ILIAS  release_5-3 Revision v5.3.23-19-g915713cf615
TraditionalLogoutHandler.php
Go to the documentation of this file.
1 <?php
2 
3 namespace SimpleSAML\IdP;
4 
5 use SimpleSAML\Logger;
6 use SimpleSAML\Utils\HTTP;
7 
8 
14 class TraditionalLogoutHandler implements LogoutHandlerInterface
15 {
16 
22  private $idp;
23 
24 
30  public function __construct(\SimpleSAML_IdP $idp)
31  {
32  $this->idp = $idp;
33  }
34 
35 
43  private function logoutNextSP(array &$state)
44  {
45  $association = array_pop($state['core:LogoutTraditional:Remaining']);
46  if ($association === null) {
47  $this->idp->finishLogout($state);
48  }
49 
50  $relayState = \SimpleSAML_Auth_State::saveState($state, 'core:LogoutTraditional', true);
51 
52  $id = $association['id'];
53  Logger::info('Logging out of '.var_export($id, true).'.');
54 
55  try {
56  $idp = \SimpleSAML_IdP::getByState($association);
57  $url = call_user_func(array($association['Handler'], 'getLogoutURL'), $idp, $association, $relayState);
58  HTTP::redirectTrustedURL($url);
59  } catch (\Exception $e) {
60  Logger::warning('Unable to initialize logout to '.var_export($id, true).'.');
61  $this->idp->terminateAssociation($id);
62  $state['core:Failed'] = true;
63 
64  // Try the next SP
65  $this->logoutNextSP($state);
66  assert('FALSE');
67  }
68  }
69 
70 
79  public function startLogout(array &$state, $assocId)
80  {
81  $state['core:LogoutTraditional:Remaining'] = $this->idp->getAssociations();
82 
83  self::logoutNextSP($state);
84  }
85 
86 
98  public function onResponse($assocId, $relayState, \SimpleSAML_Error_Exception $error = null)
99  {
100  assert('is_string($assocId)');
101  assert('is_string($relayState) || is_null($relayState)');
102 
103  if ($relayState === null) {
104  throw new \SimpleSAML_Error_Exception('RelayState lost during logout.');
105  }
106 
107  $state = \SimpleSAML_Auth_State::loadState($relayState, 'core:LogoutTraditional');
108 
109  if ($error === null) {
110  Logger::info('Logged out of '.var_export($assocId, true).'.');
111  $this->idp->terminateAssociation($assocId);
112  } else {
113  Logger::warning('Error received from '.var_export($assocId, true).' during logout:');
114  $error->logWarning();
115  $state['core:Failed'] = true;
116  }
117 
118  self::logoutNextSP($state);
119  }
120 }
SimpleSAML\IdP\TraditionalLogoutHandler\__construct
__construct(\SimpleSAML_IdP $idp)
TraditionalLogout constructor.
Definition: TraditionalLogoutHandler.php:30
SimpleSAML_IdP\getByState
static getByState(array &$state)
Retrieve the IdP "owning" the state.
Definition: IdP.php:152
SimpleSAML_Error_Exception
Definition: Exception.php:12
$id
if(!array_key_exists('StateId', $_REQUEST)) $id
Definition: expirywarning.php:14
SimpleSAML\IdP\TraditionalLogoutHandler\logoutNextSP
logoutNextSP(array &$state)
Picks the next SP and issues a logout request.
Definition: TraditionalLogoutHandler.php:43
SimpleSAML\Utils\HTTP\redirectTrustedURL
static redirectTrustedURL($url, $parameters=array())
This function redirects to the specified URL without performing any security checks.
Definition: HTTP.php:962
$state
if(!array_key_exists('stateid', $_REQUEST)) $state
Handle linkback() response from LinkedIn.
Definition: linkback.php:10
$error
$error
Definition: Error.php:17
SimpleSAML\Logger\info
static info($string)
Definition: Logger.php:201
$relayState
$relayState
Definition: logout-iframe-post.php:14
SimpleSAML\Logger\warning
static warning($string)
Definition: Logger.php:179
SimpleSAML\IdP\TraditionalLogoutHandler\startLogout
startLogout(array &$state, $assocId)
Start the logout operation.
Definition: TraditionalLogoutHandler.php:79
SimpleSAML_Auth_State\loadState
static loadState($id, $stage, $allowMissing=false)
Retrieve saved state.
Definition: State.php:259
array
Create styles array
The data for the language used.
Definition: 40duplicateStyle.php:19
SimpleSAML\IdP\TraditionalLogoutHandler\onResponse
onResponse($assocId, $relayState, \SimpleSAML_Error_Exception $error=null)
Continue the logout operation.
Definition: TraditionalLogoutHandler.php:98
SimpleSAML_IdP
Definition: IdP.php:11
$association
if(!isset($associations[$assocId])) $association
Definition: logout-iframe-post.php:23
$assocId
if(!isset($_REQUEST['association'])) $assocId
Definition: logout-iframe-post.php:12
$url
$url
Definition: proxy_ylocal.php:28
SimpleSAML_Auth_State\saveState
static saveState(&$state, $stage, $rawId=false)
Save the state.
Definition: State.php:194