1 files changed, 30 insertions, 1 deletions

diff --git a/Auth/OpenID/AuthenticationRequest.php b/Auth/OpenID/AuthenticationRequest.php
index e27da3a..c7926de 100644
--- a/Auth/OpenID/AuthenticationRequest.php
+++ b/Auth/OpenID/AuthenticationRequest.php
@@ -20,7 +20,7 @@
  * library will need to be aware of the $token value, and may care
  * about the $server_url value.  All other fields are internal
  * information for the library which the user of the library shouldn't
- * touch at all.
+ * need to touch at all.
  *
  * The 'token' is the token generated by the library.  It must be
  * saved until the user's return request, via whatever mechanism works
@@ -34,6 +34,35 @@
  * @package OpenID
  */
 class Auth_OpenID_AuthenticationRequest {
+    /**
+     * The token that the library uses to track this authentication
+     * request. This token is cryptographically signed so that it
+     * cannot be forged without the auth secret from the consumer's
+     * store.
+     */
+    var $token;
+
+    /**
+     * The identity URL of the user as sent to the server (if there is
+     * a delegate, this is the delegate)
+     */
+    var $server_id;
+
+    /**
+     * The base URL of the OpenID server
+     */
+    var $server_url;
+
+    /**
+     * The replay-attack prevention nonce
+     */
+    var $nonce;
+
+    /**
+     * Constructor for use by the consumer
+     *
+     * @access private
+     */
     function Auth_OpenID_AuthenticationRequest(
         $token, $server_id, $server_url, $nonce)
     {