2005-04-17 13:06:25 +00:00
< ? php // $Id$
// Designed to be redirected from moodle/login/index.php
require ( '../../config.php' );
require ( 'lib.php' );
2005-08-29 15:42:26 +00:00
if ( isloggedin () && $USER -> username != 'guest' ) { // Nothing to do
2006-02-16 08:59:59 +00:00
if ( isset ( $SESSION -> wantsurl ) and ( strpos ( $SESSION -> wantsurl , $CFG -> wwwroot ) === 0 )){
$urltogo = $SESSION -> wantsurl ; /// Because it's an address in this site
unset ( $SESSION -> wantsurl );
2005-04-17 13:06:25 +00:00
2006-02-16 08:59:59 +00:00
} else {
$urltogo = $CFG -> wwwroot . '/' ; /// Go to the standard home page
unset ( $SESSION -> wantsurl ); /// Just in case
}
redirect ( $urltogo );
}
2006-06-02 16:42:40 +00:00
2005-06-13 07:54:44 +00:00
$pluginconfig = get_config ( 'auth/shibboleth' );
2005-05-13 15:10:40 +00:00
// Check whether Shibboleth is configured properly
2005-06-13 07:54:44 +00:00
if ( empty ( $pluginconfig -> shib_user_attribute )) {
2005-10-31 15:51:17 +00:00
error ( get_string ( 'shib_not_set_up_error' , 'auth' ));
}
2005-04-17 13:06:25 +00:00
2005-05-06 06:35:24 +00:00
/// If we can find the Shibboleth attribute, save it in session and return to main login page
2005-06-13 07:54:44 +00:00
if ( ! empty ( $_SERVER [ $pluginconfig -> shib_user_attribute ])) { // Shibboleth auto-login
$frm -> username = $_SERVER [ $pluginconfig -> shib_user_attribute ];
$frm -> password = substr ( base64_encode ( $_SERVER [ $pluginconfig -> shib_user_attribute ]), 0 , 8 );
2005-04-17 13:06:25 +00:00
// The random password consists of the first 8 letters of the base 64 encoded user ID
// This password is never used unless the user account is converted to manual
/// Check if the user has actually submitted login data to us
if ( $user = authenticate_user_login ( $frm -> username , $frm -> password )) {
// Let's get them all set up.
$USER = $user ;
add_to_log ( SITEID , 'user' , 'login' , " view.php?id= $USER->id &course= " . SITEID , $USER -> id , 0 , $USER -> id );
update_user_login_times ();
set_moodle_cookie ( $USER -> username );
set_login_session_preferences ();
if ( user_not_fully_set_up ( $USER )) {
$urltogo = $CFG -> wwwroot . '/user/edit.php?id=' . $USER -> id . '&course=' . SITEID ;
// We don't delete $SESSION->wantsurl yet, so we get there later
} else if ( isset ( $SESSION -> wantsurl ) and ( strpos ( $SESSION -> wantsurl , $CFG -> wwwroot ) === 0 )) {
$urltogo = $SESSION -> wantsurl ; /// Because it's an address in this site
unset ( $SESSION -> wantsurl );
} else {
$urltogo = $CFG -> wwwroot . '/' ; /// Go to the standard home page
unset ( $SESSION -> wantsurl ); /// Just in case
}
redirect ( $urltogo );
}
2006-02-16 08:59:59 +00:00
}
2005-10-31 15:51:17 +00:00
// If we can find any (user independent) Shibboleth attributes but no user
// attributes we probably didn't receive any user attributes
2006-02-16 08:59:59 +00:00
elseif ( ! empty ( $_SERVER [ 'HTTP_SHIB_APPLICATION_ID' ])){
2005-10-31 15:51:17 +00:00
error ( get_string ( 'shib_no_attributes_error' , 'auth' , '\'' . $pluginconfig -> shib_user_attribute . '\', \'' . $pluginconfig -> field_map_firstname . '\', \'' . $pluginconfig -> field_map_lastname . '\' and \'' . $pluginconfig -> field_map_email . '\'' ));
2006-02-16 08:59:59 +00:00
} else {
error ( get_string ( 'shib_not_set_up_error' , 'auth' ));
2005-04-17 13:06:25 +00:00
}
?>
