robustness improvements in link descovery mechanisms

accept stray spaces in link tags and inside relevant attribute values. Thanks, Gen, for pointing it out. Signed-off-by: Michael Krelin <hacker@klever.net>
author: Michael Krelin <hacker@klever.net> 2007-09-14 22:52:21 (UTC)
committer: Michael Krelin <hacker@klever.net> 2007-09-14 22:52:21 (UTC)
commit: 5f1d69ac7753243b93761944e9444f01d8a7e5dd (patch) (unidiff)
tree: 43ded5d2da27a54f3fa806ddc6f054970d3cb6fc /lib
parent: 429c48d3d08e6c2f6c385d8975f7b5bf5e67acf3 (diff)
download: libopkele-5f1d69ac7753243b93761944e9444f01d8a7e5dd.zip
libopkele-5f1d69ac7753243b93761944e9444f01d8a7e5dd.tar.gz
libopkele-5f1d69ac7753243b93761944e9444f01d8a7e5dd.tar.bz2
1 files changed, 4 insertions, 4 deletions
diff --git a/lib/consumer.cc b/lib/consumer.cc
index 299b3bc..ff5da91 100644
--- a/lib/consumer.cc
+++ b/lib/consumer.cc
@@ -194,196 +194,196 @@ namespace opkele {
            unsigned char *md = HMAC(
                    EVP_sha1(),
                    &(secret.front()),secret.size(),
                    (const unsigned char *)kv.data(),kv.length(),
                    0,&md_len);
            if(sig.size()!=md_len || memcmp(&(sig.front()),md,md_len))
                throw id_res_mismatch(OPKELE_CP_ "signature mismatch");
        }catch(failed_lookup& e) { /* XXX: more specific? */
            const string& slist = pin.get_param("openid.signed");
            string::size_type pp = 0;
            params_t p;
            while(true) {
                string::size_type co = slist.find(',',pp);
                string f = "openid.";
                f += (co==string::npos)?slist.substr(pp):slist.substr(pp,co-pp);
                p[f] = pin.get_param(f);
                if(co==string::npos)
                    break;
                pp = co+1;
            }
            p["openid.assoc_handle"] = pin.get_param("openid.assoc_handle");
            p["openid.sig"] = pin.get_param("openid.sig");
            p["openid.signed"] = pin.get_param("openid.signed");
            try {
                string ih = pin.get_param("openid.invalidate_handle");
                p["openid.invalidate_handle"] = ih;
            }catch(failed_lookup& fl) { }
            try {
                check_authentication(server,p);
            }catch(failed_check_authentication& fca) {
                throw id_res_failed(OPKELE_CP_ "failed to check_authentication()");
            }
        }
        if(ext) ext->id_res_hook(pin,ps,identity);
    }
    void consumer_t::check_authentication(const string& server,const params_t& p) {
        string request = "openid.mode=check_authentication";
        for(params_t::const_iterator i=p.begin();i!=p.end();++i) {
            if(i->first!="openid.mode") {
                request += '&';
                request += i->first;
                request += '=';
                request += util::url_encode(i->second);
            }
        }
        curl_t curl = curl_easy_init();
        if(!curl)
            throw exception_curl(OPKELE_CP_ "failed to curl_easy_init()");
        string response;
        CURLcode r;
        (r=curl_misc_sets(curl))
        || (r=curl_easy_setopt(curl,CURLOPT_URL,server.c_str()))
        || (r=curl_easy_setopt(curl,CURLOPT_POST,1))
        || (r=curl_easy_setopt(curl,CURLOPT_POSTFIELDS,request.data()))
