dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update portal kinematic

Browse Source
This commit is contained in:
Xavier Guimard 2015-12-30 10:17:07 +00:00
parent 5da51ee376
commit fd1153506a
1 changed files with 61 additions and 42 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

103
lemonldap-ng-portal/KINEMATIC.md
View File

@ -14,48 +14,67 @@ Simple::new():
### Request managing ### Request managing
| | Method | Comment | Auth users | Unauth | Proposed PSGI route Scenarii:
|---|-----------------------------------|:-------------------------------------:|---|---|--------------------------
| 0 | _startSoapServices_ | Manage som path info | | X | /sessions * F: unknown user comes for the first time
| 1 | controlUrlOrigin | check `url` parameter (+confirmation) | X | X | * P: (good) post fo authentication
| 2 | checkNotifBack | check accepted notifications | X | | * M: menu display
| 3 | controlExistingSession | check cookie | X | | * L: simple logout
| | | * display captcha image | | X | /captcha
| | | * logout | X | | /logout | | Method | Comment | F | P | M | L | Proposed PSGI route (for 2.0)
| | | * remove existing sessions | X | | |---|-----------------------------------|:-------------------------------------:|---|---|---|---|------------------------------
| | | * respond to ping | X | | /ping | 0 | _startSoapServices_ | Manage som path info | | | | | /sessions
| | | * respond to `storeAppsListOrder` | X | | /storeAppsListOrder | 1 | controlUrlOrigin | check `url` parameter (+confirmation) | X | X | X | X |
| | | * _If user is authenticated, call:_ | X | | | 2 | checkNotifBack | check accepted notifications | X | X | X | X | /notif ?
| | | - _issuerForAuthUser_ | X | | | 3 | controlExistingSession | check cookie | X | X | X | X |
| | | - _authFinish_ | X | | | | | * display captcha image | X | | | | /captcha
| | | - _autoRedirect_ | X | | | | | * logout | | | | | /logout
| | _existingSession_ | manage reauthentication and force | X | | | | | * remove existing sessions | | X | | |
| | _IssuerDB::issuerDBInit_ | | | | _(init^)_ | | | * respond to ping | | | | | /ping
| | _Auth::authInit_ | | | | _(init^)_ | | | * respond to `storeAppsListOrder` | | | | | /storeAppsListOrder
| 4 | __Issuer__::issuerForUnAuthUser | | | X | Many (SSO, SLO, SOAP,...) | | | * _If user is authenticated, call:_ | | | | |
| 5 | __Auth__::extractFormInfo | First call to auth module | | X | | | | - _issuerForAuthUser_ | | | | |
| | _UserDB::userDBInit_ | | | | _(init^)_ | | | - _authFinish_ | | | | |
| 6 | __UserDB__::getUser | First call to UserDB: set $\_user | | X | | | | - _autoRedirect_ | | | | |
| 7 | __Auth__::setAuthSessionInfo | Auth module can set infos to session | | X | | | _existingSession_ | manage reauthentication and force | | | X | |
| | _PasswordDB::passwordDBInit_ | | | | _(init^)_ | | _authForce_ | | | | X | |
| 8 | __PasswordDB__::modifyPassword | Unique call to PasswordDB | | ? | ? | | _IssuerDB::issuerDBInit_ | | X | X | X | X | _(init^)_
| 9 | setSessionInfo | Store datas in `$sessionInfo` | | X | | | _IssuerDB::logout_ | | | | | X |
| 10 | setMