Changeset 158694

openid/trunk/Auth/OpenID/BigMath.php

r67133	r158694
375	375
376	376	// Try to load dynamic modules.
377		if (!$loaded) {
	377	if (!$loaded && function_exists('dl')) {
378	378	foreach ($extension['modules'] as $module) {
379	379	if (@dl($module . "." . PHP_SHLIB_SUFFIX)) {

openid/trunk/Auth/OpenID/Consumer.php

-                      r67133
+                      r158694
         if ($consumer_cls !== null) {
             $this->consumer =& new $consumer_cls($store);
+            $this->consumer = new $consumer_cls($store);
         } else {
             $this->consumer =& new Auth_OpenID_GenericConsumer($store);
+            $this->consumer = new Auth_OpenID_GenericConsumer($store);
+        }
 …
         return call_user_func_array(array(&$this, $method),
                                     array($message, $endpoint, $return_to));
+                                    array($message, &$endpoint, $return_to));
+    }
 …
         list($unused, $services) = call_user_func($this->discoverMethod,
                                                   $claimed_id,
                                                   $this->fetcher);
+                                                  &$this->fetcher);
         if (!$services) {
 …
                                                   array('response_nonce',
                                                         'claimed_id',
+                                                        'assoc_handle')),
+                                                        'assoc_handle',
+                                                        'op_endpoint')),
             Auth_OpenID_OPENID1_NS => array_merge($basic_sig_fields,
                                                   array('nonce'))

openid/trunk/Auth/OpenID/Message.php

-                      r67133
+                      r158694
     function getAliasedArg($aliased_key, $default = null)
+    {
+        if ($aliased_key == 'ns') {
+            // Return the namespace URI for the OpenID namespace
+            return $this->getOpenIDNamespace();
+        }
         $parts = explode('.', $aliased_key, 2);

openid/trunk/Auth/OpenID/Server.php

-                      r67133
+                      r158694
+                }
                 $setup_request =& new Auth_OpenID_CheckIDRequest(
+                $setup_request = new Auth_OpenID_CheckIDRequest(
                                                 $this->identity,
                                                 $this->return_to,
 …
+    {
         $this->store =& $store;
         $this->signatory =& new Auth_OpenID_Signatory($this->store);
         $this->encoder =& new Auth_OpenID_SigningEncoder($this->signatory);
         $this->decoder =& new Auth_OpenID_Decoder($this);
+        $this->signatory = new Auth_OpenID_Signatory($this->store);
+        $this->encoder = new Auth_OpenID_SigningEncoder($this->signatory);
+        $this->decoder = new Auth_OpenID_Decoder($this);
         $this->op_endpoint = $op_endpoint;
         $this->negotiator =& Auth_OpenID_getDefaultNegotiator();

openid/trunk/admin_panels.php

-                      r103625
+                      r158694
 <?php
 /**
  * All the code required for handling OpenID comments.  These functions should not be considered public,
+ * All the code required for handling OpenID administration.  These functions should not be considered public,
  * and may change without notice.
  */
 …
 // -- WordPress Hooks
+add_action( 'admin_init', 'openid_admin_register_settings' );
 add_action( 'admin_menu', 'openid_admin_panels' );
 add_action( 'personal_options_update', 'openid_personal_options_update' );
 add_action( 'openid_finish_auth', 'openid_finish_verify', 10, 2 );
 add_filter( 'pre_update_option_openid_cap', 'openid_set_cap', 10, 2);
-if (version_compare($wp_version, '2.5', '<')) {
-    add_filter('pre_user_url', 'openid_compat_pre_user_url');
+}
-/**
- * Spam up the admin interface with warnings.
- **/
-function openid_admin_notices_plugin_problem_warning() {
-    echo'<div class="error"><p><strong>'.__('The WordPress OpenID plugin is not active.', 'openid').'</strong>';
-    printf(_('Check %sOpenID Options%s for a full diagnositic report.', 'openid'), '<a href="options-general.php?page=openid">', '</a>');
-    echo '</p></div>';
+}
 …
  **/
 function openid_admin_panels() {
+    add_filter('plugin_action_links', 'openid_plugin_action_links', 10, 2);
     // global options page
     $hookname = add_options_page(__('OpenID options', 'openid'), __('OpenID', 'openid'), 8, 'openid', 'openid_options_page' );
+    if (function_exists('add_thickbox')) {
+        add_action("load-$hookname", create_function('', 'add_thickbox();'));
+    } else {
+        add_action("load-$hookname", 'openid_js_setup' );
+    }
+    add_action("admin_head-$hookname", 'openid_style' );
+    add_filter('plugin_action_links', 'openid_plugin_action_links', 10, 2);
+    add_action("load-$hookname", create_function('', 'add_thickbox();'));
+    add_action("load-$hookname", 'openid_style');
     // all users can setup external OpenIDs
+    $hookname = add_users_page(__('Your OpenIDs', 'openid'), __('Your OpenIDs', 'openid'),
+        'read', 'your_openids', 'openid_profile_panel' );
+    add_action("admin_head-$hookname", 'openid_style' );
+    $hookname = add_users_page(__('Your OpenIDs', 'openid'), __('Your OpenIDs', 'openid'), 'read', 'your_openids', 'openid_profile_panel' );
     add_action("load-$hookname", create_function('', 'wp_enqueue_script("admin-forms");'));
     add_action("load-$hookname", 'openid_profile_management' );
+    add_action("load-$hookname", 'openid_style' );
     // additional options for users authorized to use OpenID provider
 …
         add_action('show_user_profile', 'openid_extend_profile', 5);
         add_action('profile_update', 'openid_profile_update');
+        add_action('admin_head-profile.php', 'openid_style');
+        add_action('user_profile_update_errors', 'openid_profile_update_errors', 10, 3);
+        add_action('load-profile.php', 'openid_style');
         if (!get_usermeta($user->ID, 'openid_delegate')) {
             $hookname = add_submenu_page('profile.php', __('Your Trusted Sites', 'openid'),
                 __('Your Trusted Sites', 'openid'), 'read', 'openid_trusted_sites', 'openid_manage_trusted_sites' );
             add_action("admin_head-$hookname", 'openid_style' );
+            add_action("load-$hookname", 'openid_style' );
             add_action("load-$hookname", create_function('', 'wp_enqueue_script("admin-forms");'));
+        }
+    }
+    if ( function_exists('is_site_admin') ) {
+        // add OpenID options to WPMU Site Admin page
+        add_action('wpmu_options', 'openid_wpmu_options');
+        add_action('update_wpmu_options', 'openid_update_wpmu_options');
+    } else {
+        // add OpenID options to General Settings page
+        add_settings_field('openid_general_settings', 'OpenID Settings', 'openid_general_settings', 'general', 'default');
+    }
+    // add OpenID options to Discussion Settings page
+    add_settings_field('openid_disucssion_settings', 'OpenID Settings', 'openid_discussion_settings', 'discussion', 'default');
+}
+/**
+ * Register OpenID admin settings.
+ */
+function openid_admin_register_settings() {
+    register_setting('general', 'openid_required_for_registration');
+    register_setting('discussion', 'openid_no_require_name');
+    register_setting('discussion', 'openid_enable_approval');
+    register_setting('discussion', 'openid_enable_commentform');
+    register_setting('openid', 'openid_blog_owner');
+    register_setting('openid', 'openid_cap');
+}
 …
     foreach ($wp_roles->role_names as $key => $name) {
         $role = $wp_roles->get_role($key);
+        $option_set = $newvalue[htmlentities($key)] == 'on' ? true : false;
+        if (array_key_exists($key, $newvalue) && $newvalue[$key] == 'on') {
+            $option_set = true;
+        } else {
+            $option_set = false;
+        }
         if ($role->has_cap('use_openid_provider')) {
             if (!$option_set) $role->remove_cap('use_openid_provider');
 …
  */
 function openid_options_page() {
     global $wp_version, $wpdb, $wp_roles;
+    global $wpdb, $wp_roles;
     if ( isset($_REQUEST['action']) ) {
 …
+    }
-    $openid_options = array(
-        'openid_enable_commentform',
-        'openid_enable_approval',
-        'openid_no_require_name',
-        'openid_enable_email_mapping',
-        'openid_required_for_registration',
-        'openid_blog_owner',
-        'openid_cap',
-    );
     // Display the options page form
+    if (function_exists('screen_icon')):
+        screen_icon('openid');
+    screen_icon('openid');
     ?>
     <style type="text/css">
         #icon-openid { background-image: url("<?php echo plugins_url('openid/f/icon.png'); ?>"); }
     </style>
-    <?php endif; ?>
     <div class="wrap">
         <form method="post" action="options.php">
+            <h2><?php _e('OpenID Consumer Options', 'openid') ?></h2>
+            <?php if ($wp_version < '2.3') { ?>
+            <p class="submit"><input type="submit" class="button-primary" name="info_update" value="<?php _e('Save Changes') ?>" /></p>
+            <?php } ?>
+            <table class="form-table optiontable editform">
+                <tr valign="top">
+                    <th scope="row"><?php _e('Comment Approval', 'openid') ?></th>
+                    <td>
+                        <p><input type="checkbox" name="openid_enable_approval" id="openid_enable_approval" <?php
+                            echo get_option('openid_enable_approval') ? 'checked="checked"' : ''; ?> />
+                            <label for="openid_enable_approval"><?php _e('Automatically approve comments left with verified OpenIDs.  '
+                                . 'These comments will bypass all comment moderation.', 'openid'); ?></label>
+                        </p>
+                        <?php if (get_option('require_name_email')) { ?>
+                        <p><input type="checkbox" name="openid_no_require_name" id="openid_no_require_name" <?php
+                            echo get_option('openid_no_require_name') ? 'checked="checked"' : ''; ?> />
+                            <label for="openid_no_require_name"><?php _e('Don\'t require name and e-mail for comments left with verified OpenIDs.', 'openid') ?></label>
+                        </p>
+                        <?php } ?>
+                    </td>
+                </tr>
+                <tr valign="top">
+                    <th scope="row"><?php _e('Comment Form', 'openid') ?></th>
+                    <td>
+                        <p><input type="checkbox" name="openid_enable_commentform" id="openid_enable_commentform" <?php
+                        if( get_option('openid_enable_commentform') ) echo 'checked="checked"'
+                        ?> />
+                            <label for="openid_enable_commentform"><?php _e('Add OpenID help text to the comment form.', 'openid') ?></label></p>
+                        <p><?php printf(__('This will work for most themes derived from Kubrick or Sandbox.  '
+                        . 'Template authors can tweak the comment form as described in the %sreadme%s.', 'openid'),
+                        '<a href="'.clean_url(openid_plugin_url().'/readme.txt').'">', '</a>') ?></p>
+                    </td>
+                </tr>
+                <?php if (get_option('users_can_register')): ?>
+                <tr valign="top">
+                    <th scope="row"><?php _e('Require OpenID', 'openid') ?></th>
+                    <td>
+                        <p><input type="checkbox" name="openid_required_for_registration" id="openid_required_for_registration" <?php
+                        if( get_option('openid_required_for_registration') ) echo 'checked="checked"'
+                        ?> />
+                            <label for="openid_required_for_registration"><?php _e('New accounts can only be created with verified OpenIDs.', 'openid') ?></label></p>
+                    </td>
+                </tr>
+                <?php endif; ?>
+                <?php /*
+                <tr valign="top">
+                    <th scope="row"><?php _e('Email Mapping:', 'openid') ?></th>
+                    <td>
+                        <p><input type="checkbox" name="enable_email_mapping" id="enable_email_mapping" <?php
+                        if( get_option('openid_enable_email_mapping') ) echo 'checked="checked"'
+                        ?> />
+                            <label for="enable_email_mapping"><?php _e('Enable email addresses to be mapped to OpenID URLs.', 'openid') ?></label></p>
+                        <p><?php printf(__('This feature uses the Email-To-URL mapping specification to allow OpenID authentication'
+                        . ' based on an email address.  If enabled, commentors who do not supply a valid OpenID URL will have their'
+                        . ' supplied email address mapped to an OpenID.  If their email provider does not currently support email to'
+                        . ' url mapping, the default provider %s will be used.', 'openid'), '<a href="http://emailtoid.net/" target="_blank">Emailtoid.net</a>') ?></p>
+                        <br />
+                    </td>
+                </tr>
+                */ ?>
+                <tr valign="top">
+                    <th scope="row"><?php _e('Troubleshooting', 'openid') ?></th>
+                    <td>
+                        <?php openid_printSystemStatus(); ?>
+                        <p><?php printf(__('If users are experiencing problems logging in with OpenID, it may help to %1$srefresh the cache%2$s.', 'openid'),
+                        '<a href="' . wp_nonce_url(add_query_arg('action', 'rebuild_tables'), 'rebuild_tables') . '">', '</a>'); ?></p>
+                    </td>
+                </tr>
+            </table>
+            <br class="clear" />
+            <h2><?php _e('OpenID Provider Options', 'openid') ?></h2>
+            <h2><?php _e('OpenID Settings', 'openid') ?></h2>
+            <div class="updated fade"><p>Please note that all OpenID Consumer options have been moved to their respective sections of the
+                <a href="options-general.php">General Settings</a> and <a href="options-discussion.php">Discussion Settings</a> pages.</p></div>
             <?php
                 $current_user = wp_get_current_user();
 …
                             <?php
                 foreach ($wp_roles->role_names as $key => $name) {
+                    $name = _c($name);
                     $role = $wp_roles->get_role($key);
                     $checked = $role->has_cap('use_openid_provider') ? ' checked="checked"' : '';
 …
             ?>
                         </td>
                     </tr>
+                    </td>
+                </tr>
             <?php endif; //!empty($users) ?>
+                </table>
+            <?php wp_nonce_field('update-options'); ?>
+            <input type="hidden" name="action" value="update" />
+            <input type="hidden" name="page_options" value="<?php echo join(',', $openid_options); ?>" />
+            </table>
+            <table class="form-table optiontable editform">
+                <tr valign="top">
+                    <th scope="row"><?php _e('Troubleshooting', 'openid') ?></th>
+                    <td>
+                        <?php openid_printSystemStatus(); ?>
+                        <p><?php printf(__('If users are experiencing problems logging in with OpenID, it may help to %1$srefresh the cache%2$s.', 'openid'),
+                        '<a href="' . wp_nonce_url(add_query_arg('action', 'rebuild_tables'), 'rebuild_tables') . '">', '</a>'); ?></p>
+                    </td>
+                </tr>
+            </table>
+            <?php settings_fields('openid'); ?>
             <p class="submit"><input type="submit" class="button-primary" name="info_update" value="<?php _e('Save Changes') ?>" /></p>
         </form>
 …
+    }
+    if (function_exists('screen_icon')):
+        screen_icon('openid');
+    screen_icon('openid');
     ?>
     <style type="text/css">
         #icon-openid { background-image: url("<?php echo plugins_url('openid/f/icon.png'); ?>"); }
     </style>
-    <?php endif; ?>
     <div class="wrap">
 …
             update_usermeta($user->ID, 'openid_trusted_sites', $trusted_sites);
             echo '<div class="updated"><p>';
             printf( __ngettext('Added %d trusted site.', 'Added %d trusted sites.', $count, 'openid'), $count);
+            printf( _n('Added %d trusted site.', 'Added %d trusted sites.', $count, 'openid'), $count);
             echo '</p></div>';
+        }
 …
         if ($count) {
             echo '<div class="updated"><p>';
             printf( __ngettext('Deleted %d trusted site.', 'Deleted %d trusted sites.', $count, 'openid'), $count);
+            printf( _n('Deleted %d trusted site.', 'Deleted %d trusted sites.', $count, 'openid'), $count);
             echo '</p></div>';
+        }
 …
+    }
+    if (function_exists('screen_icon')):
+        screen_icon('openid');
+    screen_icon('openid');
     ?>
     <style type="text/css">
         #icon-openid { background-image: url("<?php echo plugins_url('openid/f/icon.png'); ?>"); }
     </style>
-    <?php endif; ?>
     <div class="wrap">
 …
         echo '</div>';
+    }
+    echo '</div>';
+    echo '
+    echo '</div>
     <script type="text/javascript">
+        jQuery("#openid_system_status").hide();';
+    if (!function_exists('add_thickbox')) {
+        echo '
+        jQuery("#openid_status_link").click( function() {
+            jQuery("#openid_system_status").toggle();
+            return false;
+        });';
+    }
+    echo '
+        jQuery("#openid_system_status").hide();
     </script>';
+}
 …
  */
 function openid_profile_management() {
     global $wp_version;
+    global $action;
+    switch( $_REQUEST['action'] ) {
+    wp_reset_vars( array('action') );
+    switch( $action ) {
         case 'add':
             check_admin_referer('openid-add_openid');
 …
         default:
+            if ($message = $_REQUEST['message']) {
+            if ( array_key_exists('message', $_REQUEST) ) {
+                $message = $_REQUEST['message'];
                 $messages = array(
                     '',
                     'Unable to authenticate OpenID.',
                     'OpenID assertion successful, but this URL is already associated with another user on this blog. This is probably a bug.',
+                    'OpenID assertion successful, but this URL is already associated with another user on this blog.',
                     'Added association with OpenID.',
                 );
 …
                 if (is_numeric($message)) {
                     $message = $messages[$message];
+                } else {
+                    $message = htmlentities2( $message );
+                }
                 $message = __($message, 'openid');
                 if ($_REQUEST['update_url']) {
+                if (array_key_exists('update_url', $_REQUEST) && $_REQUEST['update_url']) {
                     $message .= '<br />' .  __('<strong>Note:</strong> For security reasons, your profile URL has been updated to match your OpenID.', 'openid');
+                }
 …
 function openid_profile_delete_openids($delete) {
     if (empty($delete) || $_REQUEST['cancel']) return;
+    if (empty($delete) || array_key_exists('cancel', $_REQUEST)) return;
     check_admin_referer('openid-delete_openids');
 …
     if ($count) {
         openid_message( sprintf(__ngettext('Deleted %d OpenID association.', 'Deleted %d OpenID associations.', $count, 'openid'), $count) );
+        openid_message( sprintf(_n('Deleted %d OpenID association.', 'Deleted %d OpenID associations.', $count, 'openid'), $count) );
         openid_status('success');
 …
             set_include_path( dirname(__FILE__) . PATH_SEPARATOR . get_include_path() );
             require_once 'Auth/OpenID.php';
+            if ($GLOBALS['wp_version'] >= '2.3') {
+                require_once(ABSPATH . 'wp-admin/includes/admin.php');
+            } else {
+                require_once(ABSPATH . WPINC . '/registration.php');
+            }
+            require_once(ABSPATH . 'wp-admin/includes/admin.php');
             if (!openid_ensure_url_match($user)) {
 …
     $finish_url = add_query_arg('status', openid_status(), $finish_url);
     $finish_url = add_query_arg('message', $message, $finish_url);
     if ($update_url) {
+    if ( isset($update_url) && $update_url ) {
         $finish_url = add_query_arg('update_url', $update_url, $finish_url);
+    }
 …
     wp_safe_redirect($finish_url);
     exit;
+}
-/**
- * Prior to WordPress 2.5, the 'personal_options_update' hook was called
- * AFTER updating the user's profile.  We need to ensure the profile URL
- * matches before then.
- */
-function openid_compat_pre_user_url($url) {
-    if ($_POST['from'] == 'profile') {
-        openid_personal_options_update();
+    }
-    return $url;
+}
 …
+/**
+ * Add OpenID options to the WordPress user profile page.
+ */
 function openid_extend_profile() {
     $user = wp_get_current_user();
 …
+}
+/**
+ * Update OpenID options set from the WordPress user profile page.
+ */
 function openid_profile_update($user_id) {
+    if (empty($_POST['openid_delegate'])) {
+    global $openid_user_delegation_info;
+    if ( empty($_POST['openid_delegate']) ) {
         delete_usermeta($user_id, 'openid_delegate');
+        delete_usermeta($user_id, 'openid_delegate_services');
     } else {
+        $old_delegate = get_usermeta($user_id, 'openid_delegate');
+        $delegate = Auth_OpenID::normalizeUrl($_POST['openid_delegate']);
+        if(openid_server_update_delegation_info($user_id, $delegate)) {
+            openid_message(sprintf(__('Gathered OpenID information for delegate URL %s', 'openid'), '<strong>'.$delegate.'</strong>'));
+            openid_status('success');
+        } else {
+            openid_message(sprintf(__('Unable to find any OpenID information for delegate URL %s', 'openid'), '<strong>'.$delegate.'</strong>'));
+            openid_status('error');
+        }
+    }
+}
+        update_usermeta($user_id, 'openid_delegate', $openid_user_delegation_info['url']);
+        update_usermeta($user_id, 'openid_delegate_services', $openid_user_delegation_info['services']);
+    }
+}
+/**
+ * Report any OpenID errors during user profile updating.
+ */
+function openid_profile_update_errors($errors, $update, $user) {
+    global $openid_user_delegation_info;
+    $delegate = Auth_OpenID::normalizeUrl($_POST['openid_delegate']);
+    if ( empty($delegate) ) return $errors;
+    $openid_user_delegation_info = openid_server_get_delegation_info($user->ID, $delegate);
+    if (!$openid_user_delegation_info) {
+        $errors->add('openid_delegate', sprintf(__('Unable to find any OpenID information for delegate URL %s', 'openid'), '<strong>'.$delegate.'</strong>'));
+    } else {
+        $id_select_count = 0;
+        foreach ($openid_user_delegation_info['services'] as $service) {
+            if ( array_key_exists('LocalID', $service) && $service['LocalID'] == Auth_OpenID_IDENTIFIER_SELECT ) {
+                $id_select_count++;
+            }
+        }
+        if ( count($openid_user_delegation_info['services']) <= $id_select_count ) {
+            $errors->add('openid_delegate', sprintf(__('You cannot delegate to an OpenID provider which uses Identifier Select.', 'openid')));
+        }
+    }
+    return $errors;
+}
+/**
+ * Add OpenID options to the WordPress MU site options page.
+ */
+function openid_wpmu_options() {
+    $registration = get_site_option('registration');
+    if ( $registration == 'all' || $registration == 'user' ):
 ?>
+        <table id="openid_options" class="form-table">
+            <tr valign="top">
+                <th scope="row"></th>
+                <td>
+                    <label for="openid_required_for_registration">
+                        <input type="checkbox" name="openid_required_for_registration" id="openid_required_for_registration" value="1"
+                            <?php checked(true, get_site_option('openid_required_for_registration')) ?> />
+                        <?php _e('New accounts can only be created with verified OpenIDs.', 'openid') ?>
+                    </label>
+                </td>
+            </tr>
+        </table>
+        <script type="text/javascript">
+            jQuery(function() {
+                jQuery('#openid_options').hide();
+                var lastp = jQuery('td:has([name="registration"])').children("p:last");
+                jQuery('#openid_required_for_registration').parent().insertBefore(lastp).wrap('<p></p>');
+            });
+        </script>
+<?php
+    endif;
+}
+/**
+ * Update the OpenID options set from the WordPress MU site options page.
+ */
+function openid_update_wpmu_options() {
+    $openid_required = array_key_exists('openid_required_for_registration', $_POST);
+    if ($openid_required) {
+        update_site_option('openid_required_for_registration', '1');
+    } else {
+        update_site_option('openid_required_for_registration', '0');
+    }
+}
+/**
+ * Add OpenID options to the WordPress general settings page.
+ */
+function openid_general_settings() {
+    if ( get_option('users_can_register') ): ?>
+    <label for="openid_required_for_registration">
+        <input type="checkbox" name="openid_required_for_registration" id="openid_required_for_registration" value="1"
+            <?php checked(true, get_option('openid_required_for_registration')) ?> />
+        <?php _e('New accounts can only be created with verified OpenIDs', 'openid') ?>
+    </label>
+    <?php endif; ?>
+    <script type="text/javascript">
+        jQuery(function() {
+            jQuery('tr:has(#openid_required_for_registration)').hide();
+            jQuery('#openid_required_for_registration')
+                .parent().prepend('<br />').insertAfter('label:has(#users_can_register)');
+        });
+    </script>
+<?php
+}
+/**
+ * Add OpenID options to the WordPress discussion settings page.
+ */
+function openid_discussion_settings() {
+?>
+    <label for="openid_enable_commentform">
+        <input type="checkbox" name="openid_enable_commentform" id="openid_enable_commentform" value="1" <?php
+            echo checked(true, get_option('openid_enable_commentform'));  ?> />
+        <?php _e('Enable OpenID for comments', 'openid') ?>
+    </label>
+    <br />
+    <?php if ( get_option('openid_enable_commentform') ): ?>
+        <?php if ( get_option('require_name_email') ): ?>
+        <label for="openid_no_require_name">
+            <input type="checkbox" name="openid_no_require_name" id="openid_no_require_name" value="1" <?php
+                echo checked(true, get_option('openid_no_require_name')) ; ?> />
+            <?php _e('Don\'t require name and e-mail for comments left with a verified OpenID', 'openid') ?>
+        </label>
+        <br />
+        <?php endif; ?>
+        <label for="openid_enable_approval">
+            <input type="checkbox" name="openid_enable_approval" id="openid_enable_approval" value="1" <?php
+                echo checked(true, get_option('openid_enable_approval'));  ?> />
+            <?php _e('Always approve comments left with a verified OpenID', 'openid'); ?>
+        </label>
+        <br />
+    <?php endif; ?>
+<?php
+}
+?>