        || (r=curl_easy_setopt(curl,CURLOPT_POSTFIELDSIZE,request.length()))
        || (r=curl_easy_setopt(curl,CURLOPT_WRITEFUNCTION,_curl_tostring))
        || (r=curl_easy_setopt(curl,CURLOPT_WRITEDATA,&response))
        ;
        if(r)
            throw exception_curl(OPKELE_CP_ "failed to curl_easy_setopt()",r);
        if(r=curl_easy_perform(curl))
            throw exception_curl(OPKELE_CP_ "failed to curl_easy_perform()",r);
        params_t pp; pp.parse_keyvalues(response);
        if(pp.has_param("invalidate_handle"))
            invalidate_assoc(server,pp.get_param("invalidate_handle"));
        if(pp.has_param("is_valid")) {
            if(pp.get_param("is_valid")=="true")
                return;
        }else if(pp.has_param("lifetime")) {
            if(util::string_to_long(pp.get_param("lifetime")))
                return;
        }
        throw failed_check_authentication(OPKELE_CP_ "failed to verify response");
    }
    void consumer_t::retrieve_links(const string& url,string& server,string& delegate) {
 #if defined(USE_LIBPCRECPP) || defined(USE_PCREPP)
        server.erase();
        delegate.erase();
        curl_t curl = curl_easy_init();
        if(!curl)
            throw exception_curl(OPKELE_CP_ "failed to curl_easy_init()");
        string html;
        CURLcode r;
        (r=curl_misc_sets(curl))
        || (r=curl_easy_setopt(curl,CURLOPT_URL,url.c_str()))
        || (r=curl_easy_setopt(curl,CURLOPT_WRITEFUNCTION,_curl_tostring))
        || (r=curl_easy_setopt(curl,CURLOPT_WRITEDATA,&html))
        ;
        if(r)
            throw exception_curl(OPKELE_CP_ "failed to curl_easy_setopt()",r);
        r = curl_easy_perform(curl);
        if(r && r!=CURLE_WRITE_ERROR)
            throw exception_curl(OPKELE_CP_ "failed to curl_easy_perform()",r);
        // strip out everything past body
-        static const char *re_hdre = "<head[^>]*>",
+        static const char *re_hdre = "<\\s*head[^>]*>",
-                     *re_lre = "<link\\b([^>]+)>",
+                     *re_lre = "<\\s*link\\b([^>]+)>",
-                     *re_rre = "\\brel=['\"]([^'\"]+)['\"]",
+                     *re_rre = "\\brel\\s*=\\s*['\"]\\s*([^'\"\\s]+)\\s*['\"]",
-                     *re_hre = "\\bhref=['\"]([^'\"]+)['\"]";
+                     *re_hre = "\\bhref\\s*=\\s*['\"]\\s*([^'\"\\s]+)\\s*['\"]";
 #if defined(USE_LIBPCRECPP)
        static pcrecpp::RE_Options ro(PCRE_CASELESS|PCRE_DOTALL);
        static pcrecpp::RE
            bre("<body\\b.*",ro), hdre(re_hdre,ro),
            lre(re_lre,ro), rre(re_rre), hre(re_hre,ro);
        bre.Replace("",&html);
        pcrecpp::StringPiece hpiece(html);
        if(!hdre.FindAndConsume(&hpiece))
            throw bad_input(OPKELE_CP_ "failed to find head");
        string attrs;
        while(lre.FindAndConsume(&hpiece,&attrs)) {
            pcrecpp::StringPiece rel, href;
            if(!(rre.PartialMatch(attrs,&rel) && hre.PartialMatch(attrs,&href)))
                continue;
            if(rel=="openid.server") {
                href.CopyToString(&server);
                if(!delegate.empty())
                    break;
            }else if(rel=="openid.delegate") {
                href.CopyToString(&delegate);
                if(!server.empty())
                    break;
            }
        }
 #elif defined(USE_PCREPP)
        pcrepp::Pcre bre("<body\\b",PCRE_CASELESS);
        if(bre.search(html))
            html.erase(bre.get_match_start());
        pcrepp::Pcre hdre(re_hdre,PCRE_CASELESS);
        if(!hdre.search(html))
            throw bad_input(OPKELE_CP_ "failed to find head");
        html.erase(0,hdre.get_match_end()+1);
        pcrepp::Pcre lre(re_lre,PCRE_CASELESS), rre(re_rre,PCRE_CASELESS), hre(re_hre,PCRE_CASELESS);
        while(lre.search(html)) {
            string attrs = lre[0];
            html.erase(0,lre.get_match_end()+1);
            if(!(rre.search(attrs)&&hre.search(attrs)))
                continue;
            if(rre[0]=="openid.server") {
                server = hre[0];
                if(!delegate.empty())
                    break;
            }else if(rre[0]=="openid.delegate") {
                delegate = hre[0];
                if(!server.empty())
                    break;
            }
        }
 #else
        #error "I must have gone crazy"
 #endif
        if(server.empty())
            throw failed_assertion(OPKELE_CP_ "The location has no openid.server declaration");
 #else /* none of the RE bindings enabled */
        throw not_implemented(OPKELE_CP_ "No internal implementation of retrieve_links were provided at compile-time");
 #endif
    }
    assoc_t consumer_t::find_assoc(const string& server) {
        throw failed_lookup(OPKELE_CP_ "no find_assoc() provided");
    }
    string consumer_t::normalize(const string& url) {
        string rv = url;
        // strip leading and trailing spaces
        string::size_type i = rv.find_first_not_of(" \t\r\n");
        if(i==string::npos)
            throw bad_input(OPKELE_CP_ "empty URL");
        if(i)
            rv.erase(0,i);
        i = rv.find_last_not_of(" \t\r\n");
        assert(i!=string::npos);
        if(i<(rv.length()-1))
            rv.erase(i+1);
        // add missing http://
        i = rv.find("://");
        if(i==string::npos) { // primitive. but do we need more?
            rv.insert(0,"http://");
            i = sizeof("http://")-1;
        }else{
            i += sizeof("://")-1;
        }
        string::size_type qm = rv.find('?',i);
        string::size_type sl = rv.find('/',i);
        if(qm!=string::npos) {
            if(sl==string::npos || sl>qm)
                rv.insert(qm,1,'/');
        }else{
            if(sl==string::npos)
                rv += '/';
        }
        return rv;
    }
    string consumer_t::canonicalize(const string& url) {
        string rv = normalize(url);
author	Michael Krelin <hacker@klever.net>	2007-09-14 22:52:21 (UTC)
committer	Michael Krelin <hacker@klever.net>	2007-09-14 22:52:21 (UTC)
commit	5f1d69ac7753243b93761944e9444f01d8a7e5dd (patch) (unidiff)
tree	43ded5d2da27a54f3fa806ddc6f054970d3cb6fc /lib
parent	429c48d3d08e6c2f6c385d8975f7b5bf5e67acf3 (diff)
download	libopkele-5f1d69ac7753243b93761944e9444f01d8a7e5dd.zip libopkele-5f1d69ac7753243b93761944e9444f01d8a7e5dd.tar.gz libopkele-5f1d69ac7753243b93761944e9444f01d8a7e5dd.tar.bz2

diff --git a/lib/consumer.cc b/lib/consumer.cc index 299b3bc..ff5da91 100644 --- a/lib/consumer.cc +++ b/lib/consumer.cc
@@ -194,196 +194,196 @@ namespace opkele {
194	unsigned char *md = HMAC(	194	unsigned char *md = HMAC(
195	EVP_sha1(),	195	EVP_sha1(),
196	&(secret.front()),secret.size(),	196	&(secret.front()),secret.size(),
197	(const unsigned char *)kv.data(),kv.length(),	197	(const unsigned char *)kv.data(),kv.length(),
198	0,&md_len);	198	0,&md_len);
199	if(sig.size()!=md_len \|\| memcmp(&(sig.front()),md,md_len))	199	if(sig.size()!=md_len \|\| memcmp(&(sig.front()),md,md_len))
200	throw id_res_mismatch(OPKELE_CP_ "signature mismatch");	200	throw id_res_mismatch(OPKELE_CP_ "signature mismatch");
201	}catch(failed_lookup& e) { /* XXX: more specific? */	201	}catch(failed_lookup& e) { /* XXX: more specific? */
202	const string& slist = pin.get_param("openid.signed");	202	const string& slist = pin.get_param("openid.signed");
203	string::size_type pp = 0;	203	string::size_type pp = 0;
204	params_t p;	204	params_t p;
205	while(true) {	205	while(true) {
206	string::size_type co = slist.find(',',pp);	206	string::size_type co = slist.find(',',pp);
207	string f = "openid.";	207	string f = "openid.";
208	f += (co==string::npos)?slist.substr(pp):slist.substr(pp,co-pp);	208	f += (co==string::npos)?slist.substr(pp):slist.substr(pp,co-pp);
209	p[f] = pin.get_param(f);	209	p[f] = pin.get_param(f);
210	if(co==string::npos)	210	if(co==string::npos)
211	break;	211	break;
212	pp = co+1;	212	pp = co+1;
213	}	213	}
214	p["openid.assoc_handle"] = pin.get_param("openid.assoc_handle");	214	p["openid.assoc_handle"] = pin.get_param("openid.assoc_handle");
215	p["openid.sig"] = pin.get_param("openid.sig");	215	p["openid.sig"] = pin.get_param("openid.sig");
216	p["openid.signed"] = pin.get_param("openid.signed");	216	p["openid.signed"] = pin.get_param("openid.signed");
217	try {	217	try {
218	string ih = pin.get_param("openid.invalidate_handle");	218	string ih = pin.get_param("openid.invalidate_handle");
219	p["openid.invalidate_handle"] = ih;	219	p["openid.invalidate_handle"] = ih;
220	}catch(failed_lookup& fl) { }	220	}catch(failed_lookup& fl) { }
221	try {	221	try {
222	check_authentication(server,p);	222	check_authentication(server,p);
223	}catch(failed_check_authentication& fca) {	223	}catch(failed_check_authentication& fca) {
224	throw id_res_failed(OPKELE_CP_ "failed to check_authentication()");	224	throw id_res_failed(OPKELE_CP_ "failed to check_authentication()");
225	}	225	}
226	}	226	}
227	if(ext) ext->id_res_hook(pin,ps,identity);	227	if(ext) ext->id_res_hook(pin,ps,identity);
228	}	228	}
229		229
230	void consumer_t::check_authentication(const string& server,const params_t& p) {	230	void consumer_t::check_authentication(const string& server,const params_t& p) {
231	string request = "openid.mode=check_authentication";	231	string request = "openid.mode=check_authentication";
232	for(params_t::const_iterator i=p.begin();i!=p.end();++i) {	232	for(params_t::const_iterator i=p.begin();i!=p.end();++i) {
233	if(i->first!="openid.mode") {	233	if(i->first!="openid.mode") {
234	request += '&';	234	request += '&';
235	request += i->first;	235	request += i->first;
236	request += '=';	236	request += '=';
237	request += util::url_encode(i->second);	237	request += util::url_encode(i->second);
238	}	238	}
239	}	239	}
240	curl_t curl = curl_easy_init();	240	curl_t curl = curl_easy_init();
241	if(!curl)	241	if(!curl)
242	throw exception_curl(OPKELE_CP_ "failed to curl_easy_init()");	242	throw exception_curl(OPKELE_CP_ "failed to curl_easy_init()");
243	string response;	243	string response;
244	CURLcode r;	244	CURLcode r;
245	(r=curl_misc_sets(curl))	245	(r=curl_misc_sets(curl))
246	\|\| (r=curl_easy_setopt(curl,CURLOPT_URL,server.c_str()))	246	\|\| (r=curl_easy_setopt(curl,CURLOPT_URL,server.c_str()))
247	\|\| (r=curl_easy_setopt(curl,CURLOPT_POST,1))	247	\|\| (r=curl_easy_setopt(curl,CURLOPT_POST,1))
248	\|\| (r=curl_easy_setopt(curl,CURLOPT_POSTFIELDS,request.data()))	248	\|\| (r=curl_easy_setopt(curl,CURLOPT_POSTFIELDS,request.data()))
249	\|\| (r=curl_easy_setopt(curl,CURLOPT_POSTFIELDSIZE,request.length()))	249	\|\| (r=curl_easy_setopt(curl,CURLOPT_POSTFIELDSIZE,request.length()))
250	\|\| (r=curl_easy_setopt(curl,CURLOPT_WRITEFUNCTION,_curl_tostring))	250	\|\| (r=curl_easy_setopt(curl,CURLOPT_WRITEFUNCTION,_curl_tostring))
251	\|\| (r=curl_easy_setopt(curl,CURLOPT_WRITEDATA,&response))	251	\|\| (r=curl_easy_setopt(curl,CURLOPT_WRITEDATA,&response))
252	;	252	;
253	if(r)	253	if(r)
254	throw exception_curl(OPKELE_CP_ "failed to curl_easy_setopt()",r);	254	throw exception_curl(OPKELE_CP_ "failed to curl_easy_setopt()",r);
255	if(r=curl_easy_perform(curl))	255	if(r=curl_easy_perform(curl))
256	throw exception_curl(OPKELE_CP_ "failed to curl_easy_perform()",r);	256	throw exception_curl(OPKELE_CP_ "failed to curl_easy_perform()",r);
257	params_t pp; pp.parse_keyvalues(response);	257	params_t pp; pp.parse_keyvalues(response);
258	if(pp.has_param("invalidate_handle"))	258	if(pp.has_param("invalidate_handle"))
259	invalidate_assoc(server,pp.get_param("invalidate_handle"));	259	invalidate_assoc(server,pp.get_param("invalidate_handle"));
260	if(pp.has_param("is_valid")) {	260	if(pp.has_param("is_valid")) {
261	if(pp.get_param("is_valid")=="true")	261	if(pp.get_param("is_valid")=="true")
262	return;	262	return;
263	}else if(pp.has_param("lifetime")) {	263	}else if(pp.has_param("lifetime")) {
264	if(util::string_to_long(pp.get_param("lifetime")))	264	if(util::string_to_long(pp.get_param("lifetime")))
265	return;	265	return;
266	}	266	}
267	throw failed_check_authentication(OPKELE_CP_ "failed to verify response");	267	throw failed_check_authentication(OPKELE_CP_ "failed to verify response");
268	}	268	}
269		269
270	void consumer_t::retrieve_links(const string& url,string& server,string& delegate) {	270	void consumer_t::retrieve_links(const string& url,string& server,string& delegate) {
271	#if defined(USE_LIBPCRECPP) \|\| defined(USE_PCREPP)	271	#if defined(USE_LIBPCRECPP) \|\| defined(USE_PCREPP)
272	server.erase();	272	server.erase();
273	delegate.erase();	273	delegate.erase();
274	curl_t curl = curl_easy_init();	274	curl_t curl = curl_easy_init();
275	if(!curl)	275	if(!curl)
276	throw exception_curl(OPKELE_CP_ "failed to curl_easy_init()");	276	throw exception_curl(OPKELE_CP_ "failed to curl_easy_init()");
277	string html;	277	string html;
278	CURLcode r;	278	CURLcode r;
279	(r=curl_misc_sets(curl))	279	(r=curl_misc_sets(curl))
280	\|\| (r=curl_easy_setopt(curl,CURLOPT_URL,url.c_str()))	280	\|\| (r=curl_easy_setopt(curl,CURLOPT_URL,url.c_str()))
281	\|\| (r=curl_easy_setopt(curl,CURLOPT_WRITEFUNCTION,_curl_tostring))	281	\|\| (r=curl_easy_setopt(curl,CURLOPT_WRITEFUNCTION,_curl_tostring))
282	\|\| (r=curl_easy_setopt(curl,CURLOPT_WRITEDATA,&html))	282	\|\| (r=curl_easy_setopt(curl,CURLOPT_WRITEDATA,&html))
283	;	283	;
284	if(r)	284	if(r)
285	throw exception_curl(OPKELE_CP_ "failed to curl_easy_setopt()",r);	285	throw exception_curl(OPKELE_CP_ "failed to curl_easy_setopt()",r);
286	r = curl_easy_perform(curl);	286	r = curl_easy_perform(curl);
287	if(r && r!=CURLE_WRITE_ERROR)	287	if(r && r!=CURLE_WRITE_ERROR)
288	throw exception_curl(OPKELE_CP_ "failed to curl_easy_perform()",r);	288	throw exception_curl(OPKELE_CP_ "failed to curl_easy_perform()",r);
289	// strip out everything past body	289	// strip out everything past body
290	static const char re_hdre = "<head[^>]>",	290	static const char re_hdre = "<\\shead[^>]*>",
291	*re_lre = "<link\\b([^>]+)>",	291	re_lre = "<\\slink\\b([^>]+)>",
292	*re_rre = "\\brel=['\"]([^'\"]+)['\"]",	292	re_rre = "\\brel\\s=\\s['\"]\\s([^'\"\\s]+)\\s*['\"]",
293	*re_hre = "\\bhref=['\"]([^'\"]+)['\"]";	293	re_hre = "\\bhref\\s=\\s['\"]\\s([^'\"\\s]+)\\s*['\"]";
294	#if defined(USE_LIBPCRECPP)	294	#if defined(USE_LIBPCRECPP)
295	static pcrecpp::RE_Options ro(PCRE_CASELESS\|PCRE_DOTALL);	295	static pcrecpp::RE_Options ro(PCRE_CASELESS\|PCRE_DOTALL);
296	static pcrecpp::RE	296	static pcrecpp::RE
297	bre("<body\\b.*",ro), hdre(re_hdre,ro),	297	bre("<body\\b.*",ro), hdre(re_hdre,ro),
298	lre(re_lre,ro), rre(re_rre), hre(re_hre,ro);	298	lre(re_lre,ro), rre(re_rre), hre(re_hre,ro);
299	bre.Replace("",&html);	299	bre.Replace("",&html);
300	pcrecpp::StringPiece hpiece(html);	300	pcrecpp::StringPiece hpiece(html);
301	if(!hdre.FindAndConsume(&hpiece))	301	if(!hdre.FindAndConsume(&hpiece))
302	throw bad_input(OPKELE_CP_ "failed to find head");	302	throw bad_input(OPKELE_CP_ "failed to find head");
303	string attrs;	303	string attrs;
304	while(lre.FindAndConsume(&hpiece,&attrs)) {	304	while(lre.FindAndConsume(&hpiece,&attrs)) {
305	pcrecpp::StringPiece rel, href;	305	pcrecpp::StringPiece rel, href;
306	if(!(rre.PartialMatch(attrs,&rel) && hre.PartialMatch(attrs,&href)))	306	if(!(rre.PartialMatch(attrs,&rel) && hre.PartialMatch(attrs,&href)))
307	continue;	307	continue;
308	if(rel=="openid.server") {	308	if(rel=="openid.server") {
309	href.CopyToString(&server);	309	href.CopyToString(&server);
310	if(!delegate.empty())	310	if(!delegate.empty())
311	break;	311	break;
312	}else if(rel=="openid.delegate") {	312	}else if(rel=="openid.delegate") {
313	href.CopyToString(&delegate);	313	href.CopyToString(&delegate);
314	if(!server.empty())	314	if(!server.empty())
315	break;	315	break;
316	}	316	}
317	}	317	}
318	#elif defined(USE_PCREPP)	318	#elif defined(USE_PCREPP)
319	pcrepp::Pcre bre("<body\\b",PCRE_CASELESS);	319	pcrepp::Pcre bre("<body\\b",PCRE_CASELESS);
320	if(bre.search(html))	320	if(bre.search(html))
321	html.erase(bre.get_match_start());	321	html.erase(bre.get_match_start());
322	pcrepp::Pcre hdre(re_hdre,PCRE_CASELESS);	322	pcrepp::Pcre hdre(re_hdre,PCRE_CASELESS);
323	if(!hdre.search(html))	323	if(!hdre.search(html))
324	throw bad_input(OPKELE_CP_ "failed to find head");	324	throw bad_input(OPKELE_CP_ "failed to find head");
325	html.erase(0,hdre.get_match_end()+1);	325	html.erase(0,hdre.get_match_end()+1);
326	pcrepp::Pcre lre(re_lre,PCRE_CASELESS), rre(re_rre,PCRE_CASELESS), hre(re_hre,PCRE_CASELESS);	326	pcrepp::Pcre lre(re_lre,PCRE_CASELESS), rre(re_rre,PCRE_CASELESS), hre(re_hre,PCRE_CASELESS);
327	while(lre.search(html)) {	327	while(lre.search(html)) {
328	string attrs = lre[0];	328	string attrs = lre[0];
329	html.erase(0,lre.get_match_end()+1);	329	html.erase(0,lre.get_match_end()+1);
330	if(!(rre.search(attrs)&&hre.search(attrs)))	330	if(!(rre.search(attrs)&&hre.search(attrs)))
331	continue;	331	continue;
332	if(rre[0]=="openid.server") {	332	if(rre[0]=="openid.server") {
333	server = hre[0];	333	server = hre[0];
334	if(!delegate.empty())	334	if(!delegate.empty())
335	break;	335	break;
336	}else if(rre[0]=="openid.delegate") {	336	}else if(rre[0]=="openid.delegate") {
337	delegate = hre[0];	337	delegate = hre[0];
338	if(!server.empty())	338	if(!server.empty())
339	break;	339	break;
340	}	340	}
341	}	341	}
342	#else	342	#else
343	#error "I must have gone crazy"	343	#error "I must have gone crazy"
344	#endif	344	#endif
345	if(server.empty())	345	if(server.empty())
346	throw failed_assertion(OPKELE_CP_ "The location has no openid.server declaration");	346	throw failed_assertion(OPKELE_CP_ "The location has no openid.server declaration");
347	#else /* none of the RE bindings enabled */	347	#else /* none of the RE bindings enabled */
348	throw not_implemented(OPKELE_CP_ "No internal implementation of retrieve_links were provided at compile-time");	348	throw not_implemented(OPKELE_CP_ "No internal implementation of retrieve_links were provided at compile-time");
349	#endif	349	#endif
350	}	350	}
351		351
352	assoc_t consumer_t::find_assoc(const string& server) {	352	assoc_t consumer_t::find_assoc(const string& server) {
353	throw failed_lookup(OPKELE_CP_ "no find_assoc() provided");	353	throw failed_lookup(OPKELE_CP_ "no find_assoc() provided");
354	}	354	}
355		355
356	string consumer_t::normalize(const string& url) {	356	string consumer_t::normalize(const string& url) {
357	string rv = url;	357	string rv = url;
358	// strip leading and trailing spaces	358	// strip leading and trailing spaces
359	string::size_type i = rv.find_first_not_of(" \t\r\n");	359	string::size_type i = rv.find_first_not_of(" \t\r\n");
360	if(i==string::npos)	360	if(i==string::npos)
361	throw bad_input(OPKELE_CP_ "empty URL");	361	throw bad_input(OPKELE_CP_ "empty URL");
362	if(i)	362	if(i)
363	rv.erase(0,i);	363	rv.erase(0,i);
364	i = rv.find_last_not_of(" \t\r\n");	364	i = rv.find_last_not_of(" \t\r\n");
365	assert(i!=string::npos);	365	assert(i!=string::npos);
366	if(i<(rv.length()-1))	366	if(i<(rv.length()-1))
367	rv.erase(i+1);	367	rv.erase(i+1);
368	// add missing http://	368	// add missing http://
369	i = rv.find("://");	369	i = rv.find("://");
370	if(i==string::npos) { // primitive. but do we need more?	370	if(i==string::npos) { // primitive. but do we need more?
371	rv.insert(0,"http://");	371	rv.insert(0,"http://");
372	i = sizeof("http://")-1;	372	i = sizeof("http://")-1;
373	}else{	373	}else{
374	i += sizeof("://")-1;	374	i += sizeof("://")-1;
375	}	375	}
376	string::size_type qm = rv.find('?',i);	376	string::size_type qm = rv.find('?',i);
377	string::size_type sl = rv.find('/',i);	377	string::size_type sl = rv.find('/',i);
378	if(qm!=string::npos) {	378	if(qm!=string::npos) {
379	if(sl==string::npos \|\| sl>qm)	379	if(sl==string::npos \|\| sl>qm)
380	rv.insert(qm,1,'/');	380	rv.insert(qm,1,'/');
381	}else{	381	}else{
382	if(sl==string::npos)	382	if(sl==string::npos)
383	rv += '/';	383	rv += '/';
384	}	384	}
385	return rv;	385	return rv;
386	}	386	}
387		387
388	string consumer_t::canonicalize(const string& url) {	388	string consumer_t::canonicalize(const string& url) {
389	string rv = normalize(url);	389	string rv = normalize(url);