d9/d60/shib__logout_8php_source.html

 <?php

 require_once("../vendor/composer/vendor/autoload.php");
 require_once("../artifacts/bootstrap_default.php");

 global $DIC;
 $q = $DIC->http()->wrapper()->query();
 if (
     $q->has('return')
     && $q->has('action')
     && $q->retrieve('action', $DIC->refinery()->to()->string()) === 'logout'
 ) {
     entry_point("ILIAS Legacy Initialisation Adapter");
     // Logout out user from application
     // Destroy application session/cookie etc
     $GLOBALS['DIC']['ilAuthSession']->logout();

     // Finally, send user to the return URL
     ilUtil::redirect($q->retrieve('action', $DIC->refinery()->kindlyTo()->string()));
 }

 // Back channel logout //

 // Note: This is the preferred logout channel because it also allows
 //       administrative logout. However, it requires your application to be
 //       adapated in the sense that the user's Shibboleth session ID must be
 //       stored in the application's session data.
 //       See function LogoutNotification below

 elseif (!empty($HTTP_RAW_POST_DATA)) {
     ilContext::init(ilContext::CONTEXT_SOAP);

     // Load ILIAS libraries and initialise ILIAS in non-web context
     entry_point("ILIAS Legacy Initialisation Adapter");

     // Set SOAP header
     $server = new SoapServer('https://' . $_SERVER['HTTP_HOST'] . $_SERVER['SCRIPT_NAME'] . '/LogoutNotification.wsdl');
     $server->addFunction("LogoutNotification");
     $server->handle();
 }

 // Return WSDL

 // Note: This is needed for the PHP SoapServer class.
 //       Since I'm not a web service guru it might be that the code below is not
 //       absolutely correct but at least it seems to to its job properly when it
 //       comes to Shibboleth logout

 else {
     header('Content-Type: text/xml');

     $url = filter_var("https://{$_SERVER['HTTP_HOST']}/shib_logout.php", FILTER_SANITIZE_URL);

     echo <<<WSDL
 <?xml version ="1.0" encoding ="UTF-8" ?>
 <definitions name="LogoutNotification"
   targetNamespace="urn:mace:shibboleth:2.0:sp:notify"
   xmlns:notify="urn:mace:shibboleth:2.0:sp:notify"
   xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
   xmlns="http://schemas.xmlsoap.org/wsdl/">

         <types>
            <schema targetNamespace="urn:mace:shibboleth:2.0:sp:notify"
                    xmlns="http://www.w3.org/2000/10/XMLSchema"
                    xmlns:notify="urn:mace:shibboleth:2.0:sp:notify">

                         <simpleType name="string">
                                 <restriction base="string">
                                         <minLength value="1"/>
                                 </restriction>
                         </simpleType>

                         <element name="OK" type="notify:OKType"/>
                         <complexType name="OKType">
                                 <sequence/>
                         </complexType>

                 </schema>
         </types>

         <message name="getLogoutNotificationRequest">
                 <part name="SessionID" type="notify:string" />
         </message>

         <message name="getLogoutNotificationResponse" >
                 <part name="OK"/>
         </message>

         <portType name="LogoutNotificationPortType">
                 <operation name="LogoutNotification">
                         <input message="getLogoutNotificationRequest"/>
                         <output message="getLogoutNotificationResponse"/>
                 </operation>
         </portType>

         <binding name="LogoutNotificationBinding" type="notify:LogoutNotificationPortType">
                 <soap:binding style="rpc" transport="http://schemas.xmlsoap.org/soap/http"/>
                 <operation name="LogoutNotification">
                         <soap:operation soapAction="urn:xmethods-logout-notification#LogoutNotification"/>
                 </operation>
         </binding>

         <service name="LogoutNotificationService">
                   <port name="LogoutNotificationPort" binding="notify:LogoutNotificationBinding">
                         <soap:address location="{$url}"/>
                   </port>
         </service>
 </definitions>
 WSDL;
     exit;
 }

