[OpenID] OpenID Implementation
Pádraic Brady
padraic.brady at yahoo.com
Mon Oct 15 15:58:03 UTC 2007
Hi Jason,
Just to address some of the PHP concerns! :)
There are a few implemented PHP libraries. JanRain have a PHP4 compatible PHP OpenID library. I personally am working on a PHP5-only "OpenID For PHP" library (will be reaching PEAR), and the Zend Framework (me and Dmitry Stogov) have a smaller implementation for PHP5 also. This all ignores the custom implementations for the likes of Drupal. So PHP is spoiled for choice.
It's true that OpenID 2.0 runs a PHP implementation ragged - it's a difficult and complex specification to implement so finding an OpenID 2.0 (not just 1.1) library in PHP is limited. JanRain has at least an RC, and I'm hoping to hit Alpha before month end. I don't have a release date for ZF 1.1 yet - so that's likely a bit further down the road.
For PHP5 specifically, there are good things on the horizon. I've spent a chunk of time releasing HMAC, Diffie-Hellman and Yadis implementations for PHP5 (see PEAR and Zend Framework Incubator). So these standard components can be used for a custom implementation if you wish - all are under the New BSD License. The other side of support will arrive in PHP 5.3 when the openssl extension will support high speed Diffie-Hellman support.
This is a huge improvement - using BCMath for Diffie-Hellman is incredibly slow, and few servers come with GMP installed.
Paddy
Pádraic Brady
http://blog.astrumfutura.com
http://www.patternsforphp.com
OpenID Europe Foundation
----- Original Message ----
From: Jason Hopkins <katsushirohirata at gmail.com>
To: general at openid.net
Sent: Monday, October 15, 2007 3:53:26 PM
Subject: [OpenID] OpenID Implementation
I'm a bit new at this so, if possible,could someone link to pages with resources to learn how to implement this. From what I've learned so far, OpenID uses difficult and non-standard methods in order to create something which should/could be standard (
i.e. a SOAP-like implementation using non SOAP-like methods). I'll honestly admit, I could and very well may be wrong in my assumptions, but, would it not be simpler to create a standard interface using simple XML practices? Please note that I am a PHP developer, so most of my assumptions and interpretations will come from that perspective. On that note, the encryption used for OpenID, is not a standard PHP library, which, in my opinion will make it that much more difficult to gain wide-spread use. I like the idea of OpenID a great deal, and hope to support it in upcoming projects, but, so long as I have to add conditional statements just to check if a library exists (it may not seem like much to you, but I consider it a great nuisance), I can't support it. Anyway, I appreciate any and all answers.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20071015/b2a46467/attachment-0002.htm>
More information about the general
mailing list