function foaf_password($config, $realm, $authreqissuer) { /* print "<pre>"; print_r($_SERVER); print "</pre>"; */ if (empty($_SERVER['HTTP_AUTHORIZATION'])) { header('HTTP/1.1 401 Unauthorized'); header('WWW-Authenticate: Digest realm="' . $realm . '",qop="auth,auth-int",nonce="' . uniqid() . '",opaque="' . md5($realm) . '"'); // failed_password_check('Authentication was cancelled', $authreqissuer); die; } // analyze the PHP_AUTH_DIGEST variable if (!($data = http_digest_parse($_SERVER['HTTP_AUTHORIZATION']))) { failed_password_check('HTTP Digest was incomplete', $authreqissuer); } //$uri = 'http://'. $data['username']; $uri = $data['username']; $uri = urldecode($uri); if (!is_valid_url($uri)) { // $errmsg = "Authentication Failed - $uri is not a valid username for this service"; // failed_password_check($errmsg, $authreqissuer); $agent = NULL; } else { $agent = get_agent($uri); } // set up db $db = new db_class(); $db->connect('localhost', $config['db_user'], $config['db_pwd'], $config['db_name']); $webid = isset($agent) ? $agent['agent']['webid'] : ''; // $sql ='select password from passwords where webid="'. $webid . '" or mbox = "' . $data['username'] . '" and active = 1 and verified_mbox = 1 '; $sql = 'select password from passwords where webid="' . $webid . '" and active = 1 and verified_mbox = 1 '; // print $sql . "<br/>"; $results = $db->select($sql); if ($row = mysql_fetch_assoc($results)) { $pin = $row['password']; // generate the valid response $A1 = md5($data['username'] . ':' . $realm . ':' . $pin); $A2 = md5($_SERVER['REQUEST_METHOD'] . ':' . $data['uri']); $valid_response = md5($A1 . ':' . $data['nonce'] . ':' . $data['nc'] . ':' . $data['cnonce'] . ':' . $data['qop'] . ':' . $A2); /* print "<br/>A1 = md5 ( username= "******" :realm= " . $realm . " :password/pin= ". $pin . ")<br/>"; print "A2 = md5 ( request_method = " . $_SERVER['REQUEST_METHOD']. " uri = " . $data['uri'] . ")<br/>"; print "valid = md5 ( A1 : nonce= " . $data['nonce'] . " :nc= " . $data['nc'] . " :cnonce= " . $data['cnonce'] . " :qop= " . $data['qop'] . ")<br/>"; print "valid response = " . $valid_response . "<br/><br/>"; print "http digest response = " . $data['response'] . "<br/><br/>"; */ if ($valid_response == $data['response']) { // print "auth " . $authreqissuer . "<br/><br/>"; // print "webid " . $agent['agent']['webid'] . "<br/><br/>"; if (isset($authreqissuer)) { webid_redirect($authreqissuer, $agent['agent']['webid']); } else { login_screen($agent['agent']['webid']); } } else { failed_password_check('FOAF Password doesnot match', $authreqissuer); } } else { failed_password_check('FOAF Password doesnot match', $authreqissuer); } }
$timespace = get_timespace(); $in = $timespace[0]; $out = $timespace[1]; // set smarty config require_once WEBROOT . 'libraries/smarty/Smarty.class.php'; $tpl = new Smarty(); $tpl->template_dir = 'templates/'; $tpl->compile_dir = 'compile/'; // read kga --------------------------------------- $output = $kga; // clean out sone data that is way too private to be shown in the frontend ... if (!$kga['show_sensible_data']) { $output['server_hostname'] = "xxx"; $output['server_database'] = "xxx"; $output['server_username'] = "******"; $output['server_password'] = "******"; $output['usr']['secure'] = "xxx"; $output['usr']['usr_ID'] = "xxx"; $output['usr']['pw'] = "xxx"; } $kga_display = print_r($output, true); $tpl->assign('kga', $kga); $tpl->assign('kga_display', $kga_display); $tpl->assign('browser', get_agent()); // /read kga -------------------------------------- if ($kga['logfile_lines'] == "@") { $tpl->assign('limitText', "(unlimited lines)"); } else { $tpl->assign('limitText', "(limited to " . $kga['logfile_lines'] . " lines)"); } $tpl->display('index.tpl');
