summaryrefslogtreecommitdiff
path: root/actions/finishopenidlogin.php
AgeCommit message (Collapse)Author
2009-02-20Fixing a bunch of undefined variable warnings in OpenID signup processLeslie Michael Orchard
2009-02-07trac #1155 ++ replace strlen with mb_strlen for all utf8 strings.Robin Millette
2009-02-05Allow re-authentication with OpenIDEvan Prodromou
"Rememberme" logins aren't allowed to make changes to an account (since cookie-stealing is too easy). Users have to re-authenticate. Previously, it was impossible to do so without having a username and password; this change lets you do it with OpenID, too.
2009-01-23Update finishopenidloginEvan Prodromou
2009-01-15Convert use of common_server_error and common_user_error to methods on ActionEvan Prodromou
2009-01-15Convert all actions to use new UI functionsEvan Prodromou
I did a massive search-and-replace to get all the action subclasses to use the new output function (common_element() -> $this->element(), etc.) There's still a lot to do, but it's a first step
2008-12-23move opening brace of class declaration to next lineEvan Prodromou
Another gigantor PEAR coding standards patch. Here, I've moved the opening curly bracket on a class statement to the following line. darcs-hash:20081223194923-84dde-77a93de314caadbcb5b70bf346a4648be77a864e.gz
2008-12-23change function headers to K&R styleEvan Prodromou
Another huge change, for PEAR code standards compliance. Function headers have to be in K&R style (opening brace on its own line), instead of having the opening brace on the same line as the function and parameters. So, a little perl magic found all the function definitions and move the opening brace to the next line (properly indented... usually). darcs-hash:20081223193323-84dde-a28e36ecc66672c783c2842d12fc11043c13ab28.gz
2008-12-23replace NULL with nullEvan Prodromou
Another global search-and-replace update. Here, I've replaced the PHP keyword 'NULL' with its lowercase version. This is another PEAR code standards change. darcs-hash:20081223192129-84dde-4a0182e0ec16a01ad88745ad3e08f7cb501aee0b.gz
2008-12-23replace all tabs with four spacesEvan Prodromou
The PEAR coding standards decree: no tabs, but indent by four spaces. I've done a global search-and-replace on all tabs, replacing them by four spaces. This is a huge change, but it will go a long way to getting us towards phpcs-compliance. And that means better code readability, and that means more participation. darcs-hash:20081223191907-84dde-21e8efe210e6d5d54e935a22d0cee5c7bbfc007d.gz
2008-12-09resolve conflictsEvan Prodromou
darcs-hash:20081210014619-5ed1f-b78d0990f80f7fee6f31424bc1e366d08767af9d.gz
2008-12-03don't allow new users if the site is closed or invite only in OpenIDEvan Prodromou
darcs-hash:20081203185022-5ed1f-a618527f069301c34b3fd6a75ae5676f45e64d39.gz
2008-12-09slightly better rememberme logic in finishopenidloginEvan Prodromou
darcs-hash:20081209180330-84dde-ba48eed8a9a557bac90d3869d60b24a4b9683e61.gz
2008-11-17♫ Don't you forget about me ♫Evan Prodromou
darcs-hash:20081118024947-84dde-46f68dff10cd2b5665fbd482f90ac83601df4228.gz
2008-08-28add a token for CSRF avoidanceEvan Prodromou
darcs-hash:20080829034854-84dde-a636b446dc254aaa77ac65f63be01e49c192bf32.gz
2008-08-13move user registration to a single static methodEvan Prodromou
darcs-hash:20080814002038-84dde-8505d4e083056b770db128129a95be639d8e7f0a.gz
2008-07-13Colapse a lot of strings to make like easier for translators and more ↵Mike Cochrane
consisitant for users darcs-hash:20080713053748-533db-1cdb0cf3a9e4102eb139b74a7a9d4f97dadb20b8.gz
2008-07-13Merge some gettext strings to one line so translation tools are happierMike Cochrane
darcs-hash:20080713044608-533db-ee16aecee9b6d82b22ce6a25f6a9573c23eee9f8.gz
2008-07-08Remove tralling whitespace on lines and a gettext replacement that I missed.Mike Cochrane
darcs-hash:20080708095113-533db-ad63bbde67b6275fb7ae944cc9882adf6f3be517.gz
2008-07-08Convert _t() to _() for gettext.Mike Cochrane
darcs-hash:20080708094531-533db-83399a46e6ec4c0fcc6249b0235961f969d1ae73.gz
2008-07-10don't auto-pull OpenID parametersEvan Prodromou
darcs-hash:20080710151842-84dde-ad2159088ed05830e4feba88880863c84c4728c8.gz
2008-07-02methodEvan Prodromou
darcs-hash:20080702131507-84dde-507a6380fcab66c1fbcbaad6d1399c8a2f210acf.gz
2008-06-23implement rememberme functionalityEvan Prodromou
Added a checkbox on login or register to remember the current user. If the login is successful, this sets a cookie with a random code (saved in the DB). If they come back, and they aren't logged in "normally", we check to see if they have a rememberme cookie. If so, we log them in. However, they can't change settings -- cookie theft is too prevalent. So we mark a session as having a "real" (password or OpenID) login, or not. In settings pages, we check to see if the login is "real", and if not, we redirect to the login page. darcs-hash:20080624025234-34904-ad20001bf35bf41fcb63a0c357fd929aacc55fdb.gz
2008-06-22forgot to return on invalid nicknameEvan Prodromou
darcs-hash:20080622181550-34904-7970919db30ccfc3979fa6c118c29af9eac0c550.gz
2008-06-22disallow nicknames on a blacklistEvan Prodromou
darcs-hash:20080622180437-34904-4b6313f6fd8845232031663c5c2df00dff725183.gz
2008-06-20change from using tag uris to http urls for identifiersEvan Prodromou
Weirdly, I got in an argument with Tim Berners-Lee in #swig about the tag URIs I was using in FOAF documents. Eventually, I was convinced that it's a better thing to use HTTP URLs instead. So, now we have HTTP URLs. The tricky thing was for users. Since they can change their names, we can't use their profile URL, since it includes the name. Instead, I made up a new action, which simply redirects from a user ID to their current profile URL. This should be sufficiently long-term. darcs-hash:20080620071700-84dde-c6145243dc45dd2dff621aff421375d05796057e.gz
2008-06-19push instructions into head and require licenseEvan Prodromou
darcs-hash:20080619173225-84dde-d73961d047f75fa1e3ac4287d35e4c6afb391e84.gz
2008-06-19need a profileurl for new usersEvan Prodromou
darcs-hash:20080619151803-5ed1f-53df3a53f1147233658397c3c6d2cd6a2202b199.gz
2008-06-19move update_user function to openid.phpEvan Prodromou
darcs-hash:20080619135148-84dde-6caaa7f97d2405bc318bfa818c4ac9cbc31cab33.gz
2008-06-19immediate mode for openidEvan Prodromou
darcs-hash:20080619134710-84dde-6086a4ac7bbd72a251fe5ce6fe3156e3270ebd74.gz
2008-06-18fix syntax error in finishopenidloginEvan Prodromou
darcs-hash:20080618123941-84dde-ec6e2fdef8c561714e509dc47e14aa47c58a9c44.gz
2008-06-18consolidate linking a user to an OpenIDEvan Prodromou
darcs-hash:20080618114310-84dde-15b224bb16d434150af457bc3b08de58e3833abd.gz
2008-06-18fix missing parensEvan Prodromou
darcs-hash:20080618062059-84dde-f3d27969a876fd89c5f01fb690ca367a51ec1b5e.gz
2008-06-18go to profile instead of profile settingsEvan Prodromou
darcs-hash:20080618061833-84dde-e77ea989a6caaf1d6722d6e82c1bcd04da44f486.gz
2008-06-18set nickname correctlyEvan Prodromou
darcs-hash:20080618061117-84dde-6983ed79c2d0e985fc8b00ac7c270b46d92bc20d.gz
2008-06-18fix get_saved_values() function in finishopenidloginEvan Prodromou
darcs-hash:20080618060549-84dde-d32f1f167a69ea4f98f6a4a2f2ac753675e8cafd.gz
2008-06-18refactoring errorEvan Prodromou
darcs-hash:20080618055836-84dde-7a0c460ec125581b659df39c8a079b9fcdc8dbaa.gz
2008-06-18check existence of args not booleannessEvan Prodromou
darcs-hash:20080618055657-84dde-269a234dd68867ca4f159031fe206e31131ef108.gz
2008-06-18fix prompt and debug inputEvan Prodromou
darcs-hash:20080618055349-84dde-8ac49632d06a7b271d13912d46d26c7c1f1ec793.gz
2008-06-18finish openidEvan Prodromou
Added some code to make finishing the OpenID login work. Changed the OID storage so that there's a "canonical" URL and a display URL. This is because of i-names, which is annoying. If the login succeeds, we try to find a local user associated with the canonical URL. If they don't exist, we let the user either create a new account, or login to an existing account and connect to it. A totally unrelated change is that the DB engine now uses InnoDB. darcs-hash:20080618052638-84dde-909e51dbd5b9eadadf18cd010868baa18ea2349a.gz