ILIAS  release_8 Revision v8.23
Public Member Functions | Data Fields | Protected Attributes
ilShibbolethWAYF Class Reference

Class ShibbolethWAYF. More...

+ Collaboration diagram for ilShibbolethWAYF:

Public Member Functions

 __construct ()
 
 isSelection ()
 
 isValidSelection ()
 
 generateSelection ()
 
 redirect ()
 Redirects user to the local Shibboleth session initatiotor with already set GET arguments for the right IdP and return location. More...
 
 setSAMLCookie ()
 Sets the standard SAML domain cookie that is also used to preselect the right entry on the local wayf More...
 
 showNotice ()
 Show notice in case no IdP was selected More...
 
 getIdplist ()
 Generate array of IdPs from ILIAS Shibboleth settings More...
 
 generateCookieArray (?string $value)
 Generates an array of IDPs using the cookie value More...
 
 generateCookieValue (array $arr_cookie)
 Generate the value that is stored in the cookie using the list of IDPs More...
 
 appendCookieValue (string $value, array $arr_cookie)
 Append a value to the array of IDPs More...
 

Data Fields

const COOKIE_NAME_SAML_IDP = '_saml_idp'
 
bool $is_selection = false
 
bool $is_valid_selection = false
 
string $selected_idp = '-'
 
array $idp_list = []
 

Protected Attributes

WrapperFactory $wrapper
 
ilLanguage $lng
 
ilSetting $settings
 
ILIAS Refinery Factory $refinery
 

Detailed Description

Class ShibbolethWAYF.

This class handles the Home Organization selection (also called Where Are You From service) process for Shibboleth users.

Author
Fabian Schmid fs@st.nosp@m.uder.nosp@m.-raim.nosp@m.ann..nosp@m.ch

Definition at line 31 of file class.ilShibbolethWAYF.php.

Constructor & Destructor Documentation

◆ __construct()

ilShibbolethWAYF::__construct ( )

Definition at line 43 of file class.ilShibbolethWAYF.php.

References $DIC, getIdplist(), ILIAS\Repository\lng(), ILIAS\Repository\refinery(), and ILIAS\Repository\settings().

44  {
45  global $DIC;
46 
47  // Was the WAYF form submitted?
48  $this->wrapper = $DIC->http()->wrapper();
49  $this->refinery = $DIC->refinery();
50  $this->settings = $DIC->settings();
51  $this->is_selection = $this->wrapper->post()->has('home_organization_selection');
52  $this->lng = $DIC->isDependencyAvailable('language')
53  ? $DIC->language()
54  : new ilLanguage(
55  $this->wrapper->query()->has('lang')
56  ? $this->wrapper->query()->retrieve('lang', $DIC->refinery()->to()->string())
57  : null
58  );
59 
60  // Was selected IdP a valid
61  $this->idp_list = $this->getIdplist();
62  $idp_selection = $this->wrapper->post()->has('idp_selection')
63  ? $this->wrapper->post()->retrieve('idp_selection', $DIC->refinery()->to()->string())
64  : null;
65  if ($idp_selection !== null
66  && $idp_selection !== '-'
67  && isset($this->idp_list[$idp_selection])
68  ) {
69  $this->is_valid_selection = true;
70  $this->selected_idp = $idp_selection;
71  } else {
72  $this->is_valid_selection = false;
73  }
74  }
ilShibbolethWAYF\getIdplist
getIdplist()
Generate array of IdPs from ILIAS Shibboleth settings
Definition: class.ilShibbolethWAYF.php:169
$DIC
global $DIC
Definition: feed.php:28
+ Here is the call graph for this function:

Member Function Documentation

◆ appendCookieValue()

ilShibbolethWAYF::appendCookieValue ( string  $value,
array  $arr_cookie 
)

Append a value to the array of IDPs

Returns
mixed[]

Definition at line 211 of file class.ilShibbolethWAYF.php.

Referenced by setSAMLCookie().

211  : array
212  {
213  $arr_cookie[] = $value;
214  $arr_cookie = array_reverse($arr_cookie);
215  $arr_cookie = array_unique($arr_cookie);
216  return array_reverse($arr_cookie);
217  }
+ Here is the caller graph for this function:

◆ generateCookieArray()

ilShibbolethWAYF::generateCookieArray ( ?string  $value)

Generates an array of IDPs using the cookie value

Returns
bool[]|string[]

Definition at line 189 of file class.ilShibbolethWAYF.php.

Referenced by generateSelection(), and setSAMLCookie().

