ILIAS  release_5-4 Revision v5.4.26-12-gabc799a52e6
Simple.php
Go to the documentation of this file.
1<?php
2
3namespace SimpleSAML\Auth;
4
5use \SimpleSAML_Auth_Source as Source;
6use \SimpleSAML_Auth_State as State;
7use \SimpleSAML_Configuration as Configuration;
8use \SimpleSAML_Error_AuthSource as AuthSourceError;
9use \SimpleSAML\Module;
10use \SimpleSAML_Session as Session;
11use \SimpleSAML\Utils\HTTP;
12
18class Simple
19{
20
26 protected $authSource;
27
31 protected $app_config;
32
38 public function __construct($authSource)
39 {
40 assert(is_string($authSource));
41
42 $this->authSource = $authSource;
43 $this->app_config = Configuration::getInstance()->getConfigItem('application', null);
44 }
45
46
54 public function getAuthSource()
55 {
56 $as = Source::getById($this->authSource);
57 if ($as === null) {
58 throw new AuthSourceError($this->authSource, 'Unknown authentication source.');
59 }
60 return $as;
61 }
62
63
72 public function isAuthenticated()
73 {
74 $session = Session::getSessionFromRequest();
75
76 return $session->isValid($this->authSource);
77 }
78
79
93 public function requireAuth(array $params = array())
94 {
95
96 $session = Session::getSessionFromRequest();
97
98 if ($session->isValid($this->authSource)) {
99 // Already authenticated
100 return;
101 }
102
103 $this->login($params);
104 }
105
106
121 public function login(array $params = array())
122 {
123
124 if (array_key_exists('KeepPost', $params)) {
125 $keepPost = (bool) $params['KeepPost'];
126 } else {
127 $keepPost = true;
128 }
129
130 if (array_key_exists('ReturnTo', $params)) {
131 $returnTo = (string) $params['ReturnTo'];
132 } else {
133 if (array_key_exists('ReturnCallback', $params)) {
134 $returnTo = (array) $params['ReturnCallback'];
135 } else {
136 $returnTo = HTTP::getSelfURL();
137 }
138 }
139
140 if (is_string($returnTo) && $keepPost && $_SERVER['REQUEST_METHOD'] === 'POST') {
141 $returnTo = HTTP::getPOSTRedirectURL($returnTo, $_POST);
142 }
143
144 if (array_key_exists('ErrorURL', $params)) {
145 $errorURL = (string) $params['ErrorURL'];
146 } else {
147 $errorURL = null;
148 }
149
150
151 if (!isset($params[State::RESTART]) && is_string($returnTo)) {
152 /*
153 * A URL to restart the authentication, in case the user bookmarks
154 * something, e.g. the discovery service page.
155 */
156 $restartURL = $this->getLoginURL($returnTo);
157 $params[State::RESTART] = $restartURL;
158 }
159
160 $as = $this->getAuthSource();
161 $as->initLogin($returnTo, $errorURL, $params);
162 assert(false);
163 }
164
165
181 public function logout($params = null)
182 {
183 assert(is_array($params) || is_string($params) || $params === null);
184
185 if ($params === null) {
186 $params = HTTP::getSelfURL();
187 }
188
189 if (is_string($params)) {
190 $params = array(
191 'ReturnTo' => $params,
192 );
193 }
194
195 assert(is_array($params));
196 assert(isset($params['ReturnTo']) || isset($params['ReturnCallback']));
197
198 if (isset($params['ReturnStateParam']) || isset($params['ReturnStateStage'])) {
199 assert(isset($params['ReturnStateParam'], $params['ReturnStateStage']));
200 }
201
202 $session = Session::getSessionFromRequest();
203 if ($session->isValid($this->authSource)) {
204 $state = $session->getAuthData($this->authSource, 'LogoutState');
205 if ($state !== null) {
206 $params = array_merge($state, $params);
207 }
208
209 $session->doLogout($this->authSource);
210
211 $params['LogoutCompletedHandler'] = array(get_class(), 'logoutCompleted');
212
213 $as = Source::getById($this->authSource);
214 if ($as !== null) {
