ILIAS  release_4-4 Revision
All Data Structures Namespaces Files Functions Variables Modules Pages
Static Public Member Functions
Auth_OpenID_TrustRoot Class Reference

A wrapper for trust-root related functions. More...

+ Collaboration diagram for Auth_OpenID_TrustRoot:

Static Public Member Functions

static buildDiscoveryURL ($realm)
 
static _parse ($trust_root)
 Parse a URL into its trust_root parts. More...
 
static isSane ($trust_root)
 Is this trust root sane? More...
 
static match ($trust_root, $url)
 Does this URL match the given trust root? More...
 

Detailed Description

A wrapper for trust-root related functions.

Definition at line 47 of file TrustRoot.php.

Member Function Documentation

◆ _parse()

static Auth_OpenID_TrustRoot::_parse (   $trust_root)
static

Parse a URL into its trust_root parts.

private

Parameters
string$trust_rootThe url to parse
Returns
mixed $parsed Either an associative array of trust root parts or false if parsing failed.

Definition at line 94 of file TrustRoot.php.

Referenced by Auth_OpenID_returnToMatches(), buildDiscoveryURL(), Auth_OpenID_CheckIDRequest\make(), and Auth_OpenID_CheckIDRequest\trustRootValid().

97  {
98  $trust_root = Auth_OpenID_urinorm($trust_root);
99  if ($trust_root === null) {
100  return false;
101  }
102 
103  if (preg_match("/:\/\/[^:]+(:\d+){2,}(\/|$)/", $trust_root)) {
104  return false;
105  }
106 
107  $parts = @parse_url($trust_root);
108  if ($parts === false) {
109  return false;
110  }
111 
112  $required_parts = array('scheme', 'host');
113  $forbidden_parts = array('user', 'pass', 'fragment');
114  $keys = array_keys($parts);
115  if (array_intersect($keys, $required_parts) != $required_parts) {
116  return false;
117  }
118 
119  if (array_intersect($keys, $forbidden_parts) != array()) {
120  return false;
121  }
122 
123  if (!preg_match(Auth_OpenID___HostSegmentRe, $parts['host'])) {
124  return false;
125  }
126 
127  $scheme = strtolower($parts['scheme']);
128  $allowed_schemes = array('http', 'https');
129  if (!in_array($scheme, $allowed_schemes)) {
130  return false;
131  }
132  $parts['scheme'] = $scheme;
133 
134  $host = strtolower($parts['host']);
135  $hostparts = explode('*', $host);
136  switch (count($hostparts)) {
137  case 1:
138  $parts['wildcard'] = false;
139  break;
140  case 2:
141  if ($hostparts[0] ||
142  ($hostparts[1] && substr($hostparts[1], 0, 1) != '.')) {
143  return false;
144  }
145  $host = $hostparts[1];
146  $parts['wildcard'] = true;
147  break;
148  default:
149  return false;
150  }
151  if (strpos($host, ':') !== false) {
152  return false;
153  }
154 
155  $parts['host'] = $host;
156 
157  if (isset($parts['path'])) {
158  $path = strtolower($parts['path']);
159  if (substr($path, 0, 1) != '/') {
160  return false;
161  }
162  } else {
163  $path = '/';
164  }
165 
166  $parts['path'] = $path;
167  if (!isset($parts['port'])) {
168  $parts['port'] = false;
169  }
170 
171 
172  $parts['unparsed'] = $trust_root;
173 
Auth_OpenID_urinorm
Auth_OpenID_urinorm($uri)
Definition: URINorm.php:142
Auth_OpenID___HostSegmentRe
const Auth_OpenID___HostSegmentRe
Definition: TrustRoot.php:42
$path
$path
Definition: index.php:22
+ Here is the caller graph for this function:

◆ buildDiscoveryURL()

static Auth_OpenID_TrustRoot::buildDiscoveryURL (   $realm)
static

Definition at line 59 of file TrustRoot.php.

References $path, $query, _parse(), Auth_OpenID___HostSegmentRe, Auth_OpenID___TLDs, Auth_OpenID_urinorm(), isSane(), and match().

Referenced by Auth_OpenID_verifyReturnTo().

62  {
63  $parsed = Auth_OpenID_TrustRoot::_parse($realm);
64 
65  if ($parsed === false) {
66  return false;
67  }
68 
69  if ($parsed['wildcard']) {
70  // Use "www." in place of the star
71  if ($parsed['host'][0] != '.') {
72  return false;
73  }
74 
75  $www_domain = 'www' . $parsed['host'];
76 
77  return sprintf('%s://%s%s', $parsed['scheme'],
78  $www_domain, $parsed['path']);
79  } else {
80  return $parsed['unparsed'];
Auth_OpenID_TrustRoot\_parse
static _parse($trust_root)
Parse a URL into its trust_root parts.
Definition: TrustRoot.php:94
+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ isSane()

static Auth_OpenID_TrustRoot::isSane (   $trust_root)
static

Is this trust root sane?

A trust root is sane if it is syntactically valid and it has a reasonable domain name. Specifically, the domain name must be more than one level below a standard TLD or more than two levels below a two-letter tld.

For example, '*.com' is not a sane trust root, but '*.foo.com' is. '*.co.uk' is not sane, but '*.bbc.co.uk' is.

This check is not always correct, but it attempts to err on the side of marking sane trust roots insane instead of marking insane trust roots sane. For example, 'kink.fm' is marked as insane even though it "should" (for some meaning of should) be marked sane.

This function should be used when creating OpenID servers to alert the users of the server when a consumer attempts to get the user to accept a suspicious trust root.

Parameters
string$trust_rootThe trust root to check
Returns
bool $sanity Whether the trust root looks OK

Definition at line 200 of file TrustRoot.php.

Referenced by buildDiscoveryURL().

203  {
204  $parts = Auth_OpenID_TrustRoot::_parse($trust_root);
205  if ($parts === false) {
206  return false;
207  }
208 
209  // Localhost is a special case
210  if ($parts['host'] == 'localhost') {
211  return true;
212  }
213 
214  $host_parts = explode('.', $parts['host']);
215  if ($parts['wildcard']) {
216  // Remove the empty string from the beginning of the array
217  array_shift($host_parts);
218  }
219 
220  if ($host_parts && !$host_parts[count($host_parts) - 1]) {
221  array_pop($host_parts);
222  }
223 
224  if (!$host_parts) {
225  return false;
226  }
227 
228  // Don't allow adjacent dots
229  if (in_array('', $host_parts, true)) {
230  return false;
231  }
232 
233  // Get the top-level domain of the host. If it is not a valid TLD,
234  // it's not sane.
235  preg_match(Auth_OpenID___TLDs, $parts['host'], $matches);
236  if (!$matches) {
237  return false;
238  }
239  $tld = $matches[1];
240 
241  if (count($host_parts) == 1) {
242  return false;
243  }
244 
245  if ($parts['wildcard']) {
246  // It's a 2-letter tld with a short second to last segment
247  // so there needs to be more than two segments specified
248  // (e.g. *.co.uk is insane)
249  $second_level = $host_parts[count($host_parts) - 2];
250  if (strlen($tld) == 2 && strlen($second_level) <= 3) {
251  return count($host_parts) > 2;
252  }
253  }
254 
Auth_OpenID_TrustRoot\_parse
static _parse($trust_root)
Parse a URL into its trust_root parts.
Definition: TrustRoot.php:94
Auth_OpenID___TLDs
const Auth_OpenID___TLDs
A regular expression that matches a domain ending in a top-level domains.
Definition: TrustRoot.php:23
+ Here is the caller graph for this function:

◆ match()

static Auth_OpenID_TrustRoot::match (   $trust_root,
  $url 
)
static

Does this URL match the given trust root?

Return whether the URL falls under the given trust root. This does not check whether the trust root is sane. If the URL or trust root do not parse, this function will return false.

Parameters
string$trust_rootThe trust root to match against
string$urlThe URL to check
Returns
bool $matches Whether the URL matches against the trust root

Definition at line 270 of file TrustRoot.php.

Referenced by Auth_OpenID_AX_FetchRequest\Auth_OpenID_AX_FetchRequest(), Auth_OpenID_returnToMatches(), buildDiscoveryURL(), and Auth_OpenID_CheckIDRequest\trustRootValid().

273  {
274  $trust_root_parsed = Auth_OpenID_TrustRoot::_parse($trust_root);
275  $url_parsed = Auth_OpenID_TrustRoot::_parse($url);
276  if (!$trust_root_parsed || !$url_parsed) {
277  return false;
278  }
279 
280  // Check hosts matching
281  if ($url_parsed['wildcard']) {
282  return false;
283  }
284  if ($trust_root_parsed['wildcard']) {
285  $host_tail = $trust_root_parsed['host'];
286  $host = $url_parsed['host'];
287  if ($host_tail &&
288  substr($host, -(strlen($host_tail))) != $host_tail &&
289  substr($host_tail, 1) != $host) {
290  return false;
291  }
292  } else {
293  if ($trust_root_parsed['host'] != $url_parsed['host']) {
294  return false;
295  }
296  }
297 
298  // Check path and query matching
299  $base_path = $trust_root_parsed['path'];
300  $path = $url_parsed['path'];
301  if (!isset($trust_root_parsed['query'])) {
302  if ($base_path != $path) {
303  if (substr($path, 0, strlen($base_path)) != $base_path) {
304  return false;
305  }
306  if (substr($base_path, strlen($base_path) - 1, 1) != '/' &&
307  substr($path, strlen($base_path), 1) != '/') {
308  return false;
309  }
310  }
311  } else {
312  $base_query = $trust_root_parsed['query'];
313  $query = @$url_parsed['query'];
314  $qplus = substr($query, 0, strlen($base_query) + 1);
315  $bqplus = $base_query . '&';
316  if ($base_path != $path ||
317  ($base_query != $query && $qplus != $bqplus)) {
318  return false;
319  }
320  }
321 
322  // The port and scheme need to match exactly
323  return ($trust_root_parsed['scheme'] == $url_parsed['scheme'] &&
Auth_OpenID_TrustRoot\_parse
static _parse($trust_root)
Parse a URL into its trust_root parts.
Definition: TrustRoot.php:94
$path
$path
Definition: index.php:22
+ Here is the caller graph for this function:
The documentation for this class was generated from the following file: