9 files changed, 127 insertions, 28 deletions
diff --git a/include/Makefile.am b/include/Makefile.am
index b014752..72931eb 100644
--- a/include/Makefile.am
+++ b/include/Makefile.am
@@ -7,3 +7,4 @@ nobase_include_HEADERS = \
        opkele/server.h \
-        opkele/consumer.h
+        opkele/consumer.h \
+        opkele/extension.h
 EXTRA_DIST = \
diff --git a/include/opkele/consumer.h b/include/opkele/consumer.h
index 9932315..f9939cf 100644
--- a/include/opkele/consumer.h
+++ b/include/opkele/consumer.h
@@ -4,2 +4,3 @@
 #include <opkele/types.h>
+#include <opkele/extension.h>
@@ -84,2 +85,3 @@ namespace opkele {
             * @param trust_root the trust root to advertise with the request
+             * @param ext pointer to an extension(s) hooks object
             * @return the location string
@@ -87,3 +89,3 @@ namespace opkele {
             */
-            string checkid_immediate(const string& identity,const string& return_to,const string& trust_root="");
+            string checkid_immediate(const string& identity,const string& return_to,const string& trust_root="",extension_t *ext=0);
            /**
@@ -94,2 +96,3 @@ namespace opkele {
             * @param trust_root the trust root to advertise with the request
+             * @param ext pointer to an extension(s) hooks object
             * @return the location string
@@ -97,3 +100,3 @@ namespace opkele {
             */
-            string checkid_setup(const string& identity,const string& return_to,const string& trust_root="");
+            string checkid_setup(const string& identity,const string& return_to,const string& trust_root="",extension_t *ext=0);
            /**
@@ -105,2 +108,3 @@ namespace opkele {
             * @param trust_root the trust root to advertise with the request
+             * @param ext pointer to an extension(s) hooks object
             * @return the location string
@@ -108,3 +112,3 @@ namespace opkele {
             */
-            string checkid_(mode_t mode,const string& identity,const string& return_to,const string& trust_root="");
+            string checkid_(mode_t mode,const string& identity,const string& return_to,const string& trust_root="",extension_t *ext=0);
            /**
@@ -112,9 +116,8 @@ namespace opkele {
             * @param pin the response parameters
-             * @param identity the identity being checked (if not specified, extracted
+             * @param identity the identity being checked (if not specified,
-             * from the openid.identity parameter
+             * @param ext pointer to an extension(s) hooks object
-             * @throw id_res_mismatch in case of signature
+             * extracted from the openid.identity parameter
-             * mismatch
+             * @throw id_res_mismatch in case of signature mismatch
-             * @throw id_res_setup in case of
+             * @throw id_res_setup in case of openid.user_setup_url failure
-             * openid.user_setup_url failure (supposedly
+             * (supposedly checkid_immediate only)
-             * checkid_immediate only)
             * @throw id_res_failed in case of failure
@@ -122,3 +125,3 @@ namespace opkele {
             */
-            void id_res(const params_t& pin,const string& identity="");
+            void id_res(const params_t& pin,const string& identity="",extension_t *ext=0);
            /**
diff --git a/include/opkele/exception.h b/include/opkele/exception.h
index c5f5811..9fc9bd3 100644
--- a/include/opkele/exception.h
+++ b/include/opkele/exception.h
@@ -207,2 +207,12 @@ namespace opkele {
+    /**
+     * not implemented (think pure virtual) member function executed, signfies
+     * programmer error
+     */
+    class not_implemented : public exception {
+        public:
+            not_implemented(OPKELE_E_PARS)
+                : exception(OPKELE_E_CONS) { }
+    };
 }
diff --git a/include/opkele/extension.h b/include/opkele/extension.h
new file mode 100644
index 0000000..3fb5f6e
--- a/dev/null
+++ b/include/opkele/extension.h
@@ -0,0 +1,59 @@
+#ifndef __OPKELE_EXTENSIONS_H
+#define __OPKELE_EXTENSIONS_H
+/**
+ * @file
+ * @brief extensions framework basics
+ */
+#include <opkele/types.h>
+/**
+ * @brief the main opkele namespace
+ */
+namespace opkele {
+    /**
+     * OpenID consumer extension hooks base class
+     */
+    class extension_t {
+        public:
+            /**
+             * hook called by consumer before submitting data to OpenID server.
+             * It is supposed to manipulate parameters list.
+             * @param p parameters about to be submitted to server
+             * @param identity identity being verified. It may differ from the
+             * one available in parameters list in case of delegation
+             */
+            virtual void checkid_hook(params_t& p,const string& identity);
+            /**
+             * hook called by consumer after identity information received from
+             * OpenID server is verified.
+             * @param p parameters received from server
+             * @param sp signed parameters received from server with 'openid.'
+             * leader stripped
+             * @param identity identity confirmed. May differ from the one
+             * available in parameters list in case of delegation. May also be
+             * empty which means - extract one from parameters
+             */
+            virtual void id_res_hook(const params_t& p,const params_t& sp,const string& identity);
+            /**
+             * hook called by server before returning information to consumer.
+             * The hook may manipulate output parameters. It is important to
+             * note that modified pout["signed"] is used for signing response.
+             * @param pin request parameters list
+             * @param put response parameters list
+             */
+            virtual void checkid_hook(const params_t& pin,params_t& pout);
+            /**
+             * Casts the object to pointer to itself. For convenient passing
+             * of pointer.
+             */
+            operator extension_t*(void) { return this; }
+    };
+}
+#endif /* __OPKELE_EXTENSIONS_H */
diff --git a/include/opkele/server.h b/include/opkele/server.h
index fe07448..bf131d8 100644
--- a/include/opkele/server.h
+++ b/include/opkele/server.h
@@ -9,2 +9,3 @@
 #include <opkele/types.h>
+#include <opkele/extension.h>
@@ -62,5 +63,6 @@ namespace opkele {
             * @param pout the response parameters
+             * @param ext pointer to the extension hooks object
             * @throw exception in case of errors or negative reply
             */
-            void checkid_immediate(const params_t& pin,string& return_to,params_t& pout);
+            void checkid_immediate(const params_t& pin,string& return_to,params_t& pout,extension_t *ext=0);
            /**
@@ -70,5 +72,6 @@ namespace opkele {
             * @param pout the response parameters
+             * @param ext pointer to the extension hooks object
             * @throw exception in case of errors or negative reply
             */
-            void checkid_setup(const params_t& pin,string& return_to,params_t& pout);
+            void checkid_setup(const params_t& pin,string& return_to,params_t& pout,extension_t *ext=0);
            /**
@@ -81,5 +84,6 @@ namespace opkele {
             * @param pout the response parameters
+             * @param ext pointer to the extension hooks object
             * @throw exception in case of errors or negative reply
             */
-            void checkid_(mode_t mode,const params_t& pin,string& return_to,params_t& pout);
+            void checkid_(mode_t mode,const params_t& pin,string& return_to,params_t& pout,extension_t *ext=0);
            /**
diff --git a/lib/Makefile.am b/lib/Makefile.am
index 6f3f9f3..69c749e 100644
--- a/lib/Makefile.am
+++ b/lib/Makefile.am
@@ -23,2 +23,3 @@ libopkele_la_SOURCES = \
                       consumer.cc \
-                       exception.cc
+                       exception.cc \
+                       extension.cc
diff --git a/lib/consumer.cc b/lib/consumer.cc
index bb6358c..10c2fa0 100644
--- a/lib/consumer.cc
+++ b/lib/consumer.cc
@@ -125,9 +125,9 @@ namespace opkele {
-    string consumer_t::checkid_immediate(const string& identity,const string& return_to,const string& trust_root) {
+    string consumer_t::checkid_immediate(const string& identity,const string& return_to,const string& trust_root,extension_t *ext) {
-        return checkid_(mode_checkid_immediate,identity,return_to,trust_root);
+        return checkid_(mode_checkid_immediate,identity,return_to,trust_root,ext);
    }
-    string consumer_t::checkid_setup(const string& identity,const string& return_to,const string& trust_root) {
+    string consumer_t::checkid_setup(const string& identity,const string& return_to,const string& trust_root,extension_t *ext) {
-        return checkid_(mode_checkid_setup,identity,return_to,trust_root);
+        return checkid_(mode_checkid_setup,identity,return_to,trust_root,ext);
    }
-    string consumer_t::checkid_(mode_t mode,const string& identity,const string& return_to,const string& trust_root) {
+    string consumer_t::checkid_(mode_t mode,const string& identity,const string& return_to,const string& trust_root,extension_t *ext) {
        params_t p;
@@ -155,2 +155,3 @@ namespace opkele {
        }catch(exception& e) { }
+        if(ext) ext->checkid_hook(p,identity);
        return p.append_query(server);
@@ -158,3 +159,3 @@ namespace opkele {
-    void consumer_t::id_res(const params_t& pin,const string& identity) {
+    void consumer_t::id_res(const params_t& pin,const string& identity,extension_t *ext) {
        if(pin.has_param("openid.user_setup_url"))
@@ -163,2 +164,3 @@ namespace opkele {
        retrieve_links(identity.empty()?pin.get_param("openid.identity"):canonicalize(identity),server,delegate);
+        params_t ps;
        try {
@@ -182,2 +184,3 @@ namespace opkele {
                kv += '\n';
+                if(ext) ps[f.substr(sizeof("openid."))] = pin.get_param(f);
                if(co==string::npos)
@@ -221,2 +224,3 @@ namespace opkele {
        }
+        if(ext) ext->id_res_hook(pin,ps,identity);
    }
diff --git a/lib/extension.cc b/lib/extension.cc
new file mode 100644
index 0000000..bd2195d
--- a/dev/null
+++ b/lib/extension.cc
@@ -0,0 +1,15 @@
+#include <opkele/exception.h>
+#include <opkele/extension.h>
+namespace opkele {
+    void extension_t::checkid_hook(params_t& p,const string& identity) {
+        throw not_implemented(OPKELE_CP_ "Consumer checkid_hook not implemented");
+    }
+    void id_res_hook(const params_t& p,const params_t& sp,const string& identity) {
+        throw not_implemented(OPKELE_CP_ "Consumer id_res_hook not implemented");
+    }
+    void checkid_hook(const params_t& pin,params_t& pout) {
+        throw not_implemented(OPKELE_CP_ "Server checkid_hook not implemented");
+    }
+}
diff --git a/lib/server.cc b/lib/server.cc
index 5eee1f3..8c29abb 100644
--- a/lib/server.cc
+++ b/lib/server.cc
@@ -69,11 +69,11 @@ namespace opkele {
-    void server_t::checkid_immediate(const params_t& pin,string& return_to,params_t& pout) {
+    void server_t::checkid_immediate(const params_t& pin,string& return_to,params_t& pout,extension_t *ext) {
-        checkid_(mode_checkid_immediate,pin,return_to,pout);
+        checkid_(mode_checkid_immediate,pin,return_to,pout,ext);
    }
-    void server_t::checkid_setup(const params_t& pin,string& return_to,params_t& pout) {
+    void server_t::checkid_setup(const params_t& pin,string& return_to,params_t& pout,extension_t *ext) {
-        checkid_(mode_checkid_setup,pin,return_to,pout);
+        checkid_(mode_checkid_setup,pin,return_to,pout,ext);
    }
-    void server_t::checkid_(mode_t mode,const params_t& pin,string& return_to,params_t& pout) {
+    void server_t::checkid_(mode_t mode,const params_t& pin,string& return_to,params_t& pout,extension_t *ext) {
        if(mode!=mode_checkid_immediate && mode!=mode_checkid_setup)
@@ -108,3 +108,5 @@ namespace opkele {
        pout["exipres_in"] = "120";
-        pout.sign(assoc->secret(),pout["sig"],pout["signed"]="mode,identity,return_to");
+        pout["signed"]="mode,identity,return_to";
+        if(ext) ext->checkid_hook(pin,pout);
+        pout.sign(assoc->secret(),pout["sig"],pout["signed"]);
    }

diff --git a/include/Makefile.am b/include/Makefile.am index b014752..72931eb 100644 --- a/include/Makefile.am +++ b/include/Makefile.am
@@ -7,3 +7,4 @@ nobase_include_HEADERS = \
7	opkele/server.h \	7	opkele/server.h \
8	opkele/consumer.h	8	opkele/consumer.h \
		9	opkele/extension.h
9	EXTRA_DIST = \	10	EXTRA_DIST = \


diff --git a/include/opkele/consumer.h b/include/opkele/consumer.h index 9932315..f9939cf 100644 --- a/include/opkele/consumer.h +++ b/include/opkele/consumer.h
@@ -4,2 +4,3 @@
4	#include <opkele/types.h>	4	#include <opkele/types.h>
		5	#include <opkele/extension.h>
5		6
@@ -84,2 +85,3 @@ namespace opkele {
84	* @param trust_root the trust root to advertise with the request	85	* @param trust_root the trust root to advertise with the request
		86	* @param ext pointer to an extension(s) hooks object
85	* @return the location string	87	* @return the location string
@@ -87,3 +89,3 @@ namespace opkele {
87	*/	89	*/
88	string checkid_immediate(const string& identity,const string& return_to,const string& trust_root="");	90	string checkid_immediate(const string& identity,const string& return_to,const string& trust_root="",extension_t *ext=0);
89	/**	91	/**
@@ -94,2 +96,3 @@ namespace opkele {
94	* @param trust_root the trust root to advertise with the request	96	* @param trust_root the trust root to advertise with the request
		97	* @param ext pointer to an extension(s) hooks object
95	* @return the location string	98	* @return the location string
@@ -97,3 +100,3 @@ namespace opkele {
97	*/	100	*/
98	string checkid_setup(const string& identity,const string& return_to,const string& trust_root="");	101	string checkid_setup(const string& identity,const string& return_to,const string& trust_root="",extension_t *ext=0);
99	/**	102	/**
@@ -105,2 +108,3 @@ namespace opkele {
105	* @param trust_root the trust root to advertise with the request	108	* @param trust_root the trust root to advertise with the request
		109	* @param ext pointer to an extension(s) hooks object
106	* @return the location string	110	* @return the location string
@@ -108,3 +112,3 @@ namespace opkele {
108	*/	112	*/
109	string checkid_(mode_t mode,const string& identity,const string& return_to,const string& trust_root="");	113	string checkid_(mode_t mode,const string& identity,const string& return_to,const string& trust_root="",extension_t *ext=0);
110	/**	114	/**
@@ -112,9 +116,8 @@ namespace opkele {
112	* @param pin the response parameters	116	* @param pin the response parameters
113	* @param identity the identity being checked (if not specified, extracted	117	* @param identity the identity being checked (if not specified,
114	* from the openid.identity parameter	118	* @param ext pointer to an extension(s) hooks object
115	* @throw id_res_mismatch in case of signature	119	* extracted from the openid.identity parameter
116	* mismatch	120	* @throw id_res_mismatch in case of signature mismatch
117	* @throw id_res_setup in case of	121	* @throw id_res_setup in case of openid.user_setup_url failure
118	* openid.user_setup_url failure (supposedly	122	* (supposedly checkid_immediate only)
119	* checkid_immediate only)
120	* @throw id_res_failed in case of failure	123	* @throw id_res_failed in case of failure
@@ -122,3 +125,3 @@ namespace opkele {
122	*/	125	*/
123	void id_res(const params_t& pin,const string& identity="");	126	void id_res(const params_t& pin,const string& identity="",extension_t *ext=0);
124	/**	127	/**


diff --git a/include/opkele/exception.h b/include/opkele/exception.h index c5f5811..9fc9bd3 100644 --- a/include/opkele/exception.h +++ b/include/opkele/exception.h
@@ -207,2 +207,12 @@ namespace opkele {
207		207
		208	/**
		209	* not implemented (think pure virtual) member function executed, signfies
		210	* programmer error
		211	*/
		212	class not_implemented : public exception {
		213	public:
		214	not_implemented(OPKELE_E_PARS)
		215	: exception(OPKELE_E_CONS) { }
		216	};
		217
208	}	218	}


diff --git a/include/opkele/extension.h b/include/opkele/extension.h new file mode 100644 index 0000000..3fb5f6e --- a/dev/null +++ b/include/opkele/extension.h
@@ -0,0 +1,59 @@
		1	#ifndef __OPKELE_EXTENSIONS_H
		2	#define __OPKELE_EXTENSIONS_H
		3
		4	/**
		5	* @file
		6	* @brief extensions framework basics
		7	*/
		8
		9	#include <opkele/types.h>
		10
		11	/**
		12	* @brief the main opkele namespace
		13	*/
		14	namespace opkele {
		15
		16	/**
		17	* OpenID consumer extension hooks base class
		18	*/
		19	class extension_t {
		20	public:
		21	/**
		22	* hook called by consumer before submitting data to OpenID server.
		23	* It is supposed to manipulate parameters list.
		24	* @param p parameters about to be submitted to server
		25	* @param identity identity being verified. It may differ from the
		26	* one available in parameters list in case of delegation
		27	*/
		28	virtual void checkid_hook(params_t& p,const string& identity);
		29	/**
		30	* hook called by consumer after identity information received from
		31	* OpenID server is verified.
