PHP library for openID
For PHP, I find Zend Framework OpenID Component to be really good.
You can also see all available OpenID libraries at this link
Light OpenID PHP Library
There's two aspects to using OpenID successfully that apply to this particular question:
Authentication - does the request come from the expected source and has it not been tampered?
Security - has anyone, besides the user and your server, seen the request in transit?
OpenID assertions are signed by the server using either a shared or private key; in the latter case your server has to make another round trip to the server to verify the request.
Using GET or POST doesn't matter in terms of security, but using SSL does. Both methods transmit the data in a similar fashion, so any packet sniffer will have no problems retrieving sensitive data. However, when SSL is applied, both methods are equally protected.
PHP library for OpenID
The OpenID Wiki has a great list of libraries available for PHP. Always begin your searches in the official documentation.
I have personally used and recommend EasyOpenId (requires PHP OpenID).
OpenID Library for PHP 5.3
Ok, I finally got to fix the library... I explained everything here (you can also download the php-openid library after my changes).
I needed to do what Paul Tarjan suggested but, also, I needed to modify the Auth_OpenID_detectMathLibrary
and add the static
keyword to a lot of functions. After that It seems to work perfectly although it is not an ideal solution... I think that someone should rewrite the whole library in PHP 5...
PHP OpenID Library that allows facebook / openid / twitter, etc;
HybridAuth, a free and open source web-based PHP Social Networking service project enables users to authenticate in your blog, Web site or application using their OpenID, Twitter, Facebook, MySpaceID, Google, AOL, Friendster or Vimeo Accounts.
HybridAuth is one and simple SSO PHP Library.
http://www.phpkode.com/projects/item/hybridauth/
Any good OpenID php consumer libs?
I would highly recommend LightOpenID by Mewp. It comes with a great example and has no unusual dependencies (the only requirement you need to be aware of is that of the CURL PHP extension). It's entirely self-contained, it's only one file, and the code is very readable. There are more tasty details.
How do you enable customers use their openid on your website, just like stackoverflow?
Many decent libraries are listed here:
http://wiki.openid.net/Libraries
Related Topics
Sending Bcc Emails Using a Smtp Server
How to Strip Out the Domain Name from a Url in PHP
Pretty Urls Without Mod_Rewrite, Without .Htaccess
Comparing Passwords with Crypt() in PHP
How to Check If a Value Already Exists to Avoid Duplicates
How to Eliminate PHP5 Strict Standards Errors
Replacing .PHP Ext with .HTML Through .Htaccess
Using Curl in PHP with Client Certificate and Private Key in Separate Files
How to Use SQL Server Connection in Laravel
.Htaccess Redirect Non-Www to Www Preserving Uri String
Difference Between Set_Time_Limit() and Ini_Set('Max_Execution_Time', ...)
How to Embed HTML Files in PHP Code