ILIAS  trunk Revision v12.0_alpha-377-g3641b37b9db
Public Member Functions | Protected Member Functions | Private Attributes
ILIAS\AuthApache\AuthFrontendCredentialsApache Class Reference
+ Inheritance diagram for ILIAS\AuthApache\AuthFrontendCredentialsApache:
+ Collaboration diagram for ILIAS\AuthApache\AuthFrontendCredentialsApache:

Public Member Functions

 __construct (ServerRequestInterface $http_request, ilCtrlInterface $ctrl)
 
 tryAuthenticationOnLoginPage ()
 Check if an authentication attempt should be done when login page has been called. More...
 
 initFromRequest ()
 
 hasValidTargetUrl ()
 
 getTargetUrl ()
 
- Public Member Functions inherited from ilAuthFrontendCredentials
 __construct ()
 
 setUsername (string $a_name)
 
 getUsername ()
 
 setPassword (string $a_password)
 
 getPassword ()
 
 setAuthMode (string $a_auth_mode)
 
 getAuthMode ()
 
 setUsername (string $a_name)
 
 getUsername ()
 
 setPassword (string $a_password)
 
 getPassword ()
 
 setAuthMode (string $a_auth_mode)
 
 getAuthMode ()
 

Protected Member Functions

 getSettings ()
 

Private Attributes

ServerRequestInterface $http_request
 
ilCtrlInterface $ctrl
 
ilSetting $settings
 

Additional Inherited Members

- Protected Attributes inherited from ilAuthFrontendCredentials
ilLogger $logger
 

Detailed Description

Definition at line 34 of file AuthFrontendCredentialsApache.php.

Constructor & Destructor Documentation

◆ __construct()

ILIAS\AuthApache\AuthFrontendCredentialsApache::__construct ( ServerRequestInterface  $http_request,
ilCtrlInterface  $ctrl 
)

Definition at line 40 of file AuthFrontendCredentialsApache.php.

41 {
42 $this->http_request = $http_request;
43 $this->ctrl = $ctrl;
44 $this->settings = new ilSetting('apache_auth');
45 parent::__construct();
46 }
ilSetting
ILIAS Setting Class.
Definition: class.ilSetting.php:27
ILIAS\GlobalScreen\Provider\__construct
__construct(Container $dic, ilPlugin $plugin)
@inheritDoc
Definition: PluginProviderHelper.php:38

References ILIAS\AuthApache\AuthFrontendCredentialsApache\$ctrl, ILIAS\AuthApache\AuthFrontendCredentialsApache\$http_request, ILIAS\GlobalScreen\Provider\__construct(), ILIAS\Repository\ctrl(), and ILIAS\Repository\settings().

+ Here is the call graph for this function:

Member Function Documentation

◆ getSettings()

ILIAS\AuthApache\AuthFrontendCredentialsApache::getSettings ( )
protected

Definition at line 99 of file AuthFrontendCredentialsApache.php.

99 : ilSetting
100 {
101 return $this->settings;
102 }

References ILIAS\AuthApache\AuthFrontendCredentialsApache\$settings.

Referenced by ILIAS\AuthApache\AuthFrontendCredentialsApache\initFromRequest(), and ILIAS\AuthApache\AuthFrontendCredentialsApache\tryAuthenticationOnLoginPage().

+ Here is the caller graph for this function:

◆ getTargetUrl()

ILIAS\AuthApache\AuthFrontendCredentialsApache::getTargetUrl ( )

Definition at line 149 of file AuthFrontendCredentialsApache.php.

149 : string
150 {
151 return ilUtil::appendUrlParameterString(trim($this->http_request->getQueryParams()['r']), 'passed_sso=1');
152 }
ilUtil\appendUrlParameterString
static appendUrlParameterString(string $a_url, string $a_par, bool $xml_style=false)
Definition: class.ilUtil.php:381

References ilUtil\appendUrlParameterString().

+ Here is the call graph for this function:

◆ hasValidTargetUrl()

ILIAS\AuthApache\AuthFrontendCredentialsApache::hasValidTargetUrl ( )

Definition at line 129 of file AuthFrontendCredentialsApache.php.

129 : bool
130 {
131 $target_url = trim((string) ($this->http_request->getQueryParams()['r'] ?? ''));
132 if ($target_url === '') {
133 return false;
134 }
135
136 $valid_hosts = [];
137 $path = ILIAS_DATA_DIR . '/' . CLIENT_ID . '/apache_auth_allowed_domains.txt';
138 if (file_exists($path) && is_readable($path)) {
139 foreach (file($path) as $line) {
140 if (trim($line)) {
141 $valid_hosts[] = trim($line);
142 }
143 }
144 }
145
146 return (new WhiteListUrlValidator($target_url, $valid_hosts))->isValid();
147 }
CLIENT_ID
const CLIENT_ID
Definition: constants.php:41
ILIAS_DATA_DIR
const ILIAS_DATA_DIR
Definition: constants.php:44
$path
$path
Definition: ltiservices.php:30

References $path, CLIENT_ID, and ILIAS_DATA_DIR.

◆ initFromRequest()

ILIAS\AuthApache\AuthFrontendCredentialsApache::initFromRequest ( )

Definition at line 104 of file AuthFrontendCredentialsApache.php.

104 : void
105 {
106 $mapping_field_name = $this->getSettings()->get('apache_auth_username_direct_mapping_fieldname', '');
107
108 $this->logger->dump($this->http_request->getServerParams(), ilLogLevel::DEBUG);
109 $this->logger->debug($mapping_field_name);
110
111 switch ($this->getSettings()->get('apache_auth_username_config_type')) {
112 case AuthProviderApache::APACHE_AUTH_TYPE_DIRECT_MAPPING:
113 if (isset($this->http_request->getServerParams()[$mapping_field_name])) {
114 $this->setUsername($this->http_request->getServerParams()[$mapping_field_name]);
115 }
116 break;
117
118 case AuthProviderApache::APACHE_AUTH_TYPE_BY_FUNCTION:
119 $factory = new UsernameProviderFactory();
120 $resolver = new UsernameResolver($factory->fromClassNames(
121 require CollectUsernameProvidersObjective::PATH()
122 ), $this->logger);
123
124 $this->setUsername($resolver->resolve($this->http_request)->asString());
125 break;
126 }
127 }
$resolver
foreach($components as $component) $resolver
Definition: build_bootstrap.php:82

References $resolver, ILIAS\AuthApache\AuthProviderApache\APACHE_AUTH_TYPE_BY_FUNCTION, ILIAS\AuthApache\AuthProviderApache\APACHE_AUTH_TYPE_DIRECT_MAPPING, ilLogLevel\DEBUG, ILIAS\AuthApache\AuthFrontendCredentialsApache\getSettings(), ILIAS\Repository\logger(), and ilAuthFrontendCredentials\setUsername().

+ Here is the call graph for this function:

◆ tryAuthenticationOnLoginPage()

ILIAS\AuthApache\AuthFrontendCredentialsApache::tryAuthenticationOnLoginPage ( )

Check if an authentication attempt should be done when login page has been called.

Redirects in case no apache authentication has been tried before (GET['passed_sso'])

Definition at line 52 of file AuthFrontendCredentialsApache.php.

52 : void
53 {
54 $cmd = (string) ($this->http_request->getQueryParams()['cmd'] ?? '');
55 if ($cmd === '') {
56 $cmd = (string) ($this->http_request->getParsedBody()['cmd'] ?? '');
57 }
58
59 if ($cmd === 'force_login') {
60 return;
61 }
62
63 if (!$this->getSettings()->get('apache_enable_auth', '0')) {
64 return;
65 }
66
67 if (!$this->getSettings()->get('apache_auth_authenticate_on_login_page', '0')) {
68 return;
69 }
70
71 if ((\defined('IL_CERT_SSO') && \IL_CERT_SSO === true) ||
72 !ilContext::supportsRedirects() ||
73 isset($this->http_request->getQueryParams()['passed_sso'])) {
74 return;
75 }
76
77 $path = (string) ($this->http_request->getServerParams()['REQUEST_URI'] ?? '');
78 if (str_starts_with($path, '/')) {
79 $path = substr($path, 1);
80 }
81
82 if (!str_starts_with($path, 'http')) {
83 $parts = parse_url(ILIAS_HTTP_PATH);
84 $path = $parts['scheme'] . '://' . $parts['host'] . '/' . $path;
85 }
86
87 $this->ctrl->redirectToURL(
88 ilUtil::getHtmlPath(
89 './sso/index.php?' . http_build_query([
90 'force_mode_apache' => 1,
91 'r' => $path,
92 'cookie_path' => IL_COOKIE_PATH,
93 'ilias_path' => ILIAS_HTTP_PATH,
94 ])
95 )
96 );
97 }
IL_CERT_SSO
const IL_CERT_SSO(isset($_GET['client_id']))
Definition: index.php:47
IL_COOKIE_PATH
const IL_COOKIE_PATH
Definition: index.php:48
ilContext\supportsRedirects
static supportsRedirects()
Are redirects supported?
Definition: class.ilContext.php:89
ilUtil\getHtmlPath
static getHtmlPath(string $relative_path)
get url of path
Definition: class.ilUtil.php:111
$parts
if($clientAssertionType !='urn:ietf:params:oauth:client-assertion-type:jwt-bearer'|| $grantType !='client_credentials') $parts
Definition: ltitoken.php:61

References $parts, $path, ILIAS\Repository\ctrl(), ilUtil\getHtmlPath(), ILIAS\AuthApache\AuthFrontendCredentialsApache\getSettings(), IL_CERT_SSO, IL_COOKIE_PATH, and ilContext\supportsRedirects().

+ Here is the call graph for this function:

Field Documentation

◆ $ctrl

ilCtrlInterface ILIAS\AuthApache\AuthFrontendCredentialsApache::$ctrl
private

Definition at line 37 of file AuthFrontendCredentialsApache.php.

Referenced by ILIAS\AuthApache\AuthFrontendCredentialsApache\__construct().

◆ $http_request

ServerRequestInterface ILIAS\AuthApache\AuthFrontendCredentialsApache::$http_request
private

Definition at line 36 of file AuthFrontendCredentialsApache.php.

Referenced by ILIAS\AuthApache\AuthFrontendCredentialsApache\__construct().

◆ $settings

ilSetting ILIAS\AuthApache\AuthFrontendCredentialsApache::$settings
private

Definition at line 38 of file AuthFrontendCredentialsApache.php.

Referenced by ILIAS\AuthApache\AuthFrontendCredentialsApache\getSettings().

The documentation for this class was generated from the following file: