d4/d36/class_8ilAuthFrontendCredentialsApache_8php_source.html

<?php


declare(strict_types=1);


use Psr\Http\Message\ServerRequestInterface;


class ilAuthFrontendCredentialsApache extends ilAuthFrontendCredentials

{

    private ServerRequestInterface $httpRequest;

    private ilCtrlInterface $ctrl;

    private ilSetting $settings;


    public function __construct(ServerRequestInterface $httpRequest, ilCtrlInterface $ctrl)

    {

        $this->httpRequest = $httpRequest;

        $this->ctrl = $ctrl;

        $this->settings = new ilSetting('apache_auth');

        parent::__construct();

    }


    public function tryAuthenticationOnLoginPage(): void

    {

        $cmd = (string) ($this->httpRequest->getQueryParams()['cmd'] ?? '');

        if ($cmd === '') {

            $cmd = (string) ($this->httpRequest->getParsedBody()['cmd'] ?? '');

        }


        if ($cmd === 'force_login') {

            return;

        }


        if (!$this->getSettings()->get('apache_enable_auth', '0')) {

            return;

        }


        if (!$this->getSettings()->get('apache_auth_authenticate_on_login_page', '0')) {

            return;

        }


        if (

            (defined('IL_CERT_SSO') && (int) IL_CERT_SSO === 1) ||

            !ilContext::supportsRedirects() ||

            isset($this->httpRequest->getQueryParams()['passed_sso'])

        ) {

            return;

        }


        $path = (string) ($this->httpRequest->getServerParams()['REQUEST_URI'] ?? '');

        if (str_starts_with($path, '/')) {

            $path = substr($path, 1);

        }


        if (!str_starts_with($path, 'http')) {

            $parts = parse_url(ILIAS_HTTP_PATH);

            $path = $parts['scheme'] . '://' . $parts['host'] . '/' . $path;

        }


        $this->ctrl->redirectToURL(

            ilUtil::getHtmlPath(

                './public/sso/index.php?force_mode_apache=1&' .

                'r=' . urlencode($path) .

                '&cookie_path=' . urlencode(IL_COOKIE_PATH) .

                '&ilias_path=' . urlencode(ILIAS_HTTP_PATH)

            )

        );

    }


    protected function getSettings(): ilSetting

    {

        return $this->settings;

    }


    public function initFromRequest(): void

    {

        $mappingFieldName = $this->getSettings()->get('apache_auth_username_direct_mapping_fieldname', '');


        $this->logger->dump($this->httpRequest->getServerParams(), ilLogLevel::DEBUG);

        $this->logger->debug($mappingFieldName);


        switch ($this->getSettings()->get('apache_auth_username_config_type')) {

            case ilAuthProviderApache::APACHE_AUTH_TYPE_DIRECT_MAPPING:

                if (isset($this->httpRequest->getServerParams()[$mappingFieldName])) {

                    $this->setUsername($this->httpRequest->getServerParams()[$mappingFieldName]);

                }

                break;


            case ilAuthProviderApache::APACHE_AUTH_TYPE_BY_FUNCTION:

                $this->setUsername(ApacheCustom::getUsername());

                break;

        }

    }


    public function hasValidTargetUrl(): bool

    {

        $targetUrl = trim((string) ($this->httpRequest->getQueryParams()['r'] ?? ''));

        if ($targetUrl === '') {

            return false;

        }


        $validDomains = [];

        $path = ILIAS_DATA_DIR . '/' . CLIENT_ID . '/apache_auth_allowed_domains.txt';

        if (file_exists($path) && is_readable($path)) {

            foreach (file($path) as $line) {

                if (trim($line)) {

                    $validDomains[] = trim($line);

                }

            }

        }


        return (new ilWhiteListUrlValidator($targetUrl, $validDomains))->isValid();

    }


    public function getTargetUrl(): string

    {

        return ilUtil::appendUrlParameterString(trim($this->httpRequest->getQueryParams()['r']), 'passed_sso=1');

    }

}

IL_COOKIE_PATH
const IL_COOKIE_PATH(isset($_GET['client_id']))
Definition: index.php:47

ApacheCustom\getUsername
static getUsername()
Definition: custom_username_func.php:23

ilAuthFrontendCredentialsApache
Definition: class.ilAuthFrontendCredentialsApache.php:24

ilAuthFrontendCredentialsApache\initFromRequest
initFromRequest()
Definition: class.ilAuthFrontendCredentialsApache.php:93

ilAuthFrontendCredentialsApache\$ctrl
ilCtrlInterface $ctrl
Definition: class.ilAuthFrontendCredentialsApache.php:26

ilAuthFrontendCredentialsApache\$httpRequest
ServerRequestInterface $httpRequest
Definition: class.ilAuthFrontendCredentialsApache.php:25

ilAuthFrontendCredentialsApache\$settings
ilSetting $settings
Definition: class.ilAuthFrontendCredentialsApache.php:27

ilAuthFrontendCredentialsApache\tryAuthenticationOnLoginPage
tryAuthenticationOnLoginPage()
Check if an authentication attempt should be done when login page has been called.
Definition: class.ilAuthFrontendCredentialsApache.php:41

ilAuthFrontendCredentialsApache\getTargetUrl
getTargetUrl()
Definition: class.ilAuthFrontendCredentialsApache.php:133

ilAuthFrontendCredentialsApache\__construct
__construct(ServerRequestInterface $httpRequest, ilCtrlInterface $ctrl)
Definition: class.ilAuthFrontendCredentialsApache.php:29

ilAuthFrontendCredentialsApache\hasValidTargetUrl
hasValidTargetUrl()
Definition: class.ilAuthFrontendCredentialsApache.php:113

ilAuthFrontendCredentialsApache\getSettings
getSettings()
Definition: class.ilAuthFrontendCredentialsApache.php:88

ilAuthFrontendCredentials
Definition: class.ilAuthFrontendCredentials.php:22

ilAuthFrontendCredentials\setUsername
setUsername(string $a_name)
Definition: class.ilAuthFrontendCredentials.php:34

ilAuthProviderApache\APACHE_AUTH_TYPE_DIRECT_MAPPING
const int APACHE_AUTH_TYPE_DIRECT_MAPPING
Definition: class.ilAuthProviderApache.php:23

ilAuthProviderApache\APACHE_AUTH_TYPE_BY_FUNCTION
const int APACHE_AUTH_TYPE_BY_FUNCTION
Definition: class.ilAuthProviderApache.php:25

ilContext\supportsRedirects
static supportsRedirects()
Are redirects supported?
Definition: class.ilContext.php:89

ilLogLevel\DEBUG
const DEBUG
Definition: class.ilLogLevel.php:32

ilSetting
ILIAS Setting Class.
Definition: class.ilSetting.php:27

ilUtil\getHtmlPath
static getHtmlPath(string $relative_path)
get url of path
Definition: class.ilUtil.php:111

ilUtil\appendUrlParameterString
static appendUrlParameterString(string $a_url, string $a_par, bool $xml_style=false)
Definition: class.ilUtil.php:381

ilWhiteListUrlValidator
Definition: class.ilWhiteListUrlValidator.php:22

CLIENT_ID
const CLIENT_ID
Definition: constants.php:41

ILIAS_DATA_DIR
const ILIAS_DATA_DIR
Definition: constants.php:44

ilCtrlInterface
This file is part of ILIAS, a powerful learning management system published by ILIAS open source e-Le...
Definition: interface.ilCtrlInterface.php:27

$path
$path
Definition: ltiservices.php:30

$parts
if($clientAssertionType !='urn:ietf:params:oauth:client-assertion-type:jwt-bearer'|| $grantType !='client_credentials') $parts
Definition: ltitoken.php:61

ILIAS\GlobalScreen\Provider\__construct
__construct(Container $dic, ilPlugin $plugin)
@inheritDoc
Definition: PluginProviderHelper.php:38

ILIAS\Repository\int
int(string $key)
Definition: trait.BaseGUIRequest.php:61

ILIAS\Repository\logger
logger()
Definition: trait.GlobalDICDomainServices.php:71

ILIAS\Repository\settings
settings()
Definition: trait.GlobalDICDomainServices.php:96

ILIAS\Repository\ctrl
ctrl()
Definition: trait.GlobalDICGUIServices.php:63