friendica
/
friendica-addons
mirror of https://git.friendi.ca/friendica/friendica-addons.git
1
0
Fork 0
Code Issues Releases Wiki Activity

[saml] Replace $_SESSION with DI::session()

pull/1295/head
Philipp 2022-10-21 08:42:47 +02:00
parent b0eb28143a
commit 97fcee53c0
No known key found for this signature in database
GPG Key ID: 24A7501396EB5432
1 changed files with 7 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
saml/saml.php
View File

@ -117,7 +117,7 @@ function saml_sso_initiate(App $a, array &$b)
$auth = new \OneLogin\Saml2\Auth(saml_settings());
$ssoBuiltUrl = $auth->login(null, [], false, false, true);
$_SESSION['AuthNRequestID'] = $auth->getLastRequestID();
DI::session()->set('AuthNRequestID', $auth->getLastRequestID());
header('Pragma: no-cache');
header('Cache-Control: no-cache, must-revalidate');
header('Location: ' . $ssoBuiltUrl);
@ -129,12 +129,12 @@ function saml_sso_reply(App $a)
$auth = new \OneLogin\Saml2\Auth(saml_settings());
$requestID = null;
if (isset($_SESSION) && isset($_SESSION['AuthNRequestID'])) {
$requestID = $_SESSION['AuthNRequestID'];
if (DI::session()->exists('AuthNRequestID')) {
$requestID = DI::session()->get('AuthNRequestID');
}
$auth->processResponse($requestID);
unset($_SESSION['AuthNRequestID']);
DI::session()->remove('AuthNRequestID');
$errors = $auth->getErrors();
@ -183,7 +183,7 @@ function saml_slo_initiate(App $a, array &$b)
$auth = new \OneLogin\Saml2\Auth(saml_settings());
$sloBuiltUrl = $auth->logout();
$_SESSION['LogoutRequestID'] = $auth->getLastRequestID();
DI::session()->set('LogoutRequestID', $auth->getLastRequestID());
header('Pragma: no-cache');
header('Cache-Control: no-cache, must-revalidate');
header('Location: ' . $sloBuiltUrl);
@ -194,8 +194,8 @@ function saml_slo_reply()
{
$auth = new \OneLogin\Saml2\Auth(saml_settings());
if (isset($_SESSION) && isset($_SESSION['LogoutRequestID'])) {
$requestID = $_SESSION['LogoutRequestID'];
if (DI::session()->exists('LogoutRequestID')) {
$requestID = DI::session()->get('LogoutRequestID');
} else {
$requestID = null;
}