//--------------------------------------------------------------------------------------------------------------------- /// <summary>Creates a new User instance with the specified data structure.</summary> /*! * /// <param name="context">the execution environment context</param> * /// <param name="data">the entity data structure information</param> * /// <returns>the created User object</returns> */ public static new OpenIdProvider GetInstance(IfyContext context, EntityData data) { OpenIdProvider result = OpenIdProvider.GetInstance(context); result.Data = data; return(result); }
//--------------------------------------------------------------------------------------------------------------------- /// <summary>Creates a new User instance representing the user with the specified ID.</summary> /*! * /// <param name="context">the execution environment context</param> * /// <param name="id">the user ID</param> * /// <returns>the created User object</returns> */ public static OpenIdProvider FromId(IfyContext context, int id) { OpenIdProvider result = new OpenIdProvider(context); result.Id = id; result.Load(); return(result); }
//--------------------------------------------------------------------------------------------------------------------- public void WriteSignInForm(bool assign) { if (provider == null) { provider = OpenIdProvider.GetInstance(context); } provider.SignInForm = true; provider.AssignOpenId = assign; provider.WriteEmptyItem(); }
//--------------------------------------------------------------------------------------------------------------------- public void WriteProviderList() { if (provider == null) { provider = OpenIdProvider.GetInstance(context); } provider.SignInList = true; provider.AllowAll = (openIdAuth == 2); provider.WriteItemList(); }
//--------------------------------------------------------------------------------------------------------------------- /// <summary>Processes a request regarding OpenIDs.</summary> /*! */ public bool ProcessRequest() { string operationName = context.GetParamValue(IfyWebContext.OperationParameterName); openIdAuth = webContext.AllowOpenId; if (openIdAuth == 0) { context.ReturnError("OpenID authentication not permitted"); } switch (operationName) { /*case "list" : * if (context.AuthenticatedUser) { * WriteProviderList(false); * return true; * } else { * return false; * }*/ case "signin": // Sign-in modes: // (1) (Positive) OpenID authentication assertion // (2) Request for OpenID authentication // (3) Username/password login // (4) Display sign-in form try { ServicePointManager.ServerCertificateValidationCallback = delegate(object sender, X509Certificate certificate, X509Chain chain, System.Net.Security.SslPolicyErrors sslPolicyErrors) { return(true); }; //ServicePointManager.CertificatePolicy = new CertificateAcceptor(); int providerId; Int32.TryParse(context.GetParamValue("provider"), out providerId); ProviderId = providerId; if (context.GetParamValue("openid.mode") != null) // (1) { OpenIdRelyingParty openId = null; openId = OpenIdRelyingParty.RecoverFromAssociation(); openId.ResponseNonceStorage = webContext; if (!openId.VerifyAuthenticationAssertion()) { context.AddWarning("OpenID authentication was canceled", "openIdCanceled"); return(false); } webContext.AuthenticateWithOpenId(openId); webContext.CheckAvailability(false); context.WriteInfo("You are now logged in", "openIdAuthenticated"); } else if ((UserInput = context.GetParamValue("openid")) != null || ProviderId != 0) // (2) { if (ProviderId != 0) { provider = OpenIdProvider.FromId(context, ProviderId); } if (UserInput == null && !provider.UseOpenIdProviderIdentifier) { MissingIdentifier = true; break; } // Get a OpenIdRelyingParty instance, either the generic one or the one corresponding to the requested OpenID provider OpenIdRelyingParty openId = (provider == null ? OpenIdProvider.GetGenericRelyingParty(UserInput) : provider.GetRelyingParty(UserInput)); // Get an OpenID association openId.ReturnToUrl = String.Format("{0}?