function getAuth($foafuri = NULL) { if (!$_SERVER['HTTPS']) { return array('isAuthenticated' => 0, 'authDiagnostic' => 'No client certificate supplied on an unsecure connection'); } if (!$_SERVER['SSL_CLIENT_CERT']) { return array('isAuthenticated' => 0, 'authDiagnostic' => 'No client certificate supplied'); } $certrsakey = openssl_pkey_get_public_hex(); if (!$certrsakey) { return array('isAuthenticated' => 0, 'authDiagnostic' => 'No RSA Key in the supplied client certificate'); } $result = array('certRSAKey' => $certrsakey); $san = openssl_get_subjectAltName(); $foafuri = $san['URI']; // $foafuri = 'http://www.w3.org/People/Berners-Lee/card#i'; // $foafuri = 'http://bblfish.net/people/henry/card#me'; // $foafuri = 'http://danbri.org/foaf.rdf#danbri'; // $foafuri = 'http://foafbuilder.qdos.com/people/melvster.com/foaf.rdf'; // $foafuri = 'http://test.foaf-ssl.org/certs/1235593768725.rdf#accnt'; // $foafuri = 'http://myopenlink.net/dataspace/person/kidehen#this'; $result = safe_array_merge($result, array('subjectAltName' => $foafuri)); // $foafrsakey = get_foaf_rsakey($foafuri); // $result = array_merge($result, array('subjectAltNameRSAKey'=>$foafrsakey)); if ($agent = get_agent($foafuri)) { $result = safe_array_merge($result, $agent); if ($agent['agent']['RSAKey']) { if (equal_rsa_keys($certrsakey, $agent['agent']['RSAKey'])) { $result = safe_array_merge($result, array('isAuthenticated' => 1, 'authDiagnostic' => 'Client Certificate RSAkey matches SAN RSAkey')); } else { $result = safe_array_merge($result, array('isAuthenticated' => 0, 'authDiagnostic' => 'Client Certificate RSAkey does not match SAN RSAkey')); } } else { $result = safe_array_merge($result, array('isAuthenticated' => 0, 'authDiagnostic' => 'No RSAKey found at supplied agent')); } } else { $result = safe_array_merge($result, array('isAuthenticated' => 0, 'authDiagnostic' => 'No agent found at supplied SAN')); } return $result; }
$building = !empty($_POST["building"]) ? $_POST["building"] : ''; $agentid = modify_agent($agentid, $name, $iata, $contact, $phone, $fax, $email, $billing, $town, $postcode, $street, $building, $country, $ebridgeID, $IM); } break; case $_L['BTN_list']: //link ("self","agents_list.php"); break; case $_L['BTN_search']: //check if user is searching using name, payrollno, national id number or other fields // find($_POST["search"]); break; } } $agent = array(); if ($agentid) { get_agent($agentid, $agent); } ?> <table height="500" class="listing-table"> <tbody> <tr> <?php print_rightMenu_admin(); ?> <td valign="top"> <form action="<?php echo $_SERVER['REQUEST_URI']; ?> " method="post" enctype="multipart/form-data">
} if (get_user_class() >= $userprofile_class || $user["id"] == $CURUSER["id"]) { if ($enablelocation_tweak == 'yes') { list($loc_pub, $loc_mod) = get_ip_location($user[ip]); $locationinfo = "<span title=\"" . $loc_mod . "\">[" . $loc_pub . "]</span>"; } else { $locationinfo = ""; } tr_small($lang_userdetails['row_ip_address'], $user[ip] . $locationinfo, 1); } $res = sql_query("SELECT agent, peer_id, ip, port FROM peers WHERE userid = {$user['id']} GROUP BY agent") or sqlerr(); if (mysql_num_rows($res) > 0) { $first = true; $clientselect = ""; while ($arr = mysql_fetch_assoc($res)) { $clientselect .= ($first == true ? "" : " ; ") . get_agent($arr["peer_id"], $arr["agent"]); $first = false; if (get_user_class() >= $userprofile_class || $user["id"] == $CURUSER["id"]) { $clientselect .= " (" . $arr["ip"] . ":" . $arr["port"] . ")"; } } } if ($clientselect) { tr_small($lang_userdetails['row_bt_client'], $clientselect, 1); } if ($user["downloaded"] > 0) { $sr = floor($user["uploaded"] / $user["downloaded"] * 1000) / 1000; $sr = "<tr><td class=\"embedded\"><strong>" . $lang_userdetails['row_share_ratio'] . "</strong>: <font color=\"" . get_ratio_color($sr) . "\">" . number_format($sr, 3) . "</font></td><td class=\"embedded\"> " . get_ratio_img($sr) . "</td></tr>"; } $xfer = "<tr><td class=\"embedded\"><strong>" . $lang_userdetails['row_uploaded'] . "</strong>: " . mksize($user["uploaded"]) . "</td><td class=\"embedded\"> <strong>" . $lang_userdetails['row_downloaded'] . "</strong>: " . mksize($user["downloaded"]) . "</td></tr>"; tr_small($lang_userdetails['row_transfer'], "<table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">" . $sr . $xfer . "</table>", 1);
function doAuth($info, $trusted = null, $fail_cancels = false, $idpSelect = null) { if (!$info) { // There is no authentication information, so bail return authCancel(null); } $auth = getAuth(); $cert_webid_23 = str_replace('#', '%23', $auth['agent']['webid']); $cert_webid = str_replace('http://', '', $cert_webid_23); // $cert_webid = urlencode($auth['agent']['webid']); if ($_SERVER['HTTPS']) { $host = "https://openid4.me/"; } else { $host = "http://openid4.me/"; } $normalized_webid = $host . $cert_webid; if ($info->idSelect()) { // if ($idpSelect) { // $req_url = idURL($idpSelect); if ($auth[isAuthenticated]) { $req_url = $normalized_webid; } else { $trusted = false; } // } else { // $trusted = false; // } } else { $req_url = $info->identity; if ($req_url != $normalized_webid) { //Get link header $link_webid = fetch_foaf_profile($req_url); if ($cert_webid == $link_webid) { $trusted = true; } else { $agent = get_agent(urldecode($link_webid)); /* print "<pre>"; print_r($agent); print "</pre>"; */ $link_webid = isset($agent['agent']['webid']) ? str_replace('#', '%23', $agent['agent']['webid']) : ''; if ($cert_webid_23 == $link_webid) { $trusted = true; } else { $trusted = false; } } } else { $trusted = true; } } $user = getLoggedInUser(); setRequestInfo($info); /* if ((!$info->idSelect()) && ($req_url != idURL($user))) { return login_render(array(), $req_url, $req_url); } */ $trust_root = $info->trust_root; if ($trusted) { setRequestInfo(); $server =& getServer(); $response =& $info->answer(true, null, $req_url); // Answer with some sample Simple Registration data. $agent = get_agent($auth['agent']['webid']); $sreg_data = array(); if ($fullname = $agent['agent']['name']) { $sreg_data = array_merge($sreg_data, array('fullname' => $fullname)); } if ($nickname = $agent['agent']['nick'][0]) { $sreg_data = array_merge($sreg_data, array('nickname' => $nickname)); } if ($mbox = $agent['agent']['mbox'][0]) { $mbox = str_replace('mailto:', '', $mbox); $sreg_data = array_merge($sreg_data, array('email' => $mbox)); } // Add the simple registration response values to the OpenID // response message. $sreg_request = Auth_OpenID_SRegRequest::fromOpenIDRequest($info); $sreg_response = Auth_OpenID_SRegResponse::extractResponse($sreg_request, $sreg_data); $sreg_response->toMessage($response->fields); // Generate a response to send to the user agent. $webresponse =& $server->encodeResponse($response); $new_headers = array(); foreach ($webresponse->headers as $k => $v) { $new_headers[] = $k . ": " . $v; } return array($new_headers, $webresponse->body); } elseif ($fail_cancels) { return authCancel($info); } else { return trust_render($info); } }
} if ($_SERVER['HTTPS']) { $host = "https://openid4.me/"; } else { $host = "http://openid4.me/"; } $foaf = urldecode(substr($_SERVER['REQUEST_URI'], strlen('/'))); if (strncmp('http://', $foaf, strlen('http://')) != 0) { $foaf = str_replace('https://', '', $foaf); $foaf = 'http://' . $foaf; } $valid = is_valid_url($foaf); if ($valid) { $store = create_store($foaf); $keys = get_foaf_rsakey($store, $foaf); $agent = get_agent($foaf); $len = strlen(strstr($foaf, '#')); $foaf_file = $rest = substr($foaf, 0, -$len); ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML+RDFa 1.0//EN" "http://www.w3.org/MarkUp/DTD/xhtml-rdfa-1.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr" xmlns:cert="http://www.w3.org/ns/auth/cert#" xmlns:foaf="http://xmlns.com/foaf/0.1/" xmlns:rsa="http://www.w3.org/ns/auth/rsa#" xmlns:rdfs="http://www.w3.org/2000/01/rdf-schema#" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <link rel="openid.server" href="<?php print $host;
