[TYPO3-core] RFC: Bug #11932: OpenID login does uses cURL even if was not defined in TYPO3_CONF_VARS
Oliver Hader
oliver at typo3.org
Fri Nov 6 14:01:13 CET 2009
FYI: Committed to SVN Trunk (rev. 6358)
olly
Oliver Hader schrieb:
> This is an SVN patch request.
>
> Type: Bugfix
>
> Bugtracker references:
> http://bugs.typo3.org/view.php?id=11932
>
> Branch: Trunk
>
> Problem:
> The 3rd party library used for the system extension openid offers some
> HTTP-Fetchers to execute requests to an OpenID provider. However, if
> curl_init() ist available on the webserver, it is used without
> considering the setting in $GLOBALS['TYPO3_CONF_VARS']['SYS']['curlUse'].
>
> I realized that problem by using an OpenID starting with 'https://' and
> having a cURL version without HTTPS support and the disabled curlUse
> setting - the result was, that I could not login to the backend anymore
> with that OpenID.
>
> Solution:
> The OpenID library provides a constant 'Auth_Yadis_CURL_OVERRIDE' which
> disables the disposal of cURL.
>
> olly
--
Oliver Hader
TYPO3 Release Manager 4.3
More information about the TYPO3-team-core
mailing list