friendica/mod/openid.php

<?php
/**
 * @file mod/openid.php
 */

use Friendica\App;
use Friendica\BaseObject;
use Friendica\App\Authentication;
use Friendica\Core\Config;
use Friendica\Core\L10n;
use Friendica\Core\Logger;
use Friendica\Core\Session;
use Friendica\Database\DBA;
use Friendica\Util\Strings;

function openid_content(App $a) {

	if (Config::get('system','no_openid')) {
		$a->internalRedirect();
	}

	Logger::log('mod_openid ' . print_r($_REQUEST,true), Logger::DATA);

	if (!empty($_GET['openid_mode']) && !empty($_SESSION['openid'])) {

		$openid = new LightOpenID($a->getHostName());

		if ($openid->validate()) {
			$authid = $openid->data['openid_identity'];

			if (empty($authid)) {
				Logger::log(L10n::t('OpenID protocol error. No ID returned.') . EOL);
				$a->internalRedirect();
			}

			// NOTE: we search both for normalised and non-normalised form of $authid
			//       because the normalization step was removed from setting
			//       mod/settings.php in 8367cad so it might have left mixed
			//       records in the user table
			//
			$condition = ['blocked' => false, 'account_expired' => false, 'account_removed' => false, 'verified' => true,
				'openid' => [$authid, Strings::normaliseOpenID($authid)]];
			$user  = DBA::selectFirst('user', [], $condition);
			if (DBA::isResult($user)) {

				// successful OpenID login

				unset($_SESSION['openid']);

				/** @var Authentication $authentication */
				$authentication = BaseObject::getClass(Authentication::class);
				$authentication->setForUser($a, $user, true, true);

				// just in case there was no return url set
				// and we fell through

				$a->internalRedirect();
			}

			// Successful OpenID login - but we can't match it to an existing account.
			unset($_SESSION['register']);
			Session::set('openid_attributes', $openid->getAttributes());
			Session::set('openid_identity', $authid);

			// Detect the server URL
			$open_id_obj = new LightOpenID($a->getHostName());
			$open_id_obj->identity = $authid;
			Session::set('openid_server', $open_id_obj->discover($open_id_obj->identity));

			if (intval(Config::get('config', 'register_policy')) === \Friendica\Module\Register::CLOSED) {
				notice(L10n::t('Account not found. Please login to your existing account to add the OpenID to it.'));
			} else {
				notice(L10n::t('Account not found. Please register a new account or login to your existing account to add the OpenID to it.'));
			}

			$a->internalRedirect('login');
		}
	}
	notice(L10n::t('Login failed.') . EOL);
	$a->internalRedirect();
	// NOTREACHED
}
openid logins working 2010-11-17 20:03:27 -05:00			`<?php`
Many t() calls modify many t() calls. 2018-01-21 13:33:59 -05:00			`/**`
			`* @file mod/openid.php`
			`*/`
Remove references to library/openid 2018-01-27 16:31:49 -05:00
Move App to src - Add `use Friendica\App;` wherever needed 2017-04-30 00:07:00 -04:00			`use Friendica\App;`
Refactor "Authentication" class with four main methods: - withSession() - for auto authentication with Session/Cookie variables - withOpenId() - for authentication with an OpenID account - withPassword() - for authentication with Password - setForUser() - for setting the user auth context of the current session Refactor "Session" class - contains now "native" Session Management methods 2019-12-03 16:29:37 -05:00			`use Friendica\BaseObject;`
Move Cookie to own class (with tests) Move Authentication to App namespace 2019-12-08 16:45:34 -05:00			`use Friendica\App\Authentication;`
Issue-#3873 Replace deprecated functions with new syntax. 2017-11-06 21:22:52 -05:00			`use Friendica\Core\Config;`
Many t() calls modify many t() calls. 2018-01-21 13:33:59 -05:00			`use Friendica\Core\L10n;`
Log function implement log() function. 2018-10-29 17:20:46 -04:00			`use Friendica\Core\Logger;`
Move Authentication::setAuthenticatedSessionForUser to Session::setAuthenticatedForUser 2019-05-13 00:55:26 -04:00			`use Friendica\Core\Session;`
Rename DBM method calls to DBA method calls 2018-07-21 08:40:21 -04:00			`use Friendica\Database\DBA;`
notags calls implement removeTags function 2018-11-08 10:14:37 -05:00			`use Friendica\Util\Strings;`
Revert "Updated modules to allow for partial overrides without errors" This reverts commit db949bb802448184bfe5164d8d3dd86ddf51b187. 2016-02-07 09:11:34 -05:00
Normalize App parameter declaration (mod folder, 2 out of 3) 2017-01-09 07:14:25 -05:00			`function openid_content(App $a) {`
openid logins working 2010-11-17 20:03:27 -05:00
Issue 3229: Switched to other function to receive the identity 2019-09-11 12:46:13 -04:00			`if (Config::get('system','no_openid')) {`
Split goaway to System::externalRedirectTo() and App->internalRedirect() 2018-10-19 14:11:27 -04:00			`$a->internalRedirect();`
Issue 3229: Switched to other function to receive the identity 2019-09-11 12:46:13 -04:00			`}`
localise login template, allow openid to be disabled 2010-11-28 23:58:23 -05:00
Logger Levels update logger levels in calls 2018-10-30 09:58:45 -04:00			`Logger::log('mod_openid ' . print_r($_REQUEST,true), Logger::DATA);`
some openid fixes, use identity url from openid server and normalise it. 2012-03-19 09:48:11 -04:00
Issue 3229: Switched to other function to receive the identity 2019-09-11 12:46:13 -04:00			`if (!empty($_GET['openid_mode']) && !empty($_SESSION['openid'])) {`
cleanup after openid refactoring 2012-03-19 18:10:14 -04:00
Rename App Methods - renamed a lot of App methods to CamelCase - replaced direct public variables with get-/set-Methods 2018-10-09 13:58:58 -04:00			`$openid = new LightOpenID($a->getHostName());`
openid logins working 2010-11-17 20:03:27 -05:00
Issue 3229: Switched to other function to receive the identity 2019-09-11 12:46:13 -04:00			`if ($openid->validate()) {`
Changed OpenID registration 2019-10-24 16:23:26 -04:00			`$authid = $openid->data['openid_identity'];`
some openid fixes, use identity url from openid server and normalise it. 2012-03-19 09:48:11 -04:00
Issue 3229: Switched to other function to receive the identity 2019-09-11 12:46:13 -04:00			`if (empty($authid)) {`
Log function implement log() function. 2018-10-29 17:20:46 -04:00			`Logger::log(L10n::t('OpenID protocol error. No ID returned.') . EOL);`
Split goaway to System::externalRedirectTo() and App->internalRedirect() 2018-10-19 14:11:27 -04:00			`$a->internalRedirect();`
refactor openid logins/registrations 2012-03-19 18:03:09 -04:00			`}`
openid registration 2010-11-17 23:35:50 -05:00
Fix OpenID login The problem was that while openid was stored not-normalized in the database, the checking code was looking for a normalized form instead. The commit removing normalization step on saving user preferences was 8367cad, which might have left old users with normalized openid and new users with non-normalized one. This commit makes the checking code look for both normalized and not normalized form, to be backward compatible. 2016-05-25 06:43:26 -04:00			`// NOTE: we search both for normalised and non-normalised form of $authid`
			`// because the normalization step was removed from setting`
			`// mod/settings.php in 8367cad so it might have left mixed`
			`// records in the user table`
			`//`
Issue 3229: Switched to other function to receive the identity 2019-09-11 12:46:13 -04:00			`$condition = ['blocked' => false, 'account_expired' => false, 'account_removed' => false, 'verified' => true,`
			`'openid' => [$authid, Strings::normaliseOpenID($authid)]];`
			`$user = DBA::selectFirst('user', [], $condition);`
			`if (DBA::isResult($user)) {`
cleanup after openid refactoring 2012-03-19 18:10:14 -04:00
			`// successful OpenID login`

refactor openid logins/registrations 2012-03-19 18:03:09 -04:00			`unset($_SESSION['openid']);`