function dltable($name, $arr, $torrent) { global $lang_viewpeerlist, $viewanonymous_class, $userprofile_class, $enablelocation_tweak; global $CURUSER; $s = "<b>" . count($arr) . " {$name}</b>\n"; if (!count($arr)) { return $s; } $s .= "\n"; $s .= "<table width=825 class=main border=1 cellspacing=0 cellpadding=3>\n"; $s .= "<tr><td class=colhead align=center width=1%>" . $lang_viewpeerlist['col_user_ip'] . "</td>" . ($enablelocation_tweak == 'yes' || get_user_class() >= $userprofile_class ? "<td class=colhead align=center width=1%>" . $lang_viewpeerlist['col_location'] . "</td>" : "") . "<td class=colhead align=center width=1%>" . $lang_viewpeerlist['col_connectable'] . "</td>" . "<td class=colhead align=center width=1%>" . $lang_viewpeerlist['col_uploaded'] . "</td>" . "<td class=colhead align=center width=1%>" . $lang_viewpeerlist['col_rate'] . "</td>" . "<td class=colhead align=center width=1%>" . $lang_viewpeerlist['col_downloaded'] . "</td>" . "<td class=colhead align=center width=1%>" . $lang_viewpeerlist['col_rate'] . "</td>" . "<td class=colhead align=center width=1%>" . $lang_viewpeerlist['col_ratio'] . "</td>" . "<td class=colhead align=center width=1%>" . $lang_viewpeerlist['col_complete'] . "</td>" . "<td class=colhead align=center width=1%>" . $lang_viewpeerlist['col_connected'] . "</td>" . "<td class=colhead align=center width=1%>" . $lang_viewpeerlist['col_idle'] . "</td>" . "<td class=colhead align=center width=1%>" . $lang_viewpeerlist['col_client'] . "</td></tr>\n"; $now = time(); foreach ($arr as $e) { $privacy = get_single_value("users", "privacy", "WHERE id=" . sqlesc($e['userid'])); ++$num; $highlight = $CURUSER["id"] == $e['userid'] ? " bgcolor=#BBAF9B" : ""; $s .= "<tr{$highlight}>\n"; if ($privacy == "strong" || $torrent['anonymous'] == 'yes' && $e['userid'] == $torrent['owner']) { if (get_user_class() >= $viewanonymous_class || $e['userid'] == $CURUSER['id']) { $s .= "<td class=rowfollow align=left width=1%><i>" . $lang_viewpeerlist['text_anonymous'] . "</i><br />(" . get_username($e['userid']) . ")"; } else { $s .= "<td class=rowfollow align=left width=1%><i>" . $lang_viewpeerlist['text_anonymous'] . "</i></a></td>\n"; } } else { $s .= "<td class=rowfollow align=left width=1%>" . get_username($e['userid']); } $secs = max(1, $e["la"] - $e["st"]); if ($enablelocation_tweak == 'yes') { list($loc_pub, $loc_mod) = get_ip_location($e["ip"]); $location = get_user_class() >= $userprofile_class ? "<div title='" . $loc_mod . "'>" . $loc_pub . "</div>" : $loc_pub; $s .= "<td class=rowfollow align=center width=1%><nobr>" . $location . "</nobr></td>\n"; } elseif (get_user_class() >= $userprofile_class) { $location = $e["ip"]; $s .= "<td class=rowfollow align=center width=1%><nobr>" . $location . "</nobr></td>\n"; } else { $location = ""; } $s .= "<td class=rowfollow align=center width=1%><nobr>" . ($e[connectable] == "yes" ? $lang_viewpeerlist['text_yes'] : "<font color=red>" . $lang_viewpeerlist['text_no'] . "</font>") . "</nobr></td>\n"; $s .= "<td class=rowfollow align=center width=1%><nobr>" . mksize($e["uploaded"]) . "</nobr></td>\n"; $s .= "<td class=rowfollow align=center width=1%><nobr>" . mksize(($e["uploaded"] - $e["uploadoffset"]) / $secs) . "/s</nobr></td>\n"; $s .= "<td class=rowfollow align=center width=1%><nobr>" . mksize($e["downloaded"]) . "</nobr></td>\n"; if ($e["seeder"] == "no") { $s .= "<td class=rowfollow align=center width=1%><nobr>" . mksize(($e["downloaded"] - $e["downloadoffset"]) / $secs) . "/s</nobr></td>\n"; } else { $s .