(view as text)
Reading checkpoint...
Getting the inventory...
Copying patches...
Copying patch 1 of 159: 20090421175438-32594-cb3286fffa00b0811a91aff286da980cc19665aa.gz
Copying patch 2 of 159: 20090420194423-32594-22d6a7736387e184f036b124d6c7c009c759aa58.gz
Copying patch 3 of 159: 20081212201344-32594-927b426d19a760ad781b61dd4f9622c3d2c31057.gz
Copying patch 4 of 159: 20081208233936-32594-319fe7d0cd16767cce9b6ab8b7100931af6d0e7d.gz
Copying patch 5 of 159: 20081114220759-e7efe-b0be0dd8624e45bd52aa05770eac1ce356a080d5.gz
Copying patch 6 of 159: 20081107203915-32594-f3a52cd57acfc2ab206b0e53548ae3bf929612c2.gz
Copying patch 7 of 159: 20081107202412-177e8-13953d575460cc673dd259e3bcde540df62a3425.gz
Copying patch 8 of 159: 20081031232300-bc242-ebae69e99f98f210ece877aacd591c2b7977c533.gz
Copying patch 9 of 159: 20080909191058-04611-02254a7cdba2fc1a99c95a7ff989a4c440c0b814.gz
Copying patch 10 of 159: 20080909191025-04611-e827549b32a6213bc884821681a9292c86800edd.gz
Copying patch 11 of 159: 20080711215208-05081-480cebdac6c66eb04bbdb577d5808f21df415b4f.gz
Copying patch 12 of 159: 20080710231823-05081-287cd23230d91e786a012c0d00304e0d5cd3a6ae.gz
Copying patch 13 of 159: 20080708221715-04611-064eb458e9d68b36f60ba4d0a81cc2530771605e.gz
Copying patch 14 of 159: 20080627224317-04611-12b68dd0bc28b36cbf7855e950eebd363d52c43a.gz
Copying patch 15 of 159: 20080627224222-04611-c997ce6ea27a0019be28982b3da1eb5cd5fa33c1.gz
Copying patch 16 of 159: 20080625214806-04611-c637a19800bdcfe529949e7c976c8417147e8610.gz
Copying patch 17 of 159: 20080625202647-04611-b1116866145d7728e6800c6f21bca8d2e6270c48.gz
Copying patch 18 of 159: 20080625202419-04611-e9e476675a1492d37bce3d7fbd345f4c13f99373.gz
Copying patch 19 of 159: 20080625185331-04611-91eae0516d36b205025a17eaa5550bef485c0492.gz
Copying patch 20 of 159: 20080622141537-86b15-6cdbda99ce07a7906435378800f876a2d6874c4f.gz
Copying patch 21 of 159: 20080623231533-8177e-b1f591b284c2b58e66985f10eb1f2666b12c42ef.gz
Copying patch 22 of 159: 20080620225609-07b98-60240d39be903dae220bbaffd3a7cabc42f4d688.gz
Copying patch 23 of 159: 20080620224649-07b98-2fc122f54525269292ea2889df5868cb7a4050a2.gz
Copying patch 24 of 159: 20080620224043-07b98-8af9d8494b03936f0a5cba84ce02333348dfe5b1.gz
Copying patch 25 of 159: 20080620220810-07b98-992665869f7d4a6c98ded68e2e355cfa688797bf.gz
Copying patch 26 of 159: 20080613181446-04611-5858b0b336921affd8022828bbd99f8280530dec.gz
Copying patch 27 of 159: 20080611222216-04611-7e7eb556a419f484a7f1fde724f1261d5da70d86.gz
Copying patch 28 of 159: 20080611221805-04611-a59d988e4d67d4011f65a48fde690223ca64e964.gz
Copying patch 29 of 159: 20080611182127-32594-e036ffa4091436ae40a394bdb9c6a111178b34ce.gz
Copying patch 30 of 159: 20080611182036-32594-6839c44eb40ecca842055ec906d3dfc8320de8b0.gz
Copying patch 31 of 159: 20080606230345-32594-67ffd316948e6a4833be23ac841a354736de08ed.gz
Copying patch 32 of 159: 20080606224951-32594-53cfb5d1a1e4696481c3d9d6e18f9389f14c4f0f.gz
Copying patch 33 of 159: 20080606224356-32594-94c65f31ad6ed09af0ef292f0c947c117350e9ce.gz
Copying patch 34 of 159: 20080606213933-32594-6535cec38366f500369361bc7a75b4db4f8a6723.gz
Copying patch 35 of 159: 20080606182652-32594-a5bf10a8b500c4bb90052d7ca776ab2ef46c927f.gz
Copying patch 36 of 159: 20080606182611-32594-aaeb57855a40576d3860ec2a297b57213e75d1b0.gz
Copying patch 37 of 159: 20080606004023-04611-b9bec5f093ef935b1b2f80f487df8774cb0de509.gz
Copying patch 38 of 159: 20080605225039-04611-bb9d513bc86ac46a28fe075c9d7431a00162f646.gz
Copying patch 39 of 159: 20080605235803-32594-ebb4f986abac01f270e16ed52d7098559cc037e6.gz
Copying patch 40 of 159: 20080605234902-32594-77eba81d7c70a8c371830c1280bb9d8e66d926f5.gz
Copying patch 41 of 159: 20080605230958-32594-7812431c30f78739f117272f4339c21d081292d2.gz
Copying patch 42 of 159: 20080605224640-04611-925d6b2b62067f2fc83754f7b87f588d82adb878.gz
Copying patch 43 of 159: 20080605210016-32594-52a1bdcd0e41002a7fab00670b47cba440d9831d.gz
Copying patch 44 of 159: 20080605203931-32594-c2d74cd476b01c17bf42a3cdcc479bdb4ac23fbe.gz
Copying patch 45 of 159: 20080605203402-32594-2e93308beb5e48bdec26c1b2e2f88e7a2b74f215.gz
Copying patch 46 of 159: 20080605201621-32594-f47e90d57d8a646d8b3c763e46ad68f2fe85c89a.gz
Copying patch 47 of 159: 20080605192241-32594-e9901871b0d5199f8d3ac501e6f0ae4fc7fb4722.gz
Copying patch 48 of 159: 20080605180034-32594-db04958e452e8f1c33e730b30deddd00b1af81e3.gz
Copying patch 49 of 159: 20080605184528-bc242-990c2cf57c99292006d4df2e4be036b83025c650.gz
Copying patch 50 of 159: 20080605011159-05081-2195ba92575d67493410d9bdc252a2ac2db9d78f.gz
Copying patch 51 of 159: 20080605002447-05081-e2a3cc146ab8893d4459562c465639ab35684f21.gz
Copying patch 52 of 159: 20080605001024-05081-0ee8c470020fc27ac587588bf5974153c2c1271f.gz
Copying patch 53 of 159: 20080604235251-05081-94311d20a532b9ec695b43056127c7f3acc3fcb2.gz
Copying patch 54 of 159: 20080604234505-04611-6ddb90b9b01b6b9e33b8259019b3fee8fda068f5.gz
