ilAuthFrontend Class Reference

Inheritance diagram for ilAuthFrontend:

Collaboration diagram for ilAuthFrontend:

Public Member Functions
	__construct (ilAuthSession $session, ilAuthStatus $status, ilAuthCredentials $credentials, array $providers)
	getAuthSession ()
	Get auth session. More...
	getCredentials ()
	Get auth credentials. More...
	getProviders ()
	Get providers. More...
	getStatus ()
	resetStatus ()
	Reset status. More...
	migrateAccount (ilAuthSession $session)
	Migrate Account to existing user account. More...
	migrateAccountNew ()
	Create new user account. More...
	authenticate ()
	Try to authenticate user. More...

Data Fields
const	MIG_EXTERNAL_ACCOUNT = 'mig_ext_account'
const	MIG_TRIGGER_AUTHMODE = 'mig_trigger_auth_mode'
const	MIG_DESIRED_AUTHMODE = 'mig_desired_auth_mode'

Protected Member Functions
	handleAccountMigration (ilAuthProviderAccountMigrationInterface $provider)
	Handle account migration. More...
	handleAuthenticationSuccess (ilAuthProviderInterface $provider)
	Handle successful authentication. More...
	checkActivation (ilObjUser $user)
	Check activation. More...
	checkExceededLoginAttempts (ilObjUser $user)
	checkTimeLimit (ilObjUser $user)
	Check time limit. More...
	checkIp (ilObjUser $user)
	Check ip. More...
	checkSimultaneousLogins (ilObjUser $user)
	Check simultaneous logins. More...
	handleAuthenticationFail ()
	handleLoginAttempts ()

Private Attributes
ilLogger	$logger
ilSetting	$settings
ilLanguage	$lng
ilAuthCredentials	$credentials
ilAuthStatus	$status
array	$providers
ilAuthSession	$auth_session
ilAppEventHandler	$ilAppEventHandler
ilUserProfile	$user_profile
bool	$authenticated = false

Detailed Description

Author

Stefan Meyer smeye.nosp@m.r.il.nosp@m.ias@g.nosp@m.mx.d.nosp@m.e

Definition at line 27 of file class.ilAuthFrontend.php.

Constructor & Destructor Documentation

__construct()

ilAuthFrontend::__construct	(	ilAuthSession	$session,
		ilAuthStatus	$status,
		ilAuthCredentials	$credentials,
		array	$providers
	)

Parameters

ilAuthSession	$session
ilAuthStatus	$status
ilAuthCredentials	$credentials
	ilAuthProvider[]	$providers

Definition at line 54 of file class.ilAuthFrontend.php.

References $credentials, $DIC, $providers, $status, ILIAS\Repository\lng(), ILIAS\Repository\logger(), and ILIAS\Repository\settings().

    {
        global $DIC;
        $this->logger = $DIC->logger()->auth();
        $this->settings = $DIC->settings();
        $this->lng = $DIC->language();
        $this->ilAppEventHandler = $DIC->event();

        $this->auth_session = $session;
        $this->credentials = $credentials;
        $this->status = $status;
        $this->providers = $providers;

        $this->user_profile = new ilUserProfile();
    }

Here is the call graph for this function:

Member Function Documentation

authenticate()

ilAuthFrontend::authenticate

(

)

Try to authenticate user.

Definition at line 176 of file class.ilAuthFrontend.php.

References $provider, getProviders(), getStatus(), handleAccountMigration(), handleAuthenticationFail(), handleAuthenticationSuccess(), ILIAS\Repository\logger(), resetStatus(), ilAuthStatus\STATUS_ACCOUNT_MIGRATION_REQUIRED, ilAuthStatus\STATUS_AUTHENTICATED, and ilAuthStatus\STATUS_AUTHENTICATION_FAILED.

