentication with Password - setForUser() - for setting the user auth context of the current session Refactor "Session" class - contains now "native" Session Management methods 2019-12-03 22:29:37 +01:00			`/** @var Authentication $authentication */`
			`$authentication = BaseObject::getClass(Authentication::class);`
			`$authentication->setForUser($a, $user, true, true);`
refactor openid logins/registrations 2012-03-19 23:03:09 +01:00
Normalize App parameter declaration (mod folder, 2 out of 3) 2017-01-09 13:14:25 +01:00			`// just in case there was no return url set`
refactor openid logins/registrations 2012-03-19 23:03:09 +01:00			`// and we fell through`

Split goaway to System::externalRedirectTo() and App->internalRedirect() 2018-10-19 20:11:27 +02:00			`$a->internalRedirect();`
refactor openid logins/registrations 2012-03-19 23:03:09 +01:00			`}`

cleanup after openid refactoring 2012-03-19 23:10:14 +01:00			`// Successful OpenID login - but we can't match it to an existing account.`
refactor openid logins/registrations 2012-03-19 23:03:09 +01:00			`unset($_SESSION['register']);`
Changed OpenID registration 2019-10-24 22:23:26 +02:00			`Session::set('openid_attributes', $openid->getAttributes());`
			`Session::set('openid_identity', $authid);`
openid logins working 2010-11-18 02:03:27 +01:00
Changed OpenID registration 2019-10-24 22:23:26 +02:00			`// Detect the server URL`
			`$open_id_obj = new LightOpenID($a->getHostName());`
			`$open_id_obj->identity = $authid;`
			`Session::set('openid_server', $open_id_obj->discover($open_id_obj->identity));`
switch identities to manage pages 2011-03-02 05:18:47 +01:00
Changed OpenID registration 2019-10-24 22:23:26 +02:00			`if (intval(Config::get('config', 'register_policy')) === \Friendica\Module\Register::CLOSED) {`
Standards and unneccessary EOL 2019-10-28 14:51:38 +01:00			`notice(L10n::t('Account not found. Please login to your existing account to add the OpenID to it.'));`
Changed OpenID registration 2019-10-24 22:23:26 +02:00			`} else {`
Standards and unneccessary EOL 2019-10-28 14:51:38 +01:00			`notice(L10n::t('Account not found. Please register a new account or login to your existing account to add the OpenID to it.'));`
Changed OpenID registration 2019-10-24 22:23:26 +02:00			`}`
register/login timestamps 2010-12-17 01:35:45 +01:00
Changed OpenID registration 2019-10-24 22:23:26 +02:00			`$a->internalRedirect('login');`
openid logins working 2010-11-18 02:03:27 +01:00			`}`
			`}`
Many t() calls modify many t() calls. 2018-01-21 19:33:59 +01:00			`notice(L10n::t('Login failed.') . EOL);`
Split goaway to System::externalRedirectTo() and App->internalRedirect() 2018-10-19 20:11:27 +02:00			`$a->internalRedirect();`
openid logins working 2010-11-18 02:03:27 +01:00			`// NOTREACHED`
add info() function. Works like notice() but show messages in a div with class info-message. update code to use info() instead of notice() when appropriate (non-error message) add info-message class style in themes 2011-05-23 11:39:57 +02:00			`}`