d9/dbf/sso_2index_8php_source.html

 <?php

 chdir ('..');

 define('IL_CERT_SSO', true);
 define('IL_COOKIE_PATH', $_REQUEST['cookie_path']);
 if ($_REQUEST['ilias_path'])
     define('ILIAS_HTTP_PATH', $_REQUEST['ilias_path']);

 include_once './Services/Authentication/classes/class.ilAuthUtils.php';

 $_POST['auth_mode'] = AUTH_APACHE;

 ilAuthFactory::setContext(ilAuthFactory::CONTEXT_APACHE);

 require_once "include/inc.header.php";

 $redirect = $_GET['r'];

 $validDomains = array();

 $path = ILIAS_DATA_DIR . '/' . CLIENT_ID . '/apache_auth_allowed_domains.txt';
 if(file_exists($path) && is_readable($path))
 {
         foreach(file($path) as $line)
         {
                 if(trim($line))
                 {
                         $validDomains[] = trim($line);
                 }
         }
 }

 $P = parse_url($redirect);
 $redirectDomain = $P["host"];

 $validRedirect = false;

 foreach($validDomains as $validDomain)
 {
         if( $redirectDomain === $validDomain )
         {
                 $validRedirect = true;
                 break;
         }

         if( strlen($redirectDomain) > (strlen($validDomain) + 1) )
         {
                 if( substr($redirectDomain, (0 - strlen($validDomain) - 1)) === '.'. $validDomain)
                 {
                         $validRedirect = true;
                         break;
                 }
         }
 }

 if( !$validRedirect )
 {
         die('The redirect target "'.$redirect.'" is not in the list of allowed domains.');
 }

 if (strpos($redirect, '?') === false)
         $redirect .= '?passed_sso=1';
 else
         $redirect .= '&passed_sso=1';

 if ((defined('APACHE_ERRORCODE') && APACHE_ERRORCODE) || (!$ilUser || $ilUser->getId() == ANONYMOUS_USER_ID || !$ilUser->getId()))
         $redirect .= '&auth_stat='. AUTH_APACHE_FAILED;


 header('Location: ' . $redirect);
$_GET
$_GET["client_id"]
Definition: cfg.phpunit.template.php:12

$_POST
$_POST['auth_mode']
Definition: index.php:12

AUTH_APACHE
const AUTH_APACHE
Definition: class.ilAuthUtils.php:20

$validDomains
$validDomains
Definition: index.php:20

AUTH_APACHE_FAILED
const AUTH_APACHE_FAILED
Definition: class.ilAuthUtils.php:34

ilAuthFactory\setContext
static setContext($a_context)
set context
Definition: class.ilAuthFactory.php:106

$redirectDomain
$redirectDomain
Definition: index.php:35

$redirect
$redirect
Definition: index.php:18

ilAuthFactory\CONTEXT_APACHE
const CONTEXT_APACHE
Definition: class.ilAuthFactory.php:80

$validRedirect
$validRedirect
Definition: index.php:37

$ilUser
global $ilUser
Definition: imgupload.php:15

$path
$path
Definition: index.php:22

$_REQUEST
if($_REQUEST['ilias_path']) define('ILIAS_HTTP_PATH' $_REQUEST['ilias_path']
Definition: index.php:7

$P
if(file_exists($path) &&is_readable($path)) $P
Definition: index.php:34