d9/dbf/sso_2index_8php_source.html

<?php


chdir ('..');


define('IL_CERT_SSO', true);

define('IL_COOKIE_PATH', $_REQUEST['cookie_path']);

if ($_REQUEST['ilias_path'])

    define('ILIAS_HTTP_PATH', $_REQUEST['ilias_path']);


include_once './Services/Authentication/classes/class.ilAuthUtils.php';


$_POST['auth_mode'] = AUTH_APACHE;


ilAuthFactory::setContext(ilAuthFactory::CONTEXT_APACHE);


require_once "include/inc.header.php";


$redirect = $_GET['r'];


$validDomains = array();


$path = ILIAS_DATA_DIR . '/' . CLIENT_ID . '/apache_auth_allowed_domains.txt';

if(file_exists($path) && is_readable($path))

{

        foreach(file($path) as $line)

        {

                if(trim($line))

                {

                        $validDomains[] = trim($line);

                }

        }

}


$P = parse_url($redirect);

$redirectDomain = $P["host"];


$validRedirect = false;


foreach($validDomains as $validDomain)

{

        if( $redirectDomain === $validDomain )

        {

                $validRedirect = true;

                break;

        }


        if( strlen($redirectDomain) > (strlen($validDomain) + 1) )

        {

                if( substr($redirectDomain, (0 - strlen($validDomain) - 1)) === '.'. $validDomain)

                {

                        $validRedirect = true;

                        break;

                }

        }

}


if( !$validRedirect )

{

        die('The redirect target "'.$redirect.'" is not in the list of allowed domains.');

}


if (strpos($redirect, '?') === false)

        $redirect .= '?passed_sso=1';

else

        $redirect .= '&passed_sso=1';


if ((defined('APACHE_ERRORCODE') && APACHE_ERRORCODE) || (!$ilUser || $ilUser->getId() == ANONYMOUS_USER_ID || !$ilUser->getId()))

        $redirect .= '&auth_stat='. AUTH_APACHE_FAILED;


header('Location: ' . $redirect);

$_GET
$_GET["client_id"]
Definition: cfg.phpunit.template.php:12

AUTH_APACHE
const AUTH_APACHE
Definition: class.ilAuthUtils.php:20

AUTH_APACHE_FAILED
const AUTH_APACHE_FAILED
Definition: class.ilAuthUtils.php:34

ilAuthFactory\setContext
static setContext($a_context)
set context
Definition: class.ilAuthFactory.php:106

ilAuthFactory\CONTEXT_APACHE
const CONTEXT_APACHE
Definition: class.ilAuthFactory.php:80

$validRedirect
$validRedirect
Definition: index.php:37

$path
$path
Definition: index.php:22

$_POST
$_POST['auth_mode']
Definition: index.php:12

$_REQUEST
if($_REQUEST['ilias_path']) define('ILIAS_HTTP_PATH' $_REQUEST['ilias_path']
Definition: index.php:7

$redirectDomain
$redirectDomain
Definition: index.php:35

$validDomains
$validDomains
Definition: index.php:20

$P
if(file_exists($path) &&is_readable($path)) $P
Definition: index.php:34

$redirect
$redirect
Definition: index.php:18

$ilUser
global $ilUser
Definition: imgupload.php:15