* move some more vars from the session context to strbuf (the use of StrBufAppendTemp...

[citadel.git] / webcit / openid.c

/*
 * $Id$
 */

#include "webcit.h"
#include "webserver.h"

/*
 * Display the OpenIDs associated with an account
 */
void display_openids(void)
{
        char buf[1024];
        int bg = 0;

        output_headers(1, 1, 1, 0, 0, 0);

        wprintf("<div class=\"fix_scrollbar_bug\">");

        svput("BOXTITLE", WCS_STRING, _("Manage Account/OpenID Associations"));
        do_template("beginboxx", NULL);

        if (serv_info.serv_supports_openid) {

                wprintf("<table class=\"altern\">");
        
                serv_puts("OIDL");
                serv_getln(buf, sizeof buf);
                if (buf[0] == '1') while (serv_getln(buf, sizeof buf), strcmp(buf, "000")) {
                        bg = 1 - bg;
                        wprintf("<tr class=\"%s\">", (bg ? "even" : "odd"));
                        wprintf("<td><img src=\"static/openid-small.gif\"></td><td>");
                        escputs(buf);
                        wprintf("</td><td>");
                        wprintf("<a href=\"openid_detach?id_to_detach=");
                        urlescputs(buf);
                        wprintf("\" onClick=\"return confirm('%s');\">",
                                _("Do you really want to delete this OpenID?"));
                        wprintf("%s</a>", _("(delete)"));
                        wprintf("</td></tr>\n");
                }
        
                wprintf("</table><br />\n");
        
                wprintf("<form method=\"POST\" action=\"openid_attach\">\n");
                wprintf("<input type=\"hidden\" name=\"nonce\" value=\"%d\">\n", WC->nonce);
                wprintf(_("Add an OpenID: "));
                wprintf("<input type=\"text\" name=\"openid_url\" class=\"openid_urlarea\" size=\"40\">\n");
                wprintf("<input type=\"submit\" name=\"attach_button\" value=\"%s\">"
                        "</form></center>\n", _("Attach"));
        }

        else {
                wprintf(_("%s does not permit authentication via OpenID."), ChrPtr(serv_info.serv_humannode));
        }

        do_template("endbox", NULL);
        wprintf("</div>");
        wDumpContent(2);
}


/*
 * Attempt to attach an OpenID to an existing, logged-in account
 */
void openid_attach(void) {
        char buf[4096];

        if (havebstr("attach_button")) {
                lprintf(CTDL_DEBUG, "Attempting to attach %s\n", bstr("openid_url"));

                snprintf(buf, sizeof buf,
                        "OIDS %s|%s://%s/finalize_openid_login|%s://%s",
                        bstr("openid_url"),
                        (is_https ? "https" : "http"), WC->http_host,
                        (is_https ? "https" : "http"), WC->http_host
                );

                serv_puts(buf);
                serv_getln(buf, sizeof buf);
                if (buf[0] == '2') {
                        lprintf(CTDL_DEBUG, "OpenID server contacted; redirecting to %s\n", &buf[4]);
                        http_redirect(&buf[4]);
                        return;
                }
        }

        /* If we get to this point then something failed. */
        display_openids();
}


/*
 * Detach an OpenID from the currently logged-in account
 */
void openid_detach(void) {
        char buf[1024];

        if (havebstr("id_to_detach")) {
                serv_printf("OIDD %s", bstr("id_to_detach"));
                serv_getln(buf, sizeof buf);
                if (buf[0] != '2') {
                        strcpy(WC->ImportantMessage, &buf[4]);
                }
        }

        display_openids();
}

void 
InitModule_OPENID
(void)
{
        WebcitAddUrlHandler(HKEY("display_openids"), display_openids, 0);
        WebcitAddUrlHandler(HKEY("openid_attach"), openid_attach, 0);
        WebcitAddUrlHandler(HKEY("openid_detach"), openid_detach, 0);
}