openid/trunk/comments.php

-                      r103625
+                      r158694
 // -- WordPress Hooks
 add_action( 'preprocess_comment', 'openid_process_comment', -90);
+if (function_exists('has_action') && has_action('preprocess_comment', 'akismet_auto_check_comment')) {
+    // ensure akismet runs before OpenID
+    remove_action('preprocess_comment', 'akismet_auto_check_comment', 1);
+    add_action('preprocess_comment', 'akismet_auto_check_comment', -99);
+}
+add_action( 'init', 'openid_setup_akismet');
 add_action( 'akismet_spam_caught', 'openid_akismet_spam_caught');
 add_action( 'comment_post', 'update_comment_openid', 5 );
 …
 add_filter( 'get_comment_author_link', 'openid_comment_author_link');
 if( get_option('openid_enable_commentform') ) {
     add_action( 'wp_head', 'openid_js_setup', 9);
+    add_action( 'wp', 'openid_js_setup', 9);
     add_action( 'wp_footer', 'openid_comment_profilelink', 10);
     add_action( 'wp_footer', 'openid_comment_form', 10);
+    add_action( 'comment_form', 'openid_comment_form', 10);
+}
 add_filter( 'openid_user_data', 'openid_get_user_data_form', 6, 2);
 …
 add_action( 'init', 'openid_recent_comments');
+/**
+ * Ensure akismet runs before OpenID.
+ */
+function openid_setup_akismet() {
+    if (has_filter('preprocess_comment', 'akismet_auto_check_comment')) {
+        remove_action('preprocess_comment', 'akismet_auto_check_comment', 1);
+        add_action('preprocess_comment', 'akismet_auto_check_comment', -99);
+    }
+}
 /**
  * Akismet caught this comment as spam, so no need to do OpenID discovery on the URL.
  */
 function openid_akismet_spam_caught() {
     remove_action( 'preprocess_comment', 'openid_process_comment', -98);
+    remove_action( 'preprocess_comment', 'openid_process_comment', -90);
+}
 …
  */
 function openid_process_comment( $comment ) {
+    if ( array_key_exists('openid_skip', $_REQUEST) && $_REQUEST['openid_skip'] ) return $comment;
+    if ( $comment['comment_type'] != '' ) return $comment;
+    if ( array_key_exists('openid_identifier', $_POST) ) {
+        $openid_url = $_POST['openid_identifier'];
+    } elseif ( $_REQUEST['login_with_openid'] ) {
+        $openid_url = $_POST['url'];
+    }
     @session_start();
+    if ($_REQUEST['openid_skip']) return $comment;
+    $openid_url = (array_key_exists('openid_identifier', $_POST) ? $_POST['openid_identifier'] : $_POST['url']);
+    if( !empty($openid_url) ) {  // Comment form's OpenID url is filled in.
+    unset($_SESSION['openid_posted_comment']);
+    if ( !empty($openid_url) ) {  // Comment form's OpenID url is filled in.
         $_SESSION['openid_comment_post'] = $_POST;
         $_SESSION['openid_comment_post']['comment_author_openid'] = $openid_url;
 …
     // duplicate name and email check from wp-comments-post.php
+    openid_require_name_email();
+    if ( $comment['comment_type'] == '') {
+        openid_require_name_email();
+    }
     return $comment;
 …
+    }
     if ($_REQUEST['openid_skip']) {
+    if (array_key_exists('openid_skip', $_REQUEST) && $_REQUEST['openid_skip']) {
         return get_option('openid_no_require_name') ? false : $value;
+    }
 …
  */
 function update_comment_openid($comment_ID) {
+    session_start();
     if ($_SESSION['openid_posted_comment']) {
         set_comment_openid($comment_ID);
 …
     global $wp_scripts;
+    if ( !is_a($wp_scripts, 'WP_Scripts') ) {
+        $wp_scripts = new WP_Scripts();
+    }
+    if ((is_single() || is_comments_popup()) && is_user_openid() && $wp_scripts->query('openid')) {
+    if (comments_open() && is_user_openid() && $wp_scripts->query('openid')) {
         echo '<script type="text/javascript">stylize_profilelink()</script>';
+    }
 …
     global $wp_scripts;
+    if ( !is_a($wp_scripts, 'WP_Scripts') ) {
+        $wp_scripts = new WP_Scripts();
+    }
+    if (!is_user_logged_in() && (is_single() || is_comments_popup()) && isset($wp_scripts) && $wp_scripts->query('openid')) {
+        echo '<script type="text/javascript">add_openid_to_comment_form()</script>';
+    if (comments_open() && !is_user_logged_in() && isset($wp_scripts) && $wp_scripts->query('openid')) {
+?>
+        <span id="openid_comment">
+            <label>
+                <input type="checkbox" id="login_with_openid" name="login_with_openid" checked="checked" />
+                <?php _e('Authenticate this comment using <span class="openid_link">OpenID</span>.'); ?>
+            </label>
+        </span>
+        <script type="text/javascript">jQuery(function(){ add_openid_to_comment_form('<?php echo site_url('index.php') ?>', '<?php echo wp_create_nonce('openid_ajax') ?>') })</script>
+<?php
+    }
+}
 …
  */
 function openid_get_user_data_form($data, $identity_url) {
+    $comment = $_SESSION['openid_comment_post'];
+    if (!$comment) {
+    if ( array_key_exists('openid_comment_post', $_SESSION) ) {
+        $comment = $_SESSION['openid_comment_post'];
+    }
+    if ( !isset($comment) || !$comment) {
         return $data;
+    }
 …
 function openid_recent_comments() {
     if (is_active_widget('wp_widget_recent_comments')) {
+    if ( is_active_widget('wp_widget_recent_comments') ) {
         remove_action('wp_head', 'wp_widget_recent_comments_style');
         // most themes seem to handle the recent comments widget okay, so I don't think the following style addition is necessary.  We'll leave it here just in case it's needed later.
+        //add_action('wp_head', create_function('', 'echo \'<style type="text/css">.recentcomments a{display:inline !important;padding: 0;margin: 0 !important;}</style>\';' ));
+        //add_action('wp_head', create_function('', 'echo \'<style type="text/css">.recentcomments a{padding: 0;margin: 0 !important;}</style>\';' ));
+    } else {
+        // WP 2.8 +
+        global $wp_widget_factory;
+        if ( $wp_widget_factory && array_key_exists('WP_Widget_Recent_Comments', $wp_widget_factory->widgets) ) {
+            remove_action('wp_head', array($wp_widget_factory->widgets['WP_Widget_Recent_Comments'], 'recent_comments_style'));
+        }
+    }
+}