189  : array
190  {
191  if (null === $value) {
192  return [];
193  }
194  $arr_cookie = explode(' ', $value);
195  return array_map('base64_decode', $arr_cookie);
196  }
+ Here is the caller graph for this function:

◆ generateCookieValue()

ilShibbolethWAYF::generateCookieValue ( array  $arr_cookie)

Generate the value that is stored in the cookie using the list of IDPs

Definition at line 201 of file class.ilShibbolethWAYF.php.

Referenced by setSAMLCookie().

201  : string
202  {
203  $arr_cookie = array_map('base64_encode', $arr_cookie);
204  return implode(' ', $arr_cookie);
205  }
+ Here is the caller graph for this function:

◆ generateSelection()

ilShibbolethWAYF::generateSelection ( )

Definition at line 86 of file class.ilShibbolethWAYF.php.

References generateCookieArray(), ILIAS\Repository\lng(), and ILIAS\Repository\refinery().

86  : string
87  {
88  $_saml_idp = $this->wrapper->cookie()->has(self::COOKIE_NAME_SAML_IDP)
89  ? $this->wrapper->cookie()->retrieve(
90  self::COOKIE_NAME_SAML_IDP,
91  $this->refinery->kindlyTo()->string()
92  )
93  : null;
94  $idp_cookie = $this->generateCookieArray($_saml_idp);
95 
96  $selectedIDP = null;
97  if ($idp_cookie !== [] && isset($this->idp_list[end($idp_cookie)])) {
98  $selectedIDP = end($idp_cookie);
99  $selectElement = '
100  <select name="idp_selection">
101  <option value="-">' . $this->lng->txt("shib_member_of") . '</option>';
102  } else {
103  $selectElement = '
104  <select name="idp_selection">
105  <option value="-" selected="selected">' . $this->lng->txt("shib_member_of") . '</option>';
106  }
107 
108  foreach ($this->idp_list as $idp_id => $idp_data) {
109  if ($idp_id == $selectedIDP) {
110  $selectElement .= '<option value="' . $idp_id . '" selected="selected">' . $idp_data[0] . '</option>';
111  } else {
112  $selectElement .= '<option value="' . $idp_id . '">' . $idp_data[0] . '</option>';
113  }
114  }
115 
116  return $selectElement . '
117  </select>';
118  }
ilShibbolethWAYF\generateCookieArray
generateCookieArray(?string $value)
Generates an array of IDPs using the cookie value
Definition: class.ilShibbolethWAYF.php:189
+ Here is the call graph for this function:

◆ getIdplist()

ilShibbolethWAYF::getIdplist ( )

Generate array of IdPs from ILIAS Shibboleth settings

Returns
array<string, string[]>

Definition at line 169 of file class.ilShibbolethWAYF.php.

References $idp_list, and ILIAS\Repository\settings().

Referenced by __construct().

169  : array
170  {
171  $idp_list = [];
172  $idp_raw_list = explode("\n", $this->settings->get("shib_idp_list"));
173  foreach ($idp_raw_list as $idp_line) {
174  $idp_data = explode(',', $idp_line);
175  if (isset($idp_data[2])) {
176  $idp_list[trim($idp_data[0])] = array(trim($idp_data[1]), trim($idp_data[2]));
177  } elseif (isset($idp_data[1])) {
178  $idp_list[trim($idp_data[0])] = array(trim($idp_data[1]));
179  }
180  }
181 
182  return $idp_list;
183  }
+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ isSelection()

ilShibbolethWAYF::isSelection ( )

Definition at line 76 of file class.ilShibbolethWAYF.php.

References $is_selection.

Referenced by showNotice().

76  : bool
77  {
78  return $this->is_selection;
79  }
+ Here is the caller graph for this function:

◆ isValidSelection()

ilShibbolethWAYF::isValidSelection ( )

Definition at line 81 of file class.ilShibbolethWAYF.php.

References $is_valid_selection.

Referenced by showNotice().

81  : bool
82  {
83  return $this->is_valid_selection;
84  }
+ Here is the caller graph for this function:

◆ redirect()

ilShibbolethWAYF::redirect ( )

Redirects user to the local Shibboleth session initatiotor with already set GET arguments for the right IdP and return location.

Definition at line 123 of file class.ilShibbolethWAYF.php.

References $selected_idp, ilUtil\redirect(), and ILIAS\Repository\refinery().