Copying patch 55 of 159: 20080604234258-04611-20f6da917269ec10c46ccaf356aad56e2616e1d3.gz
Copying patch 56 of 159: 20080604234042-04611-b1f38183c0ae980dd626e224e32dc7735ea13010.gz
Copying patch 57 of 159: 20080604232903-05081-c9b8e4196871cdbaf288aa271beb535531e2e429.gz
Copying patch 58 of 159: 20080604231505-bc242-1e7a2a432daec5e181f1f3547a00d9c053788a60.gz
Copying patch 59 of 159: 20080604224249-bc242-9b9e2ebfc267d74dfe7d379ae5f40ded1c90f09a.gz
Copying patch 60 of 159: 20080604231214-05081-95bc259904cbefaf5d1a50f153921203aea556fd.gz
Copying patch 61 of 159: 20080604224904-05081-b39d1a221cdb548b2cd1c465fb51702f26e853b1.gz
Copying patch 62 of 159: 20080604224003-05081-9a9f163e38da8667ecd672e1dbeb48a57e1efb5e.gz
Copying patch 63 of 159: 20080604221310-05081-2a3047ff109cd9d6a092910556e010570b81063c.gz
Copying patch 64 of 159: 20080604224548-04611-39a7927a7ec89db7a5beb646e3980e9b249d12db.gz
Copying patch 65 of 159: 20080604222832-04611-faa91cca2f472c6305970952ed35ba5be542891e.gz
Copying patch 66 of 159: 20080604221037-04611-00e4e8f9789e337048fed44a1a743f10a60ac865.gz
Copying patch 67 of 159: 20080604221408-bc242-a3e871527bd333ee96e167b183717d8153bb4f1c.gz
Copying patch 68 of 159: 20080603235026-bc242-575790582cc9d7bc99d09092e19b5581a981410d.gz
Copying patch 69 of 159: 20080603234210-bc242-88ef22288bbbdf2e1cd28c37c40b8647e50a348a.gz
Copying patch 70 of 159: 20080603234613-04611-2cf83e5c15e84e8ed59c5f13b6f7fa39bcdc2ab6.gz
Copying patch 71 of 159: 20080603233351-bc242-319b9e587ccdb72b55e16aa052ace770075ddde2.gz
Copying patch 72 of 159: 20080603233340-bc242-6f53b629980bba1559b9d55763f453fe36b65384.gz
Copying patch 73 of 159: 20080603211632-bc242-903cad18c4108317bc027d3ca054784c75e8d372.gz
Copying patch 74 of 159: 20080603211014-bc242-51edc3df846b2f3ba9941ec430bdfa53589e9964.gz
Copying patch 75 of 159: 20080603204019-32594-24d56b5289f64dd70bf06a0e938b5c2498e0754d.gz
Copying patch 76 of 159: 20080603190933-bc242-4811a5430535c20768664e5bfe5b037c4a2544bd.gz
Copying patch 77 of 159: 20080603000447-bc242-1f27b6dbc56b814f681e0e28e80e43fabd4a922d.gz
Copying patch 78 of 159: 20080602231952-bc242-ebab3843810e01953fd0a93fae5627995f62abf1.gz
Copying patch 79 of 159: 20080602200843-bc242-99fa80dcc63a8aa90b943f53004381c4302f28be.gz
Copying patch 80 of 159: 20080602200602-bc242-26c5073c3746d1ccac119b641d5eda876939cf92.gz
Copying patch 81 of 159: 20080602200224-bc242-813d4df62b7b711a6bc00f49db7c75082b3db04b.gz
Copying patch 82 of 159: 20080602195148-bc242-9969bcf2ea3b8235bb5d0d5acd76998d209a2e00.gz
Copying patch 83 of 159: 20080602194834-bc242-5b9ccfdf97611cd00fdffd838dd25bc2ba7538d4.gz
Copying patch 84 of 159: 20080602194554-bc242-38debc72af0fc1583b4fd84bb3ce7859e0095299.gz
Copying patch 85 of 159: 20080531010407-04611-6a18a8e00b59892ea9a55a240d73dc4fc0c1f8bd.gz
Copying patch 86 of 159: 20080530234359-bc242-31c006d69b81bf47abcf91f730bd868be1ffe499.gz
Copying patch 87 of 159: 20080530224859-bc242-4a529d17ead614fde4b8a14d9a441fb768700307.gz
Copying patch 88 of 159: 20080530222051-bc242-ff3b0ee17a40f576420a0ac69769d1e6b92ef4b1.gz
Copying patch 89 of 159: 20080530214515-bc242-fdd8f985501911d88e5e9b31edca37efb2395a89.gz
Copying patch 90 of 159: 20080530202050-bc242-427cd801da9fb093b9d1d95d82147ba86100e0fd.gz
Copying patch 91 of 159: 20080529232132-bc242-19c5dbfaeb00f1ab0d9e0bc3e0a52330811166af.gz
Copying patch 92 of 159: 20080529231727-32594-caf2b00afd409a65daaf0570ef36250f3a99d444.gz
Copying patch 93 of 159: 20080529231659-32594-2431036080f9ade6245cc973a1b8fa03ee7d91c9.gz
Copying patch 94 of 159: 20080529231028-bc242-370ef983d77551f402cfa182b5a29a6e279c71df.gz
Copying patch 95 of 159: 20080529224936-bc242-ace27561ed2138606d84588d22fef99db16733a9.gz
Copying patch 96 of 159: 20080529220108-32594-7aca79e0c94dd671e8fbea29efab24889f1cc803.gz
Copying patch 97 of 159: 20080321234133-177e8-ea935d3d34fb5e250564367007251f138cfaf698.gz
Copying patch 98 of 159: 20080529211539-bc242-45fbd873d001d92336a0dc35660cab8b137cab2e.gz
Copying patch 99 of 159: 20080529211244-bc242-7bd10f0c221d6a8b9195a9b910bd965a21e878af.gz
Copying patch 100 of 159: 20080529181317-bc242-e5b8176497edf5d21903f21f974c08128b873aa3.gz
Copying patch 101 of 159: 20080529212357-32594-e7fdcff19f8db4a0b50a80caba78107adc889cc0.gz
Copying patch 102 of 159: 20080529212131-32594-a30dcc32739aed8620d7a585d6de37b4c554c7c1.gz
Copying patch 103 of 159: 20080222230248-d6d15-115168e59e50ee019bf2670f820019fa2af7fac7.gz
Copying patch 104 of 159: 20080321225922-177e8-b51b998e5aefacba2d63a2d1dfad710fda2d2856.gz
Copying patch 105 of 159: 20080527235204-05081-8ab7ae2bffd68c25c25b708bc53a179ea611581a.gz
Copying patch 106 of 159: 20080527235106-05081-e41843ea708a20aa0d353e94364c03ddac35e50c.gz
Copying patch 107 of 159: 20080527230402-bc242-764a565caf27f2c8692e6f27595f6776425d96b1.gz
Copying patch 108 of 159: 20080527221741-e17fa-2e6b71c387fea2d670141baf9d519f0f0997627d.gz
Copying patch 109 of 159: 20080527193427-bc242-542c894ab4bad8fc4252b8befe003fc20b0fb37d.gz
Copying patch 110 of 159: 20080527001024-bc242-f8a3a735fd8ed0d76f242349cfc2055508bac59e.gz
Copying patch 111 of 159: 20080523221444-bc242-15e7beefef5f535c3721b33c831c0e7713b693a4.gz
Copying patch 112 of 159: 20080521233731-04611-26f669a47d51ea8508795af03138fc3feeb450d5.gz
Copying patch 113 of 159: 20080512110236-7e1d7-74fecd9ea8561e591e9889dd0c317c9b445a32f7.gz
Copying patch 114 of 159: 20080521163619-32594-198eaaab3ff5dcd11e09779e44c47ddf241636c2.gz
Copying patch 115 of 159: 20080521003213-32594-1944a7095c0e0d1ad11fe6aaf6a2ca5bd7384a24.gz
Copying patch 116 of 159: 20080521002404-32594-268b7320ae482b59b01cd075888527af8b9b5a5b.gz
Copying patch 117 of 159: 20080521001653-32594-8574b5ccd1bdab6fee620e6c7e6da643e4f09326.gz
Copying patch 118 of 159: 20080521001611-32594-a9b7b3e08017bc5a34a4a1eb6edf4ff997b2053f.gz
Copying patch 119 of 159: 20080520232602-32594-855011af8bc3aa3336d6444bbad50dcfd7450156.gz
Copying patch 120 of 159: 20080520222854-32594-93a4835758b9a3b4e80da8bb8ff7d9086d570707.gz
Copying patch 121 of 159: 20080520200300-32594-eb64fb4fe1e9799426f94b77cd5384303173343e.gz
Copying patch 122 of 159: 20080520190622-bc242-d18e0e3b49fcbfdf6cf55d3845c2e9c35cf90ec7.gz
Copying patch 123 of 159: 20080520164823-32594-e7b30fb18942eb8742e0be61cb4a3bc954eec85e.gz
Copying patch 124 of 159: 20080313235746-32594-ca7b9e38fc97997d948dd942aa80e00ca65dc090.gz
Copying patch 125 of 159: 20080313234416-32594-3385f3fcc27105205bb37e62263f61fdad90628b.gz
Copying patch 126 of 159: 20080313234248-32594-6608788e31890bbca9c705bd22b85ae1c282e319.gz
Copying patch 127 of 159: 20080220220619-32594-3e4f57a83e9e809fb8fc754cf89416c7f1c9ddd2.gz
Copying patch 128 of 159: 20080220213956-32594-a8354bd3d92e000c0e4c2308720428e26ccdf322.gz
Copying patch 129 of 159: 20080219234601-32594-5a404daab5a63d8f3187e31e3001eb50511035af.gz
Copying patch 130 of 159: 20080219234326-32594-a660ad593544bac4a05f22bf5e5daf19ee76849e.gz
Copying patch 131 of 159: 20080207214000-32594-f52fecc7acdde5656bd04830b5d2ebe50fa7558f.gz
Copying patch 132 of 159: 20080207212211-32594-b3db2b820719eb79607e4657924a49e7488713de.gz
Copying patch 133 of 159: 20080207211908-32594-5fafbf1770b42b10826e42f319a28061804f9aa2.gz
Copying patch 134 of 159: 20080204200901-32594-41b77b42682a67d35caf1fef475c8ae924f63fb3.gz
Copying patch 135 of 159: 20080204195821-32594-a1f392380678aaf90fe87ab5dc41285e80a055dc.gz
Copying patch 136 of 159: 20080204195753-32594-a7c0e687644f045c95f2feebdedfd80e3d3bf5d8.gz
Copying patch 137 of 159: 20080204195735-32594-fea5285c1b525dc60513b136c9427db0ae3f917f.gz
Copying patch 138 of 159: 20080204195723-32594-e963c8cbcde9f9f00a676bf4b20dab07d4a1339c.gz
Copying patch 139 of 159: 20080202065307-643ad-0b1c908d90c46426899240693b2e5493134f02db.gz
Copying patch 140 of 159: 20080202063443-643ad-22cb4aa2f7663ec45158db87c04f24bafbd7b734.gz
Copying patch 141 of 159: 20080202194709-65347-3505de2341b5512508ee51fbc6b976d052d48c75.gz
Copying patch 142 of 159: 20080202183503-65347-1fcbd3e86733722611a012bc6b0ffef1e0bcfe2e.gz
Copying patch 143 of 159: 20080204180559-32594-05493275f924a3d9e56102721a9d59e600a5c06d.gz
Copying patch 144 of 159: 20080204175339-32594-1c5c8a6567b4311a77d341c23fac103984f90038.gz
Copying patch 145 of 159: 20080129054357-32594-e283eff65a34db0a45db04c2f9b144a089d7cb62.gz
Copying patch 146 of 159: 20080124041253-b25b0-3c67da16be626793bc5fd6d51ee56c081851b548.gz
Copying patch 147 of 159: 20080116184239-32594-d8df038b9549fbe88118aff5ef5cb6e7ea7d1ad6.gz
Copying patch 148 of 159: 20080116174448-177e8-840a69591c52f3d7de693d15312bb2cec1456b4d.gz
Copying patch 149 of 159: 20080103000827-32594-c5ffe3c223dc8b690bdbf5d04a7722728d7fc1d6.gz
Copying patch 150 of 159: 20071231191841-32594-59463bd8c6a1971cfbdc7cf85810f857146fac3f.gz
Copying patch 151 of 159: 20071231184207-32594-1d9ae7b9db98f00d6985ccf8bb728d748b1cde17.gz
Copying patch 152 of 159: 20071230015002-ae87c-e3c97fd50170f83dba268216423f5c2931033d61.gz
Copying patch 153 of 159: 20071229223813-ae87c-027c63924e510b452aad6979a4e6ec5ea678ff1c.gz
Copying patch 154 of 159: 20071229214829-ae87c-fe8dbff5ff6217d27da0b5576f4333070c529ede.gz
Copying patch 155 of 159: 20071229084113-ae87c-9012f7e07824b13d8827b5d28435ada61c965597.gz
Copying patch 156 of 159: 20071229081729-ae87c-26b64a1b190647ece6bc8c1160656e3ee7169e83.gz
Copying patch 157 of 159: 20071220222957-177e8-e4ea5f40d852fb8171dbb46ea653455534a51d33.gz
Copying patch 158 of 159: 20071208234037-86b15-632acbdc063f293f6816f7ce3819d1ec2e48517e.gz
Copying patch 159 of 159: 20071205215515-32594-2934c11740e289c35ab84dd44d2682f33d3f5e84.gz
Patches copied
Repo lazily read
Repo local: "False"
Applying patch 1 of 158: Sat Dec 8 23:40:37 UTC 2007 dAniel hAhler <php-openid@thequod.de>
* use-time-instead-of-(gm)mktime
Use time() instead of (gm)mktime(), when used for getting the current
time (called without arguments).
