Service Provider written in PHP (login is working and logout will work soon ;0)

1 files changed, 174 insertions, 0 deletions

diff --git a/php/Attic/examples/sample-sp/assertionConsumer.php b/php/Attic/examples/sample-sp/assertionConsumer.php
new file mode 100644
index 00000000..a84cb847
--- /dev/null
+++ b/php/Attic/examples/sample-sp/assertionConsumer.php
@@ -0,0 +1,174 @@
+<?php
+/*  
+ * Service Provider Example -- AssertionConsumer
+ *
+ * Copyright (C) 2004 Entr'ouvert
+ * http://lasso.entrouvert.org
+ * 
+ * Authors: Christophe Nowicki <cnowicki@easter-eggs.com>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
+ */
+
+  include "config.php.inc";  
+  
+  require_once 'DB.php';
+  
+
+  if (!$_GET['SAMLart']) {
+  	exit(1);
+  }
+  
+  session_start();
+
+  lasso_init();
+
+  $server_dump = file_get_contents($server_dump_filename);
+
+  $server = lasso_server_new_from_dump($server_dump);
+
+  $login = lasso_login_new($server);
+
+  lasso_login_init_request($login, $_SERVER['QUERY_STRING'], lassoHttpMethodRedirect);
+  lasso_login_build_request_msg($login);
+
+  $profile = lasso_cast_to_profile($login);
+
+  
+  $msg_url = lasso_profile_get_msg_url($profile);
+  $msg_body = lasso_profile_get_msg_body($profile);
+
+  /*print "msg_url : " . $msg_url . "\n<br>";
+  print "msg_body : " . $msg_body . "\n<br>"; */
+
+  $url = parse_url($msg_url);
+
+  $soap = sprintf(
+	"POST %s HTTP/1.1\r\nHost: %s:%d\r\nAccept-Encoding: identity\r\nContent-Length: %d\r\nContent-Type: text/xml\r\nAccept: text/xml,application/xml,application/xhtml+xml,text/html\r\nConnection: close\r\n\r\n%s\r\n",
+  $url['path'], $url['host'], $url['port'], strlen($msg_body), $msg_body);
+
+  
+  # PHP 4.3.0 with OpenSSL support required
+  $fp = fsockopen("ssl://" . $url['host'], $url['port'], $errno, $errstr, 30) or die($errstr ($errno));
+  fwrite($fp, $soap);
+  $ret = fgets($fp);
+
+  if (!preg_match("/^HTTP\/1\\.. 200/i", $ret)) {
+	die("Wrong artifact");
+  }
+
+  while (!feof($fp)) {
+  	$reponse .= @fread($fp, 8192);
+  }
+
+  fclose($fp);
+
+  list($header, $body) = preg_split("/\r\n\r\n/", $reponse, 2);
+
+  lasso_login_process_response_msg($login, $body); 
+  $nameidentifier = lasso_profile_get_nameidentifier($profile);
+
+  // print "nameidentifier: " . $nameidentifier . "<br>\n";
+
+
+  # Look for the name_identifier in user db.
+  $options = array(
+    	'debug'       => 2,
+  );
+  $db = &DB::connect($dsn, $options);
+
+  if (DB::isError($db)) 
+	  die($db->getMessage());
+
+  $query = "SELECT user_id FROM nameidentifiers WHERE name_identifier='$nameidentifier'"; 
+  $res =& $db->query($query);
+
+  if (DB::isError($res)) 
+	  die($res->getMessage());
+
+  if ($res->numRows() > 0)
+  {
+	$row =& $res->fetchRow();
+    $user_id = $row[0];
+	// print "user id : " . $user_id .  "<br>\n";
+
+	# Get Identity Dump from the data base
+	$query = "SELECT identity_dump FROM users WHERE user_id='$user_id'";
+	$res =& $db->query($query);
+
+	if (DB::isError($db)) 
+	  die($db->getMessage());
+
+	$row =& $res->fetchRow();
+    $identity_dump = $row[0];
+	
+	lasso_profile_set_identity_from_dump($profile, $identity_dump);
+	
+	$res->free();
+  	
+	lasso_login_accept_sso($login);
+  }
+  else 
+  {
+    // New User
+	lasso_login_accept_sso($login);
+
+	$identity = lasso_profile_get_identity($profile);
+	$identity_dump = lasso_identity_dump($identity);
+	// print "identity_dump: " . $identity_dump . "<br>\n"; 
+	
+	$session = lasso_profile_get_session($profile); 
+	$session_dump = lasso_session_dump($session);
+	// print "session_dump: " . $session_dump . "<br>\n"; 
+  
+	// Insert into users 
+	$identity_dump_quoted = $db->quoteSmart($identity_dump);
+	$query = "INSERT INTO users (user_id,identity_dump,created) VALUES(nextval('user_id_seq'), $identity_dump_quoted, NOW())";
+	$res =& $db->query($query);
+	if (DB::isError($res)) 
+		print $res->getMessage(). "\n";
+
+	
+	// Get UserID
+	$query = "SELECT last_value FROM user_id_seq";
+	$res =& $db->query($query);
+	if (DB::isError($res)) 
+		print $res->getMessage(). "\n";
+	$row = $res->fetchRow();
+	$user_id = $row[0];
+
+	// Insert into nameidentifiers
+	$query = "INSERT INTO nameidentifiers VALUES('$nameidentifier', '$user_id')";
+	$res =& $db->query($query);
+	if (DB::isError($res)) 
+		print $res->getMessage(). "\n";
+	
+
+	$_SESSION["nameidentifier"] = $nameidentifier;
+	$_SESSION["session_dump"] = $session_dump;
+	$_SESSION["user_id"] = $user_id;
+
+	$url = "register.php";
+  }
+
+  $db->disconnect();
+	
+  lasso_shutdown();
+
+  header("Request-URI: $url");
+  header("Content-Location: $url");
+  header("Location: $url");
+  exit();
+?>