d5/dcc/SmartID_8php_source.html

<?php


class sspmod_smartattributes_Auth_Process_SmartID extends SimpleSAML_Auth_ProcessingFilter

{

    private $_candidates = array(

        'eduPersonTargetedID',

        'eduPersonPrincipalName',

        'openid',

        'facebook_targetedID',

        'twitter_targetedID',

        'windowslive_targetedID',

        'linkedin_targetedID',

    );


    private $_id_attribute = 'smart_id';


    private $_add_authority = true;


    private $_add_candidate = true;


    private $attributes = array();


    public function __construct($config, $reserved)

    {

        parent::__construct($config, $reserved);


        assert(is_array($config));


        if (array_key_exists('candidates', $config)) {

            $this->_candidates = $config['candidates'];

            if (!is_array($this->_candidates)) {

                throw new Exception('SmartID authproc configuration error: \'candidates\' should be an array.');

            }

        }


        if (array_key_exists('id_attribute', $config)) {

            $this->_id_attribute = $config['id_attribute'];

            if (!is_string($this->_id_attribute)) {

                throw new Exception('SmartID authproc configuration error: \'id_attribute\' should be a string.');

            }

        }


        if (array_key_exists('add_authority', $config)) {

            $this->_add_authority = $config['add_authority'];

            if (!is_bool($this->_add_authority)) {

                throw new Exception('SmartID authproc configuration error: \'add_authority\' should be a boolean.');

            }

        }


        if (array_key_exists('add_candidate', $config)) {

            $this->_add_candidate = $config['add_candidate'];

            if (!is_bool($this->_add_candidate)) {

                throw new Exception('SmartID authproc configuration error: \'add_candidate\' should be a boolean.');

            }

        }

    }


    private function addID($attributes, $request)

    {

        $state = $request['saml:sp:State'];

        foreach ($this->_candidates as $idCandidate) {

            if (isset($attributes[$idCandidate][0])) {

                if (($this->_add_authority) && (isset($state['saml:AuthenticatingAuthority'][0]))) {

                    return ($this->_add_candidate ? $idCandidate.':' : '').$attributes[$idCandidate][0].'!'.$state['saml:AuthenticatingAuthority'][0];

                } else {

                    return ($this->_add_candidate ? $idCandidate.':' : '').$attributes[$idCandidate][0];

                }

            }

        }

        /*

         * At this stage no usable id_candidate has been detected.

         */

        throw new SimpleSAML_Error_Exception('This service needs at least one of the following

            attributes to identity users: '.implode(', ', $this->_candidates).'. Unfortunately not

            one of them was detected. Please ask your institution administrator to release one of

            them, or try using another identity provider.');

    }


    public function process(&$request)

    {

        assert(is_array($request));

        assert(array_key_exists('Attributes', $request));


        $id = $this->addID($request['Attributes'], $request);


        if (isset($id)) {

            $request['Attributes'][$this->_id_attribute] = array($id);

        }

    }

}

$request
foreach($paths as $path) $request
Definition: asyncclient.php:32

$state
if(!array_key_exists('stateid', $_REQUEST)) $state
Handle linkback() response from LinkedIn.
Definition: linkback.php:10

php
An exception for terminatinating execution or to throw for unit testing.

SimpleSAML_Auth_ProcessingFilter
Definition: ProcessingFilter.php:22

SimpleSAML_Error_Exception
Definition: Exception.php:13

sspmod_smartattributes_Auth_Process_SmartID
Definition: SmartID.php:4

sspmod_smartattributes_Auth_Process_SmartID\process
process(&$request)
Apply filter to add or replace attributes.
Definition: SmartID.php:109

sspmod_smartattributes_Auth_Process_SmartID\__construct
__construct($config, $reserved)
Definition: SmartID.php:46

sspmod_smartattributes_Auth_Process_SmartID\$_id_attribute
$_id_attribute
The name of the generated ID attribute.
Definition: SmartID.php:25

sspmod_smartattributes_Auth_Process_SmartID\addID
addID($attributes, $request)
Definition: SmartID.php:81

sspmod_smartattributes_Auth_Process_SmartID\$attributes
$attributes
Attributes which should be added/appended.
Definition: SmartID.php:43

sspmod_smartattributes_Auth_Process_SmartID\$_add_candidate
$_add_candidate
Whether to prepend the CandidateID, separated by ':'.
Definition: SmartID.php:36

sspmod_smartattributes_Auth_Process_SmartID\$_candidates
$_candidates
Which attributes to use as identifiers?
Definition: SmartID.php:12

sspmod_smartattributes_Auth_Process_SmartID\$_add_authority
$_add_authority
Whether to append the AuthenticatingAuthority, separated by '!' This only works when SSP is used as a...
Definition: SmartID.php:31

$id
if(!array_key_exists('StateId', $_REQUEST)) $id
Definition: expirywarning.php:14

$config
$config
Definition: bootstrap.php:15