[Identity-dev] svn commit r13090 - trunk/solutions/identity/modules/identity-provider/src/main/java/org/wso2/solutions/identity/openid

Mon, 28 Jan 2008 10:24:08 -0800 

Author: prabath
Date: Mon Jan 28 10:24:53 2008
New Revision: 13090

Log:

added user approval support for OpenID authentication

Modified:
   
trunk/solutions/identity/modules/identity-provider/src/main/java/org/wso2/solutions/identity/openid/OpenIDProvider.java

Modified: 
trunk/solutions/identity/modules/identity-provider/src/main/java/org/wso2/solutions/identity/openid/OpenIDProvider.java
==============================================================================
--- 
trunk/solutions/identity/modules/identity-provider/src/main/java/org/wso2/solutions/identity/openid/OpenIDProvider.java
     (original)
+++ 
trunk/solutions/identity/modules/identity-provider/src/main/java/org/wso2/solutions/identity/openid/OpenIDProvider.java
     Mon Jan 28 10:24:53 2008
@@ -80,7 +80,9 @@
             session = httpReq.getSession();
 
             if (IdentityConstants.OpenId.COMPLETE.equals(httpReq
-                    .getParameter(IdentityConstants.OpenId.ACTION))) {
+                    .getParameter(IdentityConstants.OpenId.ACTION))
+                    || IdentityConstants.OpenId.CANCEL.equals(httpReq
+                            .getParameter(IdentityConstants.OpenId.ACTION))) {
                 // Authentication completed.
                 request = (ParameterList) session
                         
.getAttribute(IdentityProviderConstants.OpenId.PARAM_LIST);
@@ -118,11 +120,9 @@
 
                 userId = getUserName(openId);
 
-                // Authenticate the user.
-                authenticatedAndApproved = doLogin(
-                        userId,
-                        httpReq
-                                
.getParameter(IdentityProviderConstants.OpenId.PASSWORD));
+                if (httpReq.getParameter("oplogin")!=null && 
httpReq.getParameter("oplogin").equals("username")) {
+                    authenticatedAndApproved = true;
+                }
 
                 if (!authenticatedAndApproved) {
                     if (!verifyInfoCardLogin(httpReq)) {
@@ -149,7 +149,12 @@
                 if (message instanceof DirectError)
                     return directResponse(httpResp, message
                             .keyValueFormEncoding());
-                else {
+                else if (IdentityConstants.OpenId.CANCEL.equals(httpReq
+                        .getParameter(IdentityConstants.OpenId.ACTION))) {
+                    // Error response.
+                    message = DirectError.createDirectError("User Denied");
+                    responseText = message.keyValueFormEncoding();
+                } else {
                     if (authReq
                             
.hasExtension(IdentityConstants.OpenId.ExchangeAttributes.NS_AX)) {
 

_______________________________________________
Identity-dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/identity-dev

Reply via email to