[Code] Understanding php-openid server example

Sun Jun 23 15:17:26 UTC 2013

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi!

I'm working on an OpenID identity provider in PHP, and want to use the
php-openid library for that.  This library includes an example server,
and if I put that code on my web server, it indeed works as advertised
and I can log into OpenID enabled websites.

However, I would like to understand how that code works and what cases
/ requests exactly the server needs to handle, because I don't want to
just copy and adapt that code until it works, but instead know what
I'm doing and write my own code based on the example.  Unfortunately,
the example is not really documented, and I also can't find anywhere a
good description of how OpenID works except maybe the specification
itself, or too high-level descriptions like on Wikipedia that give the
basic idea (I understand it so far) but not how it works technically.
 I only need the most basic setup (authenticate users and potentially
provide some details about them like real name or email address) and
nothing more.

Is there a good, to-the-point documentation of what requests exactly
an OpenID server needs to handle?  (The example code deals with lots
of different "actions", like login/logout, asking the user about trust
for the particular service, identity pages, two XRDS pages and
possibly others I forgot about now.  I want to know which of those an
identity server needs to implement and which are only due to the
particular example -- for instance, I obviously also have a mechanism
to login / authenticate users on my server already, which however is
not specific to OpenID at all.)  How are those requests made (GET/POST
with what parameters to which URLs)?

Thank you very much for any hints!  Yours,
Daniel

- -- 
http://www.domob.eu/
OpenPGP: 901C 5216 0537 1D2A F071  5A0E 4D94 6EED 04F7 CF52
- --
Done:  Arc-Bar-Cav-Hea-Kni-Ran-Rog-Sam-Tou-Val-Wiz
To go: Mon-Pri
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=wEHI
-----END PGP SIGNATURE-----

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4548 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.openid.net/pipermail/openid-code/attachments/20130623/f38a99e3/attachment.p7s>