dc/d7c/SOAP_8php_source.html

<?php


namespace SAML2;


use DOMDocument;


use SAML2\XML\ecp\Response as ECPResponse;


class SOAP extends Binding

{

    public function getOutputToSend(Message $message)

    {

        $envelope = <<<SOAP

<?xml version="1.0" encoding="utf-8"?>

<SOAP-ENV:Envelope xmlns:SOAP-ENV="%s">

    <SOAP-ENV:Header />

    <SOAP-ENV:Body />

</SOAP-ENV:Envelope>

SOAP;

        $envelope = sprintf($envelope, Constants::NS_SOAP);


        $doc = new DOMDocument;

        $doc->loadXML($envelope);


        // In the Artifact Resolution profile, this will be an ArtifactResolve

        // containing another message (e.g. a Response), however in the ECP

        // profile, this is the Response itself.

        if ($message instanceof Response) {

            $header = $doc->getElementsByTagNameNS(Constants::NS_SOAP, 'Header')->item(0);


            $response = new ECPResponse;

            $response->AssertionConsumerServiceURL = $this->getDestination() ?: $message->getDestination();


            $response->toXML($header);


            // TODO We SHOULD add ecp:RequestAuthenticated SOAP header if we

            // authenticated the AuthnRequest. It may make sense to have a

            // standardized way for Message objects to contain (optional) SOAP

            // headers for use with the SOAP binding.

            //

            // https://docs.oasis-open.org/security/saml/Post2.0/saml-ecp/v2.0/cs01/saml-ecp-v2.0-cs01.html#_Toc366664733

            // See Section 2.3.6.1

        }


        $body = $doc->getElementsByTagNameNs(Constants::NS_SOAP, 'Body')->item(0);


        $body->appendChild($doc->importNode($message->toSignedXML(), true));


        return $doc->saveXML();

    }


    public function send(Message $message)

    {

        header('Content-Type: text/xml', true);


        $xml = $this->getOutputToSend($message);

        Utils::getContainer()->debugMessage($xml, 'out');

        echo $xml;


        exit(0);

    }


    public function receive()

    {

        $postText = $this->getInputStream();


        if (empty($postText)) {

            throw new \Exception('Invalid message received to AssertionConsumerService endpoint.');

        }


        $document = DOMDocumentFactory::fromString($postText);

        $xml = $document->firstChild;

        Utils::getContainer()->debugMessage($xml, 'in');

        $results = Utils::xpQuery($xml, '/soap-env:Envelope/soap-env:Body/*[1]');


        return Message::fromXML($results[0]);

    }


    protected function getInputStream()

    {

        return file_get_contents('php://input');

    }

}

exit
exit
Definition: backend.php:16

php
An exception for terminatinating execution or to throw for unit testing.

SAML2\Binding
Definition: Binding.php:11

SAML2\Message
Base class for all SAML 2 messages.
Definition: Message.php:19

SAML2\Response
Definition: Response.php:11

SAML2\SOAP
Definition: SOAP.php:15

SAML2\SOAP\getOutputToSend
getOutputToSend(Message $message)
Definition: SOAP.php:16

SAML2\SOAP\receive
receive()
Receive a SAML 2 message sent using the HTTP-POST binding.
Definition: SOAP.php:85

SAML2\SOAP\send
send(Message $message)
Send a SAML 2 message using the SOAP binding.
Definition: SOAP.php:66

SAML2\SOAP\getInputStream
getInputStream()
Definition: SOAP.php:101

SAML2\XML\ecp\Response
Class representing the ECP Response element.
Definition: Response.php:14

$xml
$xml
Definition: fetch_windows_zones.php:11

$message
catch(Exception $e) $message
Definition: saml2-logout.php:34

SAML2
Definition: ArtifactResolve.php:3

$header
$header
Definition: no_cookie.tpl.php:6

$response
$response
Definition: proxy_ylocal.php:39

$results
$results
Definition: svg-scanner.php:47