openid/trunk/common.php

-                      r103625
+                      r158694
 // include internal stylesheet
 add_action( 'wp_head', 'openid_style');
+add_action( 'wp', 'openid_style');
 // parse request
 …
 add_action('generate_rewrite_rules', 'openid_rewrite_rules');
-add_action( 'delete_user', 'delete_user_openids' );
 add_action( 'cleanup_openid', 'openid_cleanup' );
-// hooks for getting user data
-add_filter('openid_auth_request_extensions', 'openid_add_sreg_extension', 10, 2);
-add_filter('openid_auth_request_extensions', 'openid_add_ax_extension', 10, 2);
 add_filter( 'openid_user_data', 'openid_get_user_data_sreg', 8, 2);
 add_filter( 'openid_user_data', 'openid_get_user_data_ax', 10, 2);
-add_filter( 'xrds_simple', 'openid_consumer_xrds_simple');
 …
  */
 function openid_textdomain() {
+    load_plugin_textdomain('openid', null, 'openid/lang');
+}
+/**
+ * Soft verification of plugin activation
+ *
+ * @return boolean if the plugin is okay
+ */
+function openid_uptodate() {
+    if( get_option('openid_db_revision') != OPENID_DB_REVISION ) {
+        openid_enabled(false);
+        openid_debug('Plugin database is out of date: ' . get_option('openid_db_revision') . ' != ' . OPENID_DB_REVISION);
+        update_option('openid_plugin_enabled', false);
+        return false;
+    }
+    openid_enabled(get_option('openid_plugin_enabled') == true);
+    return openid_enabled();
+}
+// XXX - figure out when to perform  uptodate() checks and such (since late_bind is no more)
+    load_plugin_textdomain('openid', null, 'openid/localization');
+}
 …
 /**
+ * Get the internal OpenID Consumer object.  If it is not already initialized, do so.
+ *
+ * @return Auth_OpenID_Consumer OpenID consumer object
+ */
+function openid_getConsumer() {
+    static $consumer;
+    if (!$consumer) {
+        set_include_path( dirname(__FILE__) . PATH_SEPARATOR . get_include_path() );
+        require_once 'Auth/OpenID/Consumer.php';
+        restore_include_path();
+        $store = openid_getStore();
+        $consumer = new Auth_OpenID_Consumer($store);
+        if( null === $consumer ) {
+            openid_error('OpenID consumer could not be created properly.');
+            openid_enabled(false);
+        }
+    }
+    return $consumer;
+}
+function openid_activate_wpmu() {
+    global $wpmu_version;
+    if ($wpmu_version && is_admin()) {
+        if (get_option('openid_db_revision') != OPENID_DB_REVISION) {
+            openid_activate_plugin();
+        }
+    }
+}
+/**
+ * Called on plugin activation.
+ * Called on plugin activation and upgrading.
+ *
  * @see register_activation_hook
 …
     add_option( 'openid_db_revision', 0 );
     add_option( 'openid_enable_approval', false );
-    add_option( 'openid_enable_email_mapping', false );
     add_option( 'openid_xrds_returnto', true );
-    add_option( 'openid_xrds_idib', true );
-    add_option( 'openid_xrds_eaut', true );
     add_option( 'openid_comment_displayname_length', 12 );
 …
     // flush rewrite rules
     if (!isset($wp_rewrite)) { $wp_rewrite = new WP_Rewrite(); }
+    if ( !isset($wp_rewrite) ) { $wp_rewrite = new WP_Rewrite(); }
     $wp_rewrite->flush_rules();
 …
     delete_option('force_openid_registration');
     delete_option('openid_skip_require_name');
+    delete_option('openid_enable_email_mapping');
+    delete_option('openid_xrds_idib');
+    delete_option('openid_xrds_eaut');
+}
 …
     delete_option('openid_db_revision');
     delete_option('openid_enable_approval');
-    delete_option('openid_enable_email_mapping');
     delete_option('openid_xrds_returnto');
-    delete_option('openid_xrds_idib');
-    delete_option('openid_xrds_eaut');
     delete_option('openid_comment_displayname_length');
     delete_option('openid_associations');
 …
     openid_error( "Library Error $errno: $errmsg in $filename :$linenum");
+}
-/**
- * Send the user to their OpenID provider to authenticate.
+ *
- * @param Auth_OpenID_AuthRequest $auth_request OpenID authentication request object
- * @param string $trust_root OpenID trust root
- * @param string $return_to URL where the OpenID provider should return the user
- */
-function openid_redirect($auth_request, $trust_root, $return_to) {
-    do_action('openid_redirect', $auth_request, $trust_root, $return_to);
-    $message = $auth_request->getMessage($trust_root, $return_to, false);
-    if (Auth_OpenID::isFailure($message)) {
-        return openid_error('Could not redirect to server: '.$message->message);
+    }
-    $_SESSION['openid_return_to'] = $message->getArg(Auth_OpenID_OPENID_NS, 'return_to');
-    // send 302 redirect or POST
-    if ($auth_request->shouldSendRedirect()) {
-        $redirect_url = $auth_request->redirectURL($trust_root, $return_to);
-        wp_redirect( $redirect_url );
-    } else {
-        openid_repost($auth_request->endpoint->server_url, $message->toPostArgs());
+    }
+}
-/**
- * Finish OpenID Authentication.
+ *
- * @return String authenticated identity URL, or null if authentication failed.
- */
-function finish_openid_auth() {
-    @session_start();
-    $consumer = openid_getConsumer();
-    $openid_return_to = $_SESSION['openid_return_to'];
-    if (empty($openid_return_to)) {
-        $openid_return_to = openid_service_url('openid', 'consumer');
+    }
-    $response = $consumer->complete($openid_return_to);
-    unset($_SESSION['openid_return_to']);
-    openid_response($response);
-    switch( $response->status ) {
-        case Auth_OpenID_CANCEL:
-            openid_message(__('OpenID login was cancelled.', 'openid'));
-            openid_status('error');
-            break;
-        case Auth_OpenID_FAILURE:
-            openid_message(sprintf(__('OpenID login failed: %s', 'openid'), $response->message));
-            openid_status('error');
-            break;
-        case Auth_OpenID_SUCCESS:
-            openid_message(__('OpenID login successful', 'openid'));
-            openid_status('success');
-            $identity_url = $response->identity_url;
-            $escaped_url = htmlspecialchars($identity_url, ENT_QUOTES);
-            return $escaped_url;
-        default:
-            openid_message(__('Unknown Status. Bind not successful. This is probably a bug.', 'openid'));
-            openid_status('error');
+    }
-    return null;
+}
 …
             continue;
+        }
+        // TODO: add hook
         return $username;
+    }
 …
  * @param string $username username to be normalized
  * @return string normalized username
+ * @uses apply_filters() Calls 'openid_normalize_username' just before returning normalized username
  */
 function openid_normalize_username($username) {
+    $username = preg_replace('|^https?://(xri.net/([^@]!?)?)?|', '', $username);
+    $username = preg_replace('|^xri://([^@]!?)?|', '', $username);
+    $username = preg_replace('|/$|', '', $username);
+    $username = sanitize_user( $username );
+    $username = preg_replace('|[^a-z0-9 _.\-@]+|i', '-', $username);
+    return $username;
+}
+/**
+ * Begin login by activating the OpenID consumer.
+ *
+ * @param string $url claimed ID
+ * @return Auth_OpenID_Request OpenID Request
+ */
+function openid_begin_consumer($url) {
+    static $request;
+    @session_start();
+    if ($request == NULL) {
+        set_error_handler( 'openid_customer_error_handler');
+        if (is_email($url)) {
+            $_SESSION['openid_login_email'] = $url;
+            set_include_path( dirname(__FILE__) . PATH_SEPARATOR . get_include_path() );
+            require_once 'Auth/Yadis/Email.php';
+            $mapped_url = Auth_Yadis_Email_getID($url, trailingslashit(get_option('home')));
+            if ($mapped_url) {
+                $url = $mapped_url;
+            }
+        }
+        $consumer = openid_getConsumer();
+        $request = $consumer->begin($url);
+        restore_error_handler();
+    }
+    return $request;
+}
+/**
+ * Start the OpenID authentication process.
+ *
+ * @param string $claimed_url claimed OpenID URL
+ * @param string $action OpenID action being performed
+ * @param string $finish_url stored in user session for later redirect
+ * @uses apply_filters() Calls 'openid_auth_request_extensions' to gather extensions to be attached to auth request
+ */
+function openid_start_login( $claimed_url, $action, $finish_url = null) {
+    if ( empty($claimed_url) ) return; // do nothing.
+    $auth_request = openid_begin_consumer( $claimed_url );
+    if ( null === $auth_request ) {
+        openid_status('error');
+        openid_message(sprintf(
+            __('Could not discover an OpenID identity server endpoint at the url: %s', 'openid'),
+            htmlentities($claimed_url)
+        ));
+        if( strpos( $claimed_url, '@' ) ) {
+            openid_message(openid_message() . '<br />' . __('It looks like you entered an email address, but it '
+                . 'was not able to be transformed into a valid OpenID.', 'openid'));
+        }
+        return;
+    }
+    @session_start();
+    $_SESSION['openid_action'] = $action;
+    $_SESSION['openid_finish_url'] = $finish_url;
+    $extensions = apply_filters('openid_auth_request_extensions', array(), $auth_request);
+    foreach ($extensions as $e) {
+        if (is_a($e, 'Auth_OpenID_Extension')) {
+            $auth_request->addExtension($e);
+        }
+    }
+    $return_to = openid_service_url('openid', 'consumer', 'login_post');
+    $return_to = apply_filters('openid_return_to', $return_to);
+    $trust_root = openid_trust_root($return_to);
+    openid_redirect($auth_request, $trust_root, $return_to);
+    exit(0);
+    $normalized = $username;
+    $normalized = preg_replace('|^https?://(xri.net/([^@]!?)?)?|', '', $normalized);
+    $normalized = preg_replace('|^xri://([^@]!?)?|', '', $normalized);
+    $normalized = preg_replace('|/$|', '', $normalized);
+    $normalized = sanitize_user( $normalized );
+    $normalized = preg_replace('|[^a-z0-9 _.\-@]+|i', '-', $normalized);
+    $normalized = apply_filters('openid_normalize_username', $normalized, $username);
+    return $normalized;
+}
 …
     $trust_root = apply_filters('openid_trust_root', $trust_root, $return_to);
     return $trust_root;
+}
-/**
- * Build an Attribute Exchange attribute query extension if we've never seen this OpenID before.
- */
-function openid_add_ax_extension($extensions, $auth_request) {
-    if(!get_user_by_openid($auth_request->endpoint->claimed_id)) {
-        set_include_path( dirname(__FILE__) . PATH_SEPARATOR . get_include_path() );
-        require_once('Auth/OpenID/AX.php');
-        restore_include_path();
-        if ($auth_request->endpoint->usesExtension(Auth_OpenID_AX_NS_URI)) {
-            $ax_request = new Auth_OpenID_AX_FetchRequest();
-            $ax_request->add(Auth_OpenID_AX_AttrInfo::make('http://axschema.org/namePerson/friendly', 1, true));
-            $ax_request->add(Auth_OpenID_AX_AttrInfo::make('http://axschema.org/contact/email', 1, true));
-            $ax_request->add(Auth_OpenID_AX_AttrInfo::make('http://axschema.org/namePerson', 1, true));
-            $extensions[] = $ax_request;
+        }
+    }
-    return $extensions;
+}
-/**
- * Build an SReg attribute query extension if we've never seen this OpenID before.
- */
-function openid_add_sreg_extension($extensions, $auth_request) {
-    if(!get_user_by_openid($auth_request->endpoint->claimed_id)) {
-        set_include_path( dirname(__FILE__) . PATH_SEPARATOR . get_include_path() );
-        require_once('Auth/OpenID/SReg.php');
-        restore_include_path();
-        if ($auth_request->endpoint->usesExtension(Auth_OpenID_SREG_NS_URI_1_0) || $auth_request->endpoint->usesExtension(Auth_OpenID_SREG_NS_URI_1_1)) {
-            $extensions[] = Auth_OpenID_SRegRequest::build(array(),array('nickname','email','fullname'));
+        }
+    }
-    return $extensions;
+}
 …
     $user = set_current_user($user_id);
+    if (function_exists('wp_set_auth_cookie')) {
+        wp_set_auth_cookie($user->ID, $remember);
+    } else {
+        wp_setcookie($user->user_login, md5($user->user_pass), true, '', '', $remember);
+    }
+    wp_set_auth_cookie($user->ID, $remember);
     do_action('wp_login', $user->user_login);
+}
-/**
- * Finish OpenID authentication.
+ *
- * @param string $action login action that is being performed
- * @uses do_action() Calls 'openid_finish_auth' hook action after processing the authentication response.
- */
-function finish_openid($action) {
-    $identity_url = finish_openid_auth();
-    do_action('openid_finish_auth', $identity_url, $action);
+}
 …
     @include_once( ABSPATH . WPINC . '/registration-functions.php'); // 2.0.4
-    // use email address for username if URL is from emailtoid.net
-    if (null != $_SESSION['openid_login_email'] and strpos($identity_url, 'http://emailtoid.net/') === 0) {
-        if (empty($user_data['user_email'])) {
-            $user_data['user_email'] = $_SESSION['openid_login_email'];
+        }
-        $username = openid_generate_new_username($_SESSION['openid_login_email']);
-        unset($_SESSION['openid_login_email']);
+    }
     // otherwise, try to use preferred username
     if (empty($username) && $user_data['nickname']) {
+    if ( empty($username) && array_key_exists('nickname', $user_data) ) {
         $username = openid_generate_new_username($user_data['nickname'], false);
+    }
 …
 /**
+ *
- * @uses apply_filters() Calls 'openid_consumer_return_urls' to collect return_to URLs to be included in XRDS document.
- */
-function openid_consumer_xrds_simple($xrds) {
-    if (get_option('openid_xrds_returnto')) {
-        // OpenID Consumer Service
-        $return_urls = array_unique(apply_filters('openid_consumer_return_urls', array(openid_service_url('openid', 'consumer', 'login_post'))));
-        if (!empty($return_urls)) {
-            $xrds = xrds_add_simple_service($xrds, 'OpenID Consumer Service', 'http://specs.openid.net/auth/2.0/return_to', $return_urls);
+        }
+    }
-    if (get_option('openid_xrds_idib')) {
-        // Identity in the Browser Login Service
-        $xrds = xrds_add_service($xrds, 'main', 'Identity in the Browser Login Service',
-            array(
-                'Type' => array(array('content' => 'http://specs.openid.net/idib/1.0/login') ),
-                'URI' => array(
-                    array(
-                        'simple:httpMethod' => 'POST',
-                        'content' => site_url('/wp-login.php', 'login_post'),
-                    ),
-                ),
+            )
-        );
-        // Identity in the Browser Indicator Service
-        $xrds = xrds_add_simple_service($xrds, 'Identity in the Browser Indicator Service',
-            'http://specs.openid.net/idib/1.0/indicator', openid_service_url('openid', 'check_login'));
+    }
-    return $xrds;
+}
-/**
  * Parse the WordPress request.  If the query var 'openid' is present, then
  * handle the request accordingly.
 …
                     $action = 'login';
                     if (empty($_SESSION['openid_finish_url'])) {
                         $_SESSION['openid_finish_url'] = get_option('home');
+                        //$_SESSION['openid_finish_url'] = get_option('home');
+                    }
+                }
 …
                 break;
+            case 'check_login':
+                // IDIB Request
+                echo is_user_logged_in() ? 'true' : 'false';
+                exit;
+            case 'ajax':
+                if ( check_admin_referer('openid_ajax') ) {
+                    header('Content-Type: application/json');
+                    echo '{ valid:' . ( is_url_openid( $_REQUEST['url'] ) ? 'true' : 'false' ) . ', nonce:"' . wp_create_nonce('openid_ajax') . '" }';
+                    exit;
+                }
+        }
+    }
+}
+/**
+ * Check if the provided URL is a valid OpenID.
+ *
+ * @param string $url URL to check
+ * @return boolean true if the URL is a valid OpenID
+ */
+function is_url_openid( $url ) {
+    $auth_request = openid_begin_consumer( $url );
+    return ( $auth_request != null );
+}
 …
  * Build an OpenID service URL.
+ *
+ * @param string $name service name to build URL for
+ * @param string $value service value to build URL for
+ * @param string $service service to build URL for
  * @param string $scheme URL scheme to use for URL (see site_url())
- * @param boolean $absolute should we return an absolute URL
  * @return string service URL
  * @see site_url
  */
 function openid_service_url($name, $value, $scheme = null, $absolute = true) {
+function openid_service_url($service, $scheme = null) {
     global $wp_rewrite;
     if (!$wp_rewrite) $wp_rewrite = new WP_Rewrite();
+    if ($absolute) {
+        if (!defined('OPENID_SSL') || !OPENID_SSL) $scheme = null;
+        $url = site_url('/', $scheme);
+    if (!defined('OPENID_SSL') || !OPENID_SSL) $scheme = null;
+    $url = site_url('/', $scheme);
+    if ($wp_rewrite->using_permalinks()) {
+        $url .= 'index.php/openid/' . $service;
     } else {
+        $site_url = get_option('siteurl');
+        $home_url = get_option('home');
+        if ($site_url != $home_url) {
+            $url = substr(trailingslashit($site_url), strlen($home_url)+1);
+        } else {
+            $url = '';
+        }
+    }
+    if ($wp_rewrite->using_permalinks()) {
+        if ($wp_rewrite->using_index_permalinks()) {
+            $url .= 'index.php/';
+        }
+        $url .= $name . '/' . $value;
+    } else {
+        $url .= '?' . $name . '=' . $value;
+        $url .= '?openid=' . $service;
+    }
     return $url;
+}
 /**
 …
 function openid_rewrite_rules($wp_rewrite) {
     $openid_rules = array(
+        openid_service_url('openid', '(.+)', null, false) => 'index.php?openid=$matches[1]',
+        openid_service_url('eaut', '(.+)', null, false) => 'index.php?eaut=$matches[1]',
+        'openid/(.+)' => 'index.php?openid=$matches[1]',
     );
 …
 function openid_query_vars($vars) {
     $vars[] = 'openid';
-    $vars[] = 'eaut';
     return $vars;
+}
-/**
- * Delete user.
- */
-function delete_user_openids($userid) {
-    openid_drop_all_identities($userid);
+}
-function openid_add_user_identity($user_id, $identity_url) {
-    openid_add_identity($user_id, $identity_url);
+}
 …
 ?>
 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
 <html xmlns="http://www.w3.org/1999/xhtml" <?php if ( function_exists( 'language_attributes' ) ) language_attributes(); ?>>
+<html xmlns="http://www.w3.org/1999/xhtml" <?php language_attributes(); ?>>
 <head>
     <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
 …
 /**
  * Enqueue required javascript libraries.
+ * Enqueue required javascript libraries on appropriate pages.
+ *
  * @action: init
  **/
 function openid_js_setup() {
+    if (is_single() || is_comments_popup() || is_admin()) {
+        wp_enqueue_script( 'jquery' );
+        //wp_enqueue_script( 'jquery-ui-sortable' );
+        wp_enqueue_script('jquery.textnode', openid_plugin_url() . '/f/jquery.textnode.min.js',
+            array('jquery'), OPENID_PLUGIN_REVISION);
+        wp_enqueue_script('jquery.xpath', openid_plugin_url() . '/f/jquery.xpath.min.js',
+            array('jquery'), OPENID_PLUGIN_REVISION);
+        $js_file = (defined('WP_DEBUG') && WP_DEBUG) ? 'openid.js' : 'openid.min.js';
+        wp_enqueue_script('openid', openid_plugin_url() . '/f/' . $js_file,
+            array('jquery','jquery.textnode'), OPENID_PLUGIN_REVISION);
+    }
+}
+/**
+ * Get opend plugin URL, keeping in mind that for WordPress MU, it may be in either the normal
+ * plugins directory or mu-plugins.
+ */
+function openid_plugin_url() {
+    static $openid_plugin_url;
+    if (!$openid_plugin_url) {
+        if (defined('MUPLUGINDIR') && file_exists(ABSPATH . MUPLUGINDIR . '/openid')) {
+            $openid_plugin_url =  trailingslashit(get_option('siteurl')) . MUPLUGINDIR . '/openid';
+        } else {
+            $openid_plugin_url =  plugins_url('openid');
+        }
+    }
+    return $openid_plugin_url;
+}
+/**
+ * Include internal stylesheet.
+ *
+ * @action: wp_head, login_head
+    if (have_comments() || comments_open() || is_admin()) {
+        wp_enqueue_script('openid', plugins_url('openid/f/openid.js'), array('jquery'), OPENID_PLUGIN_REVISION);
+    }
+}
+/**
+ * Include OpenID stylesheet.
+ *
+ * "Intelligently" decides whether to enqueue or print the CSS file, based on whether * the 'wp_print_styles'
+ * action has been run.  (This logic taken from the core wp_admin_css function)
  **/
 function openid_style() {
+    $css_file = (defined('WP_DEBUG') && WP_DEBUG) ? 'openid.css' : 'openid.min.css';
+    $css_path = openid_plugin_url() . '/f/' . $css_file . '?ver=' . OPENID_PLUGIN_REVISION;
+    echo '
+        <link rel="stylesheet" type="text/css" href="'.clean_url($css_path).'" />';
+    if ( !wp_style_is('openid', 'registered') ) {
+        wp_register_style('openid', plugins_url('openid/f/openid.css'), array(), OPENID_PLUGIN_REVISION);
+    }
+    if ( did_action('wp_print_styles') ) {
+        wp_print_styles('openid');
+    } else {
+        wp_enqueue_style('openid');
+    }
+}
+// ---------------------- //
+// OpenID User Management //
+// ---------------------- //
+/**
+ * When a WordPress user is deleted, make sure all associated OpenIDs are deleted as well.
+ */
+function delete_user_openids($userid) {
+    openid_drop_all_identities($userid);
+}
+add_action( 'delete_user', 'delete_user_openids' );
+/**
+ * Add the specified identity URL to the user.
+ *
+ * @param int $user_id user id
+ * @param string $identity_url identity url to add
+ */
+function openid_add_user_identity($user_id, $identity_url) {
+    openid_add_identity($user_id, $identity_url);
+}
 …
 function openid_add_identity($user_id, $url) {
     global $wpdb;
+    return $wpdb->query( wpdb_prepare('INSERT INTO '.openid_identity_table().' (user_id,url,hash) VALUES ( %s, %s, MD5(%s) )', $user_id, $url, $url) );
+}
+/**
+ * Get OpenIDs for the specified user.
+    $sql = $wpdb->prepare('INSERT INTO ' . openid_identity_table() . ' (user_id,url,hash) VALUES ( %s, %s, MD5(%s) )', $user_id, $url, $url);
+    return $wpdb->query( $sql );
+}
+/**
+ * Remove identity url from user.
+ *
  * @param int $user_id user id
  * @return array OpenIDs for the user
  */
 function _get_user_openids($user_id) {
+ * @param string $identity_url identity url to remove
+ */
+function openid_drop_identity($user_id, $identity_url) {
     global $wpdb;
+    return $wpdb->get_col( wpdb_prepare('SELECT url FROM '.openid_identity_table().' WHERE user_id = %s', $user_id) );
+}
+    return $wpdb->query( $wpdb->prepare('DELETE FROM '.openid_identity_table().' WHERE user_id = %s AND url = %s', $user_id, $identity_url) );
+}
+/**
+ * Remove all identity urls from user.
+ *
+ * @param int $user_id user id
+ */
+function openid_drop_all_identities($user_id) {
+    global $wpdb;
+    return $wpdb->query( $wpdb->prepare('DELETE FROM '.openid_identity_table().' WHERE user_id = %s', $user_id ) );
+}
+// -------------- //
+// Other Function //
+// -------------- //
 /**
 …
-/**
- * Remove identity url from user.
+ *
- * @param int $user_id user id
- * @param string $identity_url identity url to remove
- */
-function openid_drop_identity($user_id, $identity_url) {
-    global $wpdb;
-    return $wpdb->query( wpdb_prepare('DELETE FROM '.openid_identity_table().' WHERE user_id = %s AND url = %s', $user_id, $identity_url) );
+}
-/**
- * Remove all identity urls from user.
+ *
- * @param int $user_id user id
- */
-function openid_drop_all_identities($user_id) {
-    global $wpdb;
-    return $wpdb->query( wpdb_prepare('DELETE FROM '.openid_identity_table().' WHERE user_id = %s', $user_id ) );
+}
 function openid_error($msg) {
     error_log('[OpenID] ' . $msg);

openid/trunk/f/openid.css

-                      r88142
+                      r158694
+}
+.openid_loading {
+    background: url('ajax-loader.gif') right center no-repeat;
+}
 body.login #openid_identifier {
     width: 92%;
 …
+}
+#openid_comment {
+    margin: 0.8em 1em;
+}
+#openid_comment input {
+    width: auto;
+}
 /* fix link color on wp-login.php */
 body.login form#loginform a.legacy,
 …
+}
-#openid_rollup {
-    margin-top: 1em;
+}
-#openid_rollup div div { margin: 0.5em; }
-#openid_rollup ul { margin: 0; padding: 0 0 0 5em; }

openid/trunk/f/openid.js

-                      r88142
+                      r158694
+// use yuicompress (http://developer.yahoo.com/yui/compressor/) to generate openid.min.js
+/* yuicompress openid.js -o openid.min.js
+ * @see http://developer.yahoo.com/yui/compressor/
+ */
 jQuery(function() {
 …
 function stylize_profilelink() {
     jQuery("#commentform a[@href$='profile.php']").addClass('openid_link');
+    jQuery("#commentform a[href$='profile.php']").addClass('openid_link');
+}
+function add_openid_to_comment_form() {
+/**
+ * Properly integrate the 'Authenticate with OpenID' checkbox into the comment form.
+ * This will move the checkbox below the Website field, and add an AJAX hook to
+ * show/hide the checkbox depending on whether the given URL is a valid OpenID.
+ */
+function add_openid_to_comment_form(wp_url, nonce) {
+    var openid_nonce = nonce;
+    jQuery('#commentform').addClass('openid');
+    var openid_comment = jQuery('#openid_comment');
+    var openid_checkbox = jQuery('#login_with_openid');
+    var url = jQuery('#url');
+    var html = ' <a id="openid_enabled_link" href="http://openid.net">(OpenID Enabled)</a> ' +
+                '<div id="openid_text">' +
+                    'If you have an OpenID, you may fill it in here.  If your OpenID provider provides ' +
+                    'a name and email, those values will be used instead of the values here.  ' +
+                    '<a href="http://openid.net/what/">Learn more about OpenID</a> or ' +
+                    '<a href="http://openid.net/get/">find an OpenID provider</a>.' +
+                '</div> ';
+    jQuery('label[for="url"],#url').filter(':last').after(openid_comment.hide());
+    jQuery('#commentform #url').attr('maxlength', '100');
+    var label = jQuery('#commentform label[@for=url]');
+    var children = jQuery(':visible:hastext', label);
+    if ( url.val() ) check_openid( url );
+    url.blur( function() { check_openid(jQuery(this)); } );
-    if (children.length > 0)
-        children.filter(':last').appendToText(html);
-    else if (label.is(':hastext'))
-        label.appendToText(html);
-    else
-        label.append(html);
+    // setup action
+    jQuery('#openid_text').hide();
+    jQuery('#openid_enabled_link').click( function() {
+        jQuery('#openid_text').toggle(200);
+        return false;
+    });
+    /**
+     * Make AJAX call to WordPress to check if the given URL is a valid OpenID.
+     * AJAX response should be a JSON structure with two values:
+     *   'valid' - (boolean) whether or not the given URL is a valid OpenID
+     *   'nonce' - (string) new nonce to use for next AJAX call
+     */
+    function check_openid( url ) {
+        url.addClass('openid_loading');
+        if ( url.val() == '' ) {
+            openid_checkbox.attr('checked', '');
+            openid_comment.slideUp();
+            return;
+        }
+        jQuery.getJSON(wp_url + '?openid=ajax', {url: url.val(), _wpnonce: openid_nonce}, function(data, textStatus) {
+            url.removeClass('openid_loading');
+            if ( data.valid ) {
+                openid_checkbox.attr('checked', 'checked');
+                openid_comment.slideDown();
+            } else {
+                openid_checkbox.attr('checked', '');
+                openid_comment.slideUp();
+            }
+            openid_nonce = data.nonce;
+        });
+    }
+}

openid/trunk/login.php

-                      r137082
+                      r158694
-// add OpenID input field to wp-login.php
 add_action( 'login_head', 'openid_wp_login_head');
 add_action( 'login_form', 'openid_wp_login_form');
 add_action( 'register_form', 'openid_wp_register_form', 9);
 add_action( 'register_post', 'openid_register_post', 10, 3);
-add_action( 'wp_authenticate', 'openid_wp_authenticate' );
 add_action( 'openid_finish_auth', 'openid_finish_login', 10, 2);
 add_filter( 'registration_errors', 'openid_clean_registration_errors', -99);
 …
 add_action( 'init', 'openid_login_errors' );
+// WordPress 2.5 has wp_authenticate in the wrong place
+if (version_compare($wp_version, '2.5', '>=') && version_compare($wp_version, '2.6', '<')) {
+    add_action( 'init', 'wp25_login_openid' );
+}
+/**
+ * If we're doing openid authentication ($_POST['openid_identifier'] is set), start the consumer & redirect
+ * Otherwise, return and let WordPress handle the login and/or draw the form.
+ *
+ * @param string $credentials username and password provided in login form
+ */
+function openid_wp_authenticate(&$credentials) {
+    if (!empty($_POST['openid_identifier'])) {
+        $finish_url = $_REQUEST['redirect_to'];
+        openid_start_login($_POST['openid_identifier'], 'login', $finish_url);
+/**
+ * Authenticate user to WordPress using OpenID.
+ *
+ * @param mixed $user authenticated user object, or WP_Error or null
+ */
+function openid_authenticate($user) {
+    if ( array_key_exists('openid_identifier', $_POST) && $_POST['openid_identifier'] ) {
+        $redirect_to = array_key_exists('redirect_to', $_REQUEST) ? $_REQUEST['redirect_to'] : null;
+        openid_start_login($_POST['openid_identifier'], 'login', $redirect_to);
         // if we got this far, something is wrong
         global $error;
         $error = openid_message();
+    }
+        $user = new WP_Error( 'openid_login_error', $error );
+    } else if ( array_key_exists('finish_openid', $_REQUEST) ) {
+        $identity_url= $_REQUEST['identity_url'];
+        if ( !wp_verify_nonce($_REQUEST['_wpnonce'], 'openid_login_' . md5($identity_url)) ) {
+            $user = new WP_Error('openid_login_error', 'Error during OpenID authentication.  Please try again. (invalid nonce)');
+        }
+        if ( $identity_url ) {
+            $user_id = get_user_by_openid($identity_url);
+            if ( $user_id ) {
+                $user = new WP_User($user_id);
+            } else {
+                $user = new WP_Error('openid_registration_closed', __('Your have entered a valid OpenID, but this site is not currently accepting new accounts.', 'openid'));
+            }
+        } else if ( array_key_exists('openid_error', $_REQUEST) ) {
+            $user = new WP_Error('openid_login_error', htmlentities2($_REQUEST['openid_error']));
+        }
+    }
+    return $user;
+}
+add_action( 'authenticate', 'openid_authenticate' );
+/**
+ * Action method for completing the 'login' action.  This action is used when a user is logging in from
+ * wp-login.php.
+ *
+ * @param string $identity_url verified OpenID URL
+ */
+function openid_finish_login($identity_url, $action) {
+    if ($action != 'login') return;
+    // create new user account if appropriate
+    $user_id = get_user_by_openid($identity_url);
+    if ( $identity_url && !$user_id && get_option('users_can_register') ) {
+        $user_data =& openid_get_user_data($identity_url);
+        openid_create_new_user($identity_url, $user_data);
+    }
+    // return to wp-login page
+    $url = get_option('siteurl') . '/wp-login.php';
+    if (empty($identity_url)) {
+        $url = add_query_arg('openid_error', openid_message(), $url);
+    }
+    $url = add_query_arg( array(
+        'finish_openid' => 1,
+        'identity_url' => urlencode($identity_url),
+        'redirect_to' => $_SESSION['openid_finish_url'],
+        '_wpnonce' => wp_create_nonce('openid_login_' . md5($identity_url)),
+    ), $url);
+    wp_safe_redirect($url);
+    exit;
+}
 …
 function openid_login_errors() {
     $self = basename( $GLOBALS['pagenow'] );
     if ($self != 'wp-login.php') return;
     if ($_REQUEST['openid_error']) {
+    if ( array_key_exists('openid_error', $_REQUEST) ) {
         global $error;
         $error = htmlentities2($_REQUEST['openid_error']);
+    }
-    if ($_REQUEST['registration_closed']) {
-        global $error;
-        $error = __('Your have entered a valid OpenID, but this site is not currently accepting new accounts.', 'openid');
+    }
+}
 …
 function openid_wp_login_head() {
     openid_style();
-    wp_enqueue_script('jquery.xpath', openid_plugin_url() . '/f/jquery.xpath.min.js',
-        array('jquery'), OPENID_PLUGIN_REVISION);
-    wp_print_scripts(array('jquery.xpath'));
+}
 …
  **/
 function openid_wp_login_form() {
-    global $wp_version;
     echo '<hr id="openid_split" style="clear: both; margin-bottom: 1.0em; border: 0; border-top: 1px solid #999; height: 1px;" />';
     echo '
     <p style="margin-bottom: 8px;">
         <label style="display: block; margin-bottom: 5px;">' . __('Or login using an OpenID', 'openid') . '</label>
+        <label style="display: block; margin-bottom: 5px;">' . __('Or login using an OpenID', 'openid') . '<br />
         <input type="text" name="openid_identifier" id="openid_identifier" class="input openid_identifier" value="" size="20" tabindex="25" /></label>
     </p>
 …
  **/
 function openid_wp_register_form() {
-    global $wp_version;
     echo '
     <div style="width:100%;">'; //Added to fix IE problem
 …
     echo '
         <p>
             <label style="display: block; margin-bottom: 5px;">' . $label . '</label>
+            <label style="display: block; margin-bottom: 5px;">' . $label . '<br />
             <input type="text" name="openid_identifier" id="openid_identifier" class="input openid_identifier" value="" size="20" tabindex="25" /></label>
         </p>
 …
     </div>';
+}
-/**
- * Action method for completing the 'login' action.  This action is used when a user is logging in from
- * wp-login.php.
+ *
- * @param string $identity_url verified OpenID URL
- */
-function openid_finish_login($identity_url, $action) {
-    if ($action != 'login') return;
-    $redirect_to = $_SESSION['openid_finish_url'];
-    if (empty($identity_url)) {
-        $url = get_option('siteurl') . '/wp-login.php?openid_error=' . urlencode(openid_message());
-        wp_safe_redirect($url);
-        exit;
+    }
-    openid_set_current_user($identity_url);
-    if (!is_user_logged_in()) {
-        if ( get_option('users_can_register') ) {
-            $user_data =& openid_get_user_data($identity_url);
-            $user = openid_create_new_user($identity_url, $user_data);
-            openid_set_current_user($user->ID);
-        } else {
-            // TODO - Start a registration loop in WPMU.
-            $url = get_option('siteurl') . '/wp-login.php?registration_closed=1';
-            wp_safe_redirect($url);
-            exit;
+        }
+    }
-    if (empty($redirect_to)) {
-        $redirect_to = 'wp-admin/';
+    }
-    if ($redirect_to == 'wp-admin/') {
-        if (!current_user_can('edit_posts')) {
-            $redirect_to .= 'profile.php';
+        }
+    }
-    if (!preg_match('#^(http|\/)#', $redirect_to)) {
-        $wpp = parse_url(get_option('siteurl'));
-        $redirect_to = $wpp['path'] . '/' . $redirect_to;
+    }
-    wp_safe_redirect( $redirect_to );
-    exit;
+}
-/**
- * Intercept login requests on wp-login.php if they include an 'openid_identifier'
- * value and start OpenID authentication.  This hook is only necessary in
- * WordPress 2.5.x because it has the 'wp_authenticate' action call in the
- * wrong place.
- */
-function wp25_login_openid() {
-    $self = basename( $GLOBALS['pagenow'] );
-    if ($self == 'wp-login.php' && !empty($_POST['openid_identifier'])) {
-        wp_signon(array('user_login'=>'openid', 'user_password'=>'openid'));
+    }
+}
 …
  */
 function openid_register_post($username, $password, $errors) {
     if (!empty($_POST['openid_identifier'])) {
         wp_signon(array('user_login'=>'openid', 'user_password'=>'openid'));
+    if ( !empty($_POST['openid_identifier']) ) {
+        wp_signon();
+    }
+}

openid/trunk/openid.php

-                      r103625
+                      r158694
 $openid_include_path = dirname(__FILE__);
-if (file_exists(dirname(__FILE__) . '/openid')) {
-    // for WPMU mu-plugins folder
-    $openid_include_path .= PATH_SEPARATOR . dirname(__FILE__) . '/openid';
+}
 // check source of randomness
+if (!@is_readable('/dev/urandom')) define( 'Auth_OpenID_RAND_SOURCE', null );
+if ( !@is_readable('/dev/urandom') ) {
+    define('Auth_OpenID_RAND_SOURCE', null);
+}
 set_include_path( $openid_include_path . PATH_SEPARATOR . get_include_path() );
 require_once 'common.php';
 require_once 'compatibility.php';
+require_once 'consumer.php';
 require_once 'admin_panels.php';
 require_once 'comments.php';
 …
 register_activation_hook('openid/openid.php', 'openid_activate_plugin');
 register_deactivation_hook('openid/openid.php', 'openid_deactivate_plugin');
+if ( function_exists('register_uninstall_hook') ) {
+    register_uninstall_hook('openid/openid.php', 'openid_uninstall_plugin');
+}
+add_action( 'init', 'openid_activate_wpmu' ); // wpmu activation
+register_uninstall_hook('openid/openid.php', 'openid_uninstall_plugin');
 // run activation function if new revision of plugin
 if (get_option('openid_plugin_revision') === false || OPENID_PLUGIN_REVISION != get_option('openid_plugin_revision')) {
+if ( get_option('openid_plugin_revision') === false || OPENID_PLUGIN_REVISION != get_option('openid_plugin_revision') ) {
     add_action('admin_init', 'openid_activate_plugin');
+}
+// -- public functions
+// ---------------- //
+// Public Functions //
+// ---------------- //
 /**
 …
 function is_user_openid($user = null) {
     $urls = get_user_openids($user);
     return (!empty($urls));
+    return ( !empty($urls) );
+}
 …
  */
 function is_comment_openid($id = null) {
     if (is_numeric($id)) {
+    if ( is_numeric($id) ) {
         $comment = get_comment($id);
     } else {
 …
     $openid_comments = get_post_meta($comment->comment_post_ID, 'openid_comments', true);
+    if (!is_array($openid_comments)) return false;
+    return (in_array($comment->comment_ID, $openid_comments));
+    if ( is_array($openid_comments) ) {
+        if ( in_array($comment->comment_ID, $openid_comments) ) {
+            return true;
+        }
+    }
+    return false;
+}
 …
 function get_user_openids($id_or_name = null) {
     $user = get_userdata_by_various($id_or_name);
+    return _get_user_openids($user->ID);
+    if ( $user ) {
+        global $wpdb;
+        return $wpdb->get_col( $wpdb->prepare('SELECT url FROM '.openid_identity_table().' WHERE user_id = %s', $user_id) );
+    } else {
+        return array();
+    }
+}
 …
 function get_user_by_openid($url) {
     global $wpdb;
     return $wpdb->get_var( wpdb_prepare('SELECT user_id FROM '.openid_identity_table().' WHERE url = %s', $url) );
+    return $wpdb->get_var( $wpdb->prepare('SELECT user_id FROM '.openid_identity_table().' WHERE url = %s', $url) );
+}
 …
 if (!function_exists('get_userdata_by_various')) :
 function get_userdata_by_various($id_or_name = null) {
     if ($id_or_name === null) {
+    if ( $id_or_name === null ) {
         $user = wp_get_current_user();
         if ($user == null) return false;
         return $user->data;
     } else if (is_numeric($id_or_name)) {
+    } else if ( is_numeric($id_or_name) ) {
         return get_userdata($id_or_name);
     } else {
 …
 // -- end of public functions
 /**
 …
     static $file;
     if (empty($file)) {
+    if ( empty($file) ) {
         $path = 'openid';
         $base = plugin_basename(__FILE__);
         if ($base != __FILE__) {
+        if ( $base != __FILE__ ) {
             $path = basename(dirname($base));
+        }
 …
+}
-?>