{1}=signin{2}", webContext.ScriptUrl, IfyWebContext.OperationParameterName, webContext.Format == null ? String.Empty : "&" + IfyWebContext.FormatParameterName + "=" + webContext.Format ); openId.RealmPattern = webContext.HostUrl; openId.GetAssociation(); if (context.GetParamValue("_debug") == "3") { context.WriteInfo("openid.op_endpoint:" + openId.EndpointUrl); context.WriteInfo("openid.assoc_type:" + openId.AssociationType); context.WriteInfo("openid.assoc_handle:" + openId.AssociationHandle); context.WriteInfo("openid.mac_key:" + openId.Mac); context.WriteInfo("openid.expires_in:" + openId.ExpiresIn.ToString()); context.WriteInfo(openId.AuthenticationUrl); } else { openId.RequestAuthentication(); } } else { if (openIdAuth != 2) { context.AddError("Invalid request"); return(false); } } } catch (Exception e) { if (!context.ErrorHandled) { context.AddError(e.Message, null); } } break; case "assign": try { ServicePointManager.ServerCertificateValidationCallback = delegate(object sender, X509Certificate certificate, X509Chain chain, System.Net.Security.SslPolicyErrors sslPolicyErrors) { return(true); }; //ServicePointManager.CertificatePolicy = new CertificateAcceptor(); if (!context.IsUserAuthenticated) { webContext.RejectUnauthenticatedRequest(); } bool success = false; if (context.GetParamValue("openid.mode") == null) { UserInput = context.GetParamValue("openid"); int providerId; Int32.TryParse(context.GetParamValue("provider"), out providerId); ProviderId = providerId; if (UserInput != null || ProviderId != 0) { // Store current OpenID's database ID in session (to remember it after the returning redirect from the OpenID provider) if (ProviderId != 0) { provider = OpenIdProvider.FromId(context, ProviderId); } if (UserInput == null && !provider.UseOpenIdProviderIdentifier) { WriteSignInForm(true); return(true); //context.ReturnError("Missing identifier"); } context.Execute(String.Format("INSERT INTO usropenid (id_usr, id_provider, user_input) VALUES ({0}, {1}, {2});", context.UserId, ProviderId == 0 ? "NULL" : ProviderId.ToString(), StringUtils.EscapeSql(UserInput) )); sessionOpenIdId = context.GetInsertId(); HttpContext.Current.Session["openid.id"] = sessionOpenIdId; try { // Get a OpenIdRelyingParty instance, either the generic one or the one corresponding to the requested OpenID provider OpenIdRelyingParty openId = (provider == null ? OpenIdProvider.GetGenericRelyingParty(UserInput) : provider.GetRelyingParty(UserInput)); openId.ReturnToUrl = String.Format("{0}?id={1}&{2}=assign{3}", webContext.ScriptUrl, sessionOpenIdId, IfyWebContext.OperationParameterName, webContext.Format == null ? String.Empty : "&" + IfyWebContext.FormatParameterName + "=" + webContext.Format ); openId.RealmPattern = webContext.HostUrl; openId.GetAssociation(); if (context.GetParamValue("_debug") == "3") { context.WriteInfo("openid.op_endpoint:" + openId.EndpointUrl); context.WriteInfo("openid.assoc_type:" + openId.AssociationType); context.WriteInfo("openid.assoc_handle:" + openId.AssociationHandle); context.WriteInfo("openid.mac_key:" + openId.Mac); context.WriteInfo("openid.expires_in:" + openId.ExpiresIn.ToString()); context.WriteInfo(openId.AuthenticationUrl); } else { openId.RequestAuthentication(); } } catch (Exception e) { if (!context.ErrorHandled) { context.AddError(e.Message, null); } } if (!success && sessionOpenIdId != 0) { context.Execute(String.Format("DELETE FROM usropenid WHERE id={0};", sessionOpenIdId)); } } else { MissingIdentifier = true; if (openIdAuth == 2) { WriteSignInForm(true); } } } else { try { success = Verify(); } catch (Exception e) { if (!context.ErrorHandled) { context.AddError(e.Message, null); } } // In case of failure, delete concerned user OpenID record, but only if not yet verified if (!success && sessionOpenIdId != 0 && context.GetQueryBooleanValue(String.Format("SELECT claimed_id IS NULL FROM usropenid WHERE id={0};", sessionOpenIdId))) { context.Execute(String.Format("DELETE FROM usropenid WHERE id={0};", sessionOpenIdId)); } } } catch (Exception e) { if (!context.ErrorHandled) { context.AddError(e.Message, null); } } break; case "delete": GetIdsFromRequest("id"); if (Ids.Length != 0) { DeleteItems(Ids); } break; } //if (MissingIdentifier) context.AddError("You must specify an OpenID", "missingInput"); return(false); //if (context.AuthenticatedUser) userOpenId.WriteItemList(); //return context.AuthenticatedUser; }