1 files changed, 115 insertions, 18 deletions

diff --git a/src/DotNetOpenId/RelyingParty/OpenIdRelyingParty.cs b/src/DotNetOpenId/RelyingParty/OpenIdRelyingParty.cs
index 0cbb4c3..fc763eb 100644
--- a/src/DotNetOpenId/RelyingParty/OpenIdRelyingParty.cs
+++ b/src/DotNetOpenId/RelyingParty/OpenIdRelyingParty.cs
@@ -172,8 +172,97 @@ namespace DotNetOpenId.RelyingParty {
 		/// An authentication request object that describes the HTTP response to

 		/// send to the user agent to initiate the authentication.

 		/// </returns>

+		/// <exception cref="OpenIdException">Thrown if no OpenID endpoint could be found.</exception>

 		public IAuthenticationRequest CreateRequest(Identifier userSuppliedIdentifier, Realm realm, Uri returnToUrl) {

-			if (userSuppliedIdentifier == null) throw new ArgumentNullException("userSuppliedIdentifier");

+			var requests = CreateRequests(userSuppliedIdentifier, realm, returnToUrl).GetEnumerator();

+			if (requests.MoveNext()) {

+				return requests.Current;

+			} else {

+				throw new OpenIdException(Strings.OpenIdEndpointNotFound);

+			}

+		}

+

+		/// <summary>

+		/// Creates an authentication request to verify that a user controls

+		/// some given Identifier.

+		/// </summary>

+		/// <param name="userSuppliedIdentifier">

+		/// The Identifier supplied by the user.  This may be a URL, an XRI or i-name.

+		/// </param>

+		/// <param name="realm">

+		/// The shorest URL that describes this relying party web site's address.

+		/// For example, if your login page is found at https://www.example.com/login.aspx,

+		/// your realm would typically be https://www.example.com/.

+		/// </param>

+		/// <returns>

+		/// An authentication request object that describes the HTTP response to

+		/// send to the user agent to initiate the authentication.

+		/// </returns>

+		/// <remarks>

+		/// This method requires an ASP.NET HttpContext.

+		/// </remarks>

+		/// <exception cref="OpenIdException">Thrown if no OpenID endpoint could be found.</exception>

+		public IAuthenticationRequest CreateRequest(Identifier userSuppliedIdentifier, Realm realm) {

+			var requests = CreateRequests(userSuppliedIdentifier, realm).GetEnumerator();

+			if (requests.MoveNext()) {

+				return requests.Current;

+			} else {

+				throw new OpenIdException(Strings.OpenIdEndpointNotFound);

+			}

+		}

+

+		/// <summary>

+		/// Creates an authentication request to verify that a user controls

+		/// some given Identifier.

+		/// </summary>

+		/// <param name="userSuppliedIdentifier">

+		/// The Identifier supplied by the user.  This may be a URL, an XRI or i-name.

+		/// </param>

+		/// <returns>

+		/// An authentication request object that describes the HTTP response to

+		/// send to the user agent to initiate the authentication.

+		/// </returns>

+		/// <remarks>

+		/// This method requires an ASP.NET HttpContext.

+		/// </remarks>

+		/// <exception cref="OpenIdException">Thrown if no OpenID endpoint could be found.</exception>

+		public IAuthenticationRequest CreateRequest(Identifier userSuppliedIdentifier) {

+			var requests = CreateRequests(userSuppliedIdentifier).GetEnumerator();

+			if (requests.MoveNext()) {

+				return requests.Current;

+			} else {

+				throw new OpenIdException(Strings.OpenIdEndpointNotFound);

+			}

+		}

+

+		/// <summary>

+		/// Generates the authentication requests that can satisfy the requirements of some OpenID Identifier.

+		/// </summary>

+		/// <param name="userSuppliedIdentifier">

+		/// The Identifier supplied by the user.  This may be a URL, an XRI or i-name.

+		/// </param>

+		/// <param name="realm">

+		/// The shorest URL that describes this relying party web site's address.

+		/// For example, if your login page is found at https://www.example.com/login.aspx,

+		/// your realm would typically be https://www.example.com/.

+		/// </param>

+		/// <param name="returnToUrl">

+		/// The URL of the login page, or the page prepared to receive authentication 

+		/// responses from the OpenID Provider.

+		/// </param>

+		/// <returns>

+		/// An authentication request object that describes the HTTP response to

+		/// send to the user agent to initiate the authentication.

+		/// </returns>

+		/// <remarks>

+		/// <para>Any individual generated request can satisfy the authentication.  

+		/// The generated requests are sorted in preferred order.

+		/// Each request is generated as it is enumerated to.  Associations are created only as

+		/// <see cref="IAuthenticationRequest.RedirectingResponse"/> is called.</para>

+		/// <para>No exception is thrown if no OpenID endpoints were discovered.  

+		/// An empty enumerable is returned instead.</para>

+		/// </remarks>

+		internal IEnumerable<IAuthenticationRequest> CreateRequests(Identifier userSuppliedIdentifier, Realm realm, Uri returnToUrl) {

 			if (realm == null) throw new ArgumentNullException("realm");

 			if (returnToUrl == null) throw new ArgumentNullException("returnToUrl");

 

@@ -186,12 +275,11 @@ namespace DotNetOpenId.RelyingParty {
 				returnTo.Path = realm.AbsolutePath + returnTo.Path.Substring(realm.AbsolutePath.Length);

 			}

 

-			return AuthenticationRequest.Create(userSuppliedIdentifier, this, realm, returnTo.Uri);

+			return Util.Cast<IAuthenticationRequest>(AuthenticationRequest.Create(userSuppliedIdentifier, this, realm, returnTo.Uri, true));

 		}

 

 		/// <summary>

-		/// Creates an authentication request to verify that a user controls

-		/// some given Identifier.

+		/// Generates the authentication requests that can satisfy the requirements of some OpenID Identifier.

 		/// </summary>

 		/// <param name="userSuppliedIdentifier">

 		/// The Identifier supplied by the user.  This may be a URL, an XRI or i-name.

@@ -206,9 +294,14 @@ namespace DotNetOpenId.RelyingParty {
 		/// send to the user agent to initiate the authentication.

 		/// </returns>

 		/// <remarks>

-		/// This method requires an ASP.NET HttpContext.

+		/// <para>Any individual generated request can satisfy the authentication.  

+		/// The generated requests are sorted in preferred order.

+		/// Each request is generated as it is enumerated to.  Associations are created only as

+		/// <see cref="IAuthenticationRequest.RedirectingResponse"/> is called.</para>

+		/// <para>No exception is thrown if no OpenID endpoints were discovered.  

+		/// An empty enumerable is returned instead.</para>

 		/// </remarks>

-		public IAuthenticationRequest CreateRequest(Identifier userSuppliedIdentifier, Realm realm) {

+		internal IEnumerable<IAuthenticationRequest> CreateRequests(Identifier userSuppliedIdentifier, Realm realm) {

 			if (HttpContext.Current == null) throw new InvalidOperationException(Strings.CurrentHttpContextRequired);

 

 			// Build the return_to URL

@@ -225,18 +318,11 @@ namespace DotNetOpenId.RelyingParty {
 			}

 			UriUtil.AppendQueryArgs(returnTo, returnToParams);

 

-			return CreateRequest(userSuppliedIdentifier, realm, returnTo.Uri);

-		}

-

-		internal static bool ShouldParameterBeStrippedFromReturnToUrl(string parameterName) {

-			Protocol protocol = Protocol.Default;

-			return parameterName.StartsWith(protocol.openid.Prefix, StringComparison.OrdinalIgnoreCase)

-				|| parameterName == Token.TokenKey;

+			return CreateRequests(userSuppliedIdentifier, realm, returnTo.Uri);

 		}

 

 		/// <summary>

-		/// Creates an authentication request to verify that a user controls

-		/// some given Identifier.

+		/// Generates the authentication requests that can satisfy the requirements of some OpenID Identifier.

 		/// </summary>

 		/// <param name="userSuppliedIdentifier">

 		/// The Identifier supplied by the user.  This may be a URL, an XRI or i-name.

@@ -246,9 +332,14 @@ namespace DotNetOpenId.RelyingParty {
 		/// send to the user agent to initiate the authentication.

 		/// </returns>

 		/// <remarks>

-		/// This method requires an ASP.NET HttpContext.

+		/// <para>Any individual generated request can satisfy the authentication.  

+		/// The generated requests are sorted in preferred order.

+		/// Each request is generated as it is enumerated to.  Associations are created only as

+		/// <see cref="IAuthenticationRequest.RedirectingResponse"/> is called.</para>

+		/// <para>No exception is thrown if no OpenID endpoints were discovered.  

+		/// An empty enumerable is returned instead.</para>

 		/// </remarks>

-		public IAuthenticationRequest CreateRequest(Identifier userSuppliedIdentifier) {

+		internal IEnumerable<IAuthenticationRequest> CreateRequests(Identifier userSuppliedIdentifier) {

 			if (HttpContext.Current == null) throw new InvalidOperationException(Strings.CurrentHttpContextRequired);

 

 			// Build the realm URL

@@ -264,7 +355,13 @@ namespace DotNetOpenId.RelyingParty {
 			if (!realmUrl.Path.EndsWith("/", StringComparison.Ordinal))

 				realmUrl.Path += "/";

 

-			return CreateRequest(userSuppliedIdentifier, new Realm(realmUrl.Uri));

+			return CreateRequests(userSuppliedIdentifier, new Realm(realmUrl.Uri));

+		}

+

+		internal static bool ShouldParameterBeStrippedFromReturnToUrl(string parameterName) {

+			Protocol protocol = Protocol.Default;

+			return parameterName.StartsWith(protocol.openid.Prefix, StringComparison.OrdinalIgnoreCase)

+				|| parameterName == Token.TokenKey;

 		}

 

 		/// <summary>