diff options
Diffstat (limited to 'lib/SAML2/HTTPPost.php')
| -rw-r--r-- | lib/SAML2/HTTPPost.php | 104 |
1 files changed, 104 insertions, 0 deletions
diff --git a/lib/SAML2/HTTPPost.php b/lib/SAML2/HTTPPost.php new file mode 100644 index 0000000..3a0a85c --- /dev/null +++ b/lib/SAML2/HTTPPost.php @@ -0,0 +1,104 @@ +<?php + +/** + * Class which implements the HTTP-POST binding. + * + * @package simpleSAMLphp + * @version $Id$ + */ +class SAML2_HTTPPost extends SAML2_Binding { + + /** + * Send a SAML 2 message using the HTTP-POST binding. + * + * Note: This function never returns. + * + * @param SAML2_Message $message The message we should send. + */ + public function send(SAML2_Message $message) { + + if ($this->destination === NULL) { + $destination = $message->getDestination(); + } else { + $destination = $this->destination; + } + $relayState = $message->getRelayState(); + + $msgStr = $message->toSignedXML(); + $msgStr = $msgStr->ownerDocument->saveXML($msgStr); + $msgStr = base64_encode($msgStr); + $msgStr = htmlspecialchars($msgStr); + + if ($message instanceof SAML2_Request) { + $msgType = 'SAMLRequest'; + } else { + $msgType = 'SAMLResponse'; + } + + $destination = htmlspecialchars($destination); + + if ($relayState !== NULL) { + $relayState = '<input type="hidden" name="RelayState" value="' . htmlspecialchars($relayState) . '">'; + } else { + $relayState = ''; + } + + $out = <<<END +<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> +<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> +<head> +<meta http-equiv="content-type" content="text/html; charset=utf-8" /> +<title>POST data</title> +</head> +<body onload="document.forms[0].submit()"> +<noscript> +<p><strong>Note:</strong> Since your browser does not support JavaScript, you must press the button below once to proceed.</p> +</noscript> +<form method="post" action="$destination"> +<input type="hidden" name="$msgType" value="$msgStr" /> +$relayState +<noscript><input type="submit" value="Submit" /></noscript> +</form> +</body> +</html> +END; + echo($out); + exit(0); + } + + + /** + * Receive a SAML 2 message sent using the HTTP-POST binding. + * + * Throws an exception if it is unable receive the message. + * + * @return SAML2_Message The received message. + */ + public function receive() { + + if (array_key_exists('SAMLRequest', $_POST)) { + $msg = $_POST['SAMLRequest']; + } elseif (array_key_exists('SAMLResponse', $_POST)) { + $msg = $_POST['SAMLResponse']; + } else { + throw new Exception('Missing SAMLRequest or SAMLResponse parameter.'); + } + + $msg = base64_decode($msg); + + $document = new DOMDocument(); + $document->loadXML($msg); + $xml = $document->firstChild; + + $msg = SAML2_Message::fromXML($xml); + + if (array_key_exists('RelayState', $_POST)) { + $msg->setRelayState($_POST['RelayState']); + } + + return $msg; + } + +} + +?>
\ No newline at end of file |