1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
|
<?php
declare(strict_types=1);
namespace SimpleSAML\Module\core\Auth\Process;
/**
* Filter that will take the user ID on the format 'andreas@uninett.no'
* and create a new attribute 'realm' that includes the value after the '@' sign.
*
* @author Andreas Åkre Solberg, UNINETT AS.
* @package SimpleSAMLphp
* @deprecated Use ScopeFromAttribute instead.
*/
class AttributeRealm extends \SimpleSAML\Auth\ProcessingFilter
{
/** @var string */
private $attributename = 'realm';
/**
* Initialize this filter.
*
* @param array &$config Configuration information about this filter.
* @param mixed $reserved For future use.
*/
public function __construct(&$config, $reserved)
{
parent::__construct($config, $reserved);
assert(is_array($config));
if (array_key_exists('attributename', $config)) {
$this->attributename = $config['attributename'];
}
}
/**
* Apply filter to add or replace attributes.
*
* Add or replace existing attributes with the configured values.
*
* @param array &$request The current request
* @return void
*/
public function process(&$request)
{
assert(is_array($request));
assert(array_key_exists('Attributes', $request));
if (!array_key_exists('UserID', $request)) {
throw new \Exception('core:AttributeRealm: Missing UserID for this user. Please' .
' check the \'userid.attribute\' option in the metadata against the' .
' attributes provided by the authentication source.');
}
$userID = $request['UserID'];
$decomposed = explode('@', $userID);
if (count($decomposed) !== 2) {
return;
}
$request['Attributes'][$this->attributename] = [$decomposed[1]];
}
}
|
