ILIAS  release_7 Revision v7.30-3-g800a261c036
All Data Structures Namespaces Files Functions Variables Modules Pages
class.ilAuthUtils.php
Go to the documentation of this file.
1 <?php
2 
3 /* Copyright (c) 1998-2010 ILIAS open source, Extended GPL, see docs/LICENSE */
4 
5 
6 // define auth modes
7 define("AUTH_LOCAL", 1);
8 define("AUTH_LDAP", 2);
9 define("AUTH_RADIUS", 3);
10 define("AUTH_SCRIPT", 4);
11 define("AUTH_SHIBBOLETH", 5);
12 define("AUTH_CAS", 6);
13 define("AUTH_SOAP", 7);
14 define("AUTH_HTTP", 8); // Used for WebDAV
15 define("AUTH_ECS", 9);
16 
17 define("AUTH_APACHE", 11);
18 define("AUTH_SAML", 12);
19 
20 define('AUTH_OPENID_CONNECT', 15);
21 
22 define("AUTH_INACTIVE", 18);
23 
24 define('AUTH_MULTIPLE', 20);
25 
26 define('AUTH_SESSION', 21);
27 
28 define('AUTH_PROVIDER_LTI', 22);
29 
30 define('AUTH_SOAP_NO_ILIAS_USER', -100);
31 define('AUTH_LDAP_NO_ILIAS_USER', -200);
32 define('AUTH_RADIUS_NO_ILIAS_USER', -300);
33 
34 // apache auhtentication failed...
35 // maybe no (valid) certificate or
36 // username could not be extracted
37 define('AUTH_APACHE_FAILED', -500);
38 define('AUTH_SAML_FAILED', -501);
39 
40 define('AUTH_MODE_INACTIVE', -1000);
41 
42 // an external user cannot be found in ilias, but his email address
43 // matches one or more ILIAS users
44 define('AUTH_SOAP_NO_ILIAS_USER_BUT_EMAIL', -101);
45 define('AUTH_CAS_NO_ILIAS_USER', -90);
46 
47 // ilUser validation (no login)
48 define('AUTH_USER_WRONG_IP', -600);
49 define('AUTH_USER_INACTIVE', -601);
50 define('AUTH_USER_TIME_LIMIT_EXCEEDED', -602);
51 define('AUTH_USER_SIMULTANEOUS_LOGIN', -603);
52 define('AUTH_CAPTCHA_INVALID', -604);
53 
54 
55 include_once './Services/Authentication/classes/class.ilAuthFactory.php';
56 require_once('Services/Authentication/classes/class.ilSessionControl.php');
57 
58 
66 class ilAuthUtils
67 {
68  const LOCAL_PWV_FULL = 1;
69  const LOCAL_PWV_NO = 2;
70  const LOCAL_PWV_USER = 3;
71 
75  public static function isAuthenticationForced()
76  {
77  if (isset($_GET['ecs_hash']) or isset($_GET['ecs_hash_url'])) {
78  return true;
79  }
80  return false;
81  }
82 
83  public static function handleForcedAuthentication()
84  {
85  if (isset($_GET['ecs_hash']) or isset($_GET['ecs_hash_url'])) {
86  include_once './Services/Authentication/classes/Frontend/class.ilAuthFrontendCredentials.php';
87  $credentials = new ilAuthFrontendCredentials();
88  $credentials->setUsername($_GET['ecs_login']);
89  $credentials->setAuthMode(AUTH_ECS);
90 
91  include_once './Services/Authentication/classes/Provider/class.ilAuthProviderFactory.php';
92  $provider_factory = new ilAuthProviderFactory();
93  $providers = $provider_factory->getProviders($credentials);
94 
95  include_once './Services/Authentication/classes/class.ilAuthStatus.php';
96  $status = ilAuthStatus::getInstance();
97 
98  include_once './Services/Authentication/classes/Frontend/class.ilAuthFrontendFactory.php';
99  $frontend_factory = new ilAuthFrontendFactory();
100  $frontend_factory->setContext(ilAuthFrontendFactory::CONTEXT_STANDARD_FORM);
101  $frontend = $frontend_factory->getFrontend(
102  $GLOBALS['DIC']['ilAuthSession'],
103  $status,
104  $credentials,
105  $providers
106  );
107 
108  $frontend->authenticate();
109 
110  switch ($status->getStatus()) {
111  case ilAuthStatus::STATUS_AUTHENTICATED:
112  return;
113 
114  case ilAuthStatus::STATUS_AUTHENTICATION_FAILED:
115  ilInitialisation::goToPublicSection();
116  return;
117  }
118  }
119  }
120 
121  public static function _getAuthMode($a_auth_mode, $a_db_handler = '')
122  {
123  global $DIC;
124 
125  $ilDB = $DIC['ilDB'];
126  $ilSetting = $DIC['ilSetting'];
127 
128  $db = &$ilDB;
129 
130  if ($a_db_handler != '') {
131  $db = &$a_db_handler;
132  }
133 
134  // begin-patch ldap_multiple
135  if (strpos($a_auth_mode, '_') !== false) {
136  $auth_arr = explode('_', $a_auth_mode);
137  $auth_switch = $auth_arr[0];
138  } else {
139  $auth_switch = $a_auth_mode;
140  }
141  switch ($auth_switch) {
142  case "local":
143  return AUTH_LOCAL;
144  break;
145 
146  case "ldap":
147  // begin-patch ldap_multiple
148  include_once './Services/LDAP/classes/class.ilLDAPServer.php';
149  return ilLDAPServer::getKeyByAuthMode($a_auth_mode);
150  // end-patch ldap_multiple
151 
152  case 'lti':
153  include_once './Services/LTI/classes/InternalProvider/class.ilAuthProviderLTI.php';
154  return ilAuthProviderLTI::getKeyByAuthMode($a_auth_mode);
155 
156  case "radius":
157  return AUTH_RADIUS;
158  break;
159 
160  case "script":
161  return AUTH_SCRIPT;
162  break;
163 
164  case "shibboleth":
165  return AUTH_SHIBBOLETH;
166  break;
167 
168  case 'oidc':
169  return AUTH_OPENID_CONNECT;
170  break;
171 
172  case 'saml':
173  require_once 'Services/Saml/classes/class.ilSamlIdp.php';
174  return ilSamlIdp::getKeyByAuthMode($a_auth_mode);
175 
176  case "cas":
177  return AUTH_CAS;
178  break;
179 
180  case "soap":
181  return AUTH_SOAP;
182  break;
183 
184  case 'ecs':
185  return AUTH_ECS;
186 
187  case 'apache':
188  return AUTH_APACHE;
189 
190  default:
191  return $ilSetting->get("auth_mode");
192  break;
193  }
194  }
195 
196  public static function _getAuthModeName($a_auth_key)
197  {
198  global $DIC;
199 
200  $ilias = $DIC['ilias'];
201 
202  // begin-patch ldap_multiple
203  switch ((int) $a_auth_key) {
204  case AUTH_LOCAL:
205  return "local";
206  break;
207 
208  case AUTH_LDAP:
209  // begin-patch ldap_multiple
210  include_once './Services/LDAP/classes/class.ilLDAPServer.php';
211  return ilLDAPServer::getAuthModeByKey($a_auth_key);
212  // end-patch ldap_multiple
213 
214  case AUTH_PROVIDER_LTI:
215  include_once './Services/LTI/classes/InternalProvider/class.ilAuthProviderLTI.php';
216  return ilAuthProviderLTI::getAuthModeByKey($a_auth_key);
217 
218  case AUTH_RADIUS:
219  return "radius";
220  break;
221 
222  case AUTH_CAS:
223  return "cas";
224  break;
225 
226  case AUTH_SCRIPT:
227  return "script";
228  break;
229 
230  case AUTH_SHIBBOLETH:
231  return "shibboleth";
232  break;
233 
234  case AUTH_SAML:
235  require_once 'Services/Saml/classes/class.ilSamlIdp.php';
236  return ilSamlIdp::getAuthModeByKey($a_auth_key);
237 
238  case AUTH_SOAP:
239  return "soap";
240  break;
241 
242  case AUTH_ECS:
243  return 'ecs';
244 
245  case AUTH_APACHE:
246  return 'apache';
247 
248  case AUTH_OPENID_CONNECT:
249  return 'oidc';
250  break;
251 
252  default:
253  return "default";
254  break;
255  }
256  }
257 
258  public static function _getActiveAuthModes()
259  {
260  global $DIC;
261 
262  $ilias = $DIC['ilias'];
263  $ilSetting = $DIC['ilSetting'];
264 
265  $modes = array(
266  'default' => $ilSetting->get("auth_mode"),
267  'local' => AUTH_LOCAL
268  );
269  include_once('Services/LDAP/classes/class.ilLDAPServer.php');
270  foreach (ilLDAPServer::_getActiveServerList() as $sid) {
271  $modes['ldap_' . $sid] = (AUTH_LDAP . '_' . $sid);
272  }
273 
274  include_once './Services/LTI/classes/InternalProvider/class.ilAuthProviderLTI.php';
275  foreach (ilAuthProviderLTI::getAuthModes() as $sid) {
276  $modes['lti_' . $sid] = (AUTH_PROVIDER_LTI . '_' . $sid);
277  }
278 
279  if (ilOpenIdConnectSettings::getInstance()->getActive()) {
280  $modes['oidc'] = AUTH_OPENID_CONNECT;
281  }
282 
283  if ($ilSetting->get("radius_active")) {
284  $modes['radius'] = AUTH_RADIUS;
285  }
286  if ($ilSetting->get("shib_active")) {
287  $modes['shibboleth'] = AUTH_SHIBBOLETH;
288  }
289  if ($ilSetting->get("script_active")) {
290  $modes['script'] = AUTH_SCRIPT;
291  }
292  if ($ilSetting->get("cas_active")) {
293  $modes['cas'] = AUTH_CAS;
294  }
295  if ($ilSetting->get("soap_auth_active")) {
296  $modes['soap'] = AUTH_SOAP;
297  }
298  if ($ilSetting->get("apache_active")) {
299  $modes['apache'] = AUTH_APACHE;
300  }
301 
302  include_once './Services/WebServices/ECS/classes/class.ilECSServerSettings.php';
303  if (ilECSServerSettings::getInstance()->activeServerExists()) {
304  $modes['ecs'] = AUTH_ECS;
305  }
306 
307  require_once 'Services/Saml/classes/class.ilSamlIdp.php';
308  foreach (ilSamlIdp::getActiveIdpList() as $idp) {
309  $modes['saml_' . $idp->getIdpId()] = AUTH_SAML . '_' . $idp->getIdpId();
310  }
311 
312  // begin-path auth_plugin
313  foreach (self::getAuthPlugins() as $pl) {
314  foreach ($pl->getAuthIds() as $auth_id) {
315  if ($pl->isAuthActive($auth_id)) {
316  $modes[$pl->getAuthName($auth_id)] = $auth_id;
317  }
318  }
319  }
320  // end-path auth_plugin
321  return $modes;
322  }
323 
324  public static function _getAllAuthModes()
325  {
326  $modes = array(
327  AUTH_LOCAL,
328  AUTH_LDAP,
329  AUTH_SHIBBOLETH,
330  AUTH_SAML,
331  AUTH_CAS,
332  AUTH_SOAP,
333  AUTH_RADIUS,
334  AUTH_ECS,
335  AUTH_PROVIDER_LTI,
336  AUTH_OPENID_CONNECT,
337  AUTH_APACHE
338  );
339  $ret = array();
340  foreach ($modes as $mode) {
341  if ($mode == AUTH_PROVIDER_LTI) {
342  include_once './Services/LTI/classes/InternalProvider/class.ilAuthProviderLTI.php';
343  foreach (ilAuthProviderLTI::getAuthModes() as $sid) {
344  $id = AUTH_PROVIDER_LTI . '_' . $sid;
345  $ret[$id] = ilAuthUtils::_getAuthModeName($id);
346  }
347  continue;
348  }
349 
350  // multi ldap implementation
351  if ($mode == AUTH_LDAP) {
352  foreach (ilLDAPServer::_getServerList() as $ldap_id) {
353  $id = AUTH_LDAP . '_' . $ldap_id;
354  $ret[$id] = ilAuthUtils::_getAuthModeName($id);
355  }
356  continue;
357  } elseif ($mode == AUTH_SAML) {
358  require_once 'Services/Saml/classes/class.ilSamlIdp.php';
359  foreach (ilSamlIdp::getAllIdps() as $idp) {
360  $id = AUTH_SAML . '_' . $idp->getIdpId();
361  $ret[$id] = ilAuthUtils::_getAuthModeName($id);
362  }
363  continue;
364  }
365  $ret[$mode] = ilAuthUtils::_getAuthModeName($mode);
366  }
367  return $ret;
368  }
369 
374  public static function _generateLogin($a_login)
375  {
376  global $DIC;
377 
378  $ilDB = $DIC['ilDB'];
379 
380  // Check if username already exists
381  $found = false;
382  $postfix = 0;
383  $c_login = $a_login;
384  while (!$found) {
385  $r = $ilDB->query("SELECT login FROM usr_data WHERE login = " .
386  $ilDB->quote($c_login));
387  if ($r->numRows() > 0) {
388  $postfix++;
389  $c_login = $a_login . $postfix;
390  } else {
391  $found = true;
392  }
393  }
394 
395  return $c_login;
396  }
397 
398  public static function _hasMultipleAuthenticationMethods()
399  {
400  include_once('Services/Radius/classes/class.ilRadiusSettings.php');
401 
402  $rad_settings = ilRadiusSettings::_getInstance();
403  if ($rad_settings->isActive()) {
404  return true;
405  }
406  include_once('Services/LDAP/classes/class.ilLDAPServer.php');
407 
408  if (count(ilLDAPServer::_getActiveServerList())) {
409  return true;
410  }
411 
412  global $DIC;
413 
414  $ilSetting = $DIC['ilSetting'];
415 
416  if ($ilSetting->get('apache_active')) {
417  return true;
418  }
419 
420  // begin-patch auth_plugin
421  foreach (ilAuthUtils::getAuthPlugins() as $pl) {
422  foreach ($pl->getAuthIds() as $auth_id) {
423  if ($pl->getMultipleAuthModeOptions($auth_id)) {
424  return true;
425  }
426  }
427  }
428  // end-patch auth_plugin
429 
430 
431  return false;
432  }
433 
434  public static function _getMultipleAuthModeOptions($lng)
435  {
436  global $DIC;
437 
438  $ilSetting = $DIC['ilSetting'];
439 
440  // in the moment only ldap is activated as additional authentication method
441  include_once('Services/LDAP/classes/class.ilLDAPServer.php');
442 
443  $options[AUTH_LOCAL]['txt'] = $lng->txt('authenticate_ilias');
444 
445 
446  // begin-patch ldap_multiple
447  foreach (ilLDAPServer::_getActiveServerList() as $sid) {
448  $server = ilLDAPServer::getInstanceByServerId($sid);
449  $options[AUTH_LDAP . '_' . $sid]['txt'] = $server->getName();
450  }
451  // end-patch ldap_multiple
452 
453  include_once('Services/Radius/classes/class.ilRadiusSettings.php');
454  $rad_settings = ilRadiusSettings::_getInstance();
455  if ($rad_settings->isActive()) {
456  $options[AUTH_RADIUS]['txt'] = $rad_settings->getName();
457  }
458 
459  if ($ilSetting->get('apache_active')) {
460  global $DIC;
461 
462  $lng = $DIC['lng'];
463  $apache_settings = new ilSetting('apache_auth');
464  $options[AUTH_APACHE]['txt'] = $apache_settings->get('name', $lng->txt('apache_auth'));
465  $options[AUTH_APACHE]['hide_in_ui'] = true;
466  }
467 
468  if ($ilSetting->get('auth_mode', AUTH_LOCAL) == AUTH_LDAP) {
469  $default = AUTH_LDAP;
470  } elseif ($ilSetting->get('auth_mode', AUTH_LOCAL) == AUTH_RADIUS) {
471  $default = AUTH_RADIUS;
472  } else {
473  $default = AUTH_LOCAL;
474  }
475 
476  $default = $ilSetting->get('default_auth_mode', $default);
477  $default = (int) $_REQUEST['auth_mode'] ? (int) $_REQUEST['auth_mode'] : $default;
478 
479 
480  // begin-patch auth_plugin
481  $pls = ilAuthUtils::getAuthPlugins();
482  foreach ($pls as $pl) {
483  $auths = $pl->getAuthIds();
484  foreach ($auths as $auth_id) {
485  $pl_auth_option = $pl->getMultipleAuthModeOptions($auth_id);
486  if ($pl_auth_option) {
487  $options = $options + $pl_auth_option;
488  }
489  }
490  }
491  // end-patch auth_plugins
492 
493  if (array_key_exists($default, $options)) {
494  $options[$default]['checked'] = true;
495  }
496 
497  return $options ? $options : array();
498  }
499 
509  public static function _isExternalAccountEnabled()
510  {
511  global $DIC;
512 
513  $ilSetting = $DIC['ilSetting'];
514 
515  if ($ilSetting->get("cas_active")) {
516  return true;
517  }
518  if ($ilSetting->get("soap_auth_active")) {
519  return true;
520  }
521  if ($ilSetting->get("shib_active")) {
522  return true;
523  }
524  if ($ilSetting->get('radius_active')) {
525  return true;
526  }
527  include_once('Services/LDAP/classes/class.ilLDAPServer.php');
528  if (count(ilLDAPServer::_getActiveServerList())) {
529  return true;
530  }
531 
532  include_once './Services/LTI/classes/InternalProvider/class.ilAuthProviderLTI.php';
533  if (count(ilAuthProviderLTI::getActiveAuthModes())) {
534  return true;
535  }
536 
537  require_once 'Services/Saml/classes/class.ilSamlIdp.php';
538  if (count(ilSamlIdp::getActiveIdpList()) > 0) {
539  return true;
540  }
541 
542  if (ilOpenIdConnectSettings::getInstance()->getActive()) {
543  return true;
544  }
545 
546  // begin-path auth_plugin
547  foreach (self::getAuthPlugins() as $pl) {
548  foreach ($pl->getAuthIds() as $auth_id) {
549  if ($pl->isAuthActive($auth_id) and $pl->isExternalAccountNameRequired($auth_id)) {
550  return true;
551  }
552  }
553  }
554  // end-path auth_plugin
555 
556  return false;
557  }
558 
567  public static function _allowPasswordModificationByAuthMode($a_auth_mode)
568  {
569  switch ((int) $a_auth_mode) {
570  case AUTH_LDAP:
571  case AUTH_RADIUS:
572  case AUTH_ECS:
573  case AUTH_PROVIDER_LTI:
574  case AUTH_OPENID_CONNECT:
575  return false;
576  default:
577  return true;
578  }
579  }
580 
589  public static function _needsExternalAccountByAuthMode($a_auth_mode)
590  {
591  switch ($a_auth_mode) {
592  case AUTH_LOCAL:
593  case AUTH_APACHE:
594  return false;
595  default:
596  return true;
597  }
598  }
599 
603  public static function isPasswordModificationHidden()
604  {
606  global $DIC;
607 
608  $ilSetting = $DIC['ilSetting'];
609 
610  if ($ilSetting->get('usr_settings_hide_password') || $ilSetting->get('usr_settings_disable_password')) {
611  return true;
612  }
613 
614  return false;
615  }
616 
622  public static function isLocalPasswordEnabledForAuthMode($a_authmode)
623  {
624  global $DIC;
625 
626  $ilSetting = $DIC->settings();
627 
628  switch ((int) $a_authmode) {
629  // always enabled
630  case AUTH_LOCAL:
631  case AUTH_APACHE:
632  return true;
633 
634  // No local passwords for these auth modes
635  case AUTH_LDAP:
636  case AUTH_RADIUS:
637  case AUTH_ECS:
638  case AUTH_SCRIPT:
639  case AUTH_PROVIDER_LTI:
640  case AUTH_OPENID_CONNECT:
641  return false;
642 
643  case AUTH_SAML:
644  require_once 'Services/Saml/classes/class.ilSamlIdp.php';
645  $idp = ilSamlIdp::getInstanceByIdpId(ilSamlIdp::getIdpIdByAuthMode($a_authmode));
646  return $idp->isActive() && $idp->allowLocalAuthentication();
647 
648  case AUTH_SHIBBOLETH:
649  return $ilSetting->get("shib_auth_allow_local");
650  case AUTH_SOAP:
651  return $ilSetting->get("soap_auth_allow_local");
652  case AUTH_CAS:
653  return $ilSetting->get("cas_allow_local");
654 
655  }
656  return false;
657  }
658 
659 
660 
666  public static function isPasswordModificationEnabled($a_authmode)
667  {
668  global $DIC;
669 
670  $ilSetting = $DIC['ilSetting'];
671 
672  if (self::isPasswordModificationHidden()) {
673  return false;
674  }
675 
676  // begin-patch ldap_multiple
677  // cast to int
678  switch ((int) $a_authmode) {
679  // No local passwords for these auth modes
680  case AUTH_LDAP:
681  case AUTH_RADIUS:
682  case AUTH_ECS:
683  case AUTH_SCRIPT:
684  case AUTH_PROVIDER_LTI:
685  case AUTH_OPENID_CONNECT:
686  return false;
687 
688  case AUTH_SAML:
689  require_once 'Services/Saml/classes/class.ilSamlIdp.php';
690  $idp = ilSamlIdp::getInstanceByIdpId(ilSamlIdp::getIdpIdByAuthMode($a_authmode));
691  return $idp->isActive() && $idp->allowLocalAuthentication();
692 
693  // Always for and local
694  case AUTH_LOCAL:
695  case AUTH_APACHE:
696  return true;
697 
698  // Read setting:
699  case AUTH_SHIBBOLETH:
700  return $ilSetting->get("shib_auth_allow_local");
701  case AUTH_SOAP:
702  return $ilSetting->get("soap_auth_allow_local");
703  case AUTH_CAS:
704  return $ilSetting->get("cas_allow_local");
705  }
706  }
707 
713  public static function supportsLocalPasswordValidation($a_authmode)
714  {
715  // begin-patch ldap_multiple
716  // cast to int
717  switch ((int) $a_authmode) {
718  case AUTH_LDAP:
719  case AUTH_LOCAL:
720  case AUTH_RADIUS:
721  return ilAuthUtils::LOCAL_PWV_FULL;
722 
723  case AUTH_SHIBBOLETH:
724  case AUTH_OPENID_CONNECT:
725  case AUTH_SAML:
726  case AUTH_SOAP:
727  case AUTH_CAS:
728  if (!ilAuthUtils::isPasswordModificationEnabled($a_authmode)) {
729  return ilAuthUtils::LOCAL_PWV_NO;
730  }
731  return ilAuthUtils::LOCAL_PWV_USER;
732 
733  case AUTH_PROVIDER_LTI:
734  case AUTH_ECS:
735  case AUTH_SCRIPT:
736  case AUTH_APACHE:
737  default:
738  return ilAuthUtils::LOCAL_PWV_USER;
739  }
740  }
741 
742  // begin-patch auth_plugin
747  public static function getAuthPlugins()
748  {
749  $pls = $GLOBALS['DIC']['ilPluginAdmin']->getActivePluginsForSlot(
750  IL_COMP_SERVICE,
751  'Authentication',
752  'authhk'
753  );
754  $pl_objs = array();
755  foreach ($pls as $pl) {
756  $pl_objs[] = $GLOBALS['DIC']['ilPluginAdmin']->getPluginObject(
757  IL_COMP_SERVICE,
758  'Authentication',
759  'authhk',
760  $pl
761  );
762  }
763  return $pl_objs;
764  }
765  // end-patch auth_plugins
766 
771  public static function getAuthModeTranslation($a_auth_key, $auth_name = '')
772  {
773  global $DIC;
774 
775  $lng = $DIC['lng'];
776 
777  switch ((int) $a_auth_key) {
778  case AUTH_LDAP:
779  include_once './Services/LDAP/classes/class.ilLDAPServer.php';
780  $sid = ilLDAPServer::getServerIdByAuthMode($a_auth_key);
781  $server = ilLDAPServer::getInstanceByServerId($sid);
782  return $server->getName();
783 
784  case AUTH_PROVIDER_LTI:
785  include_once './Services/LTI/classes/InternalProvider/class.ilAuthProviderLTI.php';
786  $sid = ilAuthProviderLTI::getServerIdByAuthMode($a_auth_key);
787  return ilAuthProviderLTI::lookupConsumer($sid);
788 
789 
790  case AUTH_SAML:
791  require_once 'Services/Saml/classes/class.ilSamlIdp.php';
792  $idp_id = ilSamlIdp::getIdpIdByAuthMode($a_auth_key);
793  $idp = ilSamlIdp::getInstanceByIdpId($idp_id);
794  return $idp->getEntityId();
795 
796  default:
797  $lng->loadLanguageModule('auth');
798  if (!empty($auth_name)) {
799  return $lng->txt('auth_' . $auth_name);
800  } else {
801  return $lng->txt('auth_' . self::_getAuthModeName($a_auth_key));
802  }
803  }
804 }
805 }
ilAuthUtils\_hasMultipleAuthenticationMethods
static _hasMultipleAuthenticationMethods()
Definition: class.ilAuthUtils.php:398
ilLDAPServer\_getServerList
static _getServerList()
Get list of all configured servers.
Definition: class.ilLDAPServer.php:206
ilAuthProviderLTI\getKeyByAuthMode
static getKeyByAuthMode($a_auth_mode)
Get auth id by auth mode.
Definition: class.ilAuthProviderLTI.php:377
ilAuthProviderLTI\getServerIdByAuthMode
static getServerIdByAuthMode($a_auth_mode)
Get auth id by auth mode.
Definition: class.ilAuthProviderLTI.php:439
$_GET
$_GET["client_id"]
Definition: cfg.phpunit.template.php:12
ilAuthStatus\STATUS_AUTHENTICATION_FAILED
const STATUS_AUTHENTICATION_FAILED
Definition: class.ilAuthStatus.php:19
ilECSServerSettings\getInstance
static getInstance()
Get singleton instance.
Definition: class.ilECSServerSettings.php:54
ilLDAPServer\getAuthModeByKey
static getAuthModeByKey($a_auth_key)
get auth mode by key
Definition: class.ilLDAPServer.php:413
AUTH_LDAP
const AUTH_LDAP
Definition: class.ilAuthUtils.php:8
AUTH_OPENID_CONNECT
const AUTH_OPENID_CONNECT
Definition: class.ilAuthUtils.php:20
ilAuthFrontendFactory
Factory for auth frontend classes.
Definition: class.ilAuthFrontendFactory.php:11
ilAuthUtils\_generateLogin
static _generateLogin($a_login)
generate free login by starting with a default string and adding postfix numbers
Definition: class.ilAuthUtils.php:374
AUTH_CAS
const AUTH_CAS
Definition: class.ilAuthUtils.php:12
AUTH_SHIBBOLETH
const AUTH_SHIBBOLETH
Definition: class.ilAuthUtils.php:11
ilAuthUtils\isAuthenticationForced
static isAuthenticationForced()
Check if authentication is should be forced.
Definition: class.ilAuthUtils.php:75
ilAuthProviderLTI\lookupConsumer
static lookupConsumer($a_sid)
Lookup consumer title.
Definition: class.ilAuthProviderLTI.php:425
ilInitialisation\goToPublicSection
static goToPublicSection()
go to public section
Definition: class.ilInitialisation.php:942
ilAuthUtils\supportsLocalPasswordValidation
static supportsLocalPasswordValidation($a_authmode)
Check if local password validation is supported.
Definition: class.ilAuthUtils.php:713
ilAuthUtils\_getActiveAuthModes
static _getActiveAuthModes()
Definition: class.ilAuthUtils.php:258
ilLDAPServer\_getActiveServerList
static _getActiveServerList()
Get active server list.
Definition: class.ilLDAPServer.php:109
AUTH_APACHE
const AUTH_APACHE
Definition: class.ilAuthUtils.php:17
ilAuthUtils\getAuthModeTranslation
static getAuthModeTranslation($a_auth_key, $auth_name='')
Definition: class.ilAuthUtils.php:771
ilAuthUtils\_needsExternalAccountByAuthMode
static _needsExternalAccountByAuthMode($a_auth_mode)
Check if chosen auth mode needs an external account entry.
Definition: class.ilAuthUtils.php:589
ilSamlIdp\getInstanceByIdpId
static getInstanceByIdpId(int $a_idp_id)
Definition: class.ilSamlIdp.php:66
AUTH_SAML
const AUTH_SAML
Definition: class.ilAuthUtils.php:18
ilSamlIdp\getIdpIdByAuthMode
static getIdpIdByAuthMode(string $a_auth_mode)
Definition: class.ilSamlIdp.php:213
ilAuthUtils\_getAuthMode
static _getAuthMode($a_auth_mode, $a_db_handler='')
Definition: class.ilAuthUtils.php:121
ilAuthUtils\_getAuthModeName
static _getAuthModeName($a_auth_key)
Definition: class.ilAuthUtils.php:196
ilLDAPServer\getInstanceByServerId
static getInstanceByServerId($a_server_id)
Get instance by server id.
Definition: class.ilLDAPServer.php:62
ilOpenIdConnectSettings\getInstance
static getInstance()
Get singleton instance.
Definition: class.ilOpenIdConnectSettings.php:163
ilAuthUtils\_allowPasswordModificationByAuthMode
static _allowPasswordModificationByAuthMode($a_auth_mode)
Allow password modification.
Definition: class.ilAuthUtils.php:567
ilAuthUtils
static utility functions used to manage authentication modes
Definition: class.ilAuthUtils.php:66
ilAuthUtils\getAuthPlugins
static getAuthPlugins()
Get active enabled auth plugins.
Definition: class.ilAuthUtils.php:747
ilAuthUtils\handleForcedAuthentication
static handleForcedAuthentication()
Definition: class.ilAuthUtils.php:83
ilAuthProviderLTI\getActiveAuthModes
static getActiveAuthModes()
get all active authmode server ids
Definition: class.ilAuthProviderLTI.php:390
$lng
$lng
Definition: save_question_post_data.php:23
AUTH_SCRIPT
const AUTH_SCRIPT
Definition: class.ilAuthUtils.php:10
ilAuthUtils\_getMultipleAuthModeOptions
static _getMultipleAuthModeOptions($lng)
Definition: class.ilAuthUtils.php:434
AUTH_ECS
const AUTH_ECS
Definition: class.ilAuthUtils.php:15
ilRadiusSettings\_getInstance
static _getInstance()
singleton get instance
Definition: class.ilRadiusSettings.php:74
$DIC
global $DIC
Definition: goto.php:24
$GLOBALS
if(!defined('PATH_SEPARATOR')) $GLOBALS['_PEAR_default_error_mode']
Definition: PEAR.php:64
AUTH_LOCAL
const AUTH_LOCAL
Definition: class.ilAuthUtils.php:7
ilAuthUtils\_isExternalAccountEnabled
static _isExternalAccountEnabled()
Check if an external account name is required.
Definition: class.ilAuthUtils.php:509
ilSamlIdp\getAllIdps
static getAllIdps()
Definition: class.ilSamlIdp.php:257
ilLDAPServer\getServerIdByAuthMode
static getServerIdByAuthMode($a_auth_mode)
Get auth id by auth mode.
Definition: class.ilLDAPServer.php:400
ilSamlIdp\getKeyByAuthMode
static getKeyByAuthMode(string $a_auth_mode)
Definition: class.ilSamlIdp.php:292
AUTH_SOAP
const AUTH_SOAP
Definition: class.ilAuthUtils.php:13
$server
$server
Definition: dummy_client.php:12
ilLDAPServer\getKeyByAuthMode
static getKeyByAuthMode($a_auth_mode)
Get auth id by auth mode.
Definition: class.ilLDAPServer.php:427
ilAuthUtils\isLocalPasswordEnabledForAuthMode
static isLocalPasswordEnabledForAuthMode($a_authmode)
Check if local password validation is enabled for a specific auth_mode.
Definition: class.ilAuthUtils.php:622
ilAuthUtils\_getAllAuthModes
static _getAllAuthModes()
Definition: class.ilAuthUtils.php:324
ilAuthProviderLTI\getAuthModeByKey
static getAuthModeByKey($a_auth_key)
Get auth mode by key.
Definition: class.ilAuthProviderLTI.php:363
ilSamlIdp\getAuthModeByKey
static getAuthModeByKey(string $a_auth_key)
Definition: class.ilSamlIdp.php:278
ilAuthStatus\getInstance
static getInstance()
Get status instance.
Definition: class.ilAuthStatus.php:42
$ilSetting
global $ilSetting
Definition: privfeed.php:17
$ilDB
global $ilDB
Definition: storeScorm2004.php:16
$ret
$ret
Definition: parser.php:6
ilSamlIdp\getActiveIdpList
static getActiveIdpList()
Definition: class.ilSamlIdp.php:241
ilAuthUtils\isPasswordModificationEnabled
static isPasswordModificationEnabled($a_authmode)
Check if password modification is enabled.
Definition: class.ilAuthUtils.php:666
AUTH_PROVIDER_LTI
const AUTH_PROVIDER_LTI
Definition: class.ilAuthUtils.php:28
IL_COMP_SERVICE
const IL_COMP_SERVICE
Definition: class.ilComponent.php:6
AUTH_RADIUS
const AUTH_RADIUS
Definition: class.ilAuthUtils.php:9