diff options
Diffstat (limited to 'modules/consentSimpleAdmin/www/consentAdmin.php')
| -rw-r--r-- | modules/consentSimpleAdmin/www/consentAdmin.php | 178 |
1 files changed, 87 insertions, 91 deletions
diff --git a/modules/consentSimpleAdmin/www/consentAdmin.php b/modules/consentSimpleAdmin/www/consentAdmin.php index f1c1d08..1c576e9 100644 --- a/modules/consentSimpleAdmin/www/consentAdmin.php +++ b/modules/consentSimpleAdmin/www/consentAdmin.php @@ -1,91 +1,87 @@ -<?php
-/*
- * consentSimpleAdmin - Simple Consent administration module
- *
- * This module is a simplification of the danish consent administration module.
- *
- * @author Andreas Åkre Solberg <andreas.solberg@uninett.no>
- * @author Mads Freen - WAYF
- * @author Jacob Christiansen - WAYF
- * @package simpleSAMLphp
- */
-
-
-// Get config object
-$config = SimpleSAML_Configuration::getInstance();
-$consentconfig = SimpleSAML_Configuration::getConfig('module_consentSimpleAdmin.php');
-
-$as = $consentconfig->getValue('auth');
-$as = new SimpleSAML_Auth_Simple($as);
-$as->requireAuth();
-
-// Get all attributes
-$attributes = $as->getAttributes();
-
-
-
-// Get user ID
-$userid_attributename = $consentconfig->getValue('userid', 'eduPersonPrincipalName');
-if (empty($attributes[$userid_attributename])) {
- throw new Exception('Could not generate useridentifier for storing consent. Attribute [' .
- $userid_attributename . '] was not available.');
-}
-
-$userid = $attributes[$userid_attributename][0];
-
-// Get metadata storage handler
-$metadata = SimpleSAML_Metadata_MetaDataStorageHandler::getMetadataHandler();
-
-/*
- * Get IdP id and metadata
- */
-if($as->getAuthData('saml:sp:IdP') != null) {
- // From a remote idp (as bridge)
- $idp_entityid = $as->getAuthData('saml:sp:IdP');
- $idp_metadata = $metadata->getMetaData($idp_entityid, 'saml20-idp-remote');
-} else {
- // from the local idp
- $idp_entityid = $metadata->getMetaDataCurrentEntityID('saml20-idp-hosted');
- $idp_metadata = $metadata->getMetaData($idp_entityid, 'saml20-idp-hosted');
-}
-
-SimpleSAML_Logger::debug('consentAdmin: IdP is ['.$idp_entityid . ']');
-
-$source = $idp_metadata['metadata-set'] . '|' . $idp_entityid;
-
-
-// Parse consent config
-$consent_storage = sspmod_consent_Store::parseStoreConfig($consentconfig->getValue('store'));
-
-// Calc correct user ID hash
-$hashed_user_id = sspmod_consent_Auth_Process_Consent::getHashedUserID($userid, $source);
-
-
-
-// Check if button with withdraw all consent was clicked.
-if (array_key_exists('withdraw', $_REQUEST)) {
-
- SimpleSAML_Logger::info('consentAdmin: UserID ['.$hashed_user_id . '] has requested to withdraw all consents given...');
-
- $consent_storage->deleteAllConsents($hashed_user_id);
-
-}
-
-
-
-// Get all consents for user
-$user_consent_list = $consent_storage->getConsents($hashed_user_id);
-
-$consentServices = array();
-foreach($user_consent_list AS $c) $consentServices[$c[1]] = 1;
-
-SimpleSAML_Logger::debug('consentAdmin: no of consents [' . count($user_consent_list) . '] no of services [' . count($consentServices) . ']');
-
-// Init template
-$t = new SimpleSAML_XHTML_Template($config, 'consentSimpleAdmin:consentadmin.php');
-
-$t->data['consentServices'] = count($consentServices);
-$t->data['consents'] = count($user_consent_list);
-
-
-$t->show();
+<?php +/* + * consentSimpleAdmin - Simple Consent administration module + * + * This module is a simplification of the danish consent administration module. + * + * @author Andreas Åkre Solberg <andreas.solberg@uninett.no> + * @author Mads Freek - WAYF + * @author Jacob Christiansen - WAYF + * @package SimpleSAMLphp + */ + + +// Get config object +$config = SimpleSAML_Configuration::getInstance(); +$consentconfig = SimpleSAML_Configuration::getConfig('module_consentSimpleAdmin.php'); + +$as = $consentconfig->getValue('auth'); +$as = new SimpleSAML_Auth_Simple($as); +$as->requireAuth(); + +// Get all attributes +$attributes = $as->getAttributes(); + + +// Get user ID +$userid_attributename = $consentconfig->getValue('userid', 'eduPersonPrincipalName'); +if (empty($attributes[$userid_attributename])) { + throw new Exception('Could not generate useridentifier for storing consent. Attribute ['. + $userid_attributename.'] was not available.'); +} + +$userid = $attributes[$userid_attributename][0]; + +// Get metadata storage handler +$metadata = SimpleSAML_Metadata_MetaDataStorageHandler::getMetadataHandler(); + +// Get IdP id and metadata +if ($as->getAuthData('saml:sp:IdP') !== null) { + // From a remote idp (as bridge) + $idp_entityid = $as->getAuthData('saml:sp:IdP'); + $idp_metadata = $metadata->getMetaData($idp_entityid, 'saml20-idp-remote'); +} else { + // from the local idp + $idp_entityid = $metadata->getMetaDataCurrentEntityID('saml20-idp-hosted'); + $idp_metadata = $metadata->getMetaData($idp_entityid, 'saml20-idp-hosted'); +} + +SimpleSAML_Logger::debug('consentAdmin: IdP is ['.$idp_entityid.']'); + +$source = $idp_metadata['metadata-set'].'|'.$idp_entityid; + + +// Parse consent config +$consent_storage = sspmod_consent_Store::parseStoreConfig($consentconfig->getValue('store')); + +// Calc correct user ID hash +$hashed_user_id = sspmod_consent_Auth_Process_Consent::getHashedUserID($userid, $source); + + +// Check if button with withdraw all consent was clicked. +if (array_key_exists('withdraw', $_REQUEST)) { + + SimpleSAML_Logger::info('consentAdmin: UserID ['.$hashed_user_id.'] has requested to withdraw all consents given...'); + + $consent_storage->deleteAllConsents($hashed_user_id); +} + + +// Get all consents for user +$user_consent_list = $consent_storage->getConsents($hashed_user_id); + +$consentServices = array(); +foreach ($user_consent_list AS $c) { + $consentServices[$c[1]] = 1; +} + +SimpleSAML_Logger::debug('consentAdmin: no of consents ['.count($user_consent_list).'] no of services ['.count($consentServices).']'); + +// Init template +$t = new SimpleSAML_XHTML_Template($config, 'consentSimpleAdmin:consentadmin.php'); + +$t->data['consentServices'] = count($consentServices); +$t->data['consents'] = count($user_consent_list); + + +$t->show(); |