new version of the PHP service provider made with the new Swig PHP binding

8 files changed, 1051 insertions, 0 deletions

diff --git a/php/Attic/examples/sample-sp/README b/php/Attic/examples/sample-sp/README
new file mode 100644
index 00000000..a78f9817
--- /dev/null
+++ b/php/Attic/examples/sample-sp/README
@@ -0,0 +1 @@
+TODO ;0)
diff --git a/php/Attic/examples/sample-sp/admin_user.php b/php/Attic/examples/sample-sp/admin_user.php
new file mode 100644
index 00000000..6893ad72
--- /dev/null
+++ b/php/Attic/examples/sample-sp/admin_user.php
@@ -0,0 +1,162 @@
+<?php
+/*  
+ * Service Provider Example -- User Administration 
+ *
+ * Copyright (C) 2004 Entr'ouvert
+ * http://lasso.entrouvert.org
+ * 
+ * Authors: Christophe Nowicki <cnowicki@easter-eggs.com>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
+ */
+
+  $config = unserialize(file_get_contents('config.inc'));
+
+  require_once 'DB.php';
+
+
+  $db = &DB::connect($config['dsn']);
+
+  if (DB::isError($db)) 
+	  die($db->getMessage());
+
+  if (!empty($_GET['dump'])) {
+  	$query = "SELECT identity_dump FROM users WHERE user_id='" . $_GET['dump'] . "'";
+	$res =& $db->query($query);
+	if (DB::isError($res)) 
+	  print $res->getMessage(). "\n";
+	$row = $res->fetchRow();
+?>
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
+"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<html>
+<body>
+<table>
+<caption>Identity Dump</caption>
+<tr>
+<td>
+<textarea rows="15" cols="50">
+<?php
+  echo htmlentities($row[0], ENT_QUOTES);
+?>
+</textarea>
+</td>
+</tr>
+<tr>
+<td align="center"><a href="javascript:window.close(self)">Close</a></td>
+</tr>
+</table>
+</body>
+</html>
+<?php	
+	exit;
+	}
+
+  if (!empty($_GET['del'])) {
+
+	$query = "DELETE FROM nameidentifiers WHERE user_id='" . $_GET['del'] . "'" ;
+   	$res =& $db->query($query);
+	if (DB::isError($res)) 
+	  print $res->getMessage(). "\n";
+
+	$query = "DELETE FROM users WHERE user_id='" . $_GET['del'] . "'" ;
+   	$res =& $db->query($query);
+	if (DB::isError($res)) 
+	  print $res->getMessage(). "\n";
+
+	}
+	
+
+  $query = "SELECT * FROM users";
+  $res =& $db->query($query);
+  if (DB::isError($res)) 
+  	print $res->getMessage(). "\n";
+?>
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
+"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<html>
+<head>
+<title>Lasso Service Provider Example : Users Management</title>
+<script type="text/javascript">
+
+  function openpopup(popurl){
+	var winpops=window.open(popurl,"","width=400,height=300")
+  }
+
+</script>
+</head>
+<body>
+
+<table border="1" align="center">
+<caption>Users</caption>
+<?php
+  $num_col = $res->numCols();
+  $tableinfo = $db->tableInfo($res);
+?>
+<thead>
+<tr align="center"><?php
+  for ($i = 0; $i < $num_col; $i++) {
+	echo "<td>" . $tableinfo[$i]['name'] ."</td>";
+  }
+?><td>&nbsp;</td>
+</tr>
+</thead>
+<tbody>
+<?php
+  while ($row =& $res->fetchRow()) {
+?>
+<tr align="center">
+<?php
+  for ($i = 0; $i < $num_col; $i++)
+  {
+	?>
+	<td>
+	<?php 
+	  switch ($tableinfo[$i]['name']) 
+	  {
+		case "identity_dump":
+  		  echo "<a href=javascript:openpopup('". $PHP_SELF . '?dump=' . $row[0] . "')>view</a>";
+		  break;
+		  
+		default:
+		  echo (empty($row[$i])) ? "&nbsp;" : $row[$i];
+	  }
+	  ?>
+	</td>
+	<?php
+  }
+  ?>
+  <td>
+  <a href="<?php echo $PHP_SELF . '?del=' . $row[0]; ?>">delete</a>
+  </td>
+</tr>
+<?php
+}
+?>
+</tbody>
+<tfoot>
+<tr>
+<td colspan="<?php echo $num_col; ?>">&nbsp;</td>
+<td>Total: <?php echo $res->numRows();?> Users</td>
+</tr>
+</tfoot>
+</table>
+
+</body>
+
+</html>
+<?php
+  $db->disconnect();
+?>
diff --git a/php/Attic/examples/sample-sp/assertionConsumer.php b/php/Attic/examples/sample-sp/assertionConsumer.php
new file mode 100644
index 00000000..4aa45ed8
--- /dev/null
+++ b/php/Attic/examples/sample-sp/assertionConsumer.php
@@ -0,0 +1,166 @@
+<?php
+/*  
+ * Service Provider Example -- AssertionConsumer
+ *
+ * Copyright (C) 2004 Entr'ouvert
+ * http://lasso.entrouvert.org
+ * 
+ * Authors: Christophe Nowicki <cnowicki@easter-eggs.com>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
+ */
+
+  $config = unserialize(file_get_contents('config.inc'));
+  
+  require_once 'DB.php';
+  
+
+  if (!$_GET['SAMLart']) {
+  	exit(1);
+  }
+  
+  session_start();
+
+  lasso_init();
+
+  $server_dump = file_get_contents($config['server_dump_filename']);
+
+  $server = LassoServer::newfromdump($server_dump);
+
+  $login = new LassoLogin($server);
+
+  $login->initRequest($_SERVER['QUERY_STRING'], lassoHttpMethodRedirect);
+  $login->buildRequestMsg();
+
+  $url = parse_url($login->msgUrl);
+
+  $soap = sprintf(
+	"POST %s HTTP/1.1\r\nHost: %s:%d\r\nAccept-Encoding: identity\r\nContent-Length: %d\r\nContent-Type: text/xml\r\nAccept: text/xml,application/xml,application/xhtml+xml,text/html\r\nConnection: close\r\n\r\n%s\r\n",
+  $url['path'], $url['host'], $url['port'], strlen($login->msgBody), $login->msgBody);
+
+  
+  # PHP 4.3.0 with OpenSSL support required
+  $fp = fsockopen("ssl://" . $url['host'], $url['port'], $errno, $errstr, 30) or die($errstr ($errno));
+  fwrite($fp, $soap);
+  $ret = fgets($fp);
+
+  if (!preg_match("/^HTTP\/1\\.. 200/i", $ret)) {
+	die("Wrong artifact");
+  }
+
+  while (!feof($fp)) {
+  	$reponse .= @fread($fp, 8192);
+  }
+
+  fclose($fp);
+
+  list($header, $body) = preg_split("/(\r\n\r\n|\n\n)/", $reponse, 2);
+
+  $login->processResponseMsg($body); 
+
+  $db = &DB::connect($config['dsn']);
+
+  if (DB::isError($db)) 
+	  die($db->getMessage());
+
+  $query = "SELECT user_id FROM nameidentifiers WHERE name_identifier='" . $login->nameIdentifier . "'"; 
+  $res =& $db->query($query);
+
+  if (DB::isError($res)) 
+	  die($res->getMessage());
+
+  if ($res->numRows() > 0)
+  {
+	// User already exist in the database
+	$row =& $res->fetchRow();
+    $user_id = $row[0];
+
+	# Get Identity Dump from the data base
+	$query = "SELECT identity_dump FROM users WHERE user_id='$user_id'";
+	$res =& $db->query($query);
+
+	if (DB::isError($db)) 
+	  die($db->getMessage());
+
+	$row =& $res->fetchRow();
+
+	$login->setIdentityFromDump($row[0]);
+
+	$res->free();
+  	
+	$login->acceptSso();
+	
+	$session = $login->session; 
+  
+	$_SESSION["nameidentifier"] = $login->nameIdentifier;
+	$_SESSION["session_dump"] = $session->dump();
+	$_SESSION["user_id"] = $user_id;
+
+	$url = "index.php?SID=". $SID;
+  }
+  else 
+  {
+    // New User
+	$login->acceptSso();
+
+	$identity = $login->identity;
+	$identity_dump = $identity->dump();
+
+	$session = $login->session;
+
+	// Insert into users 
+	$identity_dump_quoted = $db->quoteSmart($identity_dump);
+	$query = "INSERT INTO users (user_id,identity_dump,created) VALUES(nextval('user_id_seq'), $identity_dump_quoted, NOW())";
+	$res =& $db->query($query);
+	if (DB::isError($res)) 
+		print $res->getMessage(). "\n";
+
+	// Get UserID
+	$query = "SELECT last_value FROM user_id_seq";
+	$res =& $db->query($query);
+	if (DB::isError($res)) 
+		print $res->getMessage(). "\n";
+	$row = $res->fetchRow();
+	$user_id = $row[0];
+
+	// Insert into nameidentifiers
+	$query = "INSERT INTO nameidentifiers VALUES('".$login->nameIdentifier."', '$user_id')";
+	$res =& $db->query($query);
+	if (DB::isError($res)) 
+		print $res->getMessage(). "\n";
+	
+
+	$_SESSION["nameidentifier"] = $login->nameIdentifier;
+	$_SESSION["session_dump"] = $session->dump();
+	$_SESSION["user_id"] = $user_id;
+
+	$url = "register.php?SID=". $SID;
+  }
+  
+  // Update last_login
+  $query = "UPDATE users SET last_login=NOW() WHERE user_id='$user_id'";
+  $res =& $db->query($query);
+  if (DB::isError($res)) 
+	print $res->getMessage(). "\n";
+
+  $db->disconnect();
+	
+  lasso_shutdown();
+
+  header("Request-URI: $url");
+  header("Content-Location: $url");
+  header("Location: $url");
+  exit();
+?>
diff --git a/php/Attic/examples/sample-sp/index.php b/php/Attic/examples/sample-sp/index.php
new file mode 100644
index 00000000..39dddfed
--- /dev/null
+++ b/php/Attic/examples/sample-sp/index.php
@@ -0,0 +1,163 @@
+<?php
+/*  
+ * Service Provider Example -- Index File
+ *
+ * Copyright (C) 2004 Entr'ouvert
+ * http://lasso.entrouvert.org
+ * 
+ * Authors: Christophe Nowicki <cnowicki@easter-eggs.com>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
+ */
+
+ if(!extension_loaded('lasso')) {
+	$ret = @dl('lasso.' . PHP_SHLIB_SUFFIX);
+	if ($ret == FALSE)
+	{
+?>
+<p align='center'><b>The Lasso Extension is not available</b><br>
+Please check your PHP extensions<br>
+You can get more informations about <b>Lasso</b> at <br>
+<a href='http://lasso.entrouvert.org/'>http://lasso.entrouvert.org/</a></p>
+<?php
+	exit();
+	}
+ }
+
+ if (!file_exists('config.inc'))
+  {
+?>
+<p align='center'><b>Service Provider Configuration file is not available</b><br>
+Please run the setup script :<br>
+<a href='setup.php'>Lasso Service Provider Setup</a><br>
+You can get more informations about <b>Lasso</b> at <br>
+<a href='http://lasso.entrouvert.org/'>http://lasso.entrouvert.org/</a></p>
+<?php
+  }
+
+ $config = unserialize(file_get_contents('config.inc'));
+
+ require_once 'DB.php';
+
+ if (!empty($_GET['SID'])) 
+  session_start($_GET['SID']);
+ else
+  session_start();
+
+ lasso_init();
+ 
+?>
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
+<head>
+<title>Lasso Service Provider Example</title>
+<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-15" />
+</head>
+
+<body>
+<p>
+<table border="1" frame="above">
+<tr>
+  <td><b>Service Provider Administration</b></td>
+</tr>
+<tr>
+  <td><a href="setup.php">Setup</a></td>
+</tr>
+<tr>
+  <td><a href="admin_user.php">Users Management</a></td>
+</tr>
+<tr>
+  <td><b>Serice Provider Fonctionnality</b></td>
+</tr>
+<?php
+  if (!isset($_SESSION["nameidentifier"])) {  
+  ?>
+<tr>
+  <td><a href="login.php">Login!</a></td>
+</tr>
+<?php } else { ?>
+<tr>
+  <td><a href="logout.php?SID=<?php echo $SID ?>">Logout!</a></td>
+</tr>
+<?php } ?>
+</table>
+</p>
+<p>
+<table border="1" frame="above">
+<caption><b>Status</b></caption>
+<tr>
+  <?php 
+	if (!isset($_SESSION["nameidentifier"]))
+	{
+	  echo "<td>User is <b>not</b> logged in!</td>";
+	}
+	else 
+	{ 
+	  ?>
+	<td colspan='2' align="center">User <b>is</b> logged in!</td>
+</tr>
+<tr>
+	<td><b>Name Identifier:</b></td><td><?php echo $_SESSION["nameidentifier"]; ?></td>
+</tr>
+<tr>
+	<td><b>UserID:</b></td><td><?php echo $_SESSION["user_id"]; ?></td>
+</tr>
+<?php
+  $db = &DB::connect($config['dsn']);
+
+  if (DB::isError($db)) 
+	die($db->getMessage());
+
+  $query = "SELECT * FROM users WHERE user_id='". $_SESSION["user_id"] ."'"; 
+
+  $res =& $db->query($query);
+  if (DB::isError($res)) 
+	print $res->getMessage(). "\n";
+
+  list($user_id, $identity_dump, $first_name, $last_name, $created, $last_login) = $res->fetchRow();
+
+  ?>
+<tr>
+	<td><b>Last Name:</b></td><td><?php echo $last_name; ?></td>
+</tr>
+<tr>
+	<td><b>First Name:</b></td><td><?php echo $first_name; ?></td>
+</tr>
+<tr>
+	<td><b>PHP Session ID:</b></td><td><?php echo session_id(); ?></td>
+</tr>
+<tr>
+	<td><b>Account Created:</b></td><td><?php echo $created; ?></td>
+</tr>
+<tr>
+	<td><b>Last Login:</b></td><td><?php echo $last_login; ?></td>
+  <?php 
+	$db->disconnect();
+	} 
+	?>
+</tr>
+</table>
+</p>
+<!-- <p>Lasso Version : <?php // echo lasso_version(); ?></p> -->
+
+<br>
+<p>Copyright &copy; 2004 Entr'ouvert</p>
+
+</body>
+
+</html>
+<?php
+	lasso_shutdown();
+  ?>
diff --git a/php/Attic/examples/sample-sp/login.php b/php/Attic/examples/sample-sp/login.php
new file mode 100644
index 00000000..ae851941
--- /dev/null
+++ b/php/Attic/examples/sample-sp/login.php
@@ -0,0 +1,53 @@
+<?php
+/*  
+ *
+ * Service Provider Example -- Simple Sing On 
+ *
+ * Copyright (C) 2004 Entr'ouvert
+ * http://lasso.entrouvert.org
+ * 
+ * Authors: Christophe Nowicki <cnowicki@easter-eggs.com>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
+ */
+
+
+  $config = unserialize(file_get_contents('config.inc'));
+
+  lasso_init();
+
+  $server_dump = file_get_contents($config['server_dump_filename']);
+
+  $server = LassoServer::newfromdump($server_dump);
+
+  $login = new LassoLogin($server);
+
+  $login->initauthnrequest(lassoHttpMethodRedirect);
+  
+  $request = $login->authnRequest;
+  
+  $request->isPassive = FALSE;
+  $request->nameIdPolicy = lassoLibNameIDPolicyTypeFederated;
+  $request->consent = lassoLibConsentObtained;
+
+  $login->buildAuthnRequestMsg("https://idp1/metadata");
+
+  $url = $login->msgUrl;
+
+  header("Request-URI: $url");
+  header("Content-Location: $url");
+  header("Location: $url");
+  exit();
+?>
diff --git a/php/Attic/examples/sample-sp/logout.php b/php/Attic/examples/sample-sp/logout.php
new file mode 100644
index 00000000..78ebec0c
--- /dev/null
+++ b/php/Attic/examples/sample-sp/logout.php
@@ -0,0 +1,104 @@
+<?php
+/*  
+ * Service Provider Example -- Logout
+ *
+ * Copyright (C) 2004 Entr'ouvert
+ * http://lasso.entrouvert.org
+ * 
+ * Authors: Christophe Nowicki <cnowicki@easter-eggs.com>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
+ */
+
+  $config = unserialize(file_get_contents('config.inc'));
+
+ require_once 'DB.php';
+
+  if (!empty($_GET['SID'])) 
+	session_start($_GET['SID']);
+  else
+	session_start();
+
+  if (!isset($_SESSION["nameidentifier"])) {
+	print "User is not logged in";
+	exit(0);
+	}
+
+  lasso_init();
+  
+  $db = &DB::connect($config['dsn']);
+
+  if (DB::isError($db)) 
+	die($db->getMessage());
+
+  $server_dump = file_get_contents($config['server_dump_filename']);
+  
+  $server = LassoServer::newfromdump($server_dump);
+  
+  $logout = new LassoLogout($server, lassoProviderTypeSp);
+  
+  $query = "SELECT identity_dump FROM users WHERE user_id='" . $_SESSION['user_id'] . "'";
+
+  $res =& $db->query($query);
+  
+  if (DB::isError($res)) 
+	print $res->getMessage(). "\n";
+ 
+  $row = $res->fetchRow();
+  
+  $logout->setIdentityFromDump($row[0]);
+  $logout->setSessionFromDump($_SESSION['session_dump']);
+
+  $logout->initRequest();
+  $logout->buildRequestMsg();
+
+  $url = parse_url($logout->msgUrl);
+
+  $soap = sprintf(
+	"POST %s HTTP/1.1\r\nHost: %s:%d\r\nAccept-Encoding: identity\r\nContent-Length: %d\r\nContent-Type: text/xml\r\nAccept: text/xml,application/xml,application/xhtml+xml,text/html\r\nConnection: close\r\n\r\n%s\r\n",
+  $url['path'], $url['host'], $url['port'], 
+  strlen($logout->msgBody), $logout->msgBody);
+
+
+  # PHP 4.3.0 with OpenSSL support required
+  $fp = fsockopen("ssl://" . $url['host'], $url['port'], $errno, $errstr, 30) or die($errstr ($errno));
+ 
+  fwrite($fp, $soap);
+  $ret = fgets($fp);
+
+  if (!preg_match("/^HTTP\/1\\.. 200/i", $ret)) {
+	die("User is already logged out");
+  }
+
+  while (!feof($fp)) {
+  	$reponse .= @fread($fp, 8192);
+  }
+
+  fclose($fp);
+
+  # Destroy The PHP Session
+  $_SESSION = array();
+
+  session_destroy();
+  
+  $db->disconnect();
+  lasso_shutdown();
+
+  $url = "index.php";
+  
+  header("Request-URI: $url");
+  header("Content-Location: $url");
+  header("Location: $url");
+?>
diff --git a/php/Attic/examples/sample-sp/register.php b/php/Attic/examples/sample-sp/register.php
new file mode 100644
index 00000000..7e61d4f7
--- /dev/null
+++ b/php/Attic/examples/sample-sp/register.php
@@ -0,0 +1,86 @@
+<?php
+/*  
+ * Service Provider Example -- Register Form
+ *
+ * Copyright (C) 2004 Entr'ouvert
+ * http://lasso.entrouvert.org
+ * 
+ * Authors: Christophe Nowicki <cnowicki@easter-eggs.com>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
+ */
+
+  $config = unserialize(file_get_contents('config.inc'));
+  
+  require_once 'DB.php';
+  
+  if (!empty($_GET['SID'])) 
+	session_start($_GET['SID']);
+  else
+	session_start();
+
+  if (!isset($_SESSION["nameidentifier"])) {
+	print "User is not logged in";
+	exit(0);
+	}
+
+	switch($_POST['action']) {
+	  case "submit":
+		$db = &DB::connect($config['dsn']);
+
+		if (DB::isError($db)) 
+		  die($db->getMessage());
+
+		$query = "UPDATE users SET first_name='" . $_POST['first_name'] . "',last_name='". $_POST['last_name'] ."' WHERE user_id='".$_SESSION["user_id"]."'";
+		$res =& $db->query($query);
+		if (DB::isError($res)) 
+		  print $res->getMessage(). "\n";
+
+		$url = "index.php";
+		header("Request-URI: $url");
+		header("Content-Location: $url");
+		header("Location: $url");
+		break;
+	  default:
+?>
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
+"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<html>
+<head>
+<title>Lasso Service Provider Example : Registration Form</title>
+</head>
+
+<body>
+<form name='frm' action="<?php echo $PHP_SELF; ?>" method='post'>
+<table align="center">
+<caption>Registration Form</caption>
+<tr>
+  <td>First Name:</td><td><input type='text' name="first_name" maxlength='50'></td>
+</tr>
+<tr>
+  <td>Last Name:</td><td><input type='text' name="last_name" maxlength='50'></td>
+</tr>
+<tr>
+	<td>&nbsp;</td><td><input type='submit' value="Ok"></td>
+</tr>
+</table>
+<input type='hidden' name='action' value='submit'>
+</form>
+
+</body>
+</html>
+<?php
+}
+?>
diff --git a/php/Attic/examples/sample-sp/setup.php b/php/Attic/examples/sample-sp/setup.php
new file mode 100644
index 00000000..edefe115
--- /dev/null
+++ b/php/Attic/examples/sample-sp/setup.php
@@ -0,0 +1,316 @@
+<?php
+/*  
+ *
+ * Service Provider Example -- Installation Script
+ *
+ * Copyright (C) 2004 Entr'ouvert
+ * http://lasso.entrouvert.org
+ * 
+ * Authors: Christophe Nowicki <cnowicki@easter-eggs.com>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
+ */
+?>
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<?php
+ if(!extension_loaded('lasso')) {
+	$ret = @dl('lasso.' . PHP_SHLIB_SUFFIX);
+	if ($ret == FALSE)
+	{
+		print "<p align='center'><b>The Lasso Extension is not available</b><br>";
+		print "Please check your PHP extensions<br>";
+		print "You can get more informations about <b>Lasso</b> at <br>";
+		print "<a href='http://lasso.entrouvert.org/'>http://lasso.entrouvert.org/</a></p>";
+		exit();
+	}
+ }
+
+	require_once 'DB.php';
+
+	# default config
+	if (!file_exists('config.inc'))
+	{
+	  $cwd = getcwd();
+	  $config = array(
+	  'dsn' => "pgsql://sp:sp@localhost/sp",
+	  'server_dump_filename' => "lasso_server_dump.xml",
+	  'sp-metadata' => "/home/cnowicki/mcvs/lasso/tests/data/sp1-la/metadata.xml",
+	  'sp-public_key' => "/home/cnowicki/mcvs/lasso/tests/data/sp1-la/public-key.pem",
+	  'sp-private_key' => "/home/cnowicki/mcvs/lasso/tests/data/sp1-la/private-key-raw.pem",
+	  'sp-ca' => "/home/cnowicki/mcvs/lasso/tests/data/sp1-la/certificate.pem",
+	  'idp-metadata' => "/home/cnowicki/mcvs/lasso/tests/data/idp1-la/metadata.xml",
+	  'idp-public_key' => "/home/cnowicki/mcvs/lasso/tests/data/idp1-la/public-key.pem",
+	  'idp-ca' => "/home/cnowicki/mcvs/lasso/tests/data/ca1-la/certificate.pem",
+	  );
+
+	  $config_ser = serialize($config);
+
+	  if (($fd = fopen(getcwd()."/config.inc", "w")))
+		{
+		  fwrite($fd, $config_ser);
+		  fclose($fd);
+		}
+	  else
+		die("Could not write default config file");
+	}
+	else 
+	{
+	  $config = unserialize(file_get_contents('config.inc'));
+	}
+
+	if ($_POST['action'] == 'setup') 
+	{
+		ob_start();
+		
+		$setup = FALSE;
+		
+		print "<b>Lasso Service Provider Setup</b><br>";
+
+		unset($_POST['action']);
+
+		$diff = array_diff($_POST, $config);
+
+		foreach($diff as $key => $value) {
+		  $config[$key] = $value;
+		}
+		
+		print "Check Data base : ";
+
+		$db = &DB::connect($config['dsn']);
+		
+		if (DB::isError($db)) {
+		  die("Failed (" . $db->getMessage() . ")");
+		}
+		else 
+		  print "OK";
+		 
+		print "<br>Create sequence 'user_id_seq' : ";
+		
+		$query = "DROP SEQUENCE user_id_seq";
+		$res =& $db->query($query);
+		
+		$query = "CREATE SEQUENCE user_id_seq";
+		$res =& $db->query($query);
+		if (DB::isError($res)) 
+		  die($res->getMessage());
+		
+		print "OK";
+
+		print "<br>Create table 'users' : ";
+		$query = "DROP TABLE users CASCADE";
+		$res =& $db->query($query);
+
+		$query = "CREATE TABLE users (
+		  user_id         varchar(100) primary key,
+		  identity_dump   text,
+		  first_name   	  varchar(50),
+		  last_name   	  varchar(50),
+		  last_login	  timestamp,
+		  created		  timestamp)";
+		$res =& $db->query($query);
+		if (DB::isError($res)) 
+		  die($res->getMessage());
+
+		print "OK";
+
+		print "<br>Create table 'nameidentifiers' : ";
+
+		$query = "DROP TABLE nameidentifiers CASCADE";
+		$res =& $db->query($query);
+
+		$query = "CREATE TABLE nameidentifiers (
+		  name_identifier varchar(100) primary key,
+		  user_id         varchar(100),
+		  FOREIGN KEY (user_id) REFERENCES users (user_id))";
+		$res =& $db->query($query);
+		if (DB::isError($res)) 
+		  die($res->getMessage()); 
+
+		print "OK";
+		
+		$db->disconnect();
+		
+		$keys = array_keys($config);
+		$files = preg_grep("/(sp|idp)/", $keys);
+
+		foreach($files as $file)
+		{
+		  print "<br>Check file " . $config[$file] . " : ";
+		  if (!file_exists($config[$file]))
+		  {
+			die("Failed (file does not exist)");
+		  }
+		  else
+			print "OK";
+		}
+
+		lasso_init();
+
+		print "<br>Create Server : ";
+
+		$server = new LassoServer($config['sp-metadata'], 
+		  $config['sp-public_key'], $config['sp-private_key'], 
+		  $config['sp-ca'], lassoSignatureMethodRsaSha1);
+
+		if (empty($server))
+		{
+		  die("Failed");
+		} 
+		else
+		  print "OK";
+
+		print "<br>Add provider : ";
+
+		$ret = $server->add_provider($server, $config['idp-metadata'], 
+		  $config['idp-public_key'], $config['idp-ca']);
+
+		/*if ($ret != TRUE)
+		{
+		  print "Failed";
+		  break;
+		} 
+		else */
+		  print "OK";
+
+		print "<br>Write XML Server Dump : ";
+
+		$dump = $server->dump();
+		
+		if (($fd = fopen($config['server_dump_filename'], "w")))
+		{
+		  fwrite($fd, $dump);
+		  fclose($fd);
+		  print "OK";
+		}
+		else
+		  die("Failed");
+
+		lasso_shutdown();
+
+		print "<br>Save configuration file : ";
+
+		# Save configuration file
+		$config_ser = serialize($config);
+		if (($fd = fopen("config.inc", "w")))
+		{
+		  fwrite($fd, $config_ser);
+		  fclose($fd);
+		  print "OK";
+		} 
+		else
+		{
+		  print("Failed");
+		  break;
+		}
+		$setup = TRUE;
+	}
+		ob_start();
+?>
+<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
+<head>
+<title>Setup script for Lasso (Liberty Alliance Single Sign On)</title>
+<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-15" />
+<?php
+  if ($setup == TRUE) {
+?>
+<meta http-equiv="Refresh" CONTENT="3; URL=index.php">
+<?php } ?>
+</head>
+<body>
+<?php
+  ob_end_flush();
+  ob_end_flush();
+  ?>
+</body>
+</html>
+<?php
+  	if (empty($setup))
+	{
+?>
+
+<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
+<head>
+<title>Setup script for Lasso (Liberty Alliance Single Sign On)</title>
+<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-15" />
+</head>
+<body>
+<form name='frm' action='<?php echo $PHP_SELF ?>' method='POST'>
+<table>
+<caption>Lasso Service Provider Setup</caption>
+<tr>
+  <td colspan='3' align='center'>Database Configuration</td>
+</tr>
+<tr>
+  <td>DSN (Data Source Name) :</td><td><input type='text' name='dsn' size='50' value='<?php echo $config['dsn']; ?>' maxlength='100'></td><td><a href='http://pear.php.net/manual/en/package.database.db.intro-dsn.php' target='_new'>Help</a></td>
+</tr>
+<tr>
+  <td>Server XML Dump:</td><td><input type='text' name='server_dump_filename' size='50' value='<?php echo $config['server_dump_filename']; ?>' maxlength='100'></td><td>&nbsp;</td>
+
+</tr>
+<tr>
+  <td colspan='3' align='center'>Service Provider</td>
+</tr>
+
+<tr>
+  <td>Metadata</td><td><input type='text' name='sp-metadata' size='50' value='<?php echo $config['sp-metadata']; ?>'></td><td>&nbsp;</td>
+
+</tr>
+
+<tr>
+  <td>Public Key</td><td><input type='text' name='sp-public_key' size='50' value='<?php echo $config['sp-public_key']; ?>'></td><td>&nbsp;</td>
+
+</tr>
+
+<tr>
+  <td>Private Key</td><td><input type='text' name='sp-private_key' size='50' value='<?php echo $config['sp-private_key']; ?>'></td><td>&nbsp;</td>
+
+</tr>
+
+<tr>
+  <td>Certificate</td><td><input type='text' name='sp-ca' size='50' value='<?php echo $config['sp-ca']; ?>'></td><td>&nbsp;</td>
+
+</tr>
+
+<tr>
+  <td colspan='3' align='center'>Identity Provider</td>
+</tr>
+
+<tr>
+  <td>Metadata</td><td><input type='text' name='idp-metadata' size='50' value='<?php echo $config['idp-metadata']; ?>'></td><td>&nbsp;</td>
+
+</tr>
+<tr>
+  <td>Public Key</td><td><input type='text' name='idp-public_key' size='50' value='<?php echo $config['idp-public_key']; ?>'></td><td>&nbsp;</td>
+
+</tr>
+<tr>
+  <td>Certificate</td><td><input type='text' name='idp-ca' size='50' value='<?php echo $config['idp-ca']; ?>'></td><td>&nbsp;</td>
+</tr>
+
+<tr>
+  <td colspan='3'>&nbsp;</td>
+</tr>
+
+<tr>
+  <td align='center' colspan='3'><input type='submit' value='setup'></td>
+</tr>
+</table>
+<input type='hidden' name='action' value='setup'>
+</form>
+</body>
+</html>
+<?php
+  }
+?>