ILIAS  release_5-4 Revision v5.4.26-12-gabc799a52e6
TraditionalLogoutHandler.php
Go to the documentation of this file.
1<?php
2
3namespace SimpleSAML\IdP;
4
5use SimpleSAML\Logger;
6use SimpleSAML\Utils\HTTP;
7
13class TraditionalLogoutHandler implements LogoutHandlerInterface
14{
15
21 private $idp;
22
23
29 public function __construct(\SimpleSAML_IdP $idp)
30 {
31 $this->idp = $idp;
32 }
33
34
42 private function logoutNextSP(array &$state)
43 {
44 $association = array_pop($state['core:LogoutTraditional:Remaining']);
45 if ($association === null) {
46 $this->idp->finishLogout($state);
47 }
48
49 $relayState = \SimpleSAML_Auth_State::saveState($state, 'core:LogoutTraditional', true);
50
51 $id = $association['id'];
52 Logger::info('Logging out of '.var_export($id, true).'.');
53
54 try {
55 $idp = \SimpleSAML_IdP::getByState($association);
56 $url = call_user_func(array($association['Handler'], 'getLogoutURL'), $idp, $association, $relayState);
57 HTTP::redirectTrustedURL($url);
58 } catch (\Exception $e) {
59 Logger::warning('Unable to initialize logout to '.var_export($id, true).'.');
60 $this->idp->terminateAssociation($id);
61 $state['core:Failed'] = true;
62
63 // Try the next SP
64 $this->logoutNextSP($state);
65 assert(false);
66 }
67 }
68
69
78 public function startLogout(array &$state, $assocId)
79 {
80 $state['core:LogoutTraditional:Remaining'] = $this->idp->getAssociations();
81
82 $this->logoutNextSP($state);
83 }
84
85
97 public function onResponse($assocId, $relayState, \SimpleSAML_Error_Exception $error = null)
98 {
99 assert(is_string($assocId));
100 assert(is_string($relayState) || $relayState === null);
101
102 if ($relayState === null) {
103 throw new \SimpleSAML_Error_Exception('RelayState lost during logout.');
104 }
105
106 $state = \SimpleSAML_Auth_State::loadState($relayState, 'core:LogoutTraditional');
107
108 if ($error === null) {
109 Logger::info('Logged out of '.var_export($assocId, true).'.');
110 $this->idp->terminateAssociation($assocId);
111 } else {
112 Logger::warning('Error received from '.var_export($assocId, true).' during logout:');
113 $error->logWarning();
114 $state['core:Failed'] = true;
115 }
116
117 $this->logoutNextSP($state);
118 }
119}
$state
if(!array_key_exists('stateid', $_REQUEST)) $state
Handle linkback() response from LinkedIn.
Definition: linkback.php:10
php
An exception for terminatinating execution or to throw for unit testing.
SimpleSAML\IdP\TraditionalLogoutHandler\__construct
__construct(\SimpleSAML_IdP $idp)
TraditionalLogout constructor.
Definition: TraditionalLogoutHandler.php:29
SimpleSAML\IdP\TraditionalLogoutHandler\logoutNextSP
logoutNextSP(array &$state)
Picks the next SP and issues a logout request.
Definition: TraditionalLogoutHandler.php:42
SimpleSAML\IdP\TraditionalLogoutHandler\onResponse
onResponse($assocId, $relayState, \SimpleSAML_Error_Exception $error=null)
Continue the logout operation.
Definition: TraditionalLogoutHandler.php:97
SimpleSAML\IdP\TraditionalLogoutHandler\startLogout
startLogout(array &$state, $assocId)
Start the logout operation.
Definition: TraditionalLogoutHandler.php:78
SimpleSAML\Logger\info
static info($string)
Definition: Logger.php:199
SimpleSAML\Logger\warning
static warning($string)
Definition: Logger.php:177
SimpleSAML\Utils\HTTP\redirectTrustedURL
static redirectTrustedURL($url, $parameters=array())
This function redirects to the specified URL without performing any security checks.
Definition: HTTP.php:959
SimpleSAML_Auth_State\saveState
static saveState(&$state, $stage, $rawId=false)
Save the state.
Definition: State.php:194
SimpleSAML_Auth_State\loadState
static loadState($id, $stage, $allowMissing=false)
Retrieve saved state.
Definition: State.php:259
SimpleSAML_Error_Exception
Definition: Exception.php:13
SimpleSAML_IdP
Definition: IdP.php:11
SimpleSAML_IdP\getByState
static getByState(array &$state)
Retrieve the IdP "owning" the state.
Definition: IdP.php:145
$id
if(!array_key_exists('StateId', $_REQUEST)) $id
Definition: expirywarning.php:14
$relayState
$relayState
Definition: logout-iframe-post.php:14
$association
if(!isset($associations[$assocId])) $association
Definition: logout-iframe-post.php:23
$assocId
if(!isset($_REQUEST['association'])) $assocId
Definition: logout-iframe-post.php:12
$url
$url
Definition: proxy_ylocal.php:28