123  : void
124  {
125  // Where to return after the authentication process
126  $target = $this->wrapper->post()->has('il_target')
127  ? $this->wrapper->post()->retrieve('il_target', $this->refinery->kindlyTo()->string())
128  : '';
129  $target = trim(ILIAS_HTTP_PATH, '/') . '/shib_login.php?target=' . $target;
130  $idp_data = $this->idp_list[$this->selected_idp];
131  if (isset($idp_data[1])) {
132  ilUtil::redirect($idp_data[1] . '?providerId=' . urlencode($this->selected_idp) . '&target='
133  . urlencode($target));
134  } else {
135  // TODO: This has to be changed to /Shibboleth.sso/DS?entityId= for
136  // Shibbolet 2.x sometime...
137  ilUtil::redirect('/Shibboleth.sso?providerId=' . urlencode($this->selected_idp) . '&target='
138  . urlencode($target));
139  }
140  }
ilUtil\redirect
static redirect(string $a_script)
Definition: class.ilUtil.php:948
+ Here is the call graph for this function:

◆ setSAMLCookie()

ilShibbolethWAYF::setSAMLCookie ( )

Sets the standard SAML domain cookie that is also used to preselect the right entry on the local wayf

Definition at line 145 of file class.ilShibbolethWAYF.php.

References appendCookieValue(), generateCookieArray(), generateCookieValue(), and ILIAS\Repository\refinery().

145  : void
146  {
147  $_saml_idp = $this->wrapper->cookie()->retrieve(self::COOKIE_NAME_SAML_IDP, $this->refinery->kindlyTo()->string());
148  $arr_idps = $_saml_idp ? $this->generateCookieArray($_saml_idp) : [];
149  $arr_idps = $this->appendCookieValue($this->selected_idp, $arr_idps);
150  setcookie(self::COOKIE_NAME_SAML_IDP, $this->generateCookieValue($arr_idps), time() + (100 * 24 * 3600), '/');
151  }
ilShibbolethWAYF\generateCookieValue
generateCookieValue(array $arr_cookie)
Generate the value that is stored in the cookie using the list of IDPs
Definition: class.ilShibbolethWAYF.php:201
ilShibbolethWAYF\generateCookieArray
generateCookieArray(?string $value)
Generates an array of IDPs using the cookie value
Definition: class.ilShibbolethWAYF.php:189
ilShibbolethWAYF\appendCookieValue
appendCookieValue(string $value, array $arr_cookie)
Append a value to the array of IDPs
Definition: class.ilShibbolethWAYF.php:211
+ Here is the call graph for this function:

◆ showNotice()

ilShibbolethWAYF::showNotice ( )

Show notice in case no IdP was selected

Definition at line 156 of file class.ilShibbolethWAYF.php.

References isSelection(), isValidSelection(), and ILIAS\Repository\lng().

156  : string
157  {
158  if (!$this->isSelection() || $this->isValidSelection()) {
159  return '';
160  }
161 
162  return $this->lng->txt("shib_invalid_home_organization");
163  }
+ Here is the call graph for this function:

Field Documentation

◆ $idp_list

array ilShibbolethWAYF::$idp_list = []

Definition at line 37 of file class.ilShibbolethWAYF.php.

Referenced by getIdplist().

◆ $is_selection

bool ilShibbolethWAYF::$is_selection = false

Definition at line 34 of file class.ilShibbolethWAYF.php.

Referenced by isSelection().

◆ $is_valid_selection

bool ilShibbolethWAYF::$is_valid_selection = false

Definition at line 35 of file class.ilShibbolethWAYF.php.

Referenced by isValidSelection().

◆ $lng

ilLanguage ilShibbolethWAYF::$lng
protected

Definition at line 39 of file class.ilShibbolethWAYF.php.

◆ $refinery

ILIAS Refinery Factory ilShibbolethWAYF::$refinery
protected

Definition at line 41 of file class.ilShibbolethWAYF.php.

◆ $selected_idp

string ilShibbolethWAYF::$selected_idp = '-'

Definition at line 36 of file class.ilShibbolethWAYF.php.

Referenced by redirect().

◆ $settings

ilSetting ilShibbolethWAYF::$settings
protected

Definition at line 40 of file class.ilShibbolethWAYF.php.

◆ $wrapper

WrapperFactory ilShibbolethWAYF::$wrapper
protected

Definition at line 38 of file class.ilShibbolethWAYF.php.

◆ COOKIE_NAME_SAML_IDP

const ilShibbolethWAYF::COOKIE_NAME_SAML_IDP = '_saml_idp'

Definition at line 33 of file class.ilShibbolethWAYF.php.

The documentation for this class was generated from the following file: