lemonldap-ng/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Auth/CAS.pm

package Lemonldap::NG::Portal::Auth::CAS;

use strict;
use Mouse;
use URI::Escape;
use Lemonldap::NG::Common::FormEncode;
use Lemonldap::NG::Portal::Main::Constants qw(
  PE_OK
  PE_ERROR
  PE_REDIRECT
  PE_IDPCHOICE
  PE_SENDRESPONSE
);

our $VERSION = '2.0.15';

extends qw(
  Lemonldap::NG::Portal::Main::Auth
  Lemonldap::NG::Portal::Lib::CAS
);

# PROPERTIES

has srvNumber => ( is => 'rw', default => 0 );
has srvList   => ( is => 'rw', default => sub { [] } );
use constant sessionKind => 'CAS';

# INITIALIZATION

sub init {
    my ($self) = @_;

    return 0 unless ( $self->loadSrv );
    my @tab = ( keys %{ $self->casSrvList } );
    unless (@tab) {
        $self->logger->error("No CAS server configured");
        return 0;
    }
    $self->srvNumber( scalar @tab );
    my @list;
    my $portalPath = $self->conf->{portal};

    foreach (@tab) {
        my $name = $_;
        $name =
          $self->conf->{casSrvMetaDataOptions}->{$_}
          ->{casSrvMetaDataOptionsDisplayName}
          if $self->conf->{casSrvMetaDataOptions}->{$_}
          ->{casSrvMetaDataOptionsDisplayName};
        my $icon = $self->conf->{casSrvMetaDataOptions}->{$_}
          ->{casSrvMetaDataOptionsIcon};
        my $order = $self->conf->{casSrvMetaDataOptions}->{$_}
          ->{casSrvMetaDataOptionsSortNumber} // 0;
        my $img_src;

        if ($icon) {
            $img_src =
              ( $icon =~ m#^https?://# )
              ? $icon
              : $portalPath . $self->p->staticPrefix . "/common/" . $icon;
        }
        push @list,
          {
            val   => $_,
            name  => $name,
            icon  => $img_src,
            order => $order,
            class => "openidconnect",
          };
    }
    @list =
      sort {
             $a->{order} <=> $b->{order}
          or $a->{name} cmp $b->{name}
          or $a->{val} cmp $b->{val}
      } @list;
    $self->srvList( \@list );

    return 1;
}

# RUNNING METHODS

sub extractFormInfo {
    my ( $self, $req ) = @_;

    # Local URL
    my $local_url = $self->p->fullUrl($req);

    # Remove cancel parameter
    $local_url =~ s/cancel=1&?//;

    # Catch proxy callback
    if ( $req->param('casProxy') ) {
        $self->logger->debug("CAS: Proxy callback detected");

        my $pgtIou = $req->param('pgtIou');
        my $pgtId  = $req->param('pgtId');

        if ( $pgtIou and $pgtId ) {

            # Store pgtId and pgtIou
            my $pgtSessionId = $self->storePGT( $pgtIou, $pgtId );
            unless ($pgtSessionId) {
                $self->userLogger->error(
                    "CAS: Unable to store pgtIou $pgtIou and pgtId $pgtId");
            }
            else {
                $self->logger->debug(
"CAS: Store pgtIou $pgtIou and pgtId $pgtId in session $pgtSessionId"
                );
            }
        }

        # Exit
        $req->response( [ 200, [ 'Content-Length' => 0 ], [] ] );
        return PE_SENDRESPONSE;
    }

    my $srv;

    # Check Service Ticket
    my $ticket = $req->param('ticket');

    # Check if CAS server is chosen
    unless ( ( $ticket and $srv = $req->cookies->{llngcasserver} )
        or $srv = $req->param('idp') )
    {
        $self->logger->debug("Redirecting user to CAS server list");

        # Auto select provider if there is only one
        if ( $self->srvNumber == 1 ) {
            ($srv) = keys %{ $self->casSrvList };
            $self->logger->debug("Selecting the only defined CAS server: $srv");
        }

        else {

            # Try to use server resolution rules
            foreach ( keys %{ $self->srvRules } ) {
                my $cond = $self->srvRules->{$_} or next;
                if ( $cond->( $req, $req->sessionInfo ) ) {
                    $self->logger->debug(
                        "CAS Server $_ selected from resolution rule");
                    $srv = $_;
                    last;
                }
            }

            unless ($srv) {

                # Server list
                $req->data->{list}  = $self->srvList;
                $req->data->{login} = 1;
                return PE_IDPCHOICE;
            }
        }
    }

    my $srvConf = $self->conf->{casSrvMetaDataOptions}->{$srv};
    unless ($srvConf) {
        $self->userLogger->error("CAS server $srv not configured");
        return PE_ERROR;
    }

    # Provider is choosen
    $self->logger->debug("CAS server $srv choosen");

    $req->data->{_casSrvCurrent} = $srv;

    # Unless a ticket has been found, we redirect the user
    unless ($ticket) {

        # Add request state parameters
        if ( $req->data->{_url} ) {
            $local_url .= ( $local_url =~ /\?/ ? '&' : '?' )
              . build_urlencoded( url => $req->data->{_url} );
        }

        # Forward hidden fields
        if ( $req->{portalHiddenFormValues}
            and %{ $req->{portalHiddenFormValues} } )
        {

            $self->logger->debug("Add hidden values to CAS redirect URL\n");
            $local_url .= ( $local_url =~ /\?/ ? '&' : '?' )
              . build_urlencoded( %{ $req->{portalHiddenFormValues} } );
        }

        # Build login URL
        my $login_url = $self->getServerLoginURL( $local_url, $srvConf );
        $login_url .= '&renew=true' if $srvConf->{casSrvMetaDataOptionsRenew};
        $login_url .= '&gateway=true'
          if $srvConf->{casSrvMetaDataOptionsGateway};

        $self->logger->debug("CAS: Redirect user to $login_url");
        $req->{urldc} = $login_url;
        $req->steps( [] );
        $req->addCookie(
            $self->p->cookie(
                name   => 'llngcasserver',
                value  => $srv,
                secure => $self->conf->{securedCookie},
            )
        );
        return PE_REDIRECT;
    }

    $self->logger->debug("CAS: Service Ticket received: $ticket");

    my $proxied =
      $self->conf->{casSrvMetaDataOptionsProxiedServices}->{$srv} || {};

    # Ticket found, try to validate it
    $local_url =~ s/ticket=[^&]+//;
    $local_url =~ s/\?$//;
    $local_url =~ s/\&$//;
    ( $req->{user}, $req->data->{casAttrs} ) =
      $self->validateST( $req, $local_url, $ticket, $srvConf, $proxied );
    unless ( $req->{user} ) {
        $self->userLogger->error("CAS: Unable to validate ST $ticket");
        return PE_ERROR;
    }
    else {
        $self->logger->debug("CAS: User $req->{user} found");
    }

    # Request proxy tickets for proxied services
    if (%$proxied) {

        # Check we received a PGT
        my $pgtId = $req->data->{pgtId};

        unless ($pgtId) {
            $self->logger->error(
                "CAS: Proxy mode activated, but no PGT received");
            return PE_ERROR;
        }

        # Get a proxy ticket for each proxied service
        foreach ( keys %$proxied ) {
            my $service = $proxied->{$_};
            my $pt      = $self->retrievePT( $service, $pgtId, $srvConf );

            unless ($pt) {
                $self->logger->error(
                    "CAS: No proxy ticket received for service $service");
                return PE_ERROR;
            }

            $self->logger->debug(
                "CAS: Received proxy ticket $pt for service $service");

            # Store it in session
            $req->{sessionInfo}->{ '_casPT' . $_ } = $pt;
        }

    }

    return PE_OK;
}

sub authenticate {
    return PE_OK;
}

# Set authenticationLevel.
sub setAuthSessionInfo {
    my ( $self, $req ) = @_;
    $req->{sessionInfo}->{authenticationLevel} = $self->conf->{casAuthnLevel};
    $req->{sessionInfo}->{_casSrv}             = $req->data->{_casSrvCurrent};
    return PE_OK;
}

sub authLogout {
    my ( $self, $req ) = @_;

    # Build CAS logout URL
    my $logout_url = $self->getServerLogoutURL( $self->p->fullUrl($req),
        $self->conf->{casSrvMetaDataOptions}->{ $req->userData->{_casSrv} }
          ->{casSrvMetaDataOptionsUrl} );

    $self->logger->debug("Build CAS logout URL: $logout_url");

    # Register CAS logout URL in logoutServices
    $req->data->{logoutServices}->{CASserver} = $logout_url;

    return PE_OK;
}

sub getDisplayType {
    return "logo";
}

1;
CAS in progress (#595) 2016-12-20 12:53:33 +01:00			`package Lemonldap::NG::Portal::Auth::CAS;`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00
			`use strict;`
			`use Mouse;`
			`use URI::Escape;`
Optimize url building (#1183) 2017-04-11 19:05:00 +02:00			`use Lemonldap::NG::Common::FormEncode;`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`use Lemonldap::NG::Portal::Main::Constants qw(`
			`PE_OK`
Typos (#2753) 2022-05-19 23:20:32 +02:00			`PE_ERROR`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`PE_REDIRECT`
Typos (#2753) 2022-05-19 23:20:32 +02:00			`PE_IDPCHOICE`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`PE_SENDRESPONSE`
			`);`

Typos (#2753) 2022-05-19 23:20:32 +02:00			`our $VERSION = '2.0.15';`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00
Typos (#2753) 2022-05-19 23:20:32 +02:00			`extends qw(`
			`Lemonldap::NG::Portal::Main::Auth`
			`Lemonldap::NG::Portal::Lib::CAS`
			`);`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00
			`# PROPERTIES`

Auth::CAS rebuild in progress (#1183) 2017-04-12 23:11:11 +02:00			`has srvNumber => ( is => 'rw', default => 0 );`
make tidy with perltidy-20181120 2019-07-02 20:03:40 +02:00			`has srvList => ( is => 'rw', default => sub { [] } );`
Avoid session conflict between Issuer and Auth CAS (#1468) 2018-06-30 07:44:05 +02:00			`use constant sessionKind => 'CAS';`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00
			`# INITIALIZATION`

			`sub init {`
			`my ($self) = @_;`
More tests (#1305) 2017-09-26 19:50:38 +02:00
Auth::CAS rebuild in progress (#1183) 2017-04-12 23:11:11 +02:00			`return 0 unless ( $self->loadSrv );`
			`my @tab = ( keys %{ $self->casSrvList } );`
			`unless (@tab) {`
			`$self->logger->error("No CAS server configured");`
			`return 0;`
			`}`
			`$self->srvNumber( scalar @tab );`
			`my @list;`
			`my $portalPath = $self->conf->{portal};`

			`foreach (@tab) {`
Fix warnings (#1704) 2019-04-10 22:14:46 +02:00			`my $name = $_;`
			`$name =`
			`$self->conf->{casSrvMetaDataOptions}->{$_}`
			`->{casSrvMetaDataOptionsDisplayName}`
			`if $self->conf->{casSrvMetaDataOptions}->{$_}`
Auth::CAS rebuild in progress (#1183) 2017-04-12 23:11:11 +02:00			`->{casSrvMetaDataOptionsDisplayName};`
			`my $icon = $self->conf->{casSrvMetaDataOptions}->{$_}`
			`->{casSrvMetaDataOptionsIcon};`
Sort CAS servers & update langs (#1704) 2019-04-10 21:58:28 +02:00			`my $order = $self->conf->{casSrvMetaDataOptions}->{$_}`
Fix warnings (#1704) 2019-04-10 22:14:46 +02:00			`->{casSrvMetaDataOptionsSortNumber} // 0;`
Auth::CAS rebuild in progress (#1183) 2017-04-12 23:11:11 +02:00			`my $img_src;`

			`if ($icon) {`
			`$img_src =`
			`( $icon =~ m#^https?://# )`
			`? $icon`
			`: $portalPath . $self->p->staticPrefix . "/common/" . $icon;`
			`}`
			`push @list,`
			`{`
			`val => $_,`
			`name => $name,`
			`icon => $img_src,`
Sort CAS servers & update langs (#1704) 2019-04-10 21:58:28 +02:00			`order => $order,`
Auth::CAS rebuild in progress (#1183) 2017-04-12 23:11:11 +02:00			`class => "openidconnect",`
			`};`
			`}`
Sort CAS servers & update langs (#1704) 2019-04-10 21:58:28 +02:00			`@list =`
			`sort {`
			`$a->{order} <=> $b->{order}`
			`or $a->{name} cmp $b->{name}`
			`or $a->{val} cmp $b->{val}`
			`} @list;`
Auth::CAS rebuild in progress (#1183) 2017-04-12 23:11:11 +02:00			`$self->srvList( \@list );`
Perl critic 2021-02-01 22:30:37 +01:00
CAS in progress (#595) 2016-12-21 06:32:38 +01:00			`return 1;`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`}`

			`# RUNNING METHODS`

			`sub extractFormInfo {`
			`my ( $self, $req ) = @_;`

			`# Local URL`
CAS in progress (#595) 2016-12-22 09:40:50 +01:00			`my $local_url = $self->p->fullUrl($req);`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00
Remove cancel parameter in CAS service value (#1891) 2019-09-13 15:17:51 +02:00			`# Remove cancel parameter`
Improve regexp (#1891) 2019-09-13 15:35:05 +02:00			`$local_url =~ s/cancel=1&?//;`
Remove cancel parameter in CAS service value (#1891) 2019-09-13 15:17:51 +02:00
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`# Catch proxy callback`
			`if ( $req->param('casProxy') ) {`
Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`$self->logger->debug("CAS: Proxy callback detected");`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00
			`my $pgtIou = $req->param('pgtIou');`
			`my $pgtId = $req->param('pgtId');`

			`if ( $pgtIou and $pgtId ) {`

			`# Store pgtId and pgtIou`
Remove use of AuthCAS module (#1183) 2017-03-28 20:23:50 +02:00			`my $pgtSessionId = $self->storePGT( $pgtIou, $pgtId );`
			`unless ($pgtSessionId) {`
Tidy 2017-02-19 12:51:58 +01:00			`$self->userLogger->error(`
Remove use of AuthCAS module (#1183) 2017-03-28 20:23:50 +02:00			`"CAS: Unable to store pgtIou $pgtIou and pgtId $pgtId");`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`}`
			`else {`
Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`$self->logger->debug(`
Remove use of AuthCAS module (#1183) 2017-03-28 20:23:50 +02:00			`"CAS: Store pgtIou $pgtIou and pgtId $pgtId in session $pgtSessionId"`
			`);`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`}`
			`}`

			`# Exit`
			`$req->response( [ 200, [ 'Content-Length' => 0 ], [] ] );`
			`return PE_SENDRESPONSE;`
			`}`

Auth::CAS rebuild in progress (#1183) 2017-04-12 23:11:11 +02:00			`my $srv;`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00
			`# Check Service Ticket`
			`my $ticket = $req->param('ticket');`

Auth::CAS rebuild in progress (#1183) 2017-04-12 23:11:11 +02:00			`# Check if CAS server is chosen`
			`unless ( ( $ticket and $srv = $req->cookies->{llngcasserver} )`
			`or $srv = $req->param('idp') )`
			`{`
			`$self->logger->debug("Redirecting user to CAS server list");`

			`# Auto select provider if there is only one`
			`if ( $self->srvNumber == 1 ) {`
Auth::CAS works (#1183) 2017-04-13 09:28:15 +02:00			`($srv) = keys %{ $self->casSrvList };`
Auth::CAS rebuild in progress (#1183) 2017-04-12 23:11:11 +02:00			`$self->logger->debug("Selecting the only defined CAS server: $srv");`
			`}`

			`else {`

Typos (#2753) 2022-05-19 23:20:32 +02:00			`# Try to use server resolution rules`
Add CAS server resolution rules (#2753) 2022-05-18 09:05:26 +02:00			`foreach ( keys %{ $self->srvRules } ) {`
			`my $cond = $self->srvRules->{$_} or next;`
			`if ( $cond->( $req, $req->sessionInfo ) ) {`
			`$self->logger->debug(`
			`"CAS Server $_ selected from resolution rule");`
			`$srv = $_;`
			`last;`
			`}`
			`}`
Auth::CAS rebuild in progress (#1183) 2017-04-12 23:11:11 +02:00
Add CAS server resolution rules (#2753) 2022-05-18 09:05:26 +02:00			`unless ($srv) {`
Auth::CAS rebuild in progress (#1183) 2017-04-12 23:11:11 +02:00
Add CAS server resolution rules (#2753) 2022-05-18 09:05:26 +02:00			`# Server list`
Typos (#2753) 2022-05-19 23:20:32 +02:00			`$req->data->{list} = $self->srvList;`
Add CAS server resolution rules (#2753) 2022-05-18 09:05:26 +02:00			`$req->data->{login} = 1;`
			`return PE_IDPCHOICE;`
			`}`
Auth::CAS rebuild in progress (#1183) 2017-04-12 23:11:11 +02:00			`}`
			`}`

Auth::CAS works (#1183) 2017-04-13 09:28:15 +02:00			`my $srvConf = $self->conf->{casSrvMetaDataOptions}->{$srv};`
Auth::CAS rebuild in progress (#1183) 2017-04-12 23:11:11 +02:00			`unless ($srvConf) {`
			`$self->userLogger->error("CAS server $srv not configured");`
			`return PE_ERROR;`
			`}`

			`# Provider is choosen`
			`$self->logger->debug("CAS server $srv choosen");`

s/datas/data datas => des données data => les données 2018-07-05 22:56:16 +02:00			`$req->data->{_casSrvCurrent} = $srv;`
Auth::CAS rebuild in progress (#1183) 2017-04-12 23:11:11 +02:00
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`# Unless a ticket has been found, we redirect the user`
			`unless ($ticket) {`
Fix URL construction in CAS client (#1451) 2018-06-13 12:23:03 +02:00
			`# Add request state parameters`
s/datas/data datas => des données data => les données 2018-07-05 22:56:16 +02:00			`if ( $req->data->{_url} ) {`
Fix URL construction in CAS client (#1451) 2018-06-13 12:23:03 +02:00			`$local_url .= ( $local_url =~ /\?/ ? '&' : '?' )`
s/datas/data datas => des données data => les données 2018-07-05 22:56:16 +02:00			`. build_urlencoded( url => $req->data->{_url} );`
Fix URL construction in CAS client (#1451) 2018-06-13 12:23:03 +02:00			`}`

			`# Forward hidden fields`
			`if ( $req->{portalHiddenFormValues}`
			`and %{ $req->{portalHiddenFormValues} } )`
			`{`

			`$self->logger->debug("Add hidden values to CAS redirect URL\n");`
			`$local_url .= ( $local_url =~ /\?/ ? '&' : '?' )`
			`. build_urlencoded( %{ $req->{portalHiddenFormValues} } );`
			`}`

			`# Build login URL`
			`my $login_url = $self->getServerLoginURL( $local_url, $srvConf );`
			`$login_url .= '&renew=true' if $srvConf->{casSrvMetaDataOptionsRenew};`
			`$login_url .= '&gateway=true'`
			`if $srvConf->{casSrvMetaDataOptionsGateway};`

Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`$self->logger->debug("CAS: Redirect user to $login_url");`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`$req->{urldc} = $login_url;`
			`$req->steps( [] );`
Auth::CAS rebuild in progress (#1183) 2017-04-12 23:11:11 +02:00			`$req->addCookie(`
			`$self->p->cookie(`
			`name => 'llngcasserver',`
			`value => $srv,`
			`secure => $self->conf->{securedCookie},`
			`)`
			`);`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`return PE_REDIRECT;`
			`}`

Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`$self->logger->debug("CAS: Service Ticket received: $ticket");`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00
Fix CAS proxy code (#1224) 2018-06-19 16:47:09 +02:00			`my $proxied =`
			`$self->conf->{casSrvMetaDataOptionsProxiedServices}->{$srv} \|\| {};`

Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`# Ticket found, try to validate it`
Remove ticket from service URL when calling serviceValidate (#1183) 2017-03-29 21:43:10 +02:00			`$local_url =~ s/ticket=[^&]+//;`
			`$local_url =~ s/\?$//;`
Fix URL construction in CAS client (#1451) 2018-06-13 12:23:03 +02:00			`$local_url =~ s/\&$//;`
s/datas/data datas => des données data => les données 2018-07-05 22:56:16 +02:00			`( $req->{user}, $req->data->{casAttrs} ) =`
Fix CAS proxy code (#1224) 2018-06-19 16:47:09 +02:00			`$self->validateST( $req, $local_url, $ticket, $srvConf, $proxied );`
Store CAS attributes for UserDB::CAS (#1183) @coudot: can you validate this ? 2017-04-11 19:05:02 +02:00			`unless ( $req->{user} ) {`
Remove use of AuthCAS module (#1183) 2017-03-28 20:23:50 +02:00			`$self->userLogger->error("CAS: Unable to validate ST $ticket");`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`return PE_ERROR;`
			`}`
			`else {`
Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`$self->logger->debug("CAS: User $req->{user} found");`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`}`

			`# Request proxy tickets for proxied services`
Use App ExportedVars if defined (#1183) 2017-04-14 09:40:01 +02:00			`if (%$proxied) {`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00
			`# Check we received a PGT`
s/datas/data datas => des données data => les données 2018-07-05 22:56:16 +02:00			`my $pgtId = $req->data->{pgtId};`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00
			`unless ($pgtId) {`
Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`$self->logger->error(`
			`"CAS: Proxy mode activated, but no PGT received");`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`return PE_ERROR;`
			`}`

			`# Get a proxy ticket for each proxied service`
Adapt CAS "proxy" to new arch (#1183) 2017-04-13 20:54:06 +02:00			`foreach ( keys %$proxied ) {`
			`my $service = $proxied->{$_};`
make tidy with perltidy-20181120 2019-07-02 20:03:40 +02:00			`my $pt = $self->retrievePT( $service, $pgtId, $srvConf );`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00
			`unless ($pt) {`
Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`$self->logger->error(`
Fix proxied services in CAS (#1183) 2017-04-15 15:21:33 +02:00			`"CAS: No proxy ticket received for service $service");`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`return PE_ERROR;`
			`}`

Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`$self->logger->debug(`
			`"CAS: Received proxy ticket $pt for service $service");`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00
			`# Store it in session`
			`$req->{sessionInfo}->{ '_casPT' . $_ } = $pt;`
			`}`

			`}`

			`return PE_OK;`
			`}`

			`sub authenticate {`
Perl critic 2021-02-01 22:30:37 +01:00			`return PE_OK;`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`}`

			`# Set authenticationLevel.`
			`sub setAuthSessionInfo {`
			`my ( $self, $req ) = @_;`
Auth::CAS works (#1183) 2017-04-13 09:28:15 +02:00			`$req->{sessionInfo}->{authenticationLevel} = $self->conf->{casAuthnLevel};`
tidy 2022-02-16 17:43:29 +01:00			`$req->{sessionInfo}->{_casSrv} = $req->data->{_casSrvCurrent};`
Perl critic 2021-02-01 22:30:37 +01:00			`return PE_OK;`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`}`

			`sub authLogout {`
			`my ( $self, $req ) = @_;`

			`# Build CAS logout URL`
Manage CAS logout service (#1298) 2017-09-11 17:26:44 +02:00			`my $logout_url = $self->getServerLogoutURL( $self->p->fullUrl($req),`
Auth::CAS works (#1183) 2017-04-13 09:28:15 +02:00			`$self->conf->{casSrvMetaDataOptions}->{ $req->userData->{_casSrv} }`
Manage CAS logout service (#1298) 2017-09-11 17:26:44 +02:00			`->{casSrvMetaDataOptionsUrl} );`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00
Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`$self->logger->debug("Build CAS logout URL: $logout_url");`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00
			`# Register CAS logout URL in logoutServices`
s/datas/data datas => des données data => les données 2018-07-05 22:56:16 +02:00			`$req->data->{logoutServices}->{CASserver} = $logout_url;`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00
Perl critic 2021-02-01 22:30:37 +01:00			`return PE_OK;`
Building Auth/CAS (#595) 2016-12-20 11:43:22 +01:00			`}`

			`sub getDisplayType {`
			`return "logo";`
			`}`
CAS in progress (#595) 2016-12-20 12:53:33 +01:00
			`1;`