                                  : bool
    {
        foreach ($this->getProviders() as $provider) {
            $this->resetStatus();

            $this->logger->debug('Trying authentication against: ' . get_class($provider));

            $provider->doAuthentication($this->getStatus());

            $this->logger->debug('Authentication user id: ' . $this->getStatus()->getAuthenticatedUserId());

            switch ($this->getStatus()->getStatus()) {
                case ilAuthStatus::STATUS_AUTHENTICATED:
                    return $this->handleAuthenticationSuccess($provider);

                case ilAuthStatus::STATUS_ACCOUNT_MIGRATION_REQUIRED:
                    $this->logger->notice("Account migration required.");
                    if ($provider instanceof ilAuthProviderAccountMigrationInterface) {
                        return $this->handleAccountMigration($provider);
                    }

                    $this->logger->error('Authentication migratittion required but provider does not support interface' . get_class($provider));
                    break;
                case ilAuthStatus::STATUS_AUTHENTICATION_FAILED:
                default:
                    $this->logger->debug('Authentication failed against: ' . get_class($provider));
                    break;
            }
        }
        return $this->handleAuthenticationFail();
    }

Here is the call graph for this function:

checkActivation()

ilAuthFrontend::checkActivation ( ilObjUser  $user )

protected

Check activation.

Definition at line 367 of file class.ilAuthFrontend.php.

References ilObjUser\getActive().

Referenced by handleAuthenticationSuccess().

                                                       : bool
    {
        return $user->getActive();
    }

Here is the call graph for this function:

Here is the caller graph for this function:

checkExceededLoginAttempts()

ilAuthFrontend::checkExceededLoginAttempts ( ilObjUser  $user )

protected

Definition at line 372 of file class.ilAuthFrontend.php.

References ilSecuritySettings\_getInstance(), ilObjUser\_getLoginAttempts(), ANONYMOUS_USER_ID, ilObjUser\getActive(), and ilObject\getId().

Referenced by handleAuthenticationSuccess().

                                                                  : bool
    {
        if ($user->getId() === ANONYMOUS_USER_ID) {
            return true;
        }

        $isInactive = !$user->getActive();
        if (!$isInactive) {
            return true;
        }

        $security = ilSecuritySettings::_getInstance();
        $maxLoginAttempts = $security->getLoginMaxAttempts();

        if (!$maxLoginAttempts) {
            return true;
        }

        $numLoginAttempts = \ilObjUser::_getLoginAttempts($user->getId());

        return $numLoginAttempts < $maxLoginAttempts;
    }

Here is the call graph for this function:

Here is the caller graph for this function:

checkIp()

ilAuthFrontend::checkIp ( ilObjUser  $user )

protected

Check ip.

Definition at line 406 of file class.ilAuthFrontend.php.

References $_SERVER, ilObjUser\getClientIP(), and ilLoggerFactory\getLogger().

Referenced by handleAuthenticationSuccess().

                                               : bool
    {
        $clientip = $user->getClientIP();
        if (trim($clientip) !== "") {
            $clientip = preg_replace("/[^0-9.?*,:]+/", "", $clientip);
            $clientip = str_replace([".", "?", "*", ","], ["\\.", "[0-9]", "[0-9]*", "|"], $clientip);

            ilLoggerFactory::getLogger('auth')->debug('Check ip ' . $clientip . ' against ' . $_SERVER['REMOTE_ADDR']);

            if (!preg_match("/^" . $clientip . "$/", $_SERVER["REMOTE_ADDR"])) {
                return false;
            }
        }
        return true;
    }

Here is the call graph for this function:

Here is the caller graph for this function:

checkSimultaneousLogins()

ilAuthFrontend::checkSimultaneousLogins ( ilObjUser  $user )

protected

Check simultaneous logins.

Definition at line 425 of file class.ilAuthFrontend.php.

References getAuthSession(), ilObject\getId(), ilObjUser\hasActiveSession(), ILIAS\Repository\logger(), and ILIAS\Repository\settings().

Referenced by handleAuthenticationSuccess().

                                                               : bool
    {
        $this->logger->debug('Setting prevent simultaneous session is: ' . $this->settings->get('ps_prevent_simultaneous_logins'));
        return !($this->settings->get('ps_prevent_simultaneous_logins') &&
            ilObjUser::hasActiveSession($user->getId(), $this->getAuthSession()->getId()));
    }

Here is the call graph for this function:

Here is the caller graph for this function:

checkTimeLimit()

ilAuthFrontend::checkTimeLimit ( ilObjUser  $user )

protected

Check time limit.

