December 21, 2007
21
Dec
Posted by marcel, December 21, 2007
Version: 0.1 (tested with phpMyID Version 0.8 Revision 143)
License: GNU General Public License
Instructions
- Install the phpMyID extension framework
- Download the Quickstart Package for PHP Programmers for Yahoo! Browser-Based Authentication and place the following PHP files in the same directory as phpMyID:
- ybrowserauth.class.php4
- ybrowserauth.class.php5
- Download the Yahoo! Browser-Based authentication extension and place the PHP file in the same directory as phpMyID
- Register as Yahoo! developer The Web Application URL should be
http://<your domain>/<your folder>/MyID.config.php?openid.mode=authorize
- Copy your Yahoo! application id and shared secret into MyID.config.php:
'auth_realm' => 'phpMyID',
'yappid' => '<your application id>',
'ysecret' => '<your shared secret>',
- Try to login using Yahoo! Browser-Based Authentication and discover your hash value from the error message
- Copy your hash value and insert it into MyID.config.php and define the desired authentication methods:
'yhash' => '<your hash value>',
'methods' => array('digest', 'yahoo'),
- Test the extension
Note that if you have selected an authentication method and you want to revert to another authentication method you have to restart your browser.
See also Introduction, CardSpace extension
Tags:
December 21, 2007
21
Dec
Posted by marcel, December 21, 2007
Version: 0.2 (tested with phpMyID Version 0.8 Revision 143)
License: GNU General Public License
Instructions
- Install the phpMyID extension framework
- Download PHP sample code for Information Cards and place the PHP files in the same directory as phpMyID
- Download the CardSpace extension and place the PHP file in the same directory as phpMyID
- Make sure that Microsoft .NET Framework 3.0 or higher is installed
- Try to login using an InfoCard and discover your privatepersonalidentifier (PPID) from the error message
- Copy your PPID and insert it into MyID.config.php and define desired the authentication methods:
'auth_realm' => 'phpMyID',
'infocard' => '<your PPID>',
'methods' => array('digest', 'cardspace'),
- Test the extension
Note that Windows CardSpace with self issued InfoCards is sensitive to eavesdropping and less secure than Digest authentication.
Note that if you have selected an authentication method and you want to revert to another authentication method you have to restart your browser
See also Introduction, Yahoo! Browser-Based Authentication
Tags:
December 21, 2007
21
Dec
Posted by marcel, December 21, 2007
Version: 0.1 (tested with phpMyID Version 0.8 Revision 143)
License: GNU General Public License
Instructions
- Download, install and test phpMyID
- Download the code for the extension framework and place the files in the same folder as phpMyID
- Modify the end of MyID.config.php to look like:
require('phpMyID_framework.php');
require('MyID.php');
?>
- Modify the function authorize_mode to look like:
function authorize_mode () {
global $profile;
// this is a user session
user_session();
extension_framework();
- Install one or more of the following extensions:
See also Introduction
Tags:
December 21, 2007
21
Dec
Posted by marcel, December 21, 2007
phpMyID is a standalone, single user, OpenID Identity Provider. It uses HTTP Digest authentication.
Here you can find instructions about how to modify phpMyID to use Windows CardSpace (WCS) and Yahoo! Browser-Based Authentication for authentication too (you can choose the authentication method per browser session).
The extension framework can be incorporate by adding one include and one function call.
The CardSpace and Yahoo extensions can be installed be adding a few lines to the configuration file.
Having some understanding of PHP helps, but is not really required.
The extensions are free when you respect the GNU General Public License
Index
If you write a new extension, let me know, so it can be listed here.
Please note that OpenID is sensitive to phishing; I suggest you read the Beginner’s guide to OpenID phishing
Tags:
