login.php | searchcode

/wp-content/plugins/openid/login.php

https://github.com/alx/alexgirard.com-blog
PHP | 225 lines | 152 code | 38 blank | 35 comment | 28 complexity | aabc997e62bde4b8e05982d08057b431 MD5 | raw file
Possible License(s): GPL-2.0, LGPL-2.1

<?php
/**
 * All the code required for handling logins via wp-login.php.  These functions should not be considered public, 
 * and may change without notice.
 */


// add OpenID input field to wp-login.php
add_action( 'login_head', 'openid_wp_login_head');
add_action( 'login_form', 'openid_wp_login_form');
add_action( 'register_form', 'openid_wp_register_form');
add_action( 'register_post', 'openid_register_post');
add_action( 'wp_authenticate', 'openid_wp_authenticate' );
add_action( 'openid_finish_auth', 'openid_finish_login' );
add_filter( 'registration_errors', 'openid_registration_errors');
add_action( 'init', 'openid_login_errors' );
add_filter( 'openid_consumer_return_urls', 'openid_wp_login_return_url' );

// WordPress 2.5 has wp_authenticate in the wrong place
if (strpos($wp_version, '2.5') === 0) {
	add_action( 'init', 'wp25_login_openid' );
}


/**
 * If we're doing openid authentication ($_POST['openid_identifier'] is set), start the consumer & redirect
 * Otherwise, return and let WordPress handle the login and/or draw the form.
 *
 * @param string $credentials username and password provided in login form
 */
function openid_wp_authenticate(&$credentials) {
	if (array_key_exists('openid_consumer', $_REQUEST)) {
		finish_openid('login');
	} else if (!empty($_POST['openid_identifier'])) {
		openid_start_login( $_POST['openid_identifier'], 'login', array('redirect_to' => $_REQUEST['redirect_to']), site_url('/wp-login.php', 'login_post'));
	}
}

function openid_login_errors() {
	$self = basename( $GLOBALS['pagenow'] );
		
	if ($self != 'wp-login.php') return;

	if ($_REQUEST['openid_error']) {
		global $error;
		$error = $_REQUEST['openid_error'];
	}

	if ($_REQUEST['registration_closed']) {
		global $error;
		$error = __('OpenID authentication valid, but unable to find a WordPress account associated with this OpenID.', 'openid')
			. '<br /><br />'
			. __('Enable "Anyone can register" to allow creation of new accounts via OpenID.', 'openid');
	}
}

function openid_wp_login_head() {
	openid_style();
	wp_enqueue_script('jquery.xpath', openid_plugin_url() . '/f/jquery.xpath.min.js', 
		array('jquery'), OPENID_PLUGIN_REVISION);
	wp_print_scripts(array('jquery.xpath'));
}

/**
 * Add OpenID input field to wp-login.php
 *
 * @action: login_form
 **/
function openid_wp_login_form() {
	global $wp_version;

	echo '<hr id="openid_split" style="clear: both; margin-bottom: 1.5em; border: 0; border-top: 1px solid #999; height: 1px;" />';

	echo '
	<p>
		<label style="display: block; margin-bottom: 5px;">' . __('Or login using an OpenID:', 'openid') . '</label>
		<input type="text" name="openid_identifier" id="openid_identifier" class="input openid_identifier" value="" size="20" tabindex="25" /></label>
	</p>

	<p style="font-size: 0.8em;" id="what_is_openid">
		<a href="http://openid.net/what/" target="_blank">'.__('What is OpenID?', 'openid').'</a>
	</p>';
}


/**
 * Add information about registration to wp-login.php?action=register 
 *
 * @action: register_form
 **/
function openid_wp_register_form() {
	global $wp_version;

	if (get_option('openid_required_for_registration')) {
		$label = __('Register using an OpenID:', 'openid');
		echo '
		<script type="text/javascript">
			jQuery(function() {
				jQuery("#user_login/..").hide();
				jQuery("#user_email/..").hide();
				jQuery("#reg_passmail").hide();
				var link = jQuery("#nav a:first");
				jQuery("#nav").text("").append(link);
			});
		</script>';
	} else {
		$label = __('Or register using an OpenID:', 'openid');

		echo '<hr id="openid_split" style="clear: both; margin-bottom: 1.5em; border: 0; border-top: 1px solid #999; height: 1px;" />';

		echo '
		<script type="text/javascript">
			jQuery(function() {
				jQuery("#reg_passmail").insertBefore("#openid_split");
				jQuery("p.submit").clone().insertBefore("#openid_split");
			});
		</script>';
	}

	echo '
	<p>
		<label style="display: block; margin-bottom: 5px;">' . $label . '</label>
		<input type="text" name="openid_identifier" id="openid_identifier" class="input openid_identifier" value="" size="20" tabindex="25" /></label>
	</p>

	<p style="float: left; font-size: 0.8em;" id="what_is_openid">
		<a href="http://openid.net/what/" target="_blank">'.__('What is OpenID?', 'openid').'</a>
	</p>';

}


/**
 * Action method for completing the 'login' action.  This action is used when a user is logging in from
 * wp-login.php.
 *
 * @param string $identity_url verified OpenID URL
 */
function openid_finish_login($identity_url) {
	if ($_REQUEST['action'] != 'login') return;

	$redirect_to = urldecode($_REQUEST['redirect_to']);
		
	if (empty($identity_url)) {
		$url = get_option('siteurl') . '/wp-login.php?openid_error=' . urlencode(openid_message());
		wp_safe_redirect($url);
		exit;
	}
		
	openid_set_current_user($identity_url);

	if (!is_user_logged_in()) {
		if ( get_option('users_can_register') ) {
			$user_data =& openid_get_user_data($identity_url);
			$user = openid_create_new_user($identity_url, $user_data);
			openid_set_current_user($user->ID);
		} else {
			// TODO - Start a registration loop in WPMU.
			$url = get_option('siteurl') . '/wp-login.php?registration_closed=1';
			wp_safe_redirect($url);
			exit;
		}

	}
		
	if (empty($redirect_to)) {
		$redirect_to = 'wp-admin/';
	}
	if ($redirect_to == 'wp-admin/') {
		if (!current_user_can('edit_posts')) {
			$redirect_to .= 'profile.php';
		}
	}
	if (!preg_match('#^(http|\/)#', $redirect_to)) {
		$wpp = parse_url(get_option('siteurl'));
		$redirect_to = $wpp['path'] . '/' . $redirect_to;
	}

	wp_safe_redirect( $redirect_to );
	exit;
}


/**
 * Intercept login requests on wp-login.php if they include an 'openid_identifier' 
 * value and start OpenID authentication.  This hook is only necessary in 
 * WordPress 2.5.x because it has the 'wp_authenticate' action call in the 
 * wrong place.
 */
function wp25_login_openid() {
	$self = basename( $GLOBALS['pagenow'] );
		
	if ($self == 'wp-login.php' && !empty($_POST['openid_identifier'])) {
		wp_signon(array('user_login'=>'openid', 'user_password'=>'openid'));
	}
}

function openid_registration_errors($errors) {
	if (get_option('openid_required_for_registration')) {
		$errors = new WP_Error();

		if (empty($_POST['openid_identifier'])) {
			$errors->add('openid_only', __('<strong>ERROR</strong>: ', 'openid') . __('New users must register using OpenID.', 'openid'));
		}
	}

	if (!empty($_POST['openid_identifier'])) {
		$errors->add('invalid_openid', __('<strong>ERROR</strong>: ', 'openid') . openid_message());
	}

	return $errors;
}

function openid_register_post($errors) {
	if (!empty($_POST['openid_identifier'])) {
		wp_signon(array('user_login'=>'openid', 'user_password'=>'openid'));
	}
}

function openid_wp_login_return_url($urls) {
	$url = site_url('/wp-login.php', 'login_post');
	$urls[] = $url;
	return $urls;
}
?>