Definition at line 398 of file class.ilAuthFrontend.php.

References ilObjUser\checkTimeLimit().

Referenced by handleAuthenticationSuccess().

                                                      : bool
    {
        return $user->checkTimeLimit();
    }

Here is the call graph for this function:

Here is the caller graph for this function:

getAuthSession()

ilAuthFrontend::getAuthSession

(

)

Get auth session.

Definition at line 73 of file class.ilAuthFrontend.php.

References $auth_session.

Referenced by checkSimultaneousLogins(), and handleAuthenticationSuccess().

                                    : ilAuthSession
    {
        return $this->auth_session;
    }

Here is the caller graph for this function:

getCredentials()

ilAuthFrontend::getCredentials

(

)

Get auth credentials.

Definition at line 81 of file class.ilAuthFrontend.php.

References $credentials.

Referenced by handleLoginAttempts(), and migrateAccount().

                                    : ilAuthCredentials
    {
        return $this->credentials;
    }

Here is the caller graph for this function:

getProviders()

ilAuthFrontend::getProviders

(

)

Get providers.

Returns

ilAuthProviderInterface[] $provider

Definition at line 90 of file class.ilAuthFrontend.php.

References $providers.

Referenced by ilAuthFrontendHTTP\authenticate(), authenticate(), and migrateAccount().

                                  : array
    {
        return $this->providers;
    }

Here is the caller graph for this function:

getStatus()

ilAuthFrontend::getStatus

(

)

Returns

Definition at line 98 of file class.ilAuthFrontend.php.

References $status.

Referenced by ilAuthFrontendHTTP\authenticate(), authenticate(), handleAccountMigration(), handleAuthenticationSuccess(), handleLoginAttempts(), migrateAccount(), migrateAccountNew(), and resetStatus().

                               : ilAuthStatus
    {
        return $this->status;
    }

Here is the caller graph for this function:

handleAccountMigration()

ilAuthFrontend::handleAccountMigration ( ilAuthProviderAccountMigrationInterface  $provider )

protected

Handle account migration.

Parameters

ilAuthProvider

$provider

Definition at line 212 of file class.ilAuthFrontend.php.

References ANONYMOUS_USER_ID, ilLogLevel\DEBUG, ilSession\dumpToString(), ilAuthProviderAccountMigrationInterface\getExternalAccountName(), getStatus(), ilAuthProviderAccountMigrationInterface\getTriggerAuthMode(), ilAuthProviderAccountMigrationInterface\getUserAuthModeName(), ILIAS\Repository\logger(), and ilSession\set().

Referenced by authenticate().

                                                                                                : bool
    {
        $this->logger->debug('Trigger auth mode: ' . $provider->getTriggerAuthMode());
        $this->logger->debug('Desired auth mode: ' . $provider->getUserAuthModeName());
        $this->logger->debug('External account: ' . $provider->getExternalAccountName());

        $this->getStatus()->setAuthenticatedUserId(ANONYMOUS_USER_ID);
        #$this->getStatus()->setStatus(ilAuthStatus::STATUS_AUTHENTICATED);

        ilSession::set(static::MIG_TRIGGER_AUTHMODE, $provider->getTriggerAuthMode());
        ilSession::set(static::MIG_DESIRED_AUTHMODE, $provider->getUserAuthModeName());
        ilSession::set(static::MIG_EXTERNAL_ACCOUNT, $provider->getExternalAccountName());

        $this->logger->dump(ilSession::dumpToString(), ilLogLevel::DEBUG);

        return true;
    }

Here is the call graph for this function:

Here is the caller graph for this function:

handleAuthenticationFail()

ilAuthFrontend::handleAuthenticationFail ( )

protected

Definition at line 432 of file class.ilAuthFrontend.php.

References handleLoginAttempts(), and ILIAS\Repository\logger().

Referenced by authenticate(), migrateAccount(), and migrateAccountNew().

