Unterschiede

Hier werden die Unterschiede zwischen zwei Versionen angezeigt.

--- de:shibslohttpd:helperscripts [2015/12/08 16:13] – Schreiterer, Frank
+++ de:shibslohttpd:helperscripts [2019/02/28 12:25] (aktuell) – [logoutnotify.php] Schreiterer, Frank
@@ Zeile 1: / Zeile 1: @@
-====== Hilfsscripte ======
+====== Hilfsskripte ======
+Alle hier aufgeführten Skripte sind beispielhaft und müssen ggf. angepasst werden.
 ===== checker.php =====
+Sorgt für den notwendigen zusätzlichen Request beim SessionHook.
 <file php checker.php>
-<? php
+<?php
 //redirect to application
 header('Location: '.$_GET['return']);
+?>
+</file>
+===== initsess.php =====
+<file php initsess.php>
+<?php
+//initialize application session
+session_start();
+//applicationpath
+$path = "Path/to/NORMALAPPLICATION";
+//and redirect to application
+$redirect = "https://".$_SERVER['SERVER_NAME']."/$path";
+header('Location: '.$redirect);
 ?>
 </file>
@@ Zeile 11: / Zeile 28: @@
 ===== logoutnotify.php =====
+Dieses Skript [[de:shibslohttpd:removallogout|entfernt die Anwendungs-Session]] via Back-Channel und die Cookies via Front-Channel.
 <file php logoutnotify.php>
@@ Zeile 83: / Zeile 102: @@
 //       See function LogoutNotification below
-elseif (!empty($HTTP_RAW_POST_DATA)) {
+elseif (!empty(file_get_contents("php://input"))) {
     // Set SOAP header
     $server = new SoapServer('https://'.$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF'].'/LogoutNotification.wsdl');
@@ Zeile 173: / Zeile 192: @@
     // SessionID is stored in the user session data!
-	//connection parameters to the shibcheckerdb
-	$dbDriver="mysql";
-	$dbHost="localhost";
-	$dbUser="shibuser";
-	$dbPass="Password";
-	$dbName="shibchecker";
-	$dbPort="3306";
 	//connection parameters to memcached
 	$mcsrv="127.0.0.1";
 	$mcport="11211";
-	//mode memcached or DB
+	$mc=new Memcache;
-	$mode = "memcached";
+	$mc->connect($mcsrv,$mcport);
-	#$mode = "DB";
+	//get the application session id
+	$appsessionid = $mc->get($SessionID);
-	if ($mode == "DB") {
+	//remove
-		//Remove the entry in shibchecker-DB and the aplication session
+	$ret = $mc-> delete($SessionID);
-		try {
+	$ret = $mc-> delete($appsessionid);
-			$pdo = new PDO("$dbDriver:dbname=$dbName;host=$dbHost;port=$dbPort",$dbUser,$dbPass);
+	if ($appsessionid == false) {
-			//get the application session id
+		$appsessionid = "";
-			$sqlappsess="Select appsessionid from appshibsession where shibsessionid='$SessionID'";
-			$appsessionid = "";
-			if ($res = $pdo->query($sqlappsess)) {
-				while ($row = $res->fetch(PDO::FETCH_ASSOC)) {
-					$appsessionid = $row['appsessionid'];
-				}
-			}
-			if ($appsessionid != "") {
-				$sql="Delete from appshibsession where appsessionid='$appsessionid'";
-				$pdo->query($sql);
-				$pdo = NULL;
-			}
-		} catch (PDOExeption $e) {
-			return new SoapFault('LogoutError', 'Database error.');
-		}
-	} elseif ($mode == "memcached") {
-		$mc=new Memcache;
-		$mc->connect($mcsrv,$mcport);
-		//get the application session id
-		$appsessionid = $mc->get($SessionID);
-		//remove
-		$ret = $mc-> delete($SessionID);
-		$ret = $mc-> delete($appsessionid);
-		if ($appsessionid == false) {
-			$appsessionid = "";
-		}
 	}
 	//Connect to the application session (PHP Session)
 	session_id($appsessionid);
@@ Zeile 254: / Zeile 239: @@
     Copyright 2015 Frank Schreiterer, University of Bamberg, Computing Centre
 */
-#modus memcached oder DB
-$mode = "memcached";
-function removeDB ($destid) {
-	$dbDriver="mysql";
-	$dbHost="localhost";
-	$dbUser="shibUser";
-	$dbPass="Password";
-	$dbName="shibchecker";
-	$dbPort="3306";
-	try {
-		$pdo = new PDO("$dbDriver:dbname=$dbName;host=$dbHost;port=$dbPort",$dbUser,$dbPass);
-	} catch (PDOExeption $e) { }
-	$sql="Delete from appshibsession where appsessionid='$destid'";
-	$pdo->query($sql);
-	$pdo = NULL;
-}
 function removeMemcached($destid) {
@@ Zeile 309: / Zeile 276: @@
 	if ($destid != "") {
 		session_id($destid);
-		if ($mode == "DB") {
+		removeMemcached($destid);
-			removeDB($destid);
-		} elseif ($mode == "memcached") {
-			removeMemcached($destid);
-		}
 		session_start();
 		session_destroy();
@@ Zeile 324: / Zeile 287: @@
 	$shiblogoff = $_REQUEST['shibloggedoff'];
 	if ($shiblogoff == "true") {
-		echo "Sie wurden abgemeldet.<br><br>Erneut <a href=\"$serverurl/logouttest/lazy\">mit Lazy-Sesson anmelden</a><br>
+		echo "Sie wurden abgemeldet.<br><br>Erneut <a href=\"$serverurl/PATH/TO/Login\">anmelden</a><br>";
-		oder <a href=\"$serverurl/logouttest/mixedlazy\">mit Lazy-Sesson oder Anwendungssession anmelden</a><br>
-		oder <a href=\"$serverurl/logouttest/normal\">mit normaler Sesson anmelden</a><br><br>";
-		echo "Von allen Webanwendungen <a href=\"https://weblogout.rz.uni-bamberg.de\">abmelden.</a>";
 	}
 } else {
 	$destid = session_id();
-	if ($mode == "DB") {
+	removeMemcached($destid);
-		removeDB($destid);
-	} elseif ($mode == "memcached") {
-		removeMemcached($destid);
-	}
-	$url="$serverurl/Shibboleth.sso/Logout?return=$serverurl/logouttest/logout/remsess.php?shibloggedoff=true";
+	$url="$serverurl/Shibboleth.sso/Logout?return=$serverurl/PATH/TO/remsess.php?shibloggedoff=true";
 	header('Location: '.$url);
 }