mirror of
https://github.com/Combodo/iTop.git
synced 2026-02-12 23:14:18 +01:00
112 lines
2.7 KiB
PHP
112 lines
2.7 KiB
PHP
<?php
|
|
|
|
use Combodo\iTop\Application\Helper\Session;
|
|
|
|
/**
|
|
* Class LoginURL
|
|
*
|
|
* @copyright Copyright (C) 2010-2024 Combodo SAS
|
|
* @license http://opensource.org/licenses/AGPL-3.0
|
|
*/
|
|
|
|
class LoginURL extends AbstractLoginFSMExtension implements iTokenLoginUIExtension
|
|
{
|
|
/**
|
|
* @var bool
|
|
*/
|
|
private $bErrorOccurred = false;
|
|
|
|
/**
|
|
* Return the list of supported login modes for this plugin
|
|
*
|
|
* @return array of supported login modes
|
|
*/
|
|
public function ListSupportedLoginModes()
|
|
{
|
|
return array('url');
|
|
}
|
|
|
|
protected function OnModeDetection(&$iErrorCode)
|
|
{
|
|
if (!Session::IsSet('login_mode') && !$this->bErrorOccurred)
|
|
{
|
|
list($sAuthUser, $sAuthPwd) = $this->GetTokenInfo();
|
|
{
|
|
Session::Set('login_mode', 'url');
|
|
}
|
|
}
|
|
return LoginWebPage::LOGIN_FSM_CONTINUE;
|
|
}
|
|
|
|
protected function OnReadCredentials(&$iErrorCode)
|
|
{
|
|
if (Session::Get('login_mode') == 'url')
|
|
{
|
|
Session::Set('login_temp_auth_user', utils::ReadParam('auth_user', '', false, 'raw_data'));
|
|
}
|
|
return LoginWebPage::LOGIN_FSM_CONTINUE;
|
|
}
|
|
|
|
protected function OnCheckCredentials(&$iErrorCode)
|
|
{
|
|
if (Session::Get('login_mode') == 'url')
|
|
{
|
|
list($sAuthUser, $sAuthPwd) = $this->GetTokenInfo();
|
|
if (!UserRights::CheckCredentials($sAuthUser, $sAuthPwd, Session::Get('login_mode'), 'internal'))
|
|
{
|
|
$iErrorCode = LoginWebPage::EXIT_CODE_WRONGCREDENTIALS;
|
|
return LoginWebPage::LOGIN_FSM_ERROR;
|
|
}
|
|
Session::Set('auth_user', $sAuthUser);
|
|
}
|
|
return LoginWebPage::LOGIN_FSM_CONTINUE;
|
|
}
|
|
|
|
protected function OnCredentialsOK(&$iErrorCode)
|
|
{
|
|
if (Session::Get('login_mode') == 'url')
|
|
{
|
|
LoginWebPage::OnLoginSuccess(Session::Get('auth_user'), 'internal', Session::Get('login_mode'));
|
|
}
|
|
return LoginWebPage::LOGIN_FSM_CONTINUE;
|
|
}
|
|
|
|
protected function OnError(&$iErrorCode)
|
|
{
|
|
if (Session::Get('login_mode') == 'url')
|
|
{
|
|
$this->bErrorOccurred = true;
|
|
}
|
|
return LoginWebPage::LOGIN_FSM_CONTINUE;
|
|
}
|
|
|
|
protected function OnConnected(&$iErrorCode)
|
|
{
|
|
if (Session::Get('login_mode') == 'url')
|
|
{
|
|
Session::Set('can_logoff', true);
|
|
return LoginWebPage::CheckLoggedUser($iErrorCode);
|
|
}
|
|
return LoginWebPage::LOGIN_FSM_CONTINUE;
|
|
}
|
|
|
|
public function GetTokenInfo(): array
|
|
{
|
|
$sAuthUser = utils::ReadParam('auth_user', '', false, 'raw_data');
|
|
$sAuthPwd = utils::ReadParam('auth_pwd', null, false, 'raw_data');
|
|
return [$sAuthUser, $sAuthPwd];
|
|
}
|
|
|
|
public function GetUserLogin(array $aTokenInfo): string
|
|
{
|
|
$sLogin = $aTokenInfo[0];
|
|
$sLoginMode = 'url';
|
|
if (UserRights::CheckCredentials($sLogin, $aTokenInfo[1], $sLoginMode, 'internal'))
|
|
{
|
|
return $sLogin;
|
|
}
|
|
|
|
throw new Exception("Cannot CheckCredentials user login ($sLogin) with ($sLoginMode) mode");
|
|
}
|
|
}
|