preferred_auth_policies: The authentication policies that
the relying party prefers
max_auth_age: The maximum time, in seconds, that the relying party
wants to allow to have elapsed before the user must re-authenticate
/**
* Instantiate a Request object from the arguments in a checkid_*
* OpenID message
*/
static function fromOpenIDRequest($request)
{
$obj = new Auth_OpenID_PAPE_Request();
$args = $request->message->getArgs(Auth_OpenID_PAPE_NS_URI);
if ($args === null || $args === array()) {
return null;
}
$obj->parseExtensionArgs($args);
return $obj;
}
function test_fromOpenIDRequest_no_pape()
{
$message = new Auth_OpenID_Message();
$openid_req = new Auth_OpenID_Request();
$openid_req->message = $message;
$pape_req = Auth_OpenID_PAPE_Request::fromOpenIDRequest($openid_req);
$this->assertTrue($pape_req === null);
}
private function _processPape(Auth_OpenID_PAPE_Request $papeRequest, $response)
{
if (($image = $this->user->getImage()) && @$_COOKIE['image']) {
$cidSupportedPolicies = array(PAPE_AUTH_PHISHING_RESISTANT);
if ($RPPreferredTypes = $papeRequest->preferredTypes($cidSupportedPolicies)) {
$this->user->getLastLoginUtc();
$papeResponse = new Auth_OpenID_PAPE_Response($cidSupportedPolicies, $this->user->getLastLoginUtc());
$papeResponse->toMessage($response->fields);
}
}
}