According to "hunk ./Auth/OpenID/Nonce.php 99" gmmktime() for PHP4 is
buggy and using mktime() makes no sense when called without args:
just use time() then directly.
Applying patch 2 of 158: Thu Dec 20 22:29:57 UTC 2007 sam.alexander@vidoop.com
* Typo in SReg docblock
Applying patch 3 of 158: Sat Dec 29 08:17:29 UTC 2007 Trevor Johns <trevor@tjohns.net>
* Update admin scripts to run under Mac OS X
The scripts in admin use several non-POSIX arguments which do not work on Mac
OS X. See my original post to dev@openidenabled.com:
message://%3C5902A542-C723-4F0A-8478-1F33C874D1B8@tjohns.net%3E
http://lists.openidenabled.com/pipermail/dev/2007-December/000979.html
This patch makes the following changes to fix this:
- Changed $HERE in admin/runtests to avoid calling readlink.
- Calls to xargs now use '-L 1' instead of '-l1'.
- Calls to 'wc -L' were eliminated.
Applying patch 4 of 158: Sat Dec 29 08:41:13 UTC 2007 Trevor Johns <trevor@tjohns.net>
* Fixed StoreTest to not fail on Mac OS X 10.5
Mac OS X 10.5 generates a value for $TMPDIR that looks something like
this:
/var/folders/uU/uXMNhbRIGkOhaxcg60xSGU+++TI/-Tmp-/
The '+++' is causing the DSN in Tests_Auth_OpenID_StoreTest::test_sqlitestore
to become invalid. This invalid DSN causes the SQLite driver to attempt
creating a file at a nonexistant path, resulting in a failed test. This is
fixed by wrapping the value of $TMPDIR received by the system in a call to
urlencode().
Applying patch 5 of 158: Sat Dec 29 21:48:29 UTC 2007 Trevor Johns <trevor@tjohns.net>
* Fixed typo and minor formatting changes for StoreTest.
- Removed extra newline.
- Changed comment in test_sqlitestore() to read 'sqlite' instead of
'postgres'.
Applying patch 6 of 158: Sat Dec 29 22:38:13 UTC 2007 Trevor Johns <trevor@tjohns.net>
* Removed unused $http_response from Auth_Yadis_Manager
Applying patch 7 of 158: Sun Dec 30 01:50:02 UTC 2007 Trevor Johns <trevor@tjohns.net>
* Fixed discovery failure due to case-sensitive comparison of 'Location:' header
If an HTTP redirect was issued during discovery with a 'Location:' header that
doesn't exactly match case (such as 'location:' or 'LOCATION:'), discovery
would fail. This is incorrect behavior per RFC 2616, Section 4.2.
This behavior is corrected by using a case insensitive compare when checking
for HTTP redirects.
Applying patch 8 of 158: Mon Dec 31 18:42:07 UTC 2007 cygnus@janrain.com
* Store test: remove correct sqlite database file
Applying patch 9 of 158: Mon Dec 31 19:18:41 UTC 2007 cygnus@janrain.com
* Remove PHP5ism (stripos())
Applying patch 10 of 158: Thu Jan 3 00:08:27 UTC 2008 cygnus@janrain.com
* Refactored HTML-parsing code to avoid PCRE limits on large matches
Applying patch 11 of 158: Wed Jan 16 17:44:48 UTC 2008 sam.alexander@vidoop.com
* Fixing documentation
Applying patch 12 of 158: Wed Jan 16 18:42:39 UTC 2008 cygnus@janrain.com
* Auth_OpenID_AX_FetchResponse::getExtensionArgs takes request by value, defaults to null
Applying patch 13 of 158: Thu Jan 24 04:12:53 UTC 2008 joel@pbwiki.com
* ParanoidHTTPFetcher.php (supportsSSL): Updated to work under PHP 4.
The official documentation lies, curl_version() returns an array in PHP 5 and a string in PHP 4.
Applying patch 14 of 158: Tue Jan 29 05:43:57 UTC 2008 cygnus@janrain.com
* Fix reference-passing style for PHP 5
Applying patch 15 of 158: Mon Feb 4 17:53:39 UTC 2008 cygnus@janrain.com
* Fix IDP XRDS in example server: advertise correct type
Applying patch 16 of 158: Mon Feb 4 18:05:59 UTC 2008 cygnus@janrain.com
* Fix user XRDS
Applying patch 17 of 158: Sat Feb 2 18:35:03 UTC 2008 me@arty.name
* Failed DB connection is not a fail of test, typo in PG storage test
Applying patch 18 of 158: Sat Feb 2 19:47:09 UTC 2008 me@arty.name
* Implementation of Memcached storage in PHP. This patch also includes supportsCleanup() function for OpenIDStore interface, as memcache doesn't allow
enumeration of all keys used (and cleans itself).
Also included test for memcached storage and support for supportsCleanup() in test functions.
Applying patch 19 of 158: Sat Feb 2 06:34:43 UTC 2008 harningt@gmail.com
* support-hmacsha256
Applying patch 20 of 158: Sat Feb 2 06:53:07 UTC 2008 harningt@gmail.com
* hmac-sha256-test
Applying patch 21 of 158: Mon Feb 4 19:57:23 UTC 2008 cygnus@janrain.com
* Enable (HMAC)SHA256 tests; why did we disable them?
