Class Auth_OpenID_TrustRoot
A wrapper for trust-root related functions
Methods summary
public static
|
|
public static
mixed
|
#
_parse( string $trust_root )
Parse a URL into its trust_root parts.
Parse a URL into its trust_root parts.
Parameters
- $trust_root
- The url to parse
Returns
mixed $parsed Either an associative array of trust root
parts or false if parsing failed.
|
public static
boolean
|
#
isSane( string $trust_root )
Is this trust root sane?
A trust root is sane if it is syntactically valid and it has a
reasonable domain name. Specifically, the domain name must be
more than one level below a standard TLD or more than two
levels below a two-letter tld.
For example, '.com' is not a sane trust root, but '.foo.com'
is. '.co.uk' is not sane, but '.bbc.co.uk' is.
This check is not always correct, but it attempts to err on the
side of marking sane trust roots insane instead of marking
insane trust roots sane. For example, 'kink.fm' is marked as
insane even though it "should" (for some meaning of should) be
marked sane.
This function should be used when creating OpenID servers to
alert the users of the server when a consumer attempts to get
the user to accept a suspicious trust root.
Parameters
- $trust_root
- The trust root to check
Returns
boolean
$sanity Whether the trust root looks OK
|
public static
boolean
|
#
match( string $trust_root, string $url )
Does this URL match the given trust root?
Does this URL match the given trust root?
Return whether the URL falls under the given trust root. This
does not check whether the trust root is sane. If the URL or
trust root do not parse, this function will return false.
Parameters
- $trust_root
- The trust root to match against
- $url
- The URL to check
Returns
boolean $matches Whether the URL matches against the
trust root
|