function _openid_signature

7.x openid.inc	`_openid_signature($association, $message_array, $keys_to_sign)`
6.x openid.inc	`_openid_signature($association, $message_array, $keys_to_sign)`

Sign certain keys in a message

Parameters

$association - object loaded from openid_association or openid_server_association table:

important fields are ->assoc_type and ->mac_key

$message_array - array of entire message about to be sent:

$keys_to_sign - keys in the message to include in signature (without: 'openid.' appended)

1 call to _openid_signature()

openid_verify_assertion_signature in drupal-6.x/modules/openid/openid.module: Verify the signature of the response received from the OpenID provider.

File

drupal-6.x/modules/openid/openid.inc, line 229: OpenID utility functions.

Code

function _openid_signature($association, $message_array, $keys_to_sign) {
  $signature = '';
  $sign_data = array();

  foreach ($keys_to_sign as $key) {
    if (isset($message_array['openid.' . $key])) {
      $sign_data[$key] = $message_array['openid.' . $key];
    }
  }

  $message = _openid_create_message($sign_data);
  $secret = base64_decode($association->mac_key);
  $signature = _openid_hmac($secret, $message);

  return base64_encode($signature);
}