ILIAS  release_5-3 Revision v5.3.23-19-g915713cf615
class.ilAuthApache.php
Go to the documentation of this file.
1 <?php
2 /*
3  +-----------------------------------------------------------------------------+
4  | ILIAS open source |
5  +-----------------------------------------------------------------------------+
6  | Copyright (c) 1998-2001 ILIAS open source, University of Cologne |
7  | |
8  | This program is free software; you can redistribute it and/or |
9  | modify it under the terms of the GNU General Public License |
10  | as published by the Free Software Foundation; either version 2 |
11  | of the License, or (at your option) any later version. |
12  | |
13  | This program is distributed in the hope that it will be useful, |
14  | but WITHOUT ANY WARRANTY; without even the implied warranty of |
15  | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
16  | GNU General Public License for more details. |
17  | |
18  | You should have received a copy of the GNU General Public License |
19  | along with this program; if not, write to the Free Software |
20  | Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. |
21  +-----------------------------------------------------------------------------+
22 */
23 
24 define('APACHE_AUTH_TYPE_DIRECT_MAPPING', 1);
25 define('APACHE_AUTH_TYPE_EXTENDED_MAPPING', 2);
26 define('APACHE_AUTH_TYPE_BY_FUNCTION', 3);
27 
35 class ilAuthApache extends Auth
36 {
37  private $apache_settings;
38 
44  public function supportsRedirects()
45  {
46  return true;
47  }
48 
55  public function __construct($storageDriver, $options = '', $loginFunction = '', $showLogin = true)
56  {
57  global $lng;
58 
59  parent::__construct($storageDriver, $options, '', false);
60  $this->setSessionName("_authhttp" . md5(CLIENT_ID));
61 
62  $this->apache_settings = new ilSetting('apache_auth');
63 
64  if (defined('IL_CERT_SSO') && IL_CERT_SSO) {
65  // DO NOT DELETE!!!
66  // faking post values is REQUIRED to avoid canceling of the
67  // startup routines
68  // $_POST['username'] = 'xxx';
69  $_POST['password'] = 'yyy';
70  $_POST['sendLogin'] = '1';
71  $_POST['auth_mode'] = AUTH_APACHE;
72  $_POST['cmd[butSubmit]'] = 'Submit';
73 
74  if ($_POST['username'] != 'anonymous') {
75  switch ($this->apache_settings->get('apache_auth_username_config_type')) {
76  case APACHE_AUTH_TYPE_DIRECT_MAPPING:
77  $_POST['username'] = $_SERVER[$this->apache_settings->get('apache_auth_username_direct_mapping_fieldname')];
78  break;
79  case APACHE_AUTH_TYPE_EXTENDED_MAPPING:
80  throw new ilException("APACHE_AUTH_TYPE_EXTENDED_MAPPING not yet implemented");
81  case APACHE_AUTH_TYPE_BY_FUNCTION:
82  include_once 'Services/AuthApache/classes/custom_username_func.php';
83  $_POST['username'] = ApacheCustom::getUsername();
84  break;
85  }
86  }
87  }
88 
89  if (defined('IL_CERT_SSO') && IL_CERT_SSO && !$_POST['username']) {
90  $_POST['username'] = '§invalid';
91  $_POST['password'] = 'anonymous';
92  $_SESSION['username_invalid'] = true;
93  }
94 
95  $this->initAuth();
96  }
97 
98 
99  public function login()
100  {
101  $skipClasses = array('ilpasswordassistancegui', 'ilaccountregistrationgui');
102  $skipFiles = array('pwassist.php');
103  if (in_array(strtolower($_REQUEST['cmdClass']), $skipClasses)) {
104  return;
105  } else {
106  $script = pathinfo($_SERVER['PHP_SELF'], PATHINFO_BASENAME);
107  if (in_array(strtolower($script), $skipFiles)) {
108  return;
109  }
110  }
111  if (
112  !$this->apache_settings->get('apache_auth_authenticate_on_login_page') &&
113  (
114  preg_match('/.*login\.php$/', $_SERVER['SCRIPT_NAME']) ||
115  ((in_array($_REQUEST['cmd'], array('showLogin', 'showTermsOfService')) || isset($_POST['change_lang_to'])) && strtolower($_REQUEST['cmdClass']) == 'ilstartupgui')
116  )
117  ) {
118  return;
119  }
120 
121  if (!$this->apache_settings->get('apache_auth_authenticate_on_login_page') && preg_match('/.*login\.php$/', $_SERVER['SCRIPT_NAME'])) {
122  return;
123  }
124 
125  if (ilContext::supportsRedirects() && !isset($_GET['passed_sso']) && (!defined('IL_CERT_SSO') || IL_CERT_SSO == false)) {
126 
127  // redirect to sso
128  // this part is executed in default ilias context...
129 
130  $path = $_SERVER['REQUEST_URI'];
131 
132  if ($path{0} == '/') {
133  $path = substr($path, 1);
134  }
135 
136  if (substr($path, 0, 4) != 'http') {
137  $parts = parse_url(ILIAS_HTTP_PATH);
138  $path = $parts['scheme'] . '://' . $parts['host'] . '/' . $path;
139  }
140 
141  $path = urlencode($path);
142  ilUtil::redirect(ilUtil::getHtmlPath('/sso/index.php?force_mode_apache=1&r=' . $path . '&cookie_path=' . IL_COOKIE_PATH . '&ilias_path=' . ILIAS_HTTP_PATH));
143  } else {
144  return parent::login();
145  }
146  }
147 }
$_SERVER
if((!isset($_SERVER['DOCUMENT_ROOT'])) OR(empty($_SERVER['DOCUMENT_ROOT']))) $_SERVER['DOCUMENT_ROOT']
Definition: tcpdf_autoconfig.php:54
$_SESSION
$_SESSION["AccountId"]
Definition: cfg.phpunit.template.php:10
$_GET
$_GET["client_id"]
Definition: cfg.phpunit.template.php:12
APACHE_AUTH_TYPE_DIRECT_MAPPING
const APACHE_AUTH_TYPE_DIRECT_MAPPING
Definition: class.ilAuthApache.php:24
APACHE_AUTH_TYPE_BY_FUNCTION
const APACHE_AUTH_TYPE_BY_FUNCTION
Definition: class.ilAuthApache.php:26
AUTH_APACHE
const AUTH_APACHE
Definition: class.ilAuthUtils.php:19
APACHE_AUTH_TYPE_EXTENDED_MAPPING
const APACHE_AUTH_TYPE_EXTENDED_MAPPING
Definition: class.ilAuthApache.php:25
ilAuthApache\__construct
__construct($storageDriver, $options='', $loginFunction='', $showLogin=true)
Contructor.
Definition: class.ilAuthApache.php:55
ilAuthApache
Apache based authentication
Definition: class.ilAuthApache.php:35
IL_COOKIE_PATH
const IL_COOKIE_PATH(isset($_GET["client_id"]))
Definition: metadata.php:36
ilAuthApache\supportsRedirects
supportsRedirects()
Returns true, if the current auth mode allows redirection to e.g to loginScreen, public section...
Definition: class.ilAuthApache.php:44
ilUtil\getHtmlPath
static getHtmlPath($relative_path)
get url of path
Definition: class.ilUtil.php:150
array
Create styles array
The data for the language used.
Definition: 40duplicateStyle.php:19
$lng
global $lng
Definition: privfeed.php:17
defined
defined( 'APPLICATION_ENV')||define( 'APPLICATION_ENV'
Definition: bootstrap.php:27
ilUtil\redirect
static redirect($a_script)
Definition: class.ilUtil.php:3353
$_POST
$_POST["username"]
Definition: cfg.phpunit.template.php:11
$options
if(!isset($_REQUEST['ReturnTo'])) if(!isset($_REQUEST['AuthId'])) $options
Definition: as_login.php:20
ilContext\supportsRedirects
static supportsRedirects()
Are redirects supported?
Definition: class.ilContext.php:90