ilAuthFrontendCredentialsApache Class Reference

Description of class class. More...

Inheritance diagram for ilAuthFrontendCredentialsApache:

Collaboration diagram for ilAuthFrontendCredentialsApache:

Public Member Functions
	__construct (ServerRequestInterface $httpRequest, ilCtrl $ctrl)
	tryAuthenticationOnLoginPage ()
	Check if an authentication attempt should be done when login page has been called. More...
	initFromRequest ()
	hasValidTargetUrl ()
	getTargetUrl ()
Public Member Functions inherited from ilAuthFrontendCredentials
	__construct ()
	setUsername (string $a_name)
	Set username. More...
	getUsername ()
	Get username. More...
	setPassword (string $a_password)
	Set password. More...
	getPassword ()
	Get password. More...
	setAuthMode (string $a_auth_mode)
	Set auth mode. More...
	getAuthMode ()
	Get auth mode. More...
	setUsername (string $a_name)
	Set username. More...
	getUsername ()
	Get username. More...
	setPassword (string $a_password)
	Set password. More...
	getPassword ()
	Get password. More...
	setAuthMode (string $a_auth_mode)
	Set auth mode. More...
	getAuthMode ()
	Get auth mode. More...

Protected Member Functions
	getSettings ()

Private Attributes
ServerRequestInterface	$httpRequest
ilCtrl	$ctrl
ilSetting	$settings
ilLogger	$logger

Detailed Description

Description of class class.

Author

Stefan Meyer smeye.nosp@m.r.il.nosp@m.ias@g.nosp@m.mx.d.nosp@m.e

Michael Jansen mjans.nosp@m.en@d.nosp@m.ataba.nosp@m.y.de

Definition at line 30 of file class.ilAuthFrontendCredentialsApache.php.

Constructor & Destructor Documentation

__construct()

ilAuthFrontendCredentialsApache::__construct	(	ServerRequestInterface	$httpRequest,
		ilCtrl	$ctrl
	)

Definition at line 37 of file class.ilAuthFrontendCredentialsApache.php.

    {
        global $DIC;
        $this->logger = $DIC->logger()->auth();
        $this->httpRequest = $httpRequest;
        $this->ctrl = $ctrl;
        $this->settings = new ilSetting('apache_auth');
        parent::__construct();
    }

References $ctrl, $DIC, $httpRequest, ILIAS\GlobalScreen\Provider\__construct(), ILIAS\Repository\ctrl(), ILIAS\Repository\logger(), and ILIAS\Repository\settings().

Here is the call graph for this function:

Member Function Documentation

getSettings()

ilAuthFrontendCredentialsApache::getSettings ( )

protected

Definition at line 98 of file class.ilAuthFrontendCredentialsApache.php.

                                    : ilSetting
    {
        return $this->settings;
    }

References $settings.

Referenced by initFromRequest(), and tryAuthenticationOnLoginPage().

Here is the caller graph for this function:

getTargetUrl()

ilAuthFrontendCredentialsApache::getTargetUrl

(

)

Definition at line 143 of file class.ilAuthFrontendCredentialsApache.php.

                                  : string
    {
        return ilUtil::appendUrlParameterString(trim($this->httpRequest->getQueryParams()['r']), 'passed_sso=1');
    }

References ilUtil\appendUrlParameterString().

Here is the call graph for this function:

hasValidTargetUrl()

ilAuthFrontendCredentialsApache::hasValidTargetUrl

(

)

Definition at line 123 of file class.ilAuthFrontendCredentialsApache.php.

                                       : bool
    {
        $targetUrl = trim((string) ($this->httpRequest->getQueryParams()['r'] ?? ''));
        if ($targetUrl === '') {
            return false;
        }
 
        $validDomains = [];
        $path = ILIAS_DATA_DIR . '/' . CLIENT_ID . '/apache_auth_allowed_domains.txt';
        if (file_exists($path) && is_readable($path)) {
            foreach (file($path) as $line) {
                if (trim($line)) {
                    $validDomains[] = trim($line);
                }
            }
        }
 
        return (new ilWhiteListUrlValidator($targetUrl, $validDomains))->isValid();
    }

References $path, CLIENT_ID, and ILIAS_DATA_DIR.

initFromRequest()

ilAuthFrontendCredentialsApache::initFromRequest

(

)

Definition at line 103 of file class.ilAuthFrontendCredentialsApache.php.

