Radically easy to access on brand approved content for distribution and omnichannel performant delivery. AEM Assets Content Hub and Dynamic Media with OpenAPI capabilities is now GA.
External Authentication
Hi
This may be going over old ground, but i would really appreciate any help regarding trying to generate an authentication token. After a week or so of trying, insanity is not far off 
. Basically I just can't get the authToken to be created, due to a 'Connection error: Error #1088: The markup in the document following the root element must be well-formed. caused by the PHP code regarding 'new AFCSAccount' shown in red below.
I have a Flex 3 project that connects to a mySQL database and I want to externally authenticate the users when they use the chat room/webcam area. I am using the WAMP environment to test things out, with PHP 5.2.9. This is part of the code:
<mx:ViewStack
id = "mainStack" x="20" width="97%" y="180" height="100%" cornerRadius="10" selectedIndex="0">
<mx:Canvas... code of other stack elements not shown here for clarity
<!-- selectedIndex=3 -->
<rtc:ConnectSessionContainer
authenticator="{auth}" id="cSession" width = "100%" height = "100%" autoLogin="false" roomURL = "{roomURL}" >
code of webcam/chat not shown here for clarity
</rtc:ConnectSessionContainer>
</mx:ViewStack>
<rtc:AdobeHSAuthenticator
id="auth" authenticationKey = "{authToken}" protocol="rtmfp" />
My PHP login code is based around the code that Flex Builder creates when using a datagrid with a database, and the fact that I don't completely know what I am doing is I think where the problem lies, and apologise in advance for anything blindingly obvious that I am doing wrong. The code in red always causes a 'Mark-up' error and so the token variable is not being returned. If I take away this code, all other variables are returned fine, including the roomURL, but obviously not the authToken value.:
function userLogin() {
global $conn;
$username = GetSQLValueString($_REQUEST["Username"], "text");
$password = GetSQLValueString($_REQUEST["Password"], "text");
$devuser = "****";
$devpass = "******";
$user = $username;
$pass = $password;
$account = "*******";
$room = "*******";
$secret = "*******";
$host = "http://connectnow.acrobat.com";
$accountURL = "{$host}/{$account}";
$roomURL = "{$accountURL}/{$room}";
//Query the database to see if the given username/password combination is valid.
$query = "SELECT * FROM users WHERE Username = $username AND password = $password";
$toret = mysql_fetch_array(mysql_query($query, $conn));
$am = new AFCSAccount($accountURL);
$am->login($devuser, $devpass);
$session = $am->getSession($room);
$token = $session->getAuthenticationToken($secret, $user, $user, 50);
if(!$toret)
{
// an update error, return it
$toret = array(
"data" => array("error" => mysql_error()),
"metadata" => array()
);
}
else {
$toret = array(
"data" => $toret,
"metadata" => array (
"Username" => $username,
"Password" => $password,
"roomURL" => $roomURL,
"authToken" => $token
)
);
}
return $toret;
}
Again, any help or guidance really would be much appreciated. My PHP skills are not great but getting better although I am aware that this is probably the root cause of my current pain!
Thanks in Advance
Ok Raff, in a roundabout way, you have saved me from pulling all my hair out and the world seems a better place now 
I tried the SDK example on it's own and it threw an error regarding SSL. Now I thought I had enabled this in my php.ini file but it seems I hadn't. So I did this, back to my own app and lo and behold the token was returned - I never thought I'd be so happy to see such a long and beautiful number.
I am now back on track - almost.
I now have all variables in order but, kind of crucially, when I click on a button to start the videochat/whiteboard section of my site, none of the components appear. It is part of a viewstack. Now I have checked that the viewstack index is shown when aforementioned button is clicked (by adding a temp panel) so that is not the problem.
I think the problem lies in where I have the 'adobeHSAuthenticator' line of code. If I try and put it within the viewstack code, I get this error:
'Component declarations are not allowed here. (Note: visual children must implement mx.core.IUIComponent)'
So I put it outside of the viewstack code which gets rid of the error, but I can't help thinking is not then letting me use or view any of the components.
Thanks again in advance for any guidance....
Success. I followed your lead, and basically started to strip out everything except for the afcs components. When I took out the viewstack, there was no change, however my site was also made up of three different states and this is where the problem was. I can't fully explain why but it just didn't seem to like it when the connectsessioncontainer was added as a child of the specific state.
I was never that comfortable with using states anyway, don't ask me why, so it has given me the excuse to redsign it using two viewstacks. I now can see all afcs components, the user details and everything works fine. I'm sure there's a way to make it work with states but I have to get on with other things now!
Now if you can just tell me that echo cancellation is round the corner, then I'll be a happy man... 
Thanks for the team's guidance, much appeciated.
Cheers