Applying patch 22 of 158: Mon Feb 4 19:57:35 UTC 2008 cygnus@janrain.com
* Pass instead of fail on failed memcached connection
Applying patch 23 of 158: Mon Feb 4 19:57:53 UTC 2008 cygnus@janrain.com
* Whitespace
Applying patch 24 of 158: Mon Feb 4 19:58:21 UTC 2008 cygnus@janrain.com
* Change output when skipping memcached tests: warnings upset buildbot
Applying patch 25 of 158: Mon Feb 4 20:09:01 UTC 2008 cygnus@janrain.com
* Generalize Auth_OpenID_Association::sign()
Applying patch 26 of 158: Thu Feb 7 21:19:08 UTC 2008 cygnus@janrain.com
* Add HMAC-SHA256 to plaintext consumer session assoc types
Applying patch 27 of 158: Thu Feb 7 21:22:11 UTC 2008 cygnus@janrain.com
* Remove stale getAssocArgs
Applying patch 28 of 158: Thu Feb 7 21:40:00 UTC 2008 cygnus@janrain.com
* Skip HMAC-SHA256 test if not supported
Applying patch 29 of 158: Tue Feb 19 23:43:26 UTC 2008 cygnus@janrain.com
* Add conditional check for CURLOPT_NOSIGNAL (thanks: http://ols2000.myopenid.com/)
Applying patch 30 of 158: Tue Feb 19 23:46:01 UTC 2008 cygnus@janrain.com
* Use PATH_SEPARATOR in detect.php (thanks: http://jeroen.hellingman.myopenid.com/)
Applying patch 31 of 158: Wed Feb 20 21:39:56 UTC 2008 cygnus@janrain.com
* Remove "warning" text from output of store tests
Applying patch 32 of 158: Wed Feb 20 22:06:19 UTC 2008 cygnus@janrain.com
tagged 2.0.1
Applying patch 33 of 158: Thu Mar 13 23:42:48 UTC 2008 cygnus@janrain.com
* Extend Yadis HTML discovery regex to support XHTML-style tags
Applying patch 34 of 158: Thu Mar 13 23:44:16 UTC 2008 cygnus@janrain.com
* Handle null responses in Yadis.php
Applying patch 35 of 158: Thu Mar 13 23:57:46 UTC 2008 cygnus@janrain.com
* Handle malformed HTTP headers in fetchers
Applying patch 36 of 158: Tue May 20 16:48:23 UTC 2008 cygnus@janrain.com
* Swap XRDS and server urls in identity page code (thanks: lulurun@gmail.com)
Applying patch 37 of 158: Tue May 20 19:06:22 UTC 2008 dag@janrain.com
* Use ENGINE=InnoDB instead of TYPE=InnoDB, which is deprecated in current versions of MySQL
Applying patch 38 of 158: Tue May 20 20:03:00 UTC 2008 cygnus@janrain.com
* Example server: set response code in action_default
Applying patch 39 of 158: Tue May 20 22:28:54 UTC 2008 cygnus@janrain.com
* Add Auth_OpenID::log()
Applying patch 40 of 158: Tue May 20 23:26:02 UTC 2008 cygnus@janrain.com
* ParanoidHTTPFetcher: log error condition when returning null
Applying patch 41 of 158: Wed May 21 00:16:11 UTC 2008 cygnus@janrain.com
* Actually use URINorm functionality for Auth_OpenID::normalizeURL
Applying patch 42 of 158: Wed May 21 00:16:53 UTC 2008 cygnus@janrain.com
* whitespace
Applying patch 43 of 158: Wed May 21 00:24:04 UTC 2008 cygnus@janrain.com
* Include more prominent link to Consumer file documentation in top-level docs
Applying patch 44 of 158: Wed May 21 00:32:13 UTC 2008 cygnus@janrain.com
* Collapse allowedURL and isHTTPS checks into HTTPFetcher.canFetchURL
Applying patch 45 of 158: Wed May 21 16:36:19 UTC 2008 cygnus@janrain.com
* Auth_OpenID::ensureDir: add terminal case when dirname returns its input
Applying patch 46 of 158: Mon May 12 11:02:36 UTC 2008 Artemy Tregubenko <me@arty.name>
* Accept HTML when making YADIS discovery
Some http servers strictly follow http spec and do not send html reply when text/html isn't listed in Accept: header. Because of
this YADIS discovery fails for these servers. This patch adds 'text/html' to Accept: header.
Applying patch 47 of 158: Wed May 21 23:37:31 UTC 2008 Kevin Turner <kevin@janrain.com>
* Yadis: add application/xhtml+xml to Accept header, include qualities
Applying patch 48 of 158: Fri May 23 22:14:44 UTC 2008 dag@janrain.com
* Add toHTML methods. Server.toFormMarkup passes through form attributes
Applying patch 49 of 158: Tue May 27 00:10:24 UTC 2008 dag@janrain.com
* Send all fields in check_authentication, not just signed ones. (OpenID 2 compliance)
Applying patch 50 of 158: Tue May 27 19:34:27 UTC 2008 dag@janrain.com
* Be explicit about implicit namespaces
Applying patch 51 of 158: Tue May 27 22:17:41 UTC 2008 http://mike.glover.myopenid.com
* fix copyright notices to include 2008
Applying patch 52 of 158: Tue May 27 23:04:02 UTC 2008 dag@janrain.com
* Run a syntax check as part of runtests
Applying patch 53 of 158: Tue May 27 23:51:06 UTC 2008 chowells@janrain.com
* have auto-submitting html code hide the continue button
Applying patch 54 of 158: Tue May 27 23:52:04 UTC 2008 chowells@janrain.com
* use the htmlMarkup method to get auto-submitting code, instead of doing it in the example consumer
Applying patch 55 of 158: Fri Mar 21 22:59:22 UTC 2008 sam.alexander@vidoop.com
* variable name (typo), $argv to $args (loadSuite was always being passed a null parameter)
Applying patch 56 of 158: Fri Feb 22 23:02:48 UTC 2008 Wes Morgan <wmorgan@ffpir.org>
* add_field_names_to_set_assoc_in_mysqlstore
Applying patch 57 of 158: Thu May 29 21:21:31 UTC 2008 cygnus@janrain.com
* examples/consumer: Return Consumer object by reference in getConsumer()
Applying patch 58 of 158: Thu May 29 21:23:57 UTC 2008 cygnus@janrain.com
* README: Add /contribute/ URL
Applying patch 59 of 158: Thu May 29 18:13:17 UTC 2008 dag@janrain.com
* Only fetch 1MB of data in Auth/Yadis/PlainHTTPFetcher.php
Applying patch 60 of 158: Thu May 29 21:12:44 UTC 2008 dag@janrain.com
* Fetcher: add Range header: 0-1MB
Applying patch 61 of 158: Thu May 29 21:15:39 UTC 2008 dag@janrain.com
* Add fetch response size limiting to libcurl fetcher
Applying patch 62 of 158: Fri Mar 21 23:41:33 UTC 2008 sam.alexander@vidoop.com
* Alter AX fromOpenIDRequest() to accept Auth_OpenID_AuthRequest object instead of Auth_OpenID_Message object so that it matches it's counterpart methods in SREG and PAPE extensions.
