Hi Padraic,
I didn't realize you have been working on this (I must have missed the post).
We have already made very good progress in implementing both OpenId 2.0
compliant client and server. This includes patches to ext/openssl (for future
inclusion in PHP) and for those who don't get the updated version both GMP and
BCMath support (you are right the latter is awefully slow).
Dmitry (cc'ed) has been spearheading this and is just working on posting a
proposal on the Wiki. It'd be great if you can review both the proposal and
give us feedback and also look at the code and see if you think there's
anything we should improve.
I appreciate your efforts and am looking forward to having you in the feedback
loop!
Best,
Andi
________________________________
From: Pádraic Brady [mailto:[EMAIL PROTECTED]
Sent: Friday, June 15, 2007 3:45 PM
To: Zend Framework General
Subject: [fw-general] The road to Zend_Service/Auth_Openid
Hi all,
As posted a few months back, I had started working on a PHP5 OpenID
library that I wished to port to the framework since it seemed a reasonable
addition given our web app focus. Given the complexity of OpenID as a
distributed authentication service there are numerous components. Each by
itself is actually not that hard, most of the problem is putting them together
with a solid set of integration tests.
These include wrappers for large integer (> 32 bits) libraries since
bcmath alone is awfully slow for this compared to gmp, cryptographic
algorithms, and even a separate extensible web service (already proposed on the
wiki). The list of possible sub-components that could feasibly get started with
include:
Zend_Service_Yadis
Zend_Crypt_DiffieHellman
Zend_Crypt_Rsa
Zend_Crypt_Hmac
Zend_Crypt_Xtea
Zend_Math_BigInteger
An actual Zend_Service_Openid would need all of the above as well as
general file parsers. I was looking for an opinion as to whether these are
acceptable as individual proposals. It seems to make sense rendering OpenID
into it's reusable constituent parts rather lumping everything (and inevitably
burying/hiding it) into the Openid namespace. I don't want to go spamming the
wiki with 6+ proposals until I get a little feedback either :).
Any thoughts/comments on this, or OpenID in the ZF in general, are
appreciated. :) The primary goal is to implement OpenID 1.1 and 2.0 to the
extent necessary to authenticate. The basis of an OpenID server can be
considered after.
Paddy
Pádraic Brady
http://blog.astrumfutura.com
http://www.patternsforphp.com
________________________________
Food fight?
<http://answers.yahoo.com/dir/index;_ylc=X3oDMTFvbGNhMGE3BF9TAzM5NjU0NTEwOARfcwMzOTY1NDUxMDMEc2VjA21haWxfdGFnbGluZQRzbGsDbWFpbF90YWcx?link=ask&sid=396545367>
Enjoy some healthy debate
in the Yahoo! Answers Food & Drink Q&A.
<http://answers.yahoo.com/dir/index;_ylc=X3oDMTFvbGNhMGE3BF9TAzM5NjU0NTEwOARfcwMzOTY1NDUxMDMEc2VjA21haWxfdGFnbGluZQRzbGsDbWFpbF90YWcx?link=ask&sid=396545367>
