3 class Test extends CI_Controller {
9 $this->lang->load('openid', 'english');
10 $this->load->library('openid');
11 $this->load->helper('url');
12 //$this->output->enable_profiler(TRUE);
18 if ($this->input->post('action') == 'verify')
20 $user_id = $this->input->post('openid_identifier');
21 $pape_policy_uris = $this->input->post('policies');
23 if (!$pape_policy_uris)
25 $pape_policy_uris = array();
28 $this->config->load('openid');
29 $req = $this->config->item('openid_required');
30 $opt = $this->config->item('openid_optional');
31 $policy = site_url($this->config->item('openid_policy'));
32 $request_to = site_url($this->config->item('openid_request_to'));
34 $this->openid->set_request_to($request_to);
35 $this->openid->set_trust_root(base_url());
36 $this->openid->set_args(null);
37 $this->openid->set_sreg(true, $req, $opt, $policy);
38 $this->openid->set_pape(true, $pape_policy_uris);
39 $this->openid->authenticate($user_id);
42 $data['pape_policy_uris'] = array(
43 PAPE_AUTH_MULTI_FACTOR_PHYSICAL,
44 PAPE_AUTH_MULTI_FACTOR,
45 PAPE_AUTH_PHISHING_RESISTANT
48 $this->load->view('view_openid', $data);
55 $this->load->view('view_policy');
59 function _set_message($msg, $val = '', $sub = '%s')
61 return str_replace($sub, $val, $this->lang->line($msg));
67 $this->config->load('openid');
68 $request_to = site_url($this->config->item('openid_request_to'));
70 $this->openid->set_request_to($request_to);
71 $response = $this->openid->getResponse();
73 switch ($response->status)
75 case Auth_OpenID_CANCEL:
76 $data['msg'] = $this->lang->line('openid_cancel');
78 case Auth_OpenID_FAILURE:
79 $data['error'] = $this->_set_message('openid_failure', $response->message);
81 case Auth_OpenID_SUCCESS:
82 $openid = $response->getDisplayIdentifier();
83 $esc_identity = htmlspecialchars($openid, ENT_QUOTES);
85 $data['success'] = $this->_set_message('openid_success', array($esc_identity, $esc_identity), array('%s','%t'));
87 if ($response->endpoint->canonicalID) {
88 $data['success'] .= $this->_set_message('openid_canonical', $response->endpoint->canonicalID);
91 $sreg_resp = Auth_OpenID_SRegResponse::fromSuccessResponse($response);
92 $sreg = $sreg_resp->contents();
94 foreach ($sreg as $key => $value)
96 $data['success'] .= $this->_set_message('openid_content', array($key, $value), array('%s','%t'));
99 $pape_resp = Auth_OpenID_PAPE_Response::fromSuccessResponse($response);
103 if ($pape_resp->auth_policies)
105 $data['success'] .= $this->lang->line('openid_pape_policies_affected');
107 foreach ($pape_resp->auth_policies as $uri)
109 $data['success'] .= "<li><tt>$uri</tt></li>";
112 $data['success'] .= "</ul>";
116 $data['success'] .= $this->lang->line('openid_pape_not_affected');
119 if ($pape_resp->auth_age)
121 $data['success'] .= $this->_set_message('openid_auth_age', $pape_resp->auth_age);
124 if ($pape_resp->nist_auth_level)
126 $data['success'] .= $this->_set_message('openid_nist_level', $pape_resp->nist_auth_level);
131 $data['success'] .= $this->lang->line('openid_pape_noresponse');
136 $data['pape_policy_uris'] = array(
137 PAPE_AUTH_MULTI_FACTOR_PHYSICAL,
138 PAPE_AUTH_MULTI_FACTOR,
139 PAPE_AUTH_PHISHING_RESISTANT
142 $this->load->view('view_openid', $data);