= "<td class=rowfollow align=center width=1%><nobr>" . mksize(($e["downloaded"] - $e["downloadoffset"]) / max(1, $e["finishedat"] - $e[st])) . "/s</nobr></td>\n"; } if ($e["downloaded"]) { $ratio = floor($e["uploaded"] / $e["downloaded"] * 1000) / 1000; $s .= "<td class=rowfollow align=\"center\" width=1%><font color=" . get_ratio_color($ratio) . "><nobr>" . number_format($ratio, 3) . "</nobr></font></td>\n"; } elseif ($e["uploaded"]) { $s .= "<td class=rowfollow align=center width=1%>" . $lang_viewpeerlist['text_inf'] . "</td>\n"; } else { $s .= "<td class=rowfollow align=center width=1%>---</td>\n"; } $s .= "<td class=rowfollow align=center width=1%><nobr>" . sprintf("%.2f%%", 100 * (1 - $e["to_go"] / $torrent["size"])) . "</nobr></td>\n"; $s .= "<td class=rowfollow align=center width=1%><nobr>" . mkprettytime($now - $e["st"]) . "</nobr></td>\n"; $s .= "<td class=rowfollow align=center width=1%><nobr>" . mkprettytime($now - $e["la"]) . "</nobr></td>\n"; $s .= "<td class=rowfollow align=center width=1%><nobr>" . htmlspecialchars(get_agent($e["peer_id"], $e["agent"])) . "</nobr></td>\n"; $s .= "</tr>\n"; } $s .= "</table>\n"; return $s; }
exit; } $k = 1; foreach ($xml->taxon as $rec) { print "\n" . " {$k} of " . count($xml->taxon) . " " . $rec["name"]; $dwc_ScientificName = ""; $dwc_Genus = ""; $dwc_Family = ""; if (@$rec["rank"] == "Species") { $dwc_ScientificName = trim($rec["name"]); $dwc_Genus = substr($rec["name"], 0, stripos($rec["name"], " ")); } else { $dwc_ScientificName = trim($rec["name"]); } $taxon_identifier = "AI_" . $rec["ID"]; $agent = get_agent($rec->original_description); /* obsolete $source_url = "http://antiz.redmon.com/taxon_view.cfm?mode=advancedSearch&name=" . urlencode($dwc_ScientificName) . "&rank=&phylum=&match=substring&Submit=Search"; */ $source_url = "http://invertebrates.si.edu/antiz/taxon_view.cfm?mode=advancedSearch&name=" . urlencode($dwc_ScientificName) . "&rank=&phylum=&match=substring&Submit=Search"; print "\n"; if (@$used_taxa[$taxon_identifier]) { $taxon_parameters = $used_taxa[$taxon_identifier]; } else { $taxon_parameters = array(); $taxon_parameters["identifier"] = $taxon_identifier; $taxon_parameters["family"] = $dwc_Family; $taxon_parameters["genus"] = $dwc_Genus; $taxon_parameters["scientificName"] = $dwc_ScientificName; $taxon_parameters["source"] = $source_url; $taxon_parameters["dataObjects"] = array();
function is_bot_agent($agent = NULL) { return is_user_agent(array($robot = "/(ICC-Crawler|Teoma|Y!J-BSC|Pluggd\\/Nutch|psbot|CazoodleBot|Googlebot|Antenna|BlogPeople|AppleWebKitOpenbot|NaverBot|PlantyNet|livedoor|msnbot|FlashGet|WebBooster|MIDown|moget|InternetLinkAgent|Wget|InterGet|WebFetch|WebCrawler|ArchitextSpider|Scooter|WebAuto|InfoNaviRobot|httpdown|Inetdown|Slurp|Spider|^Iron33|^fetch|^PageDown|^BMChecker|^Jerky|^Nutscrape|Baiduspider|TMCrawler)/m"), get_agent($agent)); }
<?php // Include the SimplePie library, and the one that handles internationalized domain names. require_once 'simplepie/1.1.3/simplepie.inc'; require_once 'simplepie/1.1.3/idn/idna_convert.class.php'; require_once 'lib/libAuthentication.php'; $auth = $_SESSION['auth']; if (isset($_REQUEST['webid'])) { $auth = get_agent($_REQUEST['webid']); } // Initialize some feeds for use. $feed = new SimplePie(); $a1 = replace_with_rss($auth['agent']['holdsAccount']); $a2 = replace_with_rss($auth['agent']['accountProfilePage']); if ($a1 || $a2) { $feed->set_feed_url(array_merge($a1 ? $a1 : array(), $a2 ? $a2 : array())); } else { $feed->set_feed_url("http://example.com"); } // When we set these, we need to make sure that the handler_image.php file is also trying to read from the same cache directory that we are. $feed->set_favicon_handler('./handler_image.php'); $feed->set_image_handler('./handler_image.php'); // Initialize the feed. $feed->init(); // Make sure the page is being served with the UTF-8 headers. $feed->handle_content_type(); // Begin the (X)HTML page. ?>