Refactor "Authentication" class with four main methods: - withSession() - for auto authentication with Session/Cookie variables - withOpenId() - for authentication with an OpenID account - withPassword() - for authentication with Password - setForUser() - for setting the user auth context of the current session Refactor "Session" class - contains now "native" Session Management methods 2019-12-03 16:29:37 -05:00			`/** @var Authentication $authentication */`
			`$authentication = BaseObject::getClass(Authentication::class);`
			`$authentication->setForUser($a, $user, true, true);`
refactor openid logins/registrations 2012-03-19 18:03:09 -04:00
Normalize App parameter declaration (mod folder, 2 out of 3) 2017-01-09 07:14:25 -05:00			`// just in case there was no return url set`
refactor openid logins/registrations 2012-03-19 18:03:09 -04:00			`// and we fell through`

Split goaway to System::externalRedirectTo() and App->internalRedirect() 2018-10-19 14:11:27 -04:00			`$a->internalRedirect();`
refactor openid logins/registrations 2012-03-19 18:03:09 -04:00			`}`

cleanup after openid refactoring 2012-03-19 18:10:14 -04:00			`// Successful OpenID login - but we can't match it to an existing account.`
refactor openid logins/registrations 2012-03-19 18:03:09 -04:00			`unset($_SESSION['register']);`
Changed OpenID registration 2019-10-24 16:23:26 -04:00			`Session::set('openid_attributes', $openid->getAttributes());`
			`Session::set('openid_identity', $authid);`
openid logins working 2010-11-17 20:03:27 -05:00
Changed OpenID registration 2019-10-24 16:23:26 -04:00			`// Detect the server URL`
			`$open_id_obj = new LightOpenID($a->getHostName());`
			`$open_id_obj->identity = $authid;`
			`Session::set('openid_server', $open_id_obj->discover($open_id_obj->identity));`
switch identities to manage pages 2011-03-01 23:18:47 -05:00
Changed OpenID registration 2019-10-24 16:23:26 -04:00			`if (intval(Config::get('config', 'register_policy')) === \Friendica\Module\Register::CLOSED) {`
Standards and unneccessary EOL 2019-10-28 09:51:38 -04:00			`notice(L10n::t('Account not found. Please login to your existing account to add the OpenID to it.'));`
Changed OpenID registration 2019-10-24 16:23:26 -04:00			`} else {`
Standards and unneccessary EOL 2019-10-28 09:51:38 -04:00			`notice(L10n::t('Account not found. Please register a new account or login to your existing account to add the OpenID to it.'));`
Changed OpenID registration 2019-10-24 16:23:26 -04:00			`}`
register/login timestamps 2010-12-16 19:35:45 -05:00
Changed OpenID registration 2019-10-24 16:23:26 -04:00			`$a->internalRedirect('login');`
openid logins working 2010-11-17 20:03:27 -05:00			`}`
			`}`
Many t() calls modify many t() calls. 2018-01-21 13:33:59 -05:00			`notice(L10n::t('Login failed.') . EOL);`
Split goaway to System::externalRedirectTo() and App->internalRedirect() 2018-10-19 14:11:27 -04:00			`$a->internalRedirect();`
openid logins working 2010-11-17 20:03:27 -05:00			`// NOTREACHED`
add info() function. Works like notice() but show messages in a div with class info-message. update code to use info() instead of notice() when appropriate (non-error message) add info-message class style in themes 2011-05-23 05:39:57 -04:00			`}`