add new feature simplesamlphp

Author: Dani Pfeil

Classes/Enum/ServiceProviderType.php

@@ -22,4 +22,5 @@
 class ServiceProviderType
 {
     const APACHE_SHIBBOLETH = 1;
+    const SIMPLESAMLPHP = 2;
 }

Classes/Simplesamlphp/ServiceProvider.php

@@ -0,0 +1,69 @@
+<?php
+
+
+namespace DanielPfeil\Samlauthentication\Simplesamlphp;
+
+
+class ServiceProvider implements \DanielPfeil\ServiceProviderAuthenticator\ServiceProvider
+{
+    public function getApplicationID(): ?string
+    {
+        // TODO: Implement getApplicationID() method.
+    }
+
+    public function getSessionId(): ?string
+    {
+        // TODO: Implement getSessionId() method.
+    }
+
+    public function getIdentityProvider(): ?string
+    {
+        // TODO: Implement getIdentityProvider() method.
+    }
+
+    public function getAuthenticationInstant(): ?string
+    {
+        // TODO: Implement getAuthenticationInstant() method.
+    }
+
+    public function getAuthenticationMethod(): ?string
+    {
+        // TODO: Implement getAuthenticationMethod() method.
+    }
+
+    public function getAuthenticationContextClass(): ?string
+    {
+        // TODO: Implement getAuthenticationContextClass() method.
+    }
+
+    public function getSessionIndex(): ?string
+    {
+        // TODO: Implement getSessionIndex() method.
+    }
+
+    public function getPrefix(): ?string
+    {
+        // TODO: Implement getPrefix() method.
+    }
+
+    public function getCookieName(): ?string
+    {
+        // TODO: Implement getCookieName() method.
+    }
+
+    public function isSessionExisting(): bool
+    {
+        // TODO: Implement isSessionExisting() method.
+    }
+
+    public function getField(string $fieldName): ?string
+    {
+        // TODO: Implement getField() method.
+    }
+
+    public function getPrefixedField(string $fieldName, bool $useShortPrefix = true): ?string
+    {
+        // TODO: Implement getPrefixedField() method.
+    }
+
+}

Classes/Utility/FactoryUtility.php

@@ -43,6 +43,8 @@ public static function getSAMLUtility(Serviceprovider $serviceprovider): ?SamlUt
         if ($serviceprovider->getType() === ServiceProviderType::APACHE_SHIBBOLETH) {
             //apache shibd
             return new ApacheSamlUtility();
+        } else if(ServiceProviderType::SIMPLESAMLPHP) {
+            return new SimpleSAMLphpUtility();
         }
         return null;
     }
@@ -188,7 +190,7 @@ private static function getFieldMappingObjectStorageForTableMapping(Tablemapping
             ->from('tx_samlauthentication_domain_model_fieldmapping')
             ->execute()->fetchAll();
 
-        foreach ($fieldMappingsArray as $key => $value) {
+        foreach ($fieldMappingsArray as $value) {
             $fieldMapping = self::getFieldMappingFromArray($value);
             $objectStorage->attach($fieldMapping);
         }

Classes/Utility/ServiceProviderUtility.php

@@ -21,6 +21,8 @@
 
 use DanielPfeil\Samlauthentication\Domain\Model\Serviceprovider;
 use DanielPfeil\Samlauthentication\Enum\ServiceProviderType;
+use SimpleSAML\Session;
+use TYPO3\CMS\Extbase\Utility\DebuggerUtility;
 
 class ServiceProviderUtility
 {
@@ -64,10 +66,15 @@ final public function getActive(array $serviceProviders): array
 
     final private function getIdp(String $prefix, int $type): ?String
     {
-        $index = $prefix . "Shib-Identity-Provider";
         if ($type === ServiceProviderType::APACHE_SHIBBOLETH && isset($_SERVER[$index])) {
+            $index = $prefix . "Shib-Identity-Provider";
             return $_SERVER[$index];
         }
+        else if($type === ServiceProviderType::SIMPLESAMLPHP){
+            $as = new \SimpleSAML\Auth\Simple('default-sp');
+            $as->requireAuth();
+            return $as->getAuthDataArray()["saml:sp:IdP"];
+        }
         return null;
     }
 }

Classes/Utility/SimpleSAMLphpUtility.php

@@ -0,0 +1,144 @@
+<?php
+
+
+namespace DanielPfeil\Samlauthentication\Utility;
+
+
+use DanielPfeil\Samlauthentication\Domain\Model\Fieldmapping;
+use DanielPfeil\Samlauthentication\Domain\Model\FieldValue;
+use DanielPfeil\Samlauthentication\Domain\Model\Serviceprovider;
+use DanielPfeil\Samlauthentication\Domain\Model\Tablemapping;
+use TYPO3\CMS\Core\Database\ConnectionPool;
+use TYPO3\CMS\Core\Database\Query\QueryBuilder;
+use TYPO3\CMS\Core\Utility\GeneralUtility;
+use TYPO3\CMS\Extbase\Utility\DebuggerUtility;
+
+class SimpleSAMLphpUtility implements SamlUtility
+{
+    public function getData(): array
+    {
+        // TODO: Implement getData() method.
+    }
+
+    public function isSessionExisting(): bool
+    {
+        // TODO: Implement isSessionExisting() method.
+    }
+
+    public function getUserData(Serviceprovider $serviceprovider): array
+    {
+        $result = [];
+
+        /**
+         * @var $tablemapping Tablemapping
+         */
+        foreach ($serviceprovider->getTablemapping() as $tablemapping) {
+            $result[$tablemapping->getTable()] = $this->getDataForTableMapping(
+                $tablemapping,
+                $serviceprovider->getPrefix()
+            );
+        }
+
+        return $result;
+    }
+
+    public function saveUserData(Serviceprovider $serviceprovider): bool
+    {
+        $tableMappings = $serviceprovider->getTablemapping();
+
+        /**
+         * @var Tablemapping $tableMapping
+         */
+        foreach ($tableMappings as $tableMapping) {
+            $data = $this->getDataForTableMapping($tableMapping, $serviceprovider->getPrefix());
+
+            /**
+             * @var QueryBuilder $queryBuilderFeUsers
+             */
+            $queryBuilderFeUsers = GeneralUtility::makeInstance(ConnectionPool::class)
+                ->getQueryBuilderForTable($tableMapping->getTable());
+
+            $values = [
+                "tstamp" => time(),
+                "pid" => $serviceprovider->getDestinationpid(),
+            ];
+
+            foreach ($data as $field) {
+                if ($field->getValue() != null) {
+                    $index = $field->getField();
+                    $values[$index] = $field->getValue();
+                }
+            }
+
+            $findUser = $queryBuilderFeUsers
+                ->count('*')
+                ->from($tableMapping->getTable());
+            /**
+             * @var Fieldmapping $field
+             */
+            foreach ($tableMapping->getFields() as $field) {
+                if ($field->isIdentifier()) {
+                    $predicate = $queryBuilderFeUsers->expr()->eq(
+                        $field->getField(),
+                        $queryBuilderFeUsers->createNamedParameter($values[$field->getField()])
+                    );
+
+                    $findUser->andWhere($predicate);
+                }
+            }
+
+            $userExists = $findUser->execute()->fetch()['COUNT(*)'];
+            if ($userExists === 0) {
+                $result = $queryBuilderFeUsers->insert($tableMapping->getTable())
+                    ->values($values)
+                    ->execute();
+            } else {
+                //todo implement update
+            }
+        }
+        //todo make check
+        return true;
+    }
+
+    public function getGroup(): array
+    {
+        // TODO: Implement getGroup() method.
+    }
+
+    public function getUserGroups($user)
+    {
+        // TODO: Implement getUserGroups() method.
+    }
+
+    private function getDataForTableMapping(Tablemapping $tablemapping, ?string $prefix): array
+    {
+        $as = new \SimpleSAML\Auth\Simple('default-sp');
+        $as->requireAuth();
+        $attributes = $as->getAttributes();
+
+        $result = [];
+
+        foreach ($tablemapping->getFields() as $field) {
+            $fieldValue = new FieldValue();
+            $fieldValue->setField($field->getField());
+            $fieldValue->setForeignField($field->getForeignField());
+
+            $key = $prefix . $fieldValue->getForeignField();
+            if (array_key_exists($key, $attributes)) {
+                $value = $attributes[$key];
+                if (is_array($value))
+                    $value = $value[0];
+
+                $fieldValue->setValue($value);
+            } else {
+                if ($field->hasFallback()) {
+                    $fieldValue->setValue($field->getDefaultvalue());
+                }
+            }
+
+            $result[$field->getField()] = $fieldValue;
+        }
+
+        return $result;
+    }
+}

Configuration/TCA/tx_samlauthentication_domain_model_serviceprovider.php

@@ -66,6 +66,7 @@
                 'renderType' => 'selectSingle',
                 'items' => [
                     ['Apache2 Shibboleth SP', 1],
+                    ['SimpleSAMLphp SP', 2],
                 ],
                 'minitems' => 1,
                 'maxitems' => 1,

composer.json

@@ -10,16 +10,22 @@
     "serviceprovider"
   ],
   "license": "GPL-3.0-only",
-  "version": "3.0.1",
+  "version": "3.1.1",
   "require": {
     "typo3/minimal": ">=9",
-    "daniel-pfeil/serviceprovider-apache-shib": "^1.1.0"
+    "daniel-pfeil/serviceprovider-apache-shib": "^1.1.0",
+    "simplesamlphp/simplesamlphp": "^1.19"
   },
   "require-dev": {
     "squizlabs/php_codesniffer": "*",
     "phpspec/phpspec": "*",
     "leanphp/phpspec-code-coverage": "*"
   },
+  "extra": {
+    "typo3/cms": {
+      "extension-key": "introduction"
+    }
+  },
   "autoload": {
     "psr-4": {
       "DanielPfeil\\Samlauthentication\\": "Classes/"