215 $as->logout($params);
216 }
217 }
218
219 self::logoutCompleted($params);
220 }
221
222
230 public static function logoutCompleted($state)
231 {
232 assert(is_array($state));
233 assert(isset($state['ReturnTo']) || isset($state['ReturnCallback']));
234
235 if (isset($state['ReturnCallback'])) {
236 call_user_func($state['ReturnCallback'], $state);
237 assert(false);
238 } else {
239 $params = array();
240 if (isset($state['ReturnStateParam']) || isset($state['ReturnStateStage'])) {
241 assert(isset($state['ReturnStateParam'], $state['ReturnStateStage']));
242 $stateID = State::saveState($state, $state['ReturnStateStage']);
243 $params[$state['ReturnStateParam']] = $stateID;
244 }
245 \SimpleSAML\Utils\HTTP::redirectTrustedURL($state['ReturnTo'], $params);
246 }
247 }
248
249
258 public function getAttributes()
259 {
260
261 if (!$this->isAuthenticated()) {
262 // Not authenticated
263 return array();
264 }
265
266 // Authenticated
267 $session = Session::getSessionFromRequest();
268 return $session->getAuthData($this->authSource, 'Attributes');
269 }
270
271
279 public function getAuthData($name)
280 {
281 assert(is_string($name));
282
283 if (!$this->isAuthenticated()) {
284 return null;
285 }
286
287 $session = Session::getSessionFromRequest();
288 return $session->getAuthData($this->authSource, $name);
289 }
290
291
297 public function getAuthDataArray()
298 {
299
300 if (!$this->isAuthenticated()) {
301 return null;
302 }
303
304 $session = Session::getSessionFromRequest();
305 return $session->getAuthState($this->authSource);
306 }
307
308
317 public function getLoginURL($returnTo = null)
318 {
319 assert($returnTo === null || is_string($returnTo));
320
321 if ($returnTo === null) {
322 $returnTo = HTTP::getSelfURL();
323 }
324
325 $login = Module::getModuleURL('core/as_login.php', array(
326 'AuthId' => $this->authSource,
327 'ReturnTo' => $returnTo,
328 ));
329
330 return $login;
331 }
332
333
342 public function getLogoutURL($returnTo = null)
343 {
344 assert($returnTo === null || is_string($returnTo));
345
346 if ($returnTo === null) {
347 $returnTo = HTTP::getSelfURL();
348 }
349
350 $logout = Module::getModuleURL('core/as_logout.php', array(
351 'AuthId' => $this->authSource,
352 'ReturnTo' => $returnTo,
353 ));
354
355 return $logout;
356 }
357
358
369 protected function getProcessedURL($url = null)
370 {
371 if ($url === null) {
372 $url = HTTP::getSelfURL();
373 }
374
375 $scheme = parse_url($url, PHP_URL_SCHEME);
376 $host = parse_url($url, PHP_URL_HOST) ?: HTTP::getSelfHost();
377 $port = parse_url($url, PHP_URL_PORT) ?: (
378 $scheme ? '' : trim(HTTP::getServerPort(), ':')
379 );
380 $scheme = $scheme ?: (HTTP::getServerHTTPS() ? 'https' : 'http');
381 $path = parse_url($url, PHP_URL_PATH) ?: '/';
382 $query = parse_url($url, PHP_URL_QUERY) ?: '';
383 $fragment = parse_url($url, PHP_URL_FRAGMENT) ?: '';
384
385 $port = !empty($port) ? ':'.$port : '';
386 if (($scheme === 'http' && $port === ':80') || ($scheme === 'https' && $port === ':443')) {
387 $port = '';
388 }
389
390 if (is_null($this->app_config)) {
391 // nothing more we can do here
392 return $scheme.'://'.$host.$port.$path.($query ? '?'.$query : '').($fragment ? '#'.$fragment : '');
393 }
394
395 $base = trim($this->app_config->getString(
396 'baseURL',
397 $scheme.'://'.$host.$port
398 ), '/');
399 return $base.$path.($query ? '?'.$query : '').($fragment ? '#'.$fragment : '');
400 }
401}
$path
$path
Definition: aliased.php:25
$state
if(!array_key_exists('stateid', $_REQUEST)) $state
Handle linkback() response from LinkedIn.
Definition: linkback.php:10
$returnTo
if(!isset($_REQUEST['ReturnTo'])) $returnTo
Definition: authpage.php:16
$_POST
$_POST["username"]
Definition: cfg.phpunit.template.php:11
php
An exception for terminatinating execution or to throw for unit testing.
Session
"Manueller" Session-Fallback mit PHP4
Definition: class.Session.php:34
SimpleSAML\Auth\Simple\logout
logout($params=null)
Log the user out.
Definition: Simple.php:181
SimpleSAML\Auth\Simple\getAuthSource
getAuthSource()
Retrieve the implementing authentication source.
Definition: Simple.php:54
SimpleSAML\Auth\Simple\getAuthDataArray
getAuthDataArray()
Retrieve all authentication data.
Definition: Simple.php:297
SimpleSAML\Auth\Simple\getAttributes
getAttributes()
Retrieve attributes of the current user.
Definition: Simple.php:258
SimpleSAML\Auth\Simple\getAuthData
getAuthData($name)
Retrieve authentication data.
Definition: Simple.php:279
SimpleSAML\Auth\Simple\isAuthenticated
isAuthenticated()
Check if the user is authenticated.
Definition: Simple.php:72
SimpleSAML\Auth\Simple\requireAuth
requireAuth(array $params=array())
Require the user to be authenticated.
Definition: Simple.php:93
SimpleSAML\Auth\Simple\logoutCompleted
static logoutCompleted($state)
Called when logout operation completes.
Definition: Simple.php:230
SimpleSAML\Auth\Simple\getLogoutURL
getLogoutURL($returnTo=null)
Retrieve a URL that can be used to log the user out.
Definition: Simple.php:342
SimpleSAML\Auth\Simple\getLoginURL
getLoginURL($returnTo=null)
Retrieve a URL that can be used to log the user in.
Definition: Simple.php:317
SimpleSAML\Auth\Simple\getProcessedURL
getProcessedURL($url=null)
Process a URL and modify it according to the application/baseURL configuration option,...
Definition: Simple.php:369
SimpleSAML\Auth\Simple\__construct
__construct($authSource)
Create an instance with the specified authsource.
Definition: Simple.php:38
SimpleSAML\Auth\Simple\login
login(array $params=array())
Start an authentication process.
Definition: Simple.php:121
SimpleSAML\Module\getModuleURL
static getModuleURL($resource, array $parameters=array())
Get absolute URL to a specified module resource.
Definition: Module.php:220
SimpleSAML\Utils\HTTP\getServerPort
static getServerPort()
Retrieve the port number from $_SERVER environment variables.
Definition: HTTP.php:109
SimpleSAML\Utils\HTTP\getSelfHost
static getSelfHost()
Retrieve our own host.
Definition: HTTP.php:697
SimpleSAML\Utils\HTTP\getServerHTTPS
static getServerHTTPS()
Retrieve HTTPS status from $_SERVER environment variables.
Definition: HTTP.php:84
SimpleSAML\Utils\HTTP\redirectTrustedURL
static redirectTrustedURL($url, $parameters=array())
This function redirects to the specified URL without performing any security checks.
Definition: HTTP.php:959
SimpleSAML\Utils\HTTP\getPOSTRedirectURL
static getPOSTRedirectURL($destination, $data)
Create a link which will POST data.
Definition: HTTP.php:666
$name
$name
Definition: client_example.php:35
$as
$as
Definition: consentAdmin.php:86
$login
$login
Definition: cron.php:13
$base
$base
Definition: index.php:4
$query
$query
Definition: proxy_ylocal.php:13
$session
$session
Definition: proxy_ylocal.php:32
$url
$url
Definition: proxy_ylocal.php:28
$_SERVER
if((!isset($_SERVER['DOCUMENT_ROOT'])) OR(empty($_SERVER['DOCUMENT_ROOT']))) $_SERVER['DOCUMENT_ROOT']
Definition: tcpdf_autoconfig.php:54