summaryrefslogtreecommitdiffstats
path: root/Auth/OpenID/FileStore.php
diff options
context:
space:
mode:
Diffstat (limited to 'Auth/OpenID/FileStore.php')
-rw-r--r--Auth/OpenID/FileStore.php7
1 files changed, 7 insertions, 0 deletions
diff --git a/Auth/OpenID/FileStore.php b/Auth/OpenID/FileStore.php
index dba0e4d..34266ca 100644
--- a/Auth/OpenID/FileStore.php
+++ b/Auth/OpenID/FileStore.php
@@ -20,6 +20,7 @@
require_once 'Auth/OpenID.php';
require_once 'Auth/OpenID/Interface.php';
require_once 'Auth/OpenID/HMACSHA1.php';
+require_once 'Auth/OpenID/Nonce.php';
/**
* This is a filesystem-based store for OpenID associations and
@@ -337,11 +338,17 @@ class Auth_OpenID_FileStore extends Auth_OpenID_OpenIDStore {
*/
function useNonce($server_url, $timestamp, $salt)
{
+ global $Auth_OpenID_SKEW;
+
if (!$this->active) {
trigger_error("FileStore no longer active", E_USER_ERROR);
return null;
}
+ if ( abs($timestamp - gmmktime()) > $Auth_OpenID_SKEW ) {
+ return False;
+ }
+
if ($server_url) {
list($proto, $rest) = explode('://', $server_url, 2);
} else {
generated by cgit v1.1 at 2025-06-02 23:07:48 +0000