Applying patch 63 of 158: Thu May 29 22:01:08 UTC 2008 cygnus@janrain.com
* Auth/OpenID/AX: whitespace
Applying patch 64 of 158: Thu May 29 22:49:36 UTC 2008 dag@janrain.com
* PAPE: use auth_time instead of auth_age
Applying patch 65 of 158: Thu May 29 23:10:28 UTC 2008 dag@janrain.com
* PAPE: properly use "none" for empty auth policies list
Applying patch 66 of 158: Thu May 29 23:16:59 UTC 2008 cygnus@janrain.com
* ParanoidHTTPFetcher: Fix string interpolation of max response size
Applying patch 67 of 158: Thu May 29 23:17:27 UTC 2008 cygnus@janrain.com
* "and" -> "&&"
Applying patch 68 of 158: Thu May 29 23:21:32 UTC 2008 dag@janrain.com
* extra parsehtml testcase: javascript in head
Applying patch 69 of 158: Fri May 30 20:20:50 UTC 2008 dag@janrain.com
* Remove URL fragment in ServiceEndpoint->getDisplayIdentifier
Applying patch 70 of 158: Fri May 30 21:45:15 UTC 2008 dag@janrain.com
* Don't explicitly set no-encryption session type with OpenID 1 requests
Applying patch 71 of 158: Fri May 30 22:20:51 UTC 2008 dag@janrain.com
* Add version string to Auth/OpenID.php
Applying patch 72 of 158: Fri May 30 22:48:59 UTC 2008 dag@janrain.com
* Set User-Agent string in fetchers. include various versions
Applying patch 73 of 158: Fri May 30 23:43:59 UTC 2008 dag@janrain.com
* Update license strings to say Apache
Applying patch 74 of 158: Sat May 31 01:04:07 UTC 2008 Kevin Turner <kevin@janrain.com>
* ParanoidHTTPFetcher: check to see if curl_version returns an array or not.
Applying patch 75 of 158: Mon Jun 2 19:45:54 UTC 2008 dag@janrain.com
* Fix selectTests in TestDriver.php
Applying patch 76 of 158: Mon Jun 2 19:48:34 UTC 2008 dag@janrain.com
* TestDriver.php: make global_include_once tell you about failures
Applying patch 77 of 158: Mon Jun 2 19:51:48 UTC 2008 dag@janrain.com
* TestDriver.php: factor instantiating a test suite from a class name into its own function
Applying patch 78 of 158: Mon Jun 2 20:02:24 UTC 2008 dag@janrain.com
* Move Memcached store to contrib since it's not owned by JanRain
Applying patch 79 of 158: Mon Jun 2 20:06:02 UTC 2008 dag@janrain.com
* Make the MemcachedStore tests run on record
Applying patch 80 of 158: Mon Jun 2 20:08:43 UTC 2008 dag@janrain.com
* Add --extra-tests option to texttest.php
Applying patch 81 of 158: Mon Jun 2 23:19:52 UTC 2008 dag@janrain.com
* Consumer._verifyDiscoveryResults: fall back to OpenID 1.0 type if 1.1 endpoint cannot be found
Applying patch 82 of 158: Tue Jun 3 00:04:47 UTC 2008 dag@janrain.com
* normalize return_to before checking
Applying patch 83 of 158: Tue Jun 3 19:09:33 UTC 2008 dag@janrain.com
* Move MemcachedStore back from contrib, update license and copyright
Applying patch 84 of 158: Tue Jun 3 20:40:19 UTC 2008 cygnus@janrain.com
* Fix PHP tags
Applying patch 85 of 158: Tue Jun 3 21:10:14 UTC 2008 dag@janrain.com
* Add NOT NULL constraints to SQL stores
Applying patch 86 of 158: Tue Jun 3 21:16:32 UTC 2008 dag@janrain.com
* 'fix' regexp looking for bad constant capitalization to allow NULL in strings
Applying patch 87 of 158: Tue Jun 3 23:33:40 UTC 2008 dag@janrain.com
* AX::FetchResponse::fromSuccessResponse - return null when there's no ax args
Applying patch 88 of 158: Tue Jun 3 23:33:51 UTC 2008 dag@janrain.com
* Add AX FetchResponse tests, fix bugs
Applying patch 89 of 158: Tue Jun 3 23:46:13 UTC 2008 Kevin Turner <kevin@janrain.com>
* server..Decoder.defaultDecoder: more readable error message
Applying patch 90 of 158: Tue Jun 3 23:42:10 UTC 2008 dag@janrain.com
* rename return_to to current_url in Consumer.complete
Applying patch 91 of 158: Tue Jun 3 23:50:26 UTC 2008 dag@janrain.com
* Add comment for Consumer::Response describing display_identifier and identity_url
Applying patch 92 of 158: Wed Jun 4 22:14:08 UTC 2008 dag@janrain.com
* Message->getArg & friends return FailureResponse on error
Applying patch 93 of 158: Wed Jun 4 22:10:37 UTC 2008 Kevin Turner <kevin@janrain.com>
* #224: Tests_Auth_OpenID_CheckID: more test cases for missing trust_root/realm
Applying patch 94 of 158: Wed Jun 4 22:28:32 UTC 2008 Kevin Turner <kevin@janrain.com>
* Auth_OpenID_Decoder::decode: make sure Auth_OpenID_ServerError has an Auth_OpenID_Message after encountering invalid OpenID namespace
Applying patch 95 of 158: Wed Jun 4 22:45:48 UTC 2008 Kevin Turner <kevin@janrain.com>
* Auth_OpenID_CheckIDRequest::fromMessage: return Auth_OpenID_ServerError if claimed_id is provided without identity
Applying patch 96 of 158: Wed Jun 4 22:13:10 UTC 2008 chowells@janrain.com
* Fix trust root test runner and then all failing tests that were exposed
Applying patch 97 of 158: Wed Jun 4 22:40:03 UTC 2008 chowells@janrain.com
* Port the v2 plaintext encryption test from python
Applying patch 98 of 158: Wed Jun 4 22:49:04 UTC 2008 chowells@janrain.com
* Test Server.php fix the error message if test_nomode fails
Applying patch 99 of 158: Wed Jun 4 23:12:14 UTC 2008 chowells@janrain.com
* Fix #220: Use return_to from request when generating form markup in Server.php
Applying patch 100 of 158: Wed Jun 4 22:42:49 UTC 2008 dag@janrain.com
* fix typo in test data
Applying patch 101 of 158: Wed Jun 4 23:15:05 UTC 2008 dag@janrain.com
