d7/d5e/modules_2sqlauth_2lib_2Auth_2Source_2SQL_8php_source.html

<?php


class sspmod_sqlauth_Auth_Source_SQL extends sspmod_core_Auth_UserPassBase

{

    private $dsn;


    private $username;


    private $password;


    private $options;


    private $query;


    public function __construct($info, $config)

    {

        assert(is_array($info));

        assert(is_array($config));


        // Call the parent constructor first, as required by the interface

        parent::__construct($info, $config);


        // Make sure that all required parameters are present.

        foreach (array('dsn', 'username', 'password', 'query') as $param) {

            if (!array_key_exists($param, $config)) {

                throw new Exception('Missing required attribute \'' . $param .

                    '\' for authentication source ' . $this->authId);

            }


            if (!is_string($config[$param])) {

                throw new Exception('Expected parameter \'' . $param .

                    '\' for authentication source ' . $this->authId .

                    ' to be a string. Instead it was: ' .

                    var_export($config[$param], true));

            }

        }


        $this->dsn = $config['dsn'];

        $this->username = $config['username'];

        $this->password = $config['password'];

        $this->query = $config['query'];

        if (isset($config['options'])) {

            $this->options = $config['options'];

        }

    }


    private function connect()

    {

        try {

            $db = new PDO($this->dsn, $this->username, $this->password, $this->options);

        } catch (PDOException $e) {

            throw new Exception('sqlauth:' . $this->authId . ': - Failed to connect to \'' .

                $this->dsn . '\': '. $e->getMessage());

        }


        $db->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);


        $driver = explode(':', $this->dsn, 2);

        $driver = strtolower($driver[0]);


        /* Driver specific initialization. */

        switch ($driver) {

        case 'mysql':

            /* Use UTF-8. */

            $db->exec("SET NAMES 'utf8mb4'");

            break;

        case 'pgsql':

            /* Use UTF-8. */

            $db->exec("SET NAMES 'UTF8'");

            break;

        }


        return $db;

    }


    protected function login($username, $password)

    {

        assert(is_string($username));

        assert(is_string($password));


        $db = $this->connect();


        try {

            $sth = $db->prepare($this->query);

        } catch (PDOException $e) {

            throw new Exception('sqlauth:' . $this->authId .

                ': - Failed to prepare query: ' . $e->getMessage());

        }


        try {

            $sth->execute(array('username' => $username, 'password' => $password));

        } catch (PDOException $e) {

            throw new Exception('sqlauth:' . $this->authId .

                ': - Failed to execute query: ' . $e->getMessage());

        }


        try {

            $data = $sth->fetchAll(PDO::FETCH_ASSOC);

        } catch (PDOException $e) {

            throw new Exception('sqlauth:' . $this->authId .

                ': - Failed to fetch result set: ' . $e->getMessage());

        }


        SimpleSAML\Logger::info('sqlauth:' . $this->authId . ': Got ' . count($data) .

            ' rows from database');


        if (count($data) === 0) {

            /* No rows returned - invalid username/password. */

            SimpleSAML\Logger::error('sqlauth:' . $this->authId .

                ': No rows in result set. Probably wrong username/password.');

            throw new SimpleSAML_Error_Error('WRONGUSERPASS');

        }


        /* Extract attributes. We allow the resultset to consist of multiple rows. Attributes

         * which are present in more than one row will become multivalued. null values and

         * duplicate values will be skipped. All values will be converted to strings.

         */

        $attributes = array();

        foreach ($data as $row) {

            foreach ($row as $name => $value) {


                if ($value === null) {

                    continue;

                }


                $value = (string)$value;


                if (!array_key_exists($name, $attributes)) {

                    $attributes[$name] = array();

                }


                if (in_array($value, $attributes[$name], true)) {

                    /* Value already exists in attribute. */

                    continue;

                }


                $attributes[$name][] = $value;

            }

        }


        SimpleSAML\Logger::info('sqlauth:' . $this->authId . ': Attributes: ' .

            implode(',', array_keys($attributes)));


        return $attributes;

    }

}

php
An exception for terminatinating execution or to throw for unit testing.

sspmod_core_Auth_UserPassBase
Definition: UserPassBase.php:12

sspmod_sqlauth_Auth_Source_SQL
Definition: SQL.php:13

sspmod_sqlauth_Auth_Source_SQL\$password
$password
The password we should connect to the database with.
Definition: SQL.php:27

sspmod_sqlauth_Auth_Source_SQL\$options
$options
The options that we should connect to the database with.
Definition: SQL.php:32

sspmod_sqlauth_Auth_Source_SQL\$query
$query
The query we should use to retrieve the attributes for the user.
Definition: SQL.php:39

sspmod_sqlauth_Auth_Source_SQL\connect
connect()
Create a database connection.
Definition: SQL.php:85

sspmod_sqlauth_Auth_Source_SQL\$username
$username
The username we should connect to the database with.
Definition: SQL.php:22

sspmod_sqlauth_Auth_Source_SQL\$dsn
$dsn
The DSN we should connect to.
Definition: SQL.php:17

sspmod_sqlauth_Auth_Source_SQL\__construct
__construct($info, $config)
Constructor for this authentication source.
Definition: SQL.php:47

$config
$config
Definition: bootstrap.php:15

$info
$info
Definition: index.php:5