		32	* @param p parameters received from server
		33	* @param sp signed parameters received from server with 'openid.'
		34	* leader stripped
		35	* @param identity identity confirmed. May differ from the one
		36	* available in parameters list in case of delegation. May also be
		37	* empty which means - extract one from parameters
		38	*/
		39	virtual void id_res_hook(const params_t& p,const params_t& sp,const string& identity);
		40
		41	/**
		42	* hook called by server before returning information to consumer.
		43	* The hook may manipulate output parameters. It is important to
		44	* note that modified pout["signed"] is used for signing response.
		45	* @param pin request parameters list
		46	* @param put response parameters list
		47	*/
		48	virtual void checkid_hook(const params_t& pin,params_t& pout);
		49
		50	/**
		51	* Casts the object to pointer to itself. For convenient passing
		52	* of pointer.
		53	*/
		54	operator extension_t*(void) { return this; }
		55	};
		56
		57	}
		58
		59	#endif /* __OPKELE_EXTENSIONS_H */


diff --git a/include/opkele/server.h b/include/opkele/server.h index fe07448..bf131d8 100644 --- a/include/opkele/server.h +++ b/include/opkele/server.h
@@ -9,2 +9,3 @@
9	#include <opkele/types.h>	9	#include <opkele/types.h>
		10	#include <opkele/extension.h>
10		11
@@ -62,5 +63,6 @@ namespace opkele {
62	* @param pout the response parameters	63	* @param pout the response parameters
		64	* @param ext pointer to the extension hooks object
63	* @throw exception in case of errors or negative reply	65	* @throw exception in case of errors or negative reply
64	*/	66	*/
65	void checkid_immediate(const params_t& pin,string& return_to,params_t& pout);	67	void checkid_immediate(const params_t& pin,string& return_to,params_t& pout,extension_t *ext=0);
66	/**	68	/**
@@ -70,5 +72,6 @@ namespace opkele {
70	* @param pout the response parameters	72	* @param pout the response parameters
		73	* @param ext pointer to the extension hooks object
71	* @throw exception in case of errors or negative reply	74	* @throw exception in case of errors or negative reply
72	*/	75	*/
73	void checkid_setup(const params_t& pin,string& return_to,params_t& pout);	76	void checkid_setup(const params_t& pin,string& return_to,params_t& pout,extension_t *ext=0);
74	/**	77	/**
@@ -81,5 +84,6 @@ namespace opkele {
81	* @param pout the response parameters	84	* @param pout the response parameters
		85	* @param ext pointer to the extension hooks object
82	* @throw exception in case of errors or negative reply	86	* @throw exception in case of errors or negative reply
83	*/	87	*/
84	void checkid_(mode_t mode,const params_t& pin,string& return_to,params_t& pout);	88	void checkid_(mode_t mode,const params_t& pin,string& return_to,params_t& pout,extension_t *ext=0);
85	/**	89	/**


diff --git a/lib/Makefile.am b/lib/Makefile.am index 6f3f9f3..69c749e 100644 --- a/lib/Makefile.am +++ b/lib/Makefile.am
@@ -23,2 +23,3 @@ libopkele_la_SOURCES = \
23	consumer.cc \	23	consumer.cc \
24	exception.cc	24	exception.cc \
		25	extension.cc


diff --git a/lib/consumer.cc b/lib/consumer.cc index bb6358c..10c2fa0 100644 --- a/lib/consumer.cc +++ b/lib/consumer.cc
@@ -125,9 +125,9 @@ namespace opkele {
125		125
126	string consumer_t::checkid_immediate(const string& identity,const string& return_to,const string& trust_root) {	126	string consumer_t::checkid_immediate(const string& identity,const string& return_to,const string& trust_root,extension_t *ext) {
127	return checkid_(mode_checkid_immediate,identity,return_to,trust_root);	127	return checkid_(mode_checkid_immediate,identity,return_to,trust_root,ext);
128	}	128	}
129	string consumer_t::checkid_setup(const string& identity,const string& return_to,const string& trust_root) {	129	string consumer_t::checkid_setup(const string& identity,const string& return_to,const string& trust_root,extension_t *ext) {
130	return checkid_(mode_checkid_setup,identity,return_to,trust_root);	130	return checkid_(mode_checkid_setup,identity,return_to,trust_root,ext);
131	}	131	}
132	string consumer_t::checkid_(mode_t mode,const string& identity,const string& return_to,const string& trust_root) {	132	string consumer_t::checkid_(mode_t mode,const string& identity,const string& return_to,const string& trust_root,extension_t *ext) {
133	params_t p;	133	params_t p;
@@ -155,2 +155,3 @@ namespace opkele {
155	}catch(exception& e) { }	155	}catch(exception& e) { }
		156	if(ext) ext->checkid_hook(p,identity);
156	return p.append_query(server);	157	return p.append_query(server);
@@ -158,3 +159,3 @@ namespace opkele {
158		159
159	void consumer_t::id_res(const params_t& pin,const string& identity) {	160	void consumer_t::id_res(const params_t& pin,const string& identity,extension_t *ext) {
160	if(pin.has_param("openid.user_setup_url"))	161	if(pin.has_param("openid.user_setup_url"))
@@ -163,2 +164,3 @@ namespace opkele {
163	retrieve_links(identity.empty()?pin.get_param("openid.identity"):canonicalize(identity),server,delegate);	164	retrieve_links(identity.empty()?pin.get_param("openid.identity"):canonicalize(identity),server,delegate);
		165	params_t ps;
164	try {	166	try {
@@ -182,2 +184,3 @@ namespace opkele {
182	kv += '\n';	184	kv += '\n';
		185	if(ext) ps[f.substr(sizeof("openid."))] = pin.get_param(f);
183	if(co==string::npos)	186	if(co==string::npos)
@@ -221,2 +224,3 @@ namespace opkele {
221	}	224	}
		225	if(ext) ext->id_res_hook(pin,ps,identity);
222	}	226	}


diff --git a/lib/extension.cc b/lib/extension.cc new file mode 100644 index 0000000..bd2195d --- a/dev/null +++ b/lib/extension.cc
@@ -0,0 +1,15 @@
		1	#include <opkele/exception.h>
		2	#include <opkele/extension.h>
		3
		4	namespace opkele {
		5
		6	void extension_t::checkid_hook(params_t& p,const string& identity) {
		7	throw not_implemented(OPKELE_CP_ "Consumer checkid_hook not implemented");
		8	}
		9	void id_res_hook(const params_t& p,const params_t& sp,const string& identity) {
		10	throw not_implemented(OPKELE_CP_ "Consumer id_res_hook not implemented");
		11	}
		12	void checkid_hook(const params_t& pin,params_t& pout) {
		13	throw not_implemented(OPKELE_CP_ "Server checkid_hook not implemented");
		14	}
		15	}


diff --git a/lib/server.cc b/lib/server.cc index 5eee1f3..8c29abb 100644 --- a/lib/server.cc +++ b/lib/server.cc
@@ -69,11 +69,11 @@ namespace opkele {
69		69
70	void server_t::checkid_immediate(const params_t& pin,string& return_to,params_t& pout) {	70	void server_t::checkid_immediate(const params_t& pin,string& return_to,params_t& pout,extension_t *ext) {
71	checkid_(mode_checkid_immediate,pin,return_to,pout);	71	checkid_(mode_checkid_immediate,pin,return_to,pout,ext);
72	}	72	}
73		73
74	void server_t::checkid_setup(const params_t& pin,string& return_to,params_t& pout) {	74	void server_t::checkid_setup(const params_t& pin,string& return_to,params_t& pout,extension_t *ext) {
75	checkid_(mode_checkid_setup,pin,return_to,pout);	75	checkid_(mode_checkid_setup,pin,return_to,pout,ext);
76	}	76	}
77		77
78	void server_t::checkid_(mode_t mode,const params_t& pin,string& return_to,params_t& pout) {	78	void server_t::checkid_(mode_t mode,const params_t& pin,string& return_to,params_t& pout,extension_t *ext) {
79	if(mode!=mode_checkid_immediate && mode!=mode_checkid_setup)	79	if(mode!=mode_checkid_immediate && mode!=mode_checkid_setup)
@@ -108,3 +108,5 @@ namespace opkele {
108	pout["exipres_in"] = "120";	108	pout["exipres_in"] = "120";
109	pout.sign(assoc->secret(),pout["sig"],pout["signed"]="mode,identity,return_to");	109	pout["signed"]="mode,identity,return_to";
		110	if(ext) ext->checkid_hook(pin,pout);
		111	pout.sign(assoc->secret(),pout["sig"],pout["signed"]);
110	}	112	}