                                                 : bool
    {
        $this->logger->debug('Authentication failed for all authentication methods.');

        $this->handleLoginAttempts();

        return false;
    }

Here is the call graph for this function:

Here is the caller graph for this function:

handleAuthenticationSuccess()

ilAuthFrontend::handleAuthenticationSuccess ( ilAuthProviderInterface  $provider )

protected

Handle successful authentication.

Definition at line 233 of file class.ilAuthFrontend.php.

References $_SERVER, ilSecuritySettings\_getInstance(), ilObjUser\_lookupLogin(), ilOnlineTracking\addUser(), ANONYMOUS_USER_ID, checkActivation(), checkExceededLoginAttempts(), checkIp(), checkSimultaneousLogins(), checkTimeLimit(), ilAuthFactory\CONTEXT_ECS, ilContext\CONTEXT_LTI_PROVIDER, getAuthSession(), ilAuthFactory\getContext(), ilObjectFactory\getInstanceByObjId(), ilLoggerFactory\getLogger(), getStatus(), ilContext\getType(), ilSessionControl\handleLoginEvent(), ilInitialisation\initUserAccount(), ILIAS\Repository\logger(), ilAppEventHandler\raise(), ilSession\set(), ILIAS\Repository\settings(), ilAuthStatus\STATUS_AUTHENTICATION_FAILED, and ilAuthStatus\STATUS_CODE_ACTIVATION_REQUIRED.

Referenced by ilAuthFrontendHTTP\authenticate(), authenticate(), migrateAccount(), and migrateAccountNew().

                                                                                     : bool
    {
        $user = ilObjectFactory::getInstanceByObjId($this->getStatus()->getAuthenticatedUserId(), false);

        $this->getStatus()->setReason('auth_err_invalid_user_account');
        // reset expired status
        $this->getAuthSession()->setExpired(false);

        if (!$user instanceof ilObjUser) {
            $this->logger->error('Cannot instantiate user account with id: ' . $this->getStatus()->getAuthenticatedUserId());
            $this->getStatus()->setStatus(ilAuthStatus::STATUS_AUTHENTICATION_FAILED);
            $this->getStatus()->setAuthenticatedUserId(ANONYMOUS_USER_ID);
            return false;
        }

        if (!$this->checkExceededLoginAttempts($user)) {
            $this->logger->info('Authentication failed for inactive user with id and too may login attempts: ' . $this->getStatus()->getAuthenticatedUserId());
            $this->getStatus()->setStatus(ilAuthStatus::STATUS_AUTHENTICATION_FAILED);
            $this->getStatus()->setAuthenticatedUserId(ANONYMOUS_USER_ID);
            return false;
        }

        if (!$this->checkActivation($user)) {
            $this->logger->info('Authentication failed for inactive user with id: ' . $this->getStatus()->getAuthenticatedUserId());
            $this->getStatus()->setStatus(ilAuthStatus::STATUS_AUTHENTICATION_FAILED);
            $this->getStatus()->setAuthenticatedUserId(ANONYMOUS_USER_ID);
            return false;
        }

        // time limit
        if (!$this->checkTimeLimit($user)) {
            $this->logger->info('Authentication failed (time limit restriction) for user with id: ' . $this->getStatus()->getAuthenticatedUserId());

            if ($this->settings->get('user_reactivate_code')) {
                $this->logger->debug('Accout reactivation codes are active');
                $this->getStatus()->setStatus(ilAuthStatus::STATUS_CODE_ACTIVATION_REQUIRED);
            } else {
                $this->logger->debug('Accout reactivation codes are inactive');
                $this->getStatus()->setStatus(ilAuthStatus::STATUS_AUTHENTICATION_FAILED);
                $this->getStatus()->setAuthenticatedUserId(ANONYMOUS_USER_ID);
            }
            return false;
        }

        // ip check
        if (!$this->checkIp($user)) {
            $this->logger->info('Authentication failed (wrong ip) for user with id: ' . $this->getStatus()->getAuthenticatedUserId());
            $this->getStatus()->setStatus(ilAuthStatus::STATUS_AUTHENTICATION_FAILED);
            $this->getStatus()->setAuthenticatedUserId(ANONYMOUS_USER_ID);
            return false;
        }

        // check simultaneos logins
        $this->logger->debug('Check simutaneous login');
        if (!$this->checkSimultaneousLogins($user)) {
            $this->logger->info('Authentication failed: simultaneous logins forbidden for user: ' . $this->getStatus()->getAuthenticatedUserId());
            $this->getStatus()->setStatus(ilAuthStatus::STATUS_AUTHENTICATION_FAILED);
            $this->getStatus()->setAuthenticatedUserId(ANONYMOUS_USER_ID);
            return false;
        }

        // check if profile is complete
        if (
            $this->user_profile->isProfileIncomplete($user) &&
            ilAuthFactory::getContext() !== ilAuthFactory::CONTEXT_ECS &&
            ilContext::getType() !== ilContext::CONTEXT_LTI_PROVIDER
        ) {
            ilLoggerFactory::getLogger('auth')->info('User profile is incomplete.');
            $user->setProfileIncomplete(true);
            $user->update();
        }

        // redirects in case of error (session pool limit reached)
        ilSessionControl::handleLoginEvent($user->getLogin(), $this->getAuthSession());


        // @todo move to event handling
        ilOnlineTracking::addUser($user->getId());

        $security_settings = ilSecuritySettings::_getInstance();

        // determine first login of user for setting an indicator
        // which still is available in PersonalDesktop, Repository, ...
        // (last login date is set to current date in next step)
        if (
            $security_settings->isPasswordChangeOnFirstLoginEnabled() &&
            $user->getLastLogin() === ''
        ) {
            $user->resetLastPasswordChange();
        }
        $user->refreshLogin();

        if ($user->getLoginAttempts() > 0) {
            $user->setLoginAttempts(0);
            $user->update();
        }


        $this->logger->info('Successfully authenticated: ' . ilObjUser::_lookupLogin($this->getStatus()->getAuthenticatedUserId()));
        $this->getAuthSession()->setAuthenticated(true, $this->getStatus()->getAuthenticatedUserId());

        ilInitialisation::initUserAccount();

        ilSession::set('orig_request_target', '');


        // --- anonymous/registered user
        if (PHP_SAPI !== "cli") {
            $this->logger->info(
                'logged in as ' . $user->getLogin() .
            ', remote:' . $_SERVER['REMOTE_ADDR'] . ':' . $_SERVER['REMOTE_PORT'] .
            ', server:' . $_SERVER['SERVER_ADDR'] . ':' . $_SERVER['SERVER_PORT']
            );
        } else {
            $this->logger->info(
                'logged in as ' . $user->getLogin() . ' from CLI'
            );
        }

        // finally raise event
        $this->ilAppEventHandler->raise(
            'components/ILIAS/Authentication',
            'afterLogin',
            array(
                'username' => $user->getLogin())
        );

        $this->getStatus()->setReason('');
        return true;
    }

Here is the call graph for this function:

Here is the caller graph for this function:

handleLoginAttempts()

ilAuthFrontend::handleLoginAttempts ( )

protected

Definition at line 441 of file class.ilAuthFrontend.php.

References ilObjUser\_checkExternalAuthAccount(), ilAuthUtils\_getAuthModeName(), ilAuthModeDetermination\_getInstance(), ilSecuritySettings\_getInstance(), ilObjUser\_getLoginAttempts(), ilObjUser\_incrementLoginAttempts(), ilObjUser\_lookupId(), ilObjUser\_setUserInactive(), ANONYMOUS_USER_ID, ilAuthUtils\AUTH_LOCAL, getCredentials(), getStatus(), and ILIAS\Repository\logger().

Referenced by handleAuthenticationFail().

                                            : void
    {
        $security = ilSecuritySettings::_getInstance();
        $max_attempts = $security->getLoginMaxAttempts();
        if ($max_attempts < 1) {
            return;
        }

        $auth_determination = ilAuthModeDetermination::_getInstance();
        if ($this->getCredentials()->getAuthMode() !== '') {
            $auth_modes = [
                $this->getCredentials()->getAuthMode()
            ];
        } else {
            $auth_modes = $auth_determination->getAuthModeSequence($this->getCredentials()->getUsername());
        }

        $usr_id_candidates = [];
        foreach (array_filter($auth_modes) as $auth_mode) {
            if ((int) $auth_mode === ilAuthUtils::AUTH_LOCAL) {
                $usr_id_candidates[] = ilObjUser::_lookupId($this->getCredentials()->getUsername());
                continue;
            }

            $login = ilObjUser::_checkExternalAuthAccount(
                ilAuthUtils::_getAuthModeName($auth_mode),
                $this->getCredentials()->getUsername(),
                false
            );
            if (!is_string($login) || $login === '') {
                continue;
            }

            $usr_id_candidates[] = ilObjUser::_lookupId($login);
        }

        $usr_id_candidates = array_values(array_unique(array_filter($usr_id_candidates, intval(...))));
        $num_deacticated_accounts = 0;
        foreach ($usr_id_candidates as $usr_id) {
            if ($usr_id === ANONYMOUS_USER_ID) {
                continue;
            }

            $num_login_attempts = ilObjUser::_getLoginAttempts($usr_id);

            if ($num_login_attempts <= $max_attempts) {
                ilObjUser::_incrementLoginAttempts($usr_id);
                $this->logger->notice(
                    sprintf(
                        'Incremented login attempts for user %s with id %s.',
                        $this->getCredentials()->getUsername(),
                        $usr_id
                    )
                );
            }

            if ($num_login_attempts >= $max_attempts) {
                ilObjUser::_setUserInactive($usr_id);

                ++$num_deacticated_accounts;
                $this->logger->warning(
                    sprintf(
                        'User account %s with id %s set to inactive due to exceeded login attempts.',
                        $this->getCredentials()->getUsername(),
                        $usr_id
                    )
                );
            }
        }

        if ($num_deacticated_accounts > 0) {
            $this->getStatus()->setReason('auth_err_login_attempts_deactivation');
        }
    }

Here is the call graph for this function:

Here is the caller graph for this function:

migrateAccount()

ilAuthFrontend::migrateAccount

(

ilAuthSession

$session

)

Migrate Account to existing user account.

Exceptions

Definition at line 117 of file class.ilAuthFrontend.php.

References $provider, ilSession\get(), getCredentials(), ilObjectFactory\getInstanceByObjId(), getProviders(), getStatus(), ilAuthSession\getUserId(), handleAuthenticationFail(), handleAuthenticationSuccess(), ilAuthSession\isAuthenticated(), ILIAS\Repository\logger(), and ilAuthStatus\STATUS_AUTHENTICATED.

                                                          : bool
    {
        if (!$session->isAuthenticated()) {
            $this->logger->warning('Desired user account is not authenticated');
            return false;
        }
        $user = ilObjectFactory::getInstanceByObjId($session->getUserId(), false);

        if (!$user instanceof ilObjUser) {
            $this->logger->info('Cannot instantiate user account for account migration: ' . $session->getUserId());
            return false;
        }

        $user->setAuthMode(ilSession::get(static::MIG_DESIRED_AUTHMODE));

        $this->logger->debug('new auth mode is: ' . ilSession::get(self::MIG_DESIRED_AUTHMODE));

        $user->setExternalAccount(ilSession::get(static::MIG_EXTERNAL_ACCOUNT));
        $user->update();

        foreach ($this->getProviders() as $provider) {
            if (!$provider instanceof ilAuthProviderAccountMigrationInterface) {
                $this->logger->warning('Provider: ' . get_class($provider) . ' does not support account migration.');
                throw new InvalidArgumentException('Invalid auth provider given.');
            }
            $this->getCredentials()->setUsername(ilSession::get(static::MIG_EXTERNAL_ACCOUNT));
            $provider->migrateAccount($this->getStatus());
            if ($this->getStatus()->getStatus() === ilAuthStatus::STATUS_AUTHENTICATED) {
                return $this->handleAuthenticationSuccess($provider);
            }
        }
        return $this->handleAuthenticationFail();
    }

Here is the call graph for this function:

migrateAccountNew()

ilAuthFrontend::migrateAccountNew

(

)

Create new user account.

Definition at line 154 of file class.ilAuthFrontend.php.

References $provider, getStatus(), handleAuthenticationFail(), handleAuthenticationSuccess(), ILIAS\Repository\logger(), and ilAuthStatus\STATUS_AUTHENTICATED.

                                       : bool
    {
        foreach ($this->providers as $provider) {
            if (!$provider instanceof ilAuthProviderAccountMigrationInterface) {
                $this->logger->warning('Provider: ' . get_class($provider) . ' does not support account migration.');
                throw new InvalidArgumentException('Invalid auth provider given.');
            }
            $provider->createNewAccount($this->getStatus());

            if ($provider instanceof ilAuthProviderInterface &&
                $this->getStatus()->getStatus() === ilAuthStatus::STATUS_AUTHENTICATED) {
                return $this->handleAuthenticationSuccess($provider);
            }
        }
        return $this->handleAuthenticationFail();
    }

Here is the call graph for this function:

resetStatus()

ilAuthFrontend::resetStatus

(

)

Reset status.

Definition at line 106 of file class.ilAuthFrontend.php.

References ANONYMOUS_USER_ID, getStatus(), and ilAuthStatus\STATUS_UNDEFINED.

Referenced by ilAuthFrontendHTTP\authenticate(), and authenticate().

                                 : void
    {
        $this->getStatus()->setStatus(ilAuthStatus::STATUS_UNDEFINED);
        $this->getStatus()->setReason('');
        $this->getStatus()->setAuthenticatedUserId(ANONYMOUS_USER_ID);
    }

Here is the call graph for this function:

Here is the caller graph for this function:

Field Documentation

$auth_session

ilAuthSession ilAuthFrontend::$auth_session

private

Definition at line 41 of file class.ilAuthFrontend.php.

Referenced by getAuthSession().

$authenticated

bool ilAuthFrontend::$authenticated = false

private

Definition at line 46 of file class.ilAuthFrontend.php.

$credentials

ilAuthCredentials ilAuthFrontend::$credentials

private

Definition at line 37 of file class.ilAuthFrontend.php.

Referenced by __construct(), and getCredentials().

$ilAppEventHandler

ilAppEventHandler ilAuthFrontend::$ilAppEventHandler

private

Definition at line 42 of file class.ilAuthFrontend.php.

$lng

ilLanguage ilAuthFrontend::$lng

private

Definition at line 35 of file class.ilAuthFrontend.php.

$logger

ilLogger ilAuthFrontend::$logger

private

Definition at line 33 of file class.ilAuthFrontend.php.

$providers

array ilAuthFrontend::$providers

private

Definition at line 40 of file class.ilAuthFrontend.php.

Referenced by __construct(), and getProviders().

$settings

ilSetting ilAuthFrontend::$settings

private

Definition at line 34 of file class.ilAuthFrontend.php.

$status

ilAuthStatus ilAuthFrontend::$status

private

Definition at line 38 of file class.ilAuthFrontend.php.

Referenced by __construct(), and getStatus().

$user_profile

ilUserProfile ilAuthFrontend::$user_profile

private

Definition at line 44 of file class.ilAuthFrontend.php.

MIG_DESIRED_AUTHMODE

const ilAuthFrontend::MIG_DESIRED_AUTHMODE = 'mig_desired_auth_mode'

Definition at line 31 of file class.ilAuthFrontend.php.

MIG_EXTERNAL_ACCOUNT

const ilAuthFrontend::MIG_EXTERNAL_ACCOUNT = 'mig_ext_account'

Definition at line 29 of file class.ilAuthFrontend.php.

Referenced by ilStartUpGUI\doMigrationNewAccount().

MIG_TRIGGER_AUTHMODE

const ilAuthFrontend::MIG_TRIGGER_AUTHMODE = 'mig_trigger_auth_mode'

Definition at line 30 of file class.ilAuthFrontend.php.

Referenced by ilStartUpGUI\doMigration(), and ilStartUpGUI\doMigrationNewAccount().

---

The documentation for this class was generated from the following file:

• components/ILIAS/Authentication/classes/Frontend/class.ilAuthFrontend.php