* Add an extra parsehtml testcase - no close script tag
Applying patch 102 of 158: Wed Jun 4 23:29:03 UTC 2008 chowells@janrain.com
* #189 Add optional form_tag_attrs arg to Auth_OpenID_ServerResponse->toFormMarkup
Applying patch 103 of 158: Wed Jun 4 23:40:42 UTC 2008 Kevin Turner <kevin@janrain.com>
* Auth_OpenID_Decoder::decode: Check for Auth_OpenID_FailureResponse when getting OpenID message mode
Applying patch 104 of 158: Wed Jun 4 23:42:58 UTC 2008 Kevin Turner <kevin@janrain.com>
* Auth_OpenID_Decoder::defaultDecoder: Check for Auth_OpenID_FailureResponse when getting OpenID message mode
Applying patch 105 of 158: Wed Jun 4 23:45:05 UTC 2008 Kevin Turner <kevin@janrain.com>
* Add HTTP case to trustroot test cases
Applying patch 106 of 158: Wed Jun 4 23:52:51 UTC 2008 chowells@janrain.com
* #229 Server.php: test hasReturnTo() when message=null
Applying patch 107 of 158: Thu Jun 5 00:10:24 UTC 2008 chowells@janrain.com
* Add an explicit test for doubled-up ports for PHP 4.3 where the URL parsing is different
Applying patch 108 of 158: Thu Jun 5 00:24:47 UTC 2008 chowells@janrain.com
* Silence session_start warnings that are output for older builds of PHP 4.3 so the build passes
Applying patch 109 of 158: Thu Jun 5 01:11:59 UTC 2008 chowells@janrain.com
* #204 MalformedTrustRoot returned by the library now gets passed the OpenID Message object instead of null
Applying patch 110 of 158: Thu Jun 5 18:45:28 UTC 2008 dag@janrain.com
* handle empty string for trustroot the same as missing
Applying patch 111 of 158: Thu Jun 5 18:00:34 UTC 2008 cygnus@janrain.com
* TestDriver.php: load "_other" tests regardless of primary test class type
Applying patch 112 of 158: Thu Jun 5 19:22:41 UTC 2008 cygnus@janrain.com
* Fix Auth_OpenID_getAllowedReturnURLs, Auth_Yadis_DiscoveryResult::usedYadisLocation, add Auth_Yadis_getServiceEndpoints, tests
Applying patch 113 of 158: Thu Jun 5 20:16:21 UTC 2008 cygnus@janrain.com
* Auth_OpenID_getAllowedReturnURLs: use fetcher parameter in call to getServiceEndpoints
Applying patch 114 of 158: Thu Jun 5 20:34:02 UTC 2008 cygnus@janrain.com
* Auth_Yadis_Yadis::discover: Correctly test for null fetcher parameter
Applying patch 115 of 158: Thu Jun 5 20:39:31 UTC 2008 cygnus@janrain.com
* Plain http fetcher: allow for absent "path" key in parsed URL array
Applying patch 116 of 158: Thu Jun 5 21:00:16 UTC 2008 cygnus@janrain.com
* add test for Auth_Yadis_getCanonicalId with subsegments
Applying patch 117 of 158: Thu Jun 5 22:46:40 UTC 2008 Kevin Turner <kevin@janrain.com>
* Deprecate Auth_OpenID_CheckIDRequest::namespace and stop using == Auth_OpenID_OPENID1_NS anywhere in server
Applying patch 118 of 158: Thu Jun 5 23:09:58 UTC 2008 cygnus@janrain.com
* add CHANGES-2.1.0
Applying patch 119 of 158: Thu Jun 5 23:49:02 UTC 2008 cygnus@janrain.com
* Update CHANGES-2.1.0
Applying patch 120 of 158: Thu Jun 5 23:58:03 UTC 2008 cygnus@janrain.com
* Change Auth_OpenID_VERSION to 2.1.0
Applying patch 121 of 158: Thu Jun 5 22:50:39 UTC 2008 Kevin Turner <kevin@janrain.com>
* Auth_OpenID_AuthRequest: simplify message construction
Applying patch 122 of 158: Fri Jun 6 00:40:23 UTC 2008 Kevin Turner <kevin@janrain.com>
* message: allow two values for OPENID1_NS
message: allow two values for OPENID1_NS
Also:
* fix op_endpoint bug in Server.php
* always treat OpenID 1 namespace as implicit in messages we create
Applying patch 123 of 158: Fri Jun 6 18:26:11 UTC 2008 cygnus@janrain.com
* demo RP: escape response information prior to output
Applying patch 124 of 158: Fri Jun 6 18:26:52 UTC 2008 cygnus@janrain.com
* demo RP: indentation
Applying patch 125 of 158: Fri Jun 6 21:39:33 UTC 2008 cygnus@janrain.com
* Do not send namespace aliases for extensions with OpenID 1 messages that we create
This makes the library compatible with the 1.x series of this library,
since it did not handle arbitrary query keys with dots in them (PHP
mangles . to _)
Applying patch 126 of 158: Fri Jun 6 22:43:56 UTC 2008 cygnus@janrain.com
* Add examples/discover.php tool
Applying patch 127 of 158: Fri Jun 6 22:49:51 UTC 2008 cygnus@janrain.com
tagged 2.1.0
Applying patch 128 of 158: Fri Jun 6 23:03:45 UTC 2008 cygnus@janrain.com
* examples/discover: import consumer/common.php to set include_path
Applying patch 129 of 158: Wed Jun 11 18:20:36 UTC 2008 cygnus@janrain.com
* Auth_OpenID_urinorm: fail to parse URIs with non-ASCII characters
Applying patch 130 of 158: Wed Jun 11 18:21:27 UTC 2008 cygnus@janrain.com
* Add test cases for trust roots with non-ASCII characters in path or hostname
Applying patch 131 of 158: Wed Jun 11 22:18:05 UTC 2008 Kevin Turner <kevin@janrain.com>
* Accept response code 206 from fetcher results. Fixes #260
Applying patch 132 of 158: Wed Jun 11 22:22:16 UTC 2008 Kevin Turner <kevin@janrain.com>
* Accept response code 206 from fetcher results (part 2). Fixes #260
Applying patch 133 of 158: Fri Jun 13 18:14:46 UTC 2008 Kevin Turner <kevin@janrain.com>
* etxrd.getCanonicalID: case-insensitive comparsions, patch from =wil
1. There should only be a single CanonicalID in each XRD (in the latest XRI
resolution spec), so I made it use the first CID found instead of the last.
2. Use case-insensitive comparison when comparing CanonicalIDs.
Applying patch 134 of 158: Fri Jun 20 22:08:10 UTC 2008 http://j3h.us/
* Rename files and tests related to HMACSHA1 and HMACSHA256
Applying patch 135 of 158: Fri Jun 20 22:40:43 UTC 2008 http://j3h.us/
* Test and fix HMAC-SHA256
Applying patch 136 of 158: Fri Jun 20 22:46:49 UTC 2008 http://j3h.us/
* Fix Consumer's OpenID 1 checkid_immediate failure handling (thanks to Evan Prodromou)
Applying patch 137 of 158: Fri Jun 20 22:56:09 UTC 2008 http://j3h.us/
* Do not attempt HMAC-SHA256 tests if HMAC-SHA256 is not supported
Applying patch 138 of 158: Mon Jun 23 23:15:33 UTC 2008 will@willnorris.com
* fix accept header
Applying patch 139 of 158: Sun Jun 22 14:15:37 UTC 2008 dAniel hAhler <php-openid@thequod.de>
* ParanoidHTTPFetcher-strpos-instead-of-preg_match-and-code-improvements
ParanoidHTTPFetcher:
- Fix corner case in get() and post() for headers without any value
(e.g. 'Expires:')
- Use strpos() instead of preg_match() when looking for ":" (and
look for ": " now instead)
Applying patch 140 of 158: Wed Jun 25 18:53:31 UTC 2008 Kevin Turner <kevin@janrain.com>
* remove Auth_OpenID::quoteMInimal. Resolves #262.
Applying patch 141 of 158: Wed Jun 25 20:24:19 UTC 2008 Kevin Turner <kevin@janrain.com>
* Updated TLD list in TrustRoot.php
Applying patch 142 of 158: Wed Jun 25 20:26:47 UTC 2008 Kevin Turner <kevin@janrain.com>
* Added a script that helps to update the valid TLD list for trust root matching
Applying patch 143 of 158: Wed Jun 25 21:48:06 UTC 2008 Kevin Turner <kevin@janrain.com>
* Make the detect script work with 206 responses from the fetcher
Applying patch 144 of 158: Fri Jun 27 22:42:22 UTC 2008 Kevin Turner <kevin@janrain.com>
* Update version to 2.1.1
Applying patch 145 of 158: Fri Jun 27 22:43:17 UTC 2008 Kevin Turner <kevin@janrain.com>
tagged 2.1.1
Applying patch 146 of 158: Tue Jul 8 22:17:15 UTC 2008 Kevin Turner <kevin@janrain.com>
* Demo server: remove stale HMACSHA1.php include
Applying patch 147 of 158: Thu Jul 10 23:18:23 UTC 2008 chowells@janrain.com
* Provide the user_setup_url in the Auth_OpenID_SetupNeededResponse even in OpenID 2
Applying patch 148 of 158: Fri Jul 11 21:52:08 UTC 2008 chowells@janrain.com
* If we're generating user_setup_urls, let's at least do it correctly
Applying patch 149 of 158: Tue Sep 9 19:10:25 UTC 2008 Kevin Turner <kevin@janrain.com>
* Update version to 2.1.2
Applying patch 150 of 158: Tue Sep 9 19:10:58 UTC 2008 Kevin Turner <kevin@janrain.com>
tagged 2.1.2
Applying patch 151 of 158: Fri Oct 31 23:23:00 UTC 2008 dag@janrain.com
* Don't use Range header for ID page requests
Applying patch 152 of 158: Fri Nov 7 20:24:12 UTC 2008 sam.alexander@vidoop.com
* getAliasedArg() returns OpenID namespace when $aliased_key is 'ns'
This fixes an rather cryptic error when using stateless mode via the DumbStore. The 'ns'
key can not be found in the alias/namespace mapping (its stored as the "Null Namespace"),
it must be returned explicitly. The inability to find the key in the mapping results in a
"Server Denied check_authentication" error, but the error is caused before any callback
to the server is made.
This also brings the PHP lib more in line with the ruby and python libs.
Applying patch 153 of 158: Fri Nov 7 20:39:15 UTC 2008 cygnus@janrain.com
* Message: indentation
Applying patch 154 of 158: Fri Nov 14 22:07:59 UTC 2008 subra.santosh@gmail.com
* OpenID Signed Assertions(Implementation of old sxip draft)
In our solution, one party, which we call the Attribute Provider (AP), provides
a signed certificate that the the user possesses some attribute (e.g. is over 18). This certificate is stored as an attribute at the user's OP, and other RPs can request this certificate when they want to verify attributes of the user.
For the implementation, we have followed the OpenID Signed Assertions
draft: http://www.mail-archive.com/specs@openid.net/msg00907.html
The Signed Assertions Draft did not specify how signed assertions are
stored at the OP, so we adopted the following scheme:
Attribute: http://X
Certificate: http://X/signature
This enables RPs that don't care about certificates to completely ignore them. Assertions are SAML documents as specified in the OpenID Signed
Assertions old draft.
We are developing a demo application in which a university issues certificates verifying students' age, student-hood, and even their photo (also potentially useful to dating sites). So basically the university acts as an attribute provider, signing assertions about user claims. These claims are stored as an attribute in the OpenId provider and we can use the OpenID AX protocol to pass assertions as attributes. The data flow is:
User requests assertion --- University(Attribute provider)
--- (store request)
--- Openid provider
Relying Party(Dating site) --- (fetch request) --- OpenID Provider
The RP gets the assertion, verifies the signature, and takes actions depending on the result. In some scenarios, the RP may deny the user request if the attribute verification fails (e.g. the dating site may forbid users under 18). In other scenarios the RP may treat them differently (e.g. the dating site could tag certified photos as "Verified Photo").
Note that the RP must have some sort of trust relationship with the AP. We've tried to keep the system as open as possible. Our protocol and implementation do not specify how this trust relationship is created or managed. For example, there could be a PKI specifically set up for verifying claims about student-hood, another trust system set up for verifying claims about age, etc.
Santosh Subramanian
Shishir Randive
Michael Hart
Rob Johnson
Applying patch 155 of 158: Mon Dec 8 23:39:36 UTC 2008 cygnus@janrain.com
* Move signed assertions code into contrib/
Applying patch 156 of 158: Fri Dec 12 20:13:44 UTC 2008 cygnus@janrain.com
* Unify method signatures to reduce E_STRICT warnings
Applying patch 157 of 158: Mon Apr 20 19:44:23 UTC 2009 cygnus@janrain.com
* Consumer: require that op_endpoint be signed in id_res responses
Ignore-this: 6598d5e0768bf410105eef7ac24da698
Applying patch 158 of 158: Tue Apr 21 17:54:38 UTC 2009 cygnus@janrain.com
tagged 2.1.3
Ignore-this: c326c9655a045adeb45a9b153bd2a357
Writing the pristine
Syncing the repository...
Repository synced, going to chosen version...
Finished getting.