1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
|
<?xml version="1.0" encoding="iso-8859-1"?>
<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html>
<head>
<title>answer (OpenID::Server::CheckIDRequest)</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<link rel="stylesheet" href="../../../.././rdoc-style.css" type="text/css" media="screen" />
</head>
<body class="standalone-code">
<pre><span class="ruby-comment cmt"># File lib/openid/server.rb, line 657</span>
<span class="ruby-keyword kw">def</span> <span class="ruby-identifier">answer</span>(<span class="ruby-identifier">allow</span>, <span class="ruby-identifier">server_url</span>=<span class="ruby-keyword kw">nil</span>, <span class="ruby-identifier">identity</span>=<span class="ruby-keyword kw">nil</span>, <span class="ruby-identifier">claimed_id</span>=<span class="ruby-keyword kw">nil</span>)
<span class="ruby-keyword kw">if</span> <span class="ruby-operator">!</span><span class="ruby-ivar">@return_to</span>
<span class="ruby-identifier">raise</span> <span class="ruby-constant">NoReturnToError</span>
<span class="ruby-keyword kw">end</span>
<span class="ruby-keyword kw">if</span> <span class="ruby-operator">!</span><span class="ruby-identifier">server_url</span>
<span class="ruby-keyword kw">if</span> <span class="ruby-ivar">@message</span>.<span class="ruby-identifier">is_openid2</span> <span class="ruby-keyword kw">and</span> <span class="ruby-operator">!</span><span class="ruby-ivar">@op_endpoint</span>
<span class="ruby-comment cmt"># In other words, that warning I raised in</span>
<span class="ruby-comment cmt"># Server.__init__? You should pay attention to it now.</span>
<span class="ruby-identifier">raise</span> <span class="ruby-constant">RuntimeError</span>, (<span class="ruby-node">"#{self} should be constructed with "</span>\
<span class="ruby-value str">"op_endpoint to respond to OpenID 2.0 "</span>\
<span class="ruby-value str">"messages."</span>)
<span class="ruby-keyword kw">end</span>
<span class="ruby-identifier">server_url</span> = <span class="ruby-ivar">@op_endpoint</span>
<span class="ruby-keyword kw">end</span>
<span class="ruby-keyword kw">if</span> <span class="ruby-identifier">allow</span>
<span class="ruby-identifier">mode</span> = <span class="ruby-value str">'id_res'</span>
<span class="ruby-keyword kw">elsif</span> <span class="ruby-ivar">@message</span>.<span class="ruby-identifier">is_openid1</span>
<span class="ruby-keyword kw">if</span> <span class="ruby-ivar">@immediate</span>
<span class="ruby-identifier">mode</span> = <span class="ruby-value str">'id_res'</span>
<span class="ruby-keyword kw">else</span>
<span class="ruby-identifier">mode</span> = <span class="ruby-value str">'cancel'</span>
<span class="ruby-keyword kw">end</span>
<span class="ruby-keyword kw">else</span>
<span class="ruby-keyword kw">if</span> <span class="ruby-ivar">@immediate</span>
<span class="ruby-identifier">mode</span> = <span class="ruby-value str">'setup_needed'</span>
<span class="ruby-keyword kw">else</span>
<span class="ruby-identifier">mode</span> = <span class="ruby-value str">'cancel'</span>
<span class="ruby-keyword kw">end</span>
<span class="ruby-keyword kw">end</span>
<span class="ruby-identifier">response</span> = <span class="ruby-constant">OpenIDResponse</span>.<span class="ruby-identifier">new</span>(<span class="ruby-keyword kw">self</span>)
<span class="ruby-keyword kw">if</span> <span class="ruby-identifier">claimed_id</span> <span class="ruby-keyword kw">and</span> <span class="ruby-ivar">@message</span>.<span class="ruby-identifier">is_openid1</span>
<span class="ruby-identifier">raise</span> <span class="ruby-constant">VersionError</span>, (<span class="ruby-value str">"claimed_id is new in OpenID 2.0 and not "</span>\
<span class="ruby-node">"available for #{@message.get_openid_namespace}"</span>)
<span class="ruby-keyword kw">end</span>
<span class="ruby-keyword kw">if</span> <span class="ruby-identifier">identity</span> <span class="ruby-keyword kw">and</span> <span class="ruby-operator">!</span><span class="ruby-identifier">claimed_id</span>
<span class="ruby-identifier">claimed_id</span> = <span class="ruby-identifier">identity</span>
<span class="ruby-keyword kw">end</span>
<span class="ruby-keyword kw">if</span> <span class="ruby-identifier">allow</span>
<span class="ruby-keyword kw">if</span> <span class="ruby-ivar">@identity</span> <span class="ruby-operator">==</span> <span class="ruby-constant">IDENTIFIER_SELECT</span>
<span class="ruby-keyword kw">if</span> <span class="ruby-operator">!</span><span class="ruby-identifier">identity</span>
<span class="ruby-identifier">raise</span> <span class="ruby-constant">ArgumentError</span>, (<span class="ruby-value str">"This request uses IdP-driven "</span>\
<span class="ruby-value str">"identifier selection.You must supply "</span>\
<span class="ruby-value str">"an identifier in the response."</span>)
<span class="ruby-keyword kw">end</span>
<span class="ruby-identifier">response_identity</span> = <span class="ruby-identifier">identity</span>
<span class="ruby-identifier">response_claimed_id</span> = <span class="ruby-identifier">claimed_id</span>
<span class="ruby-keyword kw">elsif</span> <span class="ruby-ivar">@identity</span>
<span class="ruby-keyword kw">if</span> <span class="ruby-identifier">identity</span> <span class="ruby-keyword kw">and</span> (<span class="ruby-ivar">@identity</span> <span class="ruby-operator">!=</span> <span class="ruby-identifier">identity</span>)
<span class="ruby-identifier">raise</span> <span class="ruby-constant">ArgumentError</span>, (<span class="ruby-node">"Request was for identity #{@identity}, "</span>\
<span class="ruby-node">"cannot reply with identity #{identity}"</span>)
<span class="ruby-keyword kw">end</span>
<span class="ruby-identifier">response_identity</span> = <span class="ruby-ivar">@identity</span>
<span class="ruby-identifier">response_claimed_id</span> = <span class="ruby-ivar">@claimed_id</span>
<span class="ruby-keyword kw">else</span>
<span class="ruby-keyword kw">if</span> <span class="ruby-identifier">identity</span>
<span class="ruby-identifier">raise</span> <span class="ruby-constant">ArgumentError</span>, (<span class="ruby-value str">"This request specified no identity "</span>\
<span class="ruby-node">"and you supplied #{identity}"</span>)
<span class="ruby-keyword kw">end</span>
<span class="ruby-identifier">response_identity</span> = <span class="ruby-keyword kw">nil</span>
<span class="ruby-keyword kw">end</span>
<span class="ruby-keyword kw">if</span> <span class="ruby-ivar">@message</span>.<span class="ruby-identifier">is_openid1</span> <span class="ruby-keyword kw">and</span> <span class="ruby-operator">!</span><span class="ruby-identifier">response_identity</span>
<span class="ruby-identifier">raise</span> <span class="ruby-constant">ArgumentError</span>, (<span class="ruby-value str">"Request was an OpenID 1 request, so "</span>\
<span class="ruby-value str">"response must include an identifier."</span>)
<span class="ruby-keyword kw">end</span>
<span class="ruby-identifier">response</span>.<span class="ruby-identifier">fields</span>.<span class="ruby-identifier">update_args</span>(<span class="ruby-constant">OPENID_NS</span>, {
<span class="ruby-value str">'mode'</span> =<span class="ruby-operator">></span> <span class="ruby-identifier">mode</span>,
<span class="ruby-value str">'op_endpoint'</span> =<span class="ruby-operator">></span> <span class="ruby-identifier">server_url</span>,
<span class="ruby-value str">'return_to'</span> =<span class="ruby-operator">></span> <span class="ruby-ivar">@return_to</span>,
<span class="ruby-value str">'response_nonce'</span> =<span class="ruby-operator">></span> <span class="ruby-constant">Nonce</span>.<span class="ruby-identifier">mk_nonce</span>(),
})
<span class="ruby-keyword kw">if</span> <span class="ruby-identifier">response_identity</span>
<span class="ruby-identifier">response</span>.<span class="ruby-identifier">fields</span>.<span class="ruby-identifier">set_arg</span>(<span class="ruby-constant">OPENID_NS</span>, <span class="ruby-value str">'identity'</span>, <span class="ruby-identifier">response_identity</span>)
<span class="ruby-keyword kw">if</span> <span class="ruby-ivar">@message</span>.<span class="ruby-identifier">is_openid2</span>
<span class="ruby-identifier">response</span>.<span class="ruby-identifier">fields</span>.<span class="ruby-identifier">set_arg</span>(<span class="ruby-constant">OPENID_NS</span>,
<span class="ruby-value str">'claimed_id'</span>, <span class="ruby-identifier">response_claimed_id</span>)
<span class="ruby-keyword kw">end</span>
<span class="ruby-keyword kw">end</span>
<span class="ruby-keyword kw">else</span>
<span class="ruby-identifier">response</span>.<span class="ruby-identifier">fields</span>.<span class="ruby-identifier">set_arg</span>(<span class="ruby-constant">OPENID_NS</span>, <span class="ruby-value str">'mode'</span>, <span class="ruby-identifier">mode</span>)
<span class="ruby-keyword kw">if</span> <span class="ruby-ivar">@immediate</span>
<span class="ruby-keyword kw">if</span> <span class="ruby-ivar">@message</span>.<span class="ruby-identifier">is_openid1</span> <span class="ruby-keyword kw">and</span> <span class="ruby-operator">!</span><span class="ruby-identifier">server_url</span>
<span class="ruby-identifier">raise</span> <span class="ruby-constant">ArgumentError</span>, (<span class="ruby-value str">"setup_url is required for allow=false "</span>\
<span class="ruby-value str">"in OpenID 1.x immediate mode."</span>)
<span class="ruby-keyword kw">end</span>
<span class="ruby-comment cmt"># Make a new request just like me, but with</span>
<span class="ruby-comment cmt"># immediate=false.</span>
<span class="ruby-identifier">setup_request</span> = <span class="ruby-keyword kw">self</span>.<span class="ruby-identifier">class</span>.<span class="ruby-identifier">new</span>(<span class="ruby-ivar">@identity</span>, <span class="ruby-ivar">@return_to</span>,
<span class="ruby-ivar">@op_endpoint</span>, <span class="ruby-ivar">@trust_root</span>, <span class="ruby-keyword kw">false</span>,
<span class="ruby-ivar">@assoc_handle</span>, <span class="ruby-ivar">@claimed_id</span>)
<span class="ruby-identifier">setup_request</span>.<span class="ruby-identifier">message</span> = <span class="ruby-constant">Message</span>.<span class="ruby-identifier">new</span>(<span class="ruby-ivar">@message</span>.<span class="ruby-identifier">get_openid_namespace</span>)
<span class="ruby-identifier">setup_url</span> = <span class="ruby-identifier">setup_request</span>.<span class="ruby-identifier">encode_to_url</span>(<span class="ruby-identifier">server_url</span>)
<span class="ruby-identifier">response</span>.<span class="ruby-identifier">fields</span>.<span class="ruby-identifier">set_arg</span>(<span class="ruby-constant">OPENID_NS</span>, <span class="ruby-value str">'user_setup_url'</span>, <span class="ruby-identifier">setup_url</span>)
<span class="ruby-keyword kw">end</span>
<span class="ruby-keyword kw">end</span>
<span class="ruby-keyword kw">return</span> <span class="ruby-identifier">response</span>
<span class="ruby-keyword kw">end</span></pre>
</body>
</html>
|
