Comments on: Adventures in OpenID and Zend Framework http://e-mats.org/2008/11/adventures-in-openid-and-zend-framework/ Where desperate is just another word for a regular day. Sat, 31 Jul 2010 05:07:32 +0000 hourly 1 http://wordpress.org/?v=3.0.1 By: Mats http://e-mats.org/2008/11/adventures-in-openid-and-zend-framework/comment-page-1/#comment-432 Mats Wed, 26 Nov 2008 11:28:45 +0000 http://e-mats.org/?p=353#comment-432 Thanks for the reply Wil, and thanks to Dmitry for the quick update on the issue. I have no problem with the dependency on ext/openssl for https URLs, the issue is mainly that the OpenId library simply catches the exception and returns false -- without giving a proper reason if you check out the error message (which will simply say that discovery failed, which can be a number of different issues). I'll see if I can create a patch to provide fallback to cURL if available and setting a better error message if we're unable to handle the issue properly. Thanks for the reply Wil, and thanks to Dmitry for the quick update on the issue. I have no problem with the dependency on ext/openssl for https URLs, the issue is mainly that the OpenId library simply catches the exception and returns false — without giving a proper reason if you check out the error message (which will simply say that discovery failed, which can be a number of different issues).

I’ll see if I can create a patch to provide fallback to cURL if available and setting a better error message if we’re unable to handle the issue properly.

]]> By: Wil Sinclair http://e-mats.org/2008/11/adventures-in-openid-and-zend-framework/comment-page-1/#comment-431 Wil Sinclair Tue, 25 Nov 2008 12:03:44 +0000 http://e-mats.org/?p=353#comment-431 I wrote Dmitry Stogov, the original author of Zend_OpenId, with a link to this blog. Here's his reply: Hi Wil, Wil Sinclair wrote: > Hey Dmitry, some blog feedback I found for Z_O: > http://e-mats.org/2008/11/adventures-in-openid-and-zend-framework/ Thank you for forwarding this link. > First, is Z_O really dependent on Zend_Session? Yes. Both Consumer and Provider uses Zend_Session to save some data between requests. I think it's possible to make Consumer detect regular sessions an use them. I'll try to do it at the end of this week. > Second, if mod_openssl > is required, it seems that we should add it to the requirements > section > here: http://framework.zend.com/manual/en/requirements.extensions.html. OpenId can work without ext/openssl, but with ext/hash or ext/mhash and ext/bcmath or ext/gmp. However to access https:// URLs we definitely need ext/openssl. Thanks. Dmitry. I wrote Dmitry Stogov, the original author of Zend_OpenId, with a link to this blog. Here’s his reply:

Hi Wil,

Wil Sinclair wrote:
> Hey Dmitry, some blog feedback I found for Z_O:
> http://e-mats.org/2008/11/adventures-in-openid-and-zend-framework/

Thank you for forwarding this link.

> First, is Z_O really dependent on Zend_Session?

Yes. Both Consumer and Provider uses Zend_Session to save some data between requests. I think it’s possible to make Consumer detect regular sessions an use them. I’ll try to do it at the end of this week.

> Second, if mod_openssl
> is required, it seems that we should add it to the requirements
> section
> here: http://framework.zend.com/manual/en/requirements.extensions.html.

OpenId can work without ext/openssl, but with ext/hash or ext/mhash and ext/bcmath or ext/gmp. However to access https:// URLs we definitely need ext/openssl.

Thanks. Dmitry.

]]>