dd/dc2/class_8ilAuthContainerOpenId_8php_source.html

<?php

/* Copyright (c) 1998-2009 ILIAS open source, Extended GPL, see docs/LICENSE */


include_once 'Auth/Container.php';


class ilAuthContainerOpenId extends Auth_Container

{

        private $settings = null;


        private $response_data = array();

        private $force_creation = false;


        public function __construct()

        {

                parent::__construct();


                $this->initSettings();

        }


        public function fetchData($a_username,$a_password,$isChallengeResponse = false)

        {

                global $ilLog;


                $ilLog->write(__METHOD__.': Fetch Data called');


                $response = $this->settings->getConsumer()->complete($this->settings->getReturnLocation());


                switch($response->status)

                {

                        case Auth_OpenID_CANCEL:

                                die("Auth cancelled");


                        case Auth_OpenID_FAILURE:

                                die("Auth failed with message: ".$response->message);


                        case Auth_OpenID_SUCCESS:

                                $openid = $response->getDisplayIdentifier();

                        $esc_identity = htmlentities($openid);

                                $ilLog->write(__METHOD__.': Auth success with identity '.$esc_identity);


                        if($response->endpoint->canonicalID)

                                {

                        $escaped_canonicalID = htmlentities($response->endpoint->canonicalID);

                                        $ilLog->write(__METHOD__.': Auth success with canonical id: '.$esc_identity);


                        }

                                include_once 'Auth/OpenID/SReg.php';


                                // Check if simple registration is supported

                                if(Auth_OpenID_supportsSReg($response->endpoint))

                                {

                                        $sreg_resp = Auth_OpenID_SRegResponse::fromSuccessResponse($response,true);

                                $this->response_data = $sreg_resp->contents();


                                        $ilLog->write(__METHOD__.' auth data: '.print_r($this->response_data,true));

                                        return true;

                                }

                                else

                                {

                                        // Try to fetch response values

                                        foreach($response->message->args->keys as $key => $mapping)

                                        {

                                                if($mapping[1] == 'sreg.nickname')

                                                {

                                                        $this->response_data['nickname'] = $response->message->args->values[$key];

                                                }

                                                if($mapping[1] == 'sreg.email')

                                                {

                                                        $this->response_data['email'] = $response->message->args->values[$key];

                                                }

                                        }

                                }

                                return true;


                }

                return false;

        }


        public function forceCreation($a_status)

        {

                $this->force_creation = true;

        }


        public function loginObserver($a_username,$a_auth)

        {

                global $ilLog;


                $GLOBALS['ilLog']->write(__METHOD__.': Login observer called for openid');


                $this->initSettings();

                $this->response_data['ilInternalAccount'] = ilObjUser::_checkExternalAuthAccount(

                        "openid",

                        $this->response_data['nickname']

                );

                if(!$this->response_data['ilInternalAccount'])

                {

                        if($this->settings->isCreationEnabled())

                        {

                                if($this->settings->isAccountMigrationEnabled() and !$this->force_creation and !$_SESSION['force_creation'])

                                {

                                        $a_auth->logout();

                                        $_SESSION['tmp_auth_mode'] = 'openid';

                                        $_SESSION['tmp_auth_mode_type'] = 'openid';

                                        $_SESSION['tmp_oid_username'] = urldecode($_GET['openid_identity']);

                                        $_SESSION['tmp_oid_provider'] = $_POST['oid_provider'];

                                        $_SESSION['tmp_external_account'] = $this->response_data['nickname'];

                                        $_SESSION['tmp_pass'] = $_POST['password'];

                                        $_SESSION['tmp_roles'] = array(0 => $this->settings->getDefaultRole());


                                        $GLOBALS['ilLog']->write(__METHOD__.': Redirect migration');

                                        ilUtil::redirect('ilias.php?baseClass=ilStartUpGUI&cmd=showAccountMigration&cmdClass=ilstartupgui');

                                }


                                include_once './Services/OpenId/classes/class.ilOpenIdAttributeToUser.php';

                                $new_user = new ilOpenIdAttributeToUser();

                                $new_name = $new_user->create($this->response_data['nickname'],$this->response_data);


                                $GLOBALS['ilLog']->write(__METHOD__.': Create user with name:'. $new_name);

                                $a_auth->setAuth($new_name);

                                return true;

                        }

                        else

                        {

                                // No syncronisation allowed => create Error

                                $a_auth->status = AUTH_OPENID_NO_ILIAS_USER;

                                $a_auth->logout();

                                $GLOBALS['ilLog']->write(__METHOD__.': No creation');

                                return false;

                        }


                }

                else

                {

                        $GLOBALS['ilLog']->write(__METHOD__.': Using old name: ' . $this->response_data['ilInternalAccount']);

                        $a_auth->setAuth($this->response_data['ilInternalAccount']);

                        return true;

                }

                return false;

        }


        protected function initSettings()

        {

                include_once './Services/OpenId/classes/class.ilOpenIdSettings.php';

                //$this->settings = ilOpenIdSettings::getInstance();

                $this->settings = ilOpenIdSettings::getInstance();

                $this->settings->initConsumer();

        }

}

?>

Auth_OpenID_FAILURE
const Auth_OpenID_FAILURE
This is the status code completeAuth returns when the value it received indicated an invalid login.
Definition: Consumer.php:191

Auth_OpenID_CANCEL
const Auth_OpenID_CANCEL
Status to indicate cancellation of OpenID authentication.
Definition: Consumer.php:185

Auth_OpenID_SUCCESS
const Auth_OpenID_SUCCESS
Require utility classes and functions for the consumer.
Definition: Consumer.php:180

Auth_OpenID_supportsSReg
Auth_OpenID_supportsSReg($endpoint)
Does the given endpoint advertise support for simple registration?
Definition: SReg.php:97

$_GET
$_GET["client_id"]
Definition: cfg.phpunit.template.php:12

$_SESSION
$_SESSION["AccountId"]
Definition: cfg.phpunit.template.php:10

Auth_Container
Definition: Container.php:40

Auth_OpenID_SRegResponse\fromSuccessResponse
static fromSuccessResponse($success_response, $signed_only=true)
Create a C{L{SRegResponse}} object from a successful OpenID library response (C{L{openid....
Definition: SReg.php:474

AUTH_OPENID_NO_ILIAS_USER
const AUTH_OPENID_NO_ILIAS_USER
Definition: class.ilAuthUtils.php:29

ilAuthContainerOpenId
@classDescription Pear auth container for openid
Definition: class.ilAuthContainerOpenId.php:14

ilAuthContainerOpenId\forceCreation
forceCreation($a_status)
Force creation of user accounts.
Definition: class.ilAuthContainerOpenId.php:105

ilAuthContainerOpenId\fetchData
fetchData($a_username, $a_password, $isChallengeResponse=false)
Definition: class.ilAuthContainerOpenId.php:38

ilAuthContainerOpenId\__construct
__construct()
Constructor.
Definition: class.ilAuthContainerOpenId.php:24

ilAuthContainerOpenId\$force_creation
$force_creation
Definition: class.ilAuthContainerOpenId.php:18

ilAuthContainerOpenId\loginObserver
loginObserver($a_username, $a_auth)
Definition: class.ilAuthContainerOpenId.php:114

ilAuthContainerOpenId\initSettings
initSettings()
Init open id settings.
Definition: class.ilAuthContainerOpenId.php:175

ilAuthContainerOpenId\$settings
$settings
Definition: class.ilAuthContainerOpenId.php:15

ilAuthContainerOpenId\$response_data
$response_data
Definition: class.ilAuthContainerOpenId.php:17

ilObjUser\_checkExternalAuthAccount
static _checkExternalAuthAccount($a_auth, $a_account)
check whether external account and authentication method matches with a user
Definition: class.ilObjUser.php:3766

ilOpenIdAttributeToUser
@classDescription Open ID auth class
Definition: class.ilOpenIdAttributeToUser.php:14

ilOpenIdSettings\getInstance
static getInstance()
Get singleton instance.
Definition: class.ilOpenIdSettings.php:40

ilUtil\redirect
static redirect($a_script)
http redirect to other script
Definition: class.ilUtil.php:3635

$_POST
$_POST['username']
Definition: cron.php:12

$new_user
$new_user
Definition: dummy_client.php:24

$GLOBALS
$GLOBALS['PHPCAS_CLIENT']
This global variable is used by the interface class phpCAS.
Definition: CAS.php:276

$ilLog
$ilLog
Definition: inc.setup_header.php:136