                                     : void
    {
        $mappingFieldName = $this->getSettings()->get('apache_auth_username_direct_mapping_fieldname', '');
 
        $this->logger->dump($this->httpRequest->getServerParams(), ilLogLevel::DEBUG);
        $this->logger->debug($mappingFieldName);
 
        switch ($this->getSettings()->get('apache_auth_username_config_type')) {
            case ilAuthProviderApache::APACHE_AUTH_TYPE_DIRECT_MAPPING:
                if (isset($this->httpRequest->getServerParams()[$mappingFieldName])) {
                    $this->setUsername($this->httpRequest->getServerParams()[$mappingFieldName]);
                }
                break;
 
            case ilAuthProviderApache::APACHE_AUTH_TYPE_BY_FUNCTION:
                $this->setUsername(ApacheCustom::getUsername());
                break;
        }
    }

References ilAuthProviderApache\APACHE_AUTH_TYPE_BY_FUNCTION, ilAuthProviderApache\APACHE_AUTH_TYPE_DIRECT_MAPPING, ilLogLevel\DEBUG, getSettings(), ApacheCustom\getUsername(), ILIAS\Repository\logger(), and ilAuthFrontendCredentials\setUsername().

Here is the call graph for this function:

tryAuthenticationOnLoginPage()

ilAuthFrontendCredentialsApache::tryAuthenticationOnLoginPage

(

)

Check if an authentication attempt should be done when login page has been called.

Redirects in case no apache authentication has been tried before (GET['passed_sso'])

Definition at line 51 of file class.ilAuthFrontendCredentialsApache.php.

                                                  : void
    {
        $cmd = (string) ($this->httpRequest->getQueryParams()['cmd'] ?? '');
        if ('' === $cmd) {
            $cmd = (string) ($this->httpRequest->getParsedBody()['cmd'] ?? '');
        }
 
        if ('force_login' === $cmd) {
            return;
        }
 
        if (!$this->getSettings()->get('apache_enable_auth', '0')) {
            return;
        }
 
        if (!$this->getSettings()->get('apache_auth_authenticate_on_login_page', '0')) {
            return;
        }
 
        if (
            (defined('IL_CERT_SSO') && (int) IL_CERT_SSO === 1) ||
            !ilContext::supportsRedirects() ||
            isset($this->httpRequest->getQueryParams()['passed_sso'])
        ) {
            return;
        }
 
        $path = (string) ($this->httpRequest->getServerParams()['REQUEST_URI'] ?? '');
        if (strpos($path, '/') === 0) {
            $path = substr($path, 1);
        }
 
        if (strpos($path, 'http') !== 0) {
            $parts = parse_url(ILIAS_HTTP_PATH);
            $path = $parts['scheme'] . '://' . $parts['host'] . '/' . $path;
        }
 
        $this->ctrl->redirectToURL(
            ilUtil::getHtmlPath(
                './sso/index.php?force_mode_apache=1&' .
                'r=' . urlencode($path) .
                '&cookie_path=' . urlencode(IL_COOKIE_PATH) .
                '&ilias_path=' . urlencode(ILIAS_HTTP_PATH)
            )
        );
    }

References $parts, $path, ILIAS\Repository\ctrl(), ilUtil\getHtmlPath(), getSettings(), IL_COOKIE_PATH, ILIAS\Repository\int(), and ilContext\supportsRedirects().

Here is the call graph for this function:

Field Documentation

$ctrl

ilCtrl ilAuthFrontendCredentialsApache::$ctrl

private

Definition at line 33 of file class.ilAuthFrontendCredentialsApache.php.

Referenced by __construct().

$httpRequest

ServerRequestInterface ilAuthFrontendCredentialsApache::$httpRequest

private

Definition at line 32 of file class.ilAuthFrontendCredentialsApache.php.

Referenced by __construct().

$logger

ilLogger ilAuthFrontendCredentialsApache::$logger

private

Definition at line 35 of file class.ilAuthFrontendCredentialsApache.php.

$settings

ilSetting ilAuthFrontendCredentialsApache::$settings

private

Definition at line 34 of file class.ilAuthFrontendCredentialsApache.php.

Referenced by getSettings().

---

The documentation for this class was generated from the following file:

• Services/Authentication/classes/Frontend/class.ilAuthFrontendCredentialsApache.php