d3/d6e/Cardinality_8php_source.html

<?php


use SimpleSAML\Utils\HTTPAdapter;


class sspmod_core_Auth_Process_Cardinality extends SimpleSAML_Auth_ProcessingFilter

{

    private $cardinality = array();


    private $ignoreEntities = array();


    private $http;


    public function __construct($config, $reserved, HTTPAdapter $http = null)

    {

        parent::__construct($config, $reserved);

        assert(is_array($config));


        $this->http = $http ?: new HTTPAdapter();


        foreach ($config as $attribute => $rules) {

            if ($attribute === '%ignoreEntities') {

                $this->ignoreEntities = $config['%ignoreEntities'];

                continue;

            }


            if (!is_string($attribute)) {

                throw new SimpleSAML_Error_Exception('Invalid attribute name: '.var_export($attribute, true));

            }

            $this->cardinality[$attribute] = array('warn' => false);


            /* allow either positional or name-based parameters */

            if (isset($rules[0])) {

                $this->cardinality[$attribute]['min'] = $rules[0];

            } elseif (isset($rules['min'])) {

                $this->cardinality[$attribute]['min'] = $rules['min'];

            }

            if (isset($rules[1])) {

                $this->cardinality[$attribute]['max'] = $rules[1];

            } elseif (isset($rules['max'])) {

                $this->cardinality[$attribute]['max'] = $rules['max'];

            }

            if (array_key_exists('warn', $rules)) {

                $this->cardinality[$attribute]['warn'] = (bool) $rules['warn'];

            }


            /* sanity check the rules */

            if (!array_key_exists('min', $this->cardinality[$attribute])) {

                $this->cardinality[$attribute]['min'] = 0;

            } elseif (!is_int($this->cardinality[$attribute]['min']) ||

                $this->cardinality[$attribute]['min'] < 0

            ) {

                throw new SimpleSAML_Error_Exception('Minimum cardinality must be a positive integer: '.

                    var_export($attribute, true));

            }

            if (array_key_exists('max', $this->cardinality[$attribute]) &&

                !is_int($this->cardinality[$attribute]['max'])

            ) {

                throw new SimpleSAML_Error_Exception('Maximum cardinality must be a positive integer: '.

                    var_export($attribute, true));

            }

            if (array_key_exists('min', $this->cardinality[$attribute]) &&

                array_key_exists('max', $this->cardinality[$attribute]) &&

                $this->cardinality[$attribute]['min'] > $this->cardinality[$attribute]['max']

            ) {

                throw new SimpleSAML_Error_Exception('Minimum cardinality must be less than maximium: '.

                    var_export($attribute, true));

            }


            /* generate a display expression */

            $this->cardinality[$attribute]['_expr'] = sprintf('%d ≤ n', $this->cardinality[$attribute]['min']);

            if (array_key_exists('max', $this->cardinality[$attribute])) {

                $this->cardinality[$attribute]['_expr'] .= sprintf(' ≤ %d', $this->cardinality[$attribute]['max']);

            }

        }

    }


    public function process(&$request)

    {

        assert(is_array($request));

        assert(array_key_exists("Attributes", $request));


        $entityid = false;

        if (array_key_exists('Source', $request) && array_key_exists('entityid', $request['Source'])) {

            $entityid = $request['Source']['entityid'];

        }

        if (in_array($entityid, $this->ignoreEntities, true)) {

            SimpleSAML\Logger::debug('Cardinality: Ignoring assertions from '.$entityid);

            return;

        }


        foreach ($request['Attributes'] as $k => $v) {


            if (!array_key_exists($k, $this->cardinality)) {

                continue;

            }

            if (!is_array($v)) {

                $v = array($v);

            }


            /* minimum cardinality */

            if (count($v) < $this->cardinality[$k]['min']) {

                if ($this->cardinality[$k]['warn']) {

                    SimpleSAML\Logger::warning(sprintf(

                        'Cardinality: attribute %s from %s does not meet minimum cardinality of %d (%d)',

                        $k, $entityid, $this->cardinality[$k]['min'], count($v)

                    ));

                } else {

                    $request['core:cardinality:errorAttributes'][$k] = array(count($v), $this->cardinality[$k]['_expr']);

                }

                continue;

            }


            /* maximum cardinality */

            if (array_key_exists('max', $this->cardinality[$k]) && count($v) > $this->cardinality[$k]['max']) {

                if ($this->cardinality[$k]['warn']) {

                    SimpleSAML\Logger::warning(sprintf(

                        'Cardinality: attribute %s from %s does not meet maximum cardinality of %d (%d)',

                        $k, $entityid, $this->cardinality[$k]['max'], count($v)

                    ));

                } else {

                    $request['core:cardinality:errorAttributes'][$k] = array(count($v), $this->cardinality[$k]['_expr']);

                }

                continue;

            }

        }


        /* check for missing attributes with a minimum cardinality */

        foreach ($this->cardinality as $k => $v) {

            if (!$this->cardinality[$k]['min'] || array_key_exists($k, $request['Attributes'])) {

                continue;

            }

            if ($this->cardinality[$k]['warn']) {

                SimpleSAML\Logger::warning(sprintf(

                    'Cardinality: attribute %s from %s is missing',

                    $k, $entityid

                ));

            } else {

                $request['core:cardinality:errorAttributes'][$k] = array(0, $this->cardinality[$k]['_expr']);

            }

        }


        /* abort if we found a problematic attribute */

        if (array_key_exists('core:cardinality:errorAttributes', $request)) {

            $id = SimpleSAML_Auth_State::saveState($request, 'core:cardinality');

            $url = SimpleSAML\Module::getModuleURL('core/cardinality_error.php');

            $this->http->redirectTrustedURL($url, array('StateId' => $id));

            return;

        }

    }

}

$request
foreach($paths as $path) $request
Definition: asyncclient.php:32

php
An exception for terminatinating execution or to throw for unit testing.

SimpleSAML\Logger\warning
static warning($string)
Definition: Logger.php:177

SimpleSAML\Logger\debug
static debug($string)
Definition: Logger.php:211

SimpleSAML\Module\getModuleURL
static getModuleURL($resource, array $parameters=array())
Get absolute URL to a specified module resource.
Definition: Module.php:220

SimpleSAML_Auth_ProcessingFilter
Definition: ProcessingFilter.php:22

SimpleSAML_Auth_State\saveState
static saveState(&$state, $stage, $rawId=false)
Save the state.
Definition: State.php:194

SimpleSAML_Error_Exception
Definition: Exception.php:13

sspmod_core_Auth_Process_Cardinality
Definition: Cardinality.php:12

sspmod_core_Auth_Process_Cardinality\$http
$http
Definition: Cardinality.php:20

sspmod_core_Auth_Process_Cardinality\__construct
__construct($config, $reserved, HTTPAdapter $http=null)
Initialize this filter, parse configuration.
Definition: Cardinality.php:30

sspmod_core_Auth_Process_Cardinality\$ignoreEntities
$ignoreEntities
Definition: Cardinality.php:17

sspmod_core_Auth_Process_Cardinality\$cardinality
$cardinality
Definition: Cardinality.php:14

sspmod_core_Auth_Process_Cardinality\process
process(&$request)
Process this filter.
Definition: Cardinality.php:99

$id
if(!array_key_exists('StateId', $_REQUEST)) $id
Definition: expirywarning.php:14

$config
$config
Definition: bootstrap.php:15

ILIAS\FileDelivery\http
static http()
Fetches the global http state from ILIAS.
Definition: HttpServiceAware.php:36

$url
$url
Definition: proxy_ylocal.php:28