openid/trunk/server.php

-                      r103625
+                      r158694
 require_once 'Auth/OpenID/Server.php';
 require_once 'server_ext.php';
-require_once 'server_eaut.php';
 add_filter( 'xrds_simple', 'openid_provider_xrds_simple');
 add_action( 'wp_head', 'openid_provider_link_tags');
+/**
+ * Get the URL of the OpenID server endpoint.
+ *
+ * @see openid_service_url
+ */
+function openid_server_url() {
+    return openid_service_url('server', 'login_post');
+}
 …
             $services[] = array(
                             'Type' => $types,
                             'URI' => openid_service_url('openid', 'server', 'login_post'),
+                            'URI' => openid_server_url(),
                             'LocalID' => get_author_posts_url($user->ID),
                         );
 …
             $services[] = array(
                             'Type' => $types,
                             'URI' => openid_service_url('openid', 'server', 'login_post'),
+                            'URI' => openid_server_url(),
                             'openid:Delegate' => get_author_posts_url($user->ID),
                         );
 …
             array(
                 'Type' => array(array('content' => 'http://specs.openid.net/auth/2.0/server')),
                 'URI' => openid_service_url('openid', 'server', 'login_post'),
+                'URI' => openid_server_url(),
                 'LocalID' => 'http://specs.openid.net/auth/2.0/identifier_select',
+            )
 …
     if (!$server || !is_a($server, 'Auth_OpenID_Server')) {
         $server = new Auth_OpenID_Server(openid_getStore(), openid_service_url('openid', 'server', 'login_post'));
+        $server = new Auth_OpenID_Server(openid_getStore(), openid_server_url());
+    }
 …
+    }
     if ($user) {
+    if ( isset($user) && $user) {
         // if user doesn't have capability, bail
         $user_object = new WP_User($user->ID);
 …
+            }
         } else  {
             $server = openid_service_url('openid', 'server', 'login_post');
+            $server = openid_server_url();
             $identifier = get_author_posts_url($user->ID);
 …
         if (is_user_logged_in()) {
             $user = wp_get_current_user();
             $logout_url = site_url('wp-login.php?action=logout&redirect_to=' . urlencode(openid_service_url('openid', 'server', 'login_post')), 'login');
+            $logout_url = site_url('wp-login.php?action=logout&redirect_to=' . urlencode(openid_server_url()), 'login');
             echo '
                 <div id="loggedin">' . sprintf(__('Logged in as %1$s (%2$s). <a href="%3$s">Use a different account?</a>', 'openid'), $user->display_name, $user->user_login, $logout_url ) . '</div>';
 …
             </div>
             <form action="' . openid_service_url('openid', 'server', 'login_post') . '" method="post">
+            <form action="' . openid_server_url() . '" method="post">
             <h1>'.__('Verify Your Identity', 'openid').'</h1>
             <p style="margin: 1.5em 0 1em 0;">'
 …
         echo '
             <p class="submit" style="text-align: center; margin-top: 2.4em;">
                 <a href="' . add_query_arg('openid_trust', 'cancel', openid_service_url('openid', 'server', 'login_post')) . '">'.__('Cancel and go back', 'openid').'</a>
+                <a href="' . add_query_arg('openid_trust', 'cancel', openid_server_url()) . '">'.__('Cancel and go back', 'openid').'</a>
                 <input type="submit" id="submit" name="openid_trust" value="'.__('Continue', 'openid').'" />
             </p>
 …
  * @return bool true if successful
  */
 function openid_server_update_delegation_info($userid, $url = null) {
+function openid_server_get_delegation_info($userid, $url = null) {
     if (empty($url)) $url = get_usermeta($userid, 'openid_delegate');
     if (empty($url)) return false;
 …
     if (empty($services)) return false;
+    update_usermeta($userid, 'openid_delegate', $url);
+    update_usermeta($userid, 'openid_delegate_services', $services);
+    return true;
+    return array(
+        'url' => $url,
+        'services' => $services
+    );
+}

openid/trunk/server_ext.php

-                      r88142
+                      r158694
     return $types;
+}
 /**
  * See if the OpenID authentication request includes SReg and add additional hooks if so.
 …
     if ($sreg_request) {
         $GLOBALS['openid_server_sreg_request'] = $sreg_request;
+        add_action('openid_server_trust_form', 'openid_server_sreg_trust_form');
+        add_action('openid_server_trust_form', 'openid_server_attributes_trust_form');
+        add_filter('openid_server_trust_form_attributes', 'openid_server_sreg_trust_form');
         add_action('openid_server_trust_submit', 'openid_server_sreg_trust_submit', 10, 2);
         add_filter('openid_server_store_trusted_site', 'openid_server_sreg_store_trusted_site');
 …
  * Add SReg input fields to the OpenID Trust Form
  */
 function openid_server_sreg_trust_form() {
+function openid_server_sreg_trust_form( $attributes ) {
     $sreg_request = $GLOBALS['openid_server_sreg_request'];
     $sreg_fields = $sreg_request->allRequestedFields();
     if (!empty($sreg_fields)) {
-        $display_fields = array();
         foreach ($sreg_fields as $field) {
             $value = openid_server_sreg_from_profile($field);
             if (!empty($value)) {
                 $display_fields[] = strtolower($GLOBALS['Auth_OpenID_sreg_data_fields'][$field]);
+                $attributes[] = strtolower($GLOBALS['Auth_OpenID_sreg_data_fields'][$field]);
+            }
+        }
+    }
         if (!empty($display_fields)) {
+            $fields = openid_server_sreg_field_string($display_fields);
+    return $attributes;
+}
-            echo '
-            <p class="trust_form_add" style="padding: 0">
-                <input type="checkbox" id="include_sreg" name="include_sreg" checked="checked" style="display: block; float: left; margin: 0.8em;" />
-                <label for="include_sreg" style="display: block; padding: 0.5em 2em;">'.sprintf(__('Also grant access to see my %s.', 'openid'), $fields) . '</label>
-            </p>';
+        }
+/**
+ * Add attribute input fields to the OpenID Trust Form
+ */
+function openid_server_attributes_trust_form() {
+    $attributes = apply_filters('openid_server_trust_form_attributes', array());
+    if (!empty($attributes)) {
+        $attr_string = openid_server_attributes_string($attributes);
+        echo '
+        <p class="trust_form_add" style="padding: 0">
+            <input type="checkbox" id="include_sreg" name="include_sreg" checked="checked" style="display: block; float: left; margin: 0.8em;" />
+            <label for="include_sreg" style="display: block; padding: 0.5em 2em;">'.sprintf(__('Also grant access to see my %s.', 'openid'), $attr_string) . '</label>
+        </p>';
+    }
+}
+function openid_server_sreg_field_string($fields, $string = '') {
+/**
+ * Convert list of attribute names to human readable string.
+ */
+function openid_server_attributes_string($fields, $string = '') {
     if (empty($fields)) return $string;
 …
+    }
     return openid_server_sreg_field_string($fields, $string);
+    return openid_server_attributes_string($fields, $string);
+}

openid/trunk/store.php

-                      r88142
+                      r158694
 function openid_create_tables()
+{
     global $wp_version, $wpdb;
+    global $wpdb;
     $store = openid_getStore();
+    if ($wp_version >= '2.3') {
+        require_once(ABSPATH . 'wp-admin/includes/upgrade.php');
+    } else {
+        require_once(ABSPATH . 'wp-admin/admin-db.php');
+        require_once(ABSPATH . 'wp-admin/upgrade-functions.php');
+    }
+    require_once(ABSPATH . 'wp-admin/includes/upgrade.php');
     // Create the SQL and call the WP schema upgrade function
 …
     global $wpdb;
     $wpdb->query('DROP TABLE IF EXISTS ' . openid_identity_table());
     $wpdb->query(wpdb_prepare('DELETE FROM ' . $wpdb->postmeta . ' WHERE meta_key=%s', 'openid_comments'));
+    $wpdb->query( $wpdb->prepare('DELETE FROM ' . $wpdb->postmeta . ' WHERE meta_key=%s', 'openid_comments') );
     // old database changes... just to make sure
 …
     if ($openid_column) {
         $wpdb->query('ALTER table ' . $comments_table . ' DROP COLUMN openid');
         $wpdb->query(wpdb_prepare('UPDATE ' . $comments_table . ' SET comment_type=%s WHERE comment_type=%s', '', 'openid'));
+        $wpdb->query( $wpdb->prepare('UPDATE ' . $comments_table . ' SET comment_type=%s WHERE comment_type=%s', '', 'openid') );
+    }
+}
 …
         // migrate them en masse rather than using set_comment_openid()
         $comments_table = openid_table_prefix(true) . 'comments';
         $comment_data = $wpdb->get_results(wpdb_prepare('SELECT comment_ID, comment_post_ID from ' . $comments_table . ' WHERE openid=%s OR comment_type=%s', 1, 'openid'));
+        $comment_data = $wpdb->get_results( $wpdb->prepare('SELECT comment_ID, comment_post_ID from ' . $comments_table . ' WHERE openid=%s OR comment_type=%s', 1, 'openid') );
         if (!empty($comment_data)) {
             $openid_comments = array();
 …
         $wpdb->query('ALTER table ' . $comments_table . ' DROP COLUMN openid');
         $wpdb->query(wpdb_prepare('UPDATE ' . $comments_table . ' SET comment_type=%s WHERE comment_type=%s', '', 'openid'));
+        $wpdb->query( $wpdb->prepare('UPDATE ' . $comments_table . ' SET comment_type=%s WHERE comment_type=%s', '', 'openid') );
+    }
 …
     // remove old style of marking openid users
     $usermeta_table = defined('CUSTOM_USER_META_TABLE') ? CUSTOM_USER_META_TABLE : openid_table_prefix() . 'usermeta';
     $wpdb->query(wpdb_prepare('DELETE FROM ' . $usermeta_table . ' WHERE meta_key=%s OR meta_key=%s', 'has_openid', 'registered_with_openid'));
+    $wpdb->query( $wpdb->prepare('DELETE FROM ' . $usermeta_table . ' WHERE meta_key=%s OR meta_key=%s', 'has_openid', 'registered_with_openid') );
+}

Plugin Directory

Context Navigation

Legend:

openid/trunk/Auth/OpenID/BigMath.php

openid/trunk/Auth/OpenID/Consumer.php

openid/trunk/Auth/OpenID/Message.php

openid/trunk/Auth/OpenID/Server.php

openid/trunk/admin_panels.php

openid/trunk/comments.php

openid/trunk/common.php

openid/trunk/f/openid.css

openid/trunk/f/openid.js

openid/trunk/login.php

openid/trunk/openid.php

openid/trunk/server.php

openid/trunk/server_ext.php

openid/trunk/store.php

Download in other formats: