de/dcb/LDAPMulti_8php_source.html

<?php


class sspmod_ldap_Auth_Source_LDAPMulti extends sspmod_core_Auth_UserPassOrgBase

{


    private $orgs;


    private $ldapOrgs;


    private $includeOrgInUsername;


    public function __construct($info, $config)

    {

        assert('is_array($info)');

        assert('is_array($config)');


        // Call the parent constructor first, as required by the interface

        parent::__construct($info, $config);


        $cfgHelper = SimpleSAML_Configuration::loadFromArray($config,

            'Authentication source ' . var_export($this->authId, true));


        $this->orgs = array();

        $this->ldapOrgs = array();

        foreach ($config as $name => $value) {


            if ($name === 'username_organization_method') {

                $usernameOrgMethod = $cfgHelper->getValueValidate(

                    'username_organization_method',

                    array('none', 'allow', 'force'));

                $this->setUsernameOrgMethod($usernameOrgMethod);

                continue;

            }


            if ($name === 'include_organization_in_username') {

                $this->includeOrgInUsername = $cfgHelper->getBoolean(

                    'include_organization_in_username', false);

                continue;

            }


            $orgCfg = $cfgHelper->getArray($name);

            $orgId = $name;


            if (array_key_exists('description', $orgCfg)) {

                $this->orgs[$orgId] = $orgCfg['description'];

            } else {

                $this->orgs[$orgId] = $orgId;

            }


            $orgCfg = new sspmod_ldap_ConfigHelper($orgCfg,

                'Authentication source ' . var_export($this->authId, true) .

                ', organization ' . var_export($orgId, true));

            $this->ldapOrgs[$orgId] = $orgCfg;

        }

    }


    protected function login($username, $password, $org, array $sasl_args = null)

    {

        assert('is_string($username)');

        assert('is_string($password)');

        assert('is_string($org)');


        if (!array_key_exists($org, $this->ldapOrgs)) {

            // The user has selected an organization which doesn't exist anymore.

            SimpleSAML\Logger::warning('Authentication source ' . var_export($this->authId, true) .

                ': Organization seems to have disappeared while the user logged in.' .

                ' Organization was ' . var_export($org, true));

            throw new SimpleSAML_Error_Error('WRONGUSERPASS');

        }


        if ($this->includeOrgInUsername) {

            $username = $username . '@' . $org;

        }


        return $this->ldapOrgs[$org]->login($username, $password, $sasl_args);

    }


    protected function getOrganizations()

    {

        return $this->orgs;

    }

}

php
An exception for terminatinating execution or to throw for unit testing.

SimpleSAML\Logger\warning
static warning($string)
Definition: Logger.php:179

SimpleSAML_Configuration\loadFromArray
static loadFromArray($config, $location='[ARRAY]', $instance=null)
Loads a configuration from the given array.
Definition: Configuration.php:269

SimpleSAML_Error_Error
Definition: Error.php:11

sspmod_core_Auth_UserPassOrgBase
Definition: UserPassOrgBase.php:14

sspmod_core_Auth_UserPassOrgBase\$usernameOrgMethod
$usernameOrgMethod
What way do we handle the organization as part of the username.
Definition: UserPassOrgBase.php:42

sspmod_core_Auth_UserPassOrgBase\setUsernameOrgMethod
setUsernameOrgMethod($usernameOrgMethod)
Configure the way organizations as part of the username is handled.
Definition: UserPassOrgBase.php:103

sspmod_ldap_Auth_Source_LDAPMulti
Definition: LDAPMulti.php:14

sspmod_ldap_Auth_Source_LDAPMulti\$ldapOrgs
$ldapOrgs
An array of organization IDs to LDAP configuration objects.
Definition: LDAPMulti.php:24

sspmod_ldap_Auth_Source_LDAPMulti\$includeOrgInUsername
$includeOrgInUsername
Whether we should include the organization as part of the username.
Definition: LDAPMulti.php:29

sspmod_ldap_Auth_Source_LDAPMulti\getOrganizations
getOrganizations()
Retrieve list of organizations.
Definition: LDAPMulti.php:120

sspmod_ldap_Auth_Source_LDAPMulti\login
login($username, $password, $org, array $sasl_args=null)
Attempt to log in using the given username and password.
Definition: LDAPMulti.php:93

sspmod_ldap_Auth_Source_LDAPMulti\__construct
__construct($info, $config)
Constructor for this authentication source.
Definition: LDAPMulti.php:38

sspmod_ldap_Auth_Source_LDAPMulti\$orgs
$orgs
An array with descriptions for organizations.
Definition: LDAPMulti.php:19

sspmod_ldap_ConfigHelper
Definition: ConfigHelper.php:12

$config
$config
Definition: flush-definition-cache.php:23

$name
if($format !==null) $name
Definition: metadata.php:146

$info
$info
Definition: index.php:5

$password
$password
Definition: pwgen.php:17