Actions
Bug #21040
closedOpenID login does uses cURL even if was not defined in TYPO3_CONF_VARS
Start date:
2009-09-12
Due date:
% Done:
0%
Estimated time:
TYPO3 Version:
4.3
PHP Version:
5.2
Tags:
Complexity:
Is Regression:
Sprint Focus:
Description
The 3rd party library used for the system extension openid offers some HTTP-Fetchers to execute requests to an OpenID provider. However, if curl_init() ist available on the webserver, it is used without considering the setting in $GLOBALS['TYPO3_CONF_VARS']['SYS']['curlUse'].
I realized that problem by using an OpenID starting with 'https://', having a cURL version without HTTPS support and the disabled curlUse setting - the result was, that I could not login to the backend anymore.
The OpenID library provides a constant 'Auth_Yadis_CURL_OVERRIDE' which disables the disposal of cURL.
only testet for BackendLogin by Oliver
(issue imported from #M11932)
Files
Actions