*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
*/
require_once 'DB.php';
?>
The Lasso Extension is not available
";
print "Please check your PHP extensions
";
print "You can get more informations about Lasso at
";
print "http://lasso.entrouvert.org/";
exit();
}
}
# default config
if (!file_exists('config.inc'))
{
$cwd = getcwd();
$config = array(
'dsn' => "pgsql://sp:sp@localhost/sp",
'server_dump_filename' => "lasso_server_dump.xml",
'log_handler' => "sql",
'sp-metadata' => $cwd . "/metadata_sp1.xml",
'sp-private_key' => $cwd . "/private-key-raw_sp1.pem",
'sp-secret_key' => "",
'sp-ca' => $cwd . "/certificate_sp1.pem",
'providerID' => "https://idp1/metadata",
'idp-metadata' => $cwd . "/metadata_idp1.xml",
'idp-public_key' => $cwd . "/public-key_idp1.pem",
'idp-ca' => $cwd . "/certificate_idp1.pem",
);
$config_ser = serialize($config);
if (($fd = fopen("config.inc", "w")))
{
fwrite($fd, $config_ser);
fclose($fd);
}
else
die("Could not write default config file,
if you get a \"permission denied\" error, check the owner of the
sample directory. (it must be www-data).");
}
else
{
$config = unserialize(file_get_contents('config.inc'));
}
if ($_POST['action'] == 'setup')
{
ob_start();
$setup = FALSE;
print "Lasso Service Provider Setup
";
unset($_POST['action']);
$diff = array_diff($_POST, $config);
foreach($diff as $key => $value) {
$config[$key] = $value;
}
print "Check Data base : ";
$db = &DB::connect($config['dsn']);
if (DB::isError($db)) {
die("Failed (" . $db->getMessage() . ")");
}
else
print "OK";
print "
Create sequence 'user_id_seq' : ";
$query = "DROP SEQUENCE user_id_seq";
$res =& $db->query($query);
$query = "CREATE SEQUENCE user_id_seq";
$res =& $db->query($query);
if (DB::isError($res))
die($res->getMessage());
print "OK";
print "
Create table 'users' : ";
$query = "DROP TABLE users CASCADE";
$res =& $db->query($query);
$query = "CREATE TABLE users (
user_id varchar(100) primary key,
identity_dump text,
first_name varchar(50),
last_name varchar(50),
last_login timestamp,
created timestamp)";
$res =& $db->query($query);
if (DB::isError($res))
die($res->getMessage());
print "OK";
print "
Create table 'nameidentifiers' : ";
$query = "DROP TABLE nameidentifiers CASCADE";
$res =& $db->query($query);
$query = "CREATE TABLE nameidentifiers (
name_identifier varchar(100) primary key,
user_id varchar(100),
FOREIGN KEY (user_id) REFERENCES users (user_id))";
$res =& $db->query($query);
if (DB::isError($res))
die($res->getMessage());
print "OK";
print "
Create table 'log' : ";
$query = "DROP TABLE log CASCADE";
$res =& $db->query($query);
$query = "CREATE TABLE log (
id integer primary key,
logtime timestamp,
ident varchar(16),
priority integer,
message text)";
$res =& $db->query($query);
if (DB::isError($res))
die($res->getMessage());
print "OK";
print "
Create table 'sessions' : ";
$query = "DROP TABLE sessions CASCADE";
$res =& $db->query($query);
$query = "CREATE TABLE sessions (
id varchar(32) primary key,
lastupdate timestamp,
data text)";
$res =& $db->query($query);
if (DB::isError($res))
die($res->getMessage());
print "OK";
print "
Create table 'sso_sessions' : ";
$query = "DROP TABLE sso_sessions CASCADE";
$res =& $db->query($query);
$query = "CREATE TABLE sso_sessions (
name_identifier character varying(100),
session_id character varying(32)
)";
$res =& $db->query($query);
if (DB::isError($res))
die($res->getMessage());
print "OK";
$db->disconnect();
$keys = array_keys($config);
$files = preg_grep("/(sp|idp)/", $keys);
foreach($files as $file)
{
print "
Check file " . $config[$file] . " : ";
if (!file_exists($config[$file]))
if ($file == 'sp-secret_key')
print "not found (optional)";
else
die("Failed (file does not exist)");
else
print "OK";
}
lasso_init();
print "
Create Server : ";
/*
$server = new LassoServer(
$config['sp-metadata'],
$config['sp-public_key'],
$config['sp-private_key'],
$config['sp-ca']); */
$server = new LassoServer(
$config['sp-metadata'],
$config['sp-private_key'],
$config['sp-secret_key'],
$config['sp-ca']);
if (empty($server))
{
die("Failed");
}
else
print "OK";
print "
Add provider : ";
$ret = $server->addProvider(
LASSO_PROVIDER_ROLE_IDP,
$config['idp-metadata'],
$config['idp-public_key'],
$config['idp-ca']);
/* FIXME : check addProvider return value
if ($ret != TRUE)
{
print "Failed";
break;
}
else */
print "OK";
print "
Write XML Server Dump : ";
$dump = $server->dump();
if (($fd = fopen($config['server_dump_filename'], "w")))
{
fwrite($fd, $dump);
fclose($fd);
print "OK";
}
else
die("Failed");
lasso_shutdown();
print "
Save configuration file : ";
# Save configuration file
$config_ser = serialize($config);
if (($fd = fopen("config.inc", "w")))
{
fwrite($fd, $config_ser);
fclose($fd);
print "OK";
}
else
{
print("Failed");
break;
}
$setup = TRUE;
}
ob_start();
?>
Setup script for Lasso (Liberty Alliance Single Sign On)
Setup script for Lasso (Liberty Alliance Single Sign On)
Index
Copyright © 2004 Entr'ouvert