ILIAS  release_5-4 Revision v5.4.26-12-gabc799a52e6
invalid_session.php
Go to the documentation of this file.
1 <?php
2 
12 // retrieve the authentication state
13 if (!array_key_exists('AuthState', $_REQUEST)) {
14  throw new SimpleSAML_Error_BadRequest('Missing mandatory parameter: AuthState');
15 }
16 
17 try {
18  // try to get the state
19  $state = SimpleSAML_Auth_State::loadState($_REQUEST['AuthState'], 'saml:proxy:invalid_idp');
20 } catch (Exception $e) {
21  // the user probably hit the back button after starting the logout, try to recover the state with another stage
22  $state = SimpleSAML_Auth_State::loadState($_REQUEST['AuthState'], 'core:Logout:afterbridge');
23 
24  // success! Try to continue with reauthentication, since we no longer have a valid session here
25  $idp = SimpleSAML_IdP::getById($state['core:IdP']);
26  sspmod_saml_Auth_Source_SP::reauthPostLogout($idp, $state);
27 }
28 
29 if (isset($_POST['cancel'])) {
30  // the user does not want to logout, cancel login
31  SimpleSAML_Auth_State::throwException(
32  $state,
33  new \SimpleSAML\Module\saml\Error\NoAvailableIDP(
34  \SAML2\Constants::STATUS_RESPONDER,
35  'User refused to reauthenticate with any of the IdPs requested.'
36  )
37  );
38 }
39 
40 if (isset($_POST['continue'])) {
41  // log the user out before being able to login again
42  $as = SimpleSAML_Auth_Source::getById($state['saml:sp:AuthId'], 'sspmod_saml_Auth_Source_SP');
44  $as->reauthLogout($state);
45 }
46 
47 $cfg = SimpleSAML_Configuration::getInstance();
48 $template = new SimpleSAML_XHTML_Template($cfg, 'saml:proxy/invalid_session.php');
49 $translator = $template->getTranslator();
50 $template->data['AuthState'] = (string)$_REQUEST['AuthState'];
51 
52 // get the name of the IdP
53 $idpmdcfg = $state['saml:sp:IdPMetadata'];
55 $idpmd = $idpmdcfg->toArray();
56 if (array_key_exists('name', $idpmd)) {
57  $template->data['idp_name'] = $translator->getPreferredTranslation($idpmd['name']);
58 } elseif (array_key_exists('OrganizationDisplayName', $idpmd)) {
59  $template->data['idp_name'] = $translator->getPreferredTranslation($idpmd['OrganizationDisplayName']);
60 } else {
61  $template->data['idp_name'] = $idpmd['entityid'];
62 }
63 
64 // get the name of the SP
65 $spmd = $state['SPMetadata'];
66 if (array_key_exists('name', $spmd)) {
67  $template->data['sp_name'] = $translator->getPreferredTranslation($spmd['name']);
68 } elseif (array_key_exists('OrganizationDisplayName', $spmd)) {
69  $template->data['sp_name'] = $translator->getPreferredTranslation($spmd['OrganizationDisplayName']);
70 } else {
71  $template->data['sp_name'] = $spmd['entityid'];
72 }
73 
74 $template->show();
SimpleSAML_IdP\getById
static getById($id)
Retrieve an IdP by ID.
Definition: IdP.php:124
SimpleSAML_Auth_State\throwException
static throwException($state, SimpleSAML_Error_Exception $exception)
Throw exception to the state exception handler.
Definition: State.php:343
$idpmdcfg
$idpmdcfg
Definition: invalid_session.php:53
$state
if(!array_key_exists('stateid', $_REQUEST)) $state
Handle linkback() response from LinkedIn.
Definition: linkback.php:10
SimpleSAML
Attribute-related utility methods.
SimpleSAML_Error_BadRequest
Definition: BadRequest.php:12
$translator
$translator
Definition: invalid_session.php:17
$as
$as
Definition: consentAdmin.php:86
$cfg
catch(Exception $e) if(isset($_POST['cancel'])) if(isset($_POST['continue'])) $cfg
Definition: invalid_session.php:47
SimpleSAML_Auth_State\loadState
static loadState($id, $stage, $allowMissing=false)
Retrieve saved state.
Definition: State.php:259
SimpleSAML_XHTML_Template
Definition: Template.php:14
$idp
$idp
Definition: prp.php:13
$spmd
$spmd
Definition: invalid_session.php:65
$template
$template
Definition: invalid_session.php:48
SimpleSAML_Auth_Source\getById
static getById($authId, $type=null)
Retrieve authentication source.
Definition: Source.php:340
$_POST
$_POST["username"]
Definition: cfg.phpunit.template.php:11
SimpleSAML_Configuration\getInstance
static getInstance($instancename='simplesaml')
Get a configuration file by its instance name.
Definition: Configuration.php:325
$idpmd
$idpmd
Definition: invalid_session.php:55