Setup script for Lasso (Liberty Alliance Single Sign On)

* * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA */ require_once 'DB.php'; ?> The Lasso Extension is not available
"; print "Please check your PHP extensions
"; print "You can get more informations about Lasso at
"; print "http://lasso.entrouvert.org/

"; exit(); } } # default config if (!file_exists('config.inc')) { $cwd = getcwd(); $config = array( 'dsn' => "pgsql://sp:sp@localhost/sp", 'server_dump_filename' => "lasso_server_dump.xml", 'log_handler' => "sql", 'sp-metadata' => $cwd . "/metadata_sp1.xml", 'sp-public_key' => $cwd . "/public-key_sp1.pem", 'sp-private_key' => $cwd . "/private-key-raw_sp1.pem", 'sp-ca' => $cwd . "/certificate_sp1.pem", 'providerID' => "https://idp1/metadata", 'idp-metadata' => $cwd . "/metadata_idp1.xml", 'idp-public_key' => $cwd . "/public-key_idp1.pem", 'idp-ca' => $cwd . "/certificate_idp1.pem", ); $config_ser = serialize($config); if (($fd = fopen("config.inc", "w"))) { fwrite($fd, $config_ser); fclose($fd); } else die("Could not write default config file"); } else { $config = unserialize(file_get_contents('config.inc')); } if ($_POST['action'] == 'setup') { ob_start(); $setup = FALSE; print "Lasso Service Provider Setup
"; unset($_POST['action']); $diff = array_diff($_POST, $config); foreach($diff as $key => $value) { $config[$key] = $value; } print "Check Data base : "; $db = &DB::connect($config['dsn']); if (DB::isError($db)) { die("Failed (" . $db->getMessage() . ")"); } else print "OK"; print "
Create sequence 'user_id_seq' : "; $query = "DROP SEQUENCE user_id_seq"; $res =& $db->query($query); $query = "CREATE SEQUENCE user_id_seq"; $res =& $db->query($query); if (DB::isError($res)) die($res->getMessage()); print "OK"; print "
Create table 'users' : "; $query = "DROP TABLE users CASCADE"; $res =& $db->query($query); $query = "CREATE TABLE users ( user_id varchar(100) primary key, identity_dump text, first_name varchar(50), last_name varchar(50), last_login timestamp, created timestamp)"; $res =& $db->query($query); if (DB::isError($res)) die($res->getMessage()); print "OK"; print "
Create table 'nameidentifiers' : "; $query = "DROP TABLE nameidentifiers CASCADE"; $res =& $db->query($query); $query = "CREATE TABLE nameidentifiers ( name_identifier varchar(100) primary key, user_id varchar(100), FOREIGN KEY (user_id) REFERENCES users (user_id))"; $res =& $db->query($query); if (DB::isError($res)) die($res->getMessage()); print "OK"; print "
Create table 'log' : "; $query = "DROP TABLE log CASCADE"; $res =& $db->query($query); $query = "CREATE TABLE log ( id integer primary key, logtime timestamp, ident varchar(16), priority integer, message text)"; $res =& $db->query($query); if (DB::isError($res)) die($res->getMessage()); print "OK"; print "
Create table 'sessions' : "; $query = "DROP TABLE sessions CASCADE"; $res =& $db->query($query); $query = "CREATE TABLE sessions ( id varchar(32) primary key, lastupdate timestamp, data text)"; $res =& $db->query($query); if (DB::isError($res)) die($res->getMessage()); print "OK"; print "
Create table 'sso_sessions' : "; $query = "DROP TABLE sso_sessions CASCADE"; $res =& $db->query($query); $query = "CREATE TABLE sso_sessions ( name_identifier character varying(100), session_id character varying(32) )"; $res =& $db->query($query); if (DB::isError($res)) die($res->getMessage()); print "OK"; $db->disconnect(); $keys = array_keys($config); $files = preg_grep("/(sp|idp)/", $keys); foreach($files as $file) { print "
Check file " . $config[$file] . " : "; if (!file_exists($config[$file])) die("Failed (file does not exist)"); else print "OK"; } lasso_init(); print "
Create Server : "; $server = new LassoServer($config['sp-metadata'], $config['sp-public_key'], $config['sp-private_key'], $config['sp-ca'], lassoSignatureMethodRsaSha1); if (empty($server)) { die("Failed"); } else print "OK"; print "
Add provider : "; $ret = $server->addProvider($config['idp-metadata'], $config['idp-public_key'], $config['idp-ca']); /*if ($ret != TRUE) { print "Failed"; break; } else */ print "OK"; print "
Write XML Server Dump : "; $dump = $server->dump(); if (($fd = fopen($config['server_dump_filename'], "w"))) { fwrite($fd, $dump); fclose($fd); print "OK"; } else die("Failed"); lasso_shutdown(); print "
Save configuration file : "; # Save configuration file $config_ser = serialize($config); if (($fd = fopen("config.inc", "w"))) { fwrite($fd, $config_ser); fclose($fd); print "OK"; } else { print("Failed"); break; } $setup = TRUE; } ob_start(); ?> Setup script for Lasso (Liberty Alliance Single Sign On)

Back to Index

Lasso Service Provider Setup
Database Configuration
DSN (Data Source Name) :	' maxlength='100'>	Help
Server XML Dump :	' maxlength='100'>
Logging
Handler :
Service Provider
Metadata :	'>
Public Key :	'>
Private Key :	'>
Certificate :	'>
Identity Provider
ProviderID :	'>
Metadata :	'>
Public Key :	'>
Certificate :	'>

Index