d0/d20/class_8ilAuthProviderShibboleth_8php_source.html

<?php


/******************************************************************************

 *

 * This file is part of ILIAS, a powerful learning management system.

 *

 * ILIAS is licensed with the GPL-3.0, you should have received a copy

 * of said license along with the source code.

 *

 * If this is not the case or you just want to try ILIAS, you'll find

 * us at:

 *      https://www.ilias.de

 *      https://github.com/ILIAS-eLearning

 *

 *****************************************************************************/

class ilAuthProviderShibboleth extends ilAuthProvider

{

    public function doAuthentication(ilAuthStatus $status): bool

    {

        global $DIC; // for backwards compatibility of hook environment variables

        $ilias = $DIC['ilias'];

        $ilSetting = $DIC['ilSetting'];

        $shibServerData = shibServerData::getInstance();


        if ($shibServerData->getLogin() !== '' && $shibServerData->getLogin() !== '0') {

            $shibUser = shibUser::buildInstance($shibServerData);

            // for backword compatibility of hook environment variables

            $userObj = &$shibUser; // For shib_data_conv included Script

            $newUser = $shibUser->isNew(); // For shib_data_conv included Script

            if ($shibUser->isNew()) {

                $shibUser->createFields();

                $shibUser->setPref('hits_per_page', $ilSetting->get('hits_per_page'));


                // Modify user data before creating the user

                // Include custom code that can be used to further modify

                // certain Shibboleth user attributes

                if (

                    $ilias->getSetting('shib_data_conv') &&

                    $ilias->getSetting('shib_data_conv', '') !== '' &&

                    is_readable($ilias->getSetting('shib_data_conv'))

                ) {

                    include($ilias->getSetting('shib_data_conv'));

                }

                $shibUser = ilShibbolethPluginWrapper::getInstance()->beforeCreateUser($shibUser);

                $shibUser->create();

                $shibUser->saveAsNew();

                $shibUser->updateOwner();

                $shibUser->writePrefs();

                $shibUser = ilShibbolethPluginWrapper::getInstance()->afterCreateUser($shibUser);

                ilShibbolethRoleAssignmentRules::doAssignments($shibUser->getId(), $_SERVER);

            } else {

                $shibUser->updateFields();

                // Include custom code that can be used to further modify

                // certain Shibboleth user attributes

                if (

                    $ilias->getSetting('shib_data_conv') &&

                    $ilias->getSetting('shib_data_conv') !== '' &&

                    is_readable($ilias->getSetting('shib_data_conv'))

                ) {

                    include($ilias->getSetting('shib_data_conv'));

                }

                //                              $shibUser->update();

                $shibUser = ilShibbolethPluginWrapper::getInstance()->beforeUpdateUser($shibUser);

                $shibUser->update();

                $shibUser = ilShibbolethPluginWrapper::getInstance()->afterUpdateUser($shibUser);

                ilShibbolethRoleAssignmentRules::updateAssignments($shibUser->getId(), $_SERVER);

            }


            $settings = new ilShibbolethSettings();


            if (!$newUser || !$settings->adminMustActivate()) {

                $status->setStatus(ilAuthStatus::STATUS_AUTHENTICATED);

                $status->setAuthenticatedUserId(ilObjUser::_lookupId($shibUser->getLogin()));

            } elseif ($settings->adminMustActivate()) {

                $status->setStatus(ilAuthStatus::STATUS_AUTHENTICATION_FAILED);

                $status->setReason('err_inactive');

            }

        } else {

            $this->getLogger()->info('Shibboleth authentication failed.');

            $this->handleAuthenticationFail($status, 'err_wrong_login');

            return false;

        }


        return true;

    }

}

ilAuthProviderShibboleth
Shibboleth authentication provider.
Definition: class.ilAuthProviderShibboleth.php:21

ilAuthProviderShibboleth\doAuthentication
doAuthentication(ilAuthStatus $status)
Definition: class.ilAuthProviderShibboleth.php:22

ilAuthProvider
Base class for authentication providers (ldap, apache, ...)
Definition: class.ilAuthProvider.php:28

ilAuthProvider\getLogger
getLogger()
Get logger.
Definition: class.ilAuthProvider.php:55

ilAuthProvider\$status
int $status
Definition: class.ilAuthProvider.php:39

ilAuthProvider\handleAuthenticationFail
handleAuthenticationFail(ilAuthStatus $status, string $a_reason)
Handle failed authentication.
Definition: class.ilAuthProvider.php:71

ilAuthStatus
Auth status implementation.
Definition: class.ilAuthStatus.php:28

ilAuthStatus\STATUS_AUTHENTICATED
const STATUS_AUTHENTICATED
Definition: class.ilAuthStatus.php:34

ilAuthStatus\STATUS_AUTHENTICATION_FAILED
const STATUS_AUTHENTICATION_FAILED
Definition: class.ilAuthStatus.php:35

ilObjUser\_lookupId
static _lookupId($a_user_str)
Definition: class.ilObjUser.php:674

ilShibbolethPluginWrapper\getInstance
static getInstance()
Definition: class.ilShibbolethPluginWrapper.php:35

ilShibbolethRoleAssignmentRules\doAssignments
static doAssignments(int $a_usr_id, array $a_data)
Definition: class.ilShibbolethRoleAssignmentRules.php:91

ilShibbolethRoleAssignmentRules\updateAssignments
static updateAssignments(int $a_usr_id, array $a_data)
Definition: class.ilShibbolethRoleAssignmentRules.php:59

ilShibbolethSettings
Class ilShibbolethSettings.
Definition: class.ilShibbolethSettings.php:28

shibServerData\getInstance
static getInstance()
Definition: class.shibServerData.php:45

shibUser\buildInstance
static buildInstance(shibServerData $shibServerData)
Definition: class.shibUser.php:28

$DIC
global $DIC
Definition: feed.php:28

ILIAS\LTI\ToolProvider\$settings
array $settings
Setting values (LTI parameters, custom parameters and local parameters).
Definition: System.php:200

$ilSetting
global $ilSetting
Definition: privfeed.php:17

$_SERVER
$_SERVER['HTTP_HOST']
Definition: raiseError.php:10