symfony framework forum

[davedash]

If anybody is planning on using OpenID I spent a lot of time retrofitting this library:
http://openidenabled.com/openid/libraries/php

into Symfony. It's not as polished or as clean as I'd like, but it might be useful to others who are thinking of using openID. Or maybe make an sfOpenID plugin ~ ~

Anyway, if anybody likes it I'll try to post what I can to the wiki.

[Aergonaut]

Hi, davedash. I'm looking to use OpenID in one of my apps and am interested in seeing what you've done. I was trying to get that same library plugged into symfony as well, and would appreciate any advice/tips/tricks you have with the work you did.

[davedash]

Hey... I'll zip up what I got... can you give me your email?

I was just discussing with my wife today at how... poor our implementation of it has been on reviewsby.us (try it and tell me your luck logging in).

I'd love to start an sfOpenID plugin or maybe sfWhoBar.

Would you be interested?

-d

[Aergonaut]

Tried your implementation. That's exactly what I'm looking for. You even have the SREG-extension going! Perfect. I appreciate your helping me out!

My e-mail's [url=mailto:chris@aergonet.com.]chris@aergonet.com.[/url] Thanks a lot!

As to helping develop a plugin, I'm afraid I don't have enough time or know-how for something that big. I'd be happy to contribute with testing or anything else I might be able to help with though. ~ ~

[halfer]

I'd recommend you post your email address in obfuscated form here, as it will attract spammers if you post it normally.

[NiKo]

Hi, I'm also interested by your sfOpenId plugin attempt, as I'm currently trying to make the same thing ~ ~

My email is nperriault at gmail. Thanks ~ ~

[davedash]

FYI, the openID implimentation I had been using on reviewsby.us fell apart (I was using libraries in PEAR versus in my lib folder, so when I moved servers... all heck broke loose).


This prompted me to find a new solution. I found a minimalist consumer that I've adapted for symfony so the plugin work is beginning. I imagine in a week or so I'll have a full fledged sfOpenIDPlugin ready for people.

The proof of concept is working, I just need to make it use my applications own callback's on success.

Unfortunately it's not at the level I'd like. It uses openID consumer in "stupid mode" or maybe DUMB mode. So hopefully the power of open source will lead to it turning into a more powerful consumer (and heck maybe someone will throw in a server as well).

I'll keep people posted. Sorry it took so long.

[NiKo]

I've started something based on the "official" PHP OpenID library : http://www.openidenabled.com/openid/libraries/php, but only for the authentification part.

I don't plan to provide OpenID server capabilities, so I'll (re)name my plugin attempt "sfOpenIDAuthPlugin" ~ ~

[davedash]

Those libraries, I don't think, are by any means official just full featured and popular.

I'd keep the name the same and just overwrite my implementation ~ ~ The reason I say that, is sfOpenIDPlugin is a much smaller name, and really the only reason I didn;t use the JanRain libs is because they had a lot of issues with globals, etc that don't work too well in symfony's strict PHP5 environment.

I do like the libraries because they are feature rich, though, and I hope you can get whatever changes you can migrated upstream. I wonder if the development of those libraries is open at all. The biggest issue is they are meant to work with PHP4 as well and that is always a compromise.

How's it coming along?

[NiKo]

Well, I must admit that the php4 code of the phpopenid lib is not easy to deal with, it's a bit disapointing :/

So I got 3 questions for you ~ ~

1. Did you find a php5/well coded lib dealing with openid ?
2. Do you manage openid account association storage in your plugin ? I mean, how do you deal with auth persistence and local accounts synchronization ?
3. Do you plan to publish your plugin attempt ? When ? ~ ~

[davedash]

1. So the minimalist consumer I decided to scrap. It's still a bit PHP4-ish, which isn't bad, but didn't help it's case any ~ ~ But the fact that it was simply "free" for use and didn't have a license made me want to stay away. So I wrote my own which is similar in that it's simple and CURL based, but mine actually lacks the SREG functionality that this library did. I figure I can add that later, I just want authentication at the moment.

2. The lib will identify if someone is a certain openID_url if they are it will let you run a callback function. That callback function can take care of whatever your app requires in order to either 1. add that user to your system or 2. have them go through a registration system. For example on reviewsby.us I have them automatically get a profile if they use openID. I also happen to be using sfGuardUser which stores the openID as their username for login.

3. Definitely, I cleaned up the code this last weekend, and I plan on uploading it to the wiki this week... although I'm a tad sick, so it might take til next week.

I'll comment here once it's up, and I know there'll be problems with it, at least documentation wise... so we can hash those out until the library is worthy ~ ~

[davedash]

Moving this thread to Plugins where it belongs ~ ~

[nidheeshks]

[mayeco]

Please check this app sandbox https://github.com/mayeco/sfOpenIdOAuth