 /******************************************************************************/
 function LogoutNotification($SessionID): ?\SoapFault
 {
     // Delete session of user using $SessionID to locate the user's session file
     // on the file system or in the database
     // Then delete this entry or record to clear the session
     // However, for that to work it is essential that the user's Shibboleth
     // SessionID is stored in the user session data!

     global $ilDB;

     $q = "SELECT session_id, data FROM usr_session WHERE expires > 'NOW()'";
     $r = $ilDB->query($q);

     while ($session_entry = $r->fetchRow(ilDBConstants::FETCHMODE_ASSOC)) {
         $user_session = unserializesession($session_entry['data']);

         // Look for session with matching Shibboleth session id
         // and then delete this ilias session
         foreach ($user_session as $user_session_entry) {
             // Delete this session entry
             if (is_array($user_session_entry) && array_key_exists('shibboleth_session_id', $user_session_entry) && $user_session_entry['shibboleth_session_id'] == $SessionID && !ilSession::_destroy($session_entry['session_id'])
             ) {
                 return new SoapFault('LogoutError', 'Could not delete session entry in database.');
             }
         }
     }
     // If no SoapFault is returned, all is fine
     return null;
 }

 /******************************************************************************/
 // Deserializes session data and returns it in a hash array of arrays
 function unserializesession($serialized_string): array
 {
     $variables = [];
     $a = preg_split("/(\w+)\|/", (string) $serialized_string, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE);
     $counter = count($a);
     for ($i = 0; $i < $counter; $i += 2) {
         $variables[$a[$i]] = unserialize($a[$i + 1]);
     }

     return ($variables);
 }
unserializesession
unserializesession($serialized_string)
Definition: shib_logout.php:166

$HTTP_RAW_POST_DATA
global $HTTP_RAW_POST_DATA
Definition: dummy_server.php:25

$url
$url
Definition: shib_logout.php:68

$DIC
global $DIC
This file is part of ILIAS, a powerful learning management system published by ILIAS open source e-Le...
Definition: shib_logout.php:19

null
while($session_entry=$r->fetchRow(ilDBConstants::FETCHMODE_ASSOC)) return null
Definition: shib_logout.php:144

$ilDB
$ilDB
Definition: storeScorm2004.php:25

$GLOBALS
$GLOBALS["DIC"]
Definition: wac.php:53

$_SERVER
$_SERVER['HTTP_HOST']
Definition: raiseError.php:26

SoapFault

exit
exit
Definition: dummy_client.php:21

ilUtil\redirect
static redirect(string $a_script)
Definition: class.ilUtil.php:939

ILIAS\UI\examples\Button\Bulky\base
base()
 description: > Example for rendering a bulky button.
Definition: base.php:35

ilSession\_destroy
static _destroy($a_session_id, ?int $a_closing_context=null, $a_expired_at=null)
Destroy session.
Definition: class.ilSession.php:227

ilContext\init
static init(string $a_type)
Init context by type.
Definition: class.ilContext.php:52

$q
$q
Definition: shib_logout.php:23

Vendor\Package\$a
$a
thx to https://mlocati.github.io/php-cs-fixer-configurator for the examples
Definition: example_cleaned.php:49

ilDBConstants\FETCHMODE_ASSOC
const FETCHMODE_ASSOC
Definition: class.ilDBConstants.php:28

$server
$server
Definition: shib_login.php:28

ilContext\CONTEXT_SOAP
const CONTEXT_SOAP
Definition: class.ilContext.php:34

ILIAS\UI\examples\Symbol\Glyph\Header\header
header()
 expected output: > ILIAS shows the rendered Component.
Definition: header.php:29

entry_point
entry_point(string $name)
This file is part of ILIAS, a powerful learning management system published by ILIAS open source e-Le...
Definition: result1.php:21

$r
$r
Definition: shib_logout.php:142