tags:

views:

5

answers:

1

What is the purpose of Auth_OpenID_FileStore in php-openid?

Update: I understood what is a FileStore. Is it safe to save the file in /tmp? Or should i move it to some other location accessible only to me? Is it better to use a database for the store?

+1  A: 

This is a filesystem-based store for OpenID associations and nonces.

This store should be safe for use in concurrent systems on both windows and unix (excluding NFS filesystems). There are a couple race conditions in the system, but those failure cases have been set up in such a way that the worst-case behavior is someone having to try to log in a second time.

Most of the methods of this class are implementation details. People wishing to just use this store need only pay attention to the constructor.

http://openidenabled.com/files/php-openid/docs/2.1.1/OpenID/Auth_OpenID_FileStore.html

Hannes
i couldn't understand much from that. What is being stored in the file and why?
Joyce Babu
Well its just a Way to save nonces ( number used once http://en.wikipedia.org/wiki/Cryptographic_nonce ) or an Association Between an Site and an Open ID Provider
Hannes
Thanks. Is it safe to save the file in /tmp? Or should i move it to some other location accessible only to me? Is it better to use a database for the store?
Joyce Babu