ILIAS  release_5-4 Revision v5.4.26-12-gabc799a52e6
TraditionalLogoutHandler.php
Go to the documentation of this file.
1 <?php
2 
3 namespace SimpleSAML\IdP;
4 
5 use SimpleSAML\Logger;
6 use SimpleSAML\Utils\HTTP;
7 
13 class TraditionalLogoutHandler implements LogoutHandlerInterface
14 {
15 
21  private $idp;
22 
23 
29  public function __construct(\SimpleSAML_IdP $idp)
30  {
31  $this->idp = $idp;
32  }
33 
34 
42  private function logoutNextSP(array &$state)
43  {
44  $association = array_pop($state['core:LogoutTraditional:Remaining']);
45  if ($association === null) {
46  $this->idp->finishLogout($state);
47  }
48 
49  $relayState = \SimpleSAML_Auth_State::saveState($state, 'core:LogoutTraditional', true);
50 
51  $id = $association['id'];
52  Logger::info('Logging out of '.var_export($id, true).'.');
53 
54  try {
55  $idp = \SimpleSAML_IdP::getByState($association);
56  $url = call_user_func(array($association['Handler'], 'getLogoutURL'), $idp, $association, $relayState);
57  HTTP::redirectTrustedURL($url);
58  } catch (\Exception $e) {
59  Logger::warning('Unable to initialize logout to '.var_export($id, true).'.');
60  $this->idp->terminateAssociation($id);
61  $state['core:Failed'] = true;
62 
63  // Try the next SP
64  $this->logoutNextSP($state);
65  assert(false);
66  }
67  }
68 
69 
78  public function startLogout(array &$state, $assocId)
79  {
80  $state['core:LogoutTraditional:Remaining'] = $this->idp->getAssociations();
81 
82  $this->logoutNextSP($state);
83  }
84 
85 
97  public function onResponse($assocId, $relayState, \SimpleSAML_Error_Exception $error = null)
98  {
99  assert(is_string($assocId));
100  assert(is_string($relayState) || $relayState === null);
101 
102  if ($relayState === null) {
103  throw new \SimpleSAML_Error_Exception('RelayState lost during logout.');
104  }
105 
106  $state = \SimpleSAML_Auth_State::loadState($relayState, 'core:LogoutTraditional');
107 
108  if ($error === null) {
109  Logger::info('Logged out of '.var_export($assocId, true).'.');
110  $this->idp->terminateAssociation($assocId);
111  } else {
112  Logger::warning('Error received from '.var_export($assocId, true).' during logout:');
113  $error->logWarning();
114  $state['core:Failed'] = true;
115  }
116 
117  $this->logoutNextSP($state);
118  }
119 }
SimpleSAML\IdP\TraditionalLogoutHandler\__construct
__construct(\SimpleSAML_IdP $idp)
TraditionalLogout constructor.
Definition: TraditionalLogoutHandler.php:29
SimpleSAML_IdP\getByState
static getByState(array &$state)
Retrieve the IdP "owning" the state.
Definition: IdP.php:145
SimpleSAML_Error_Exception
Definition: Exception.php:12
$id
if(!array_key_exists('StateId', $_REQUEST)) $id
Definition: expirywarning.php:14
SimpleSAML\IdP\TraditionalLogoutHandler\logoutNextSP
logoutNextSP(array &$state)
Picks the next SP and issues a logout request.
Definition: TraditionalLogoutHandler.php:42
SimpleSAML\Utils\HTTP\redirectTrustedURL
static redirectTrustedURL($url, $parameters=array())
This function redirects to the specified URL without performing any security checks.
Definition: HTTP.php:959
$state
if(!array_key_exists('stateid', $_REQUEST)) $state
Handle linkback() response from LinkedIn.
Definition: linkback.php:10
SimpleSAML\Logger\info
static info($string)
Definition: Logger.php:199
$relayState
$relayState
Definition: logout-iframe-post.php:14
SimpleSAML\Logger\warning
static warning($string)
Definition: Logger.php:177
SimpleSAML\IdP\TraditionalLogoutHandler\startLogout
startLogout(array &$state, $assocId)
Start the logout operation.
Definition: TraditionalLogoutHandler.php:78
SimpleSAML_Auth_State\loadState
static loadState($id, $stage, $allowMissing=false)
Retrieve saved state.
Definition: State.php:259
SimpleSAML\IdP\TraditionalLogoutHandler\onResponse
onResponse($assocId, $relayState, \SimpleSAML_Error_Exception $error=null)
Continue the logout operation.
Definition: TraditionalLogoutHandler.php:97
SimpleSAML_IdP
Definition: IdP.php:10
$association
if(!isset($associations[$assocId])) $association
Definition: logout-iframe-post.php:23
$assocId
if(!isset($_REQUEST['association'])) $assocId
Definition: logout-iframe-post.php:12
$url
$url
Definition: proxy_ylocal.php:28
SimpleSAML_Auth_State\saveState
static saveState(&$state, $stage, $rawId=false)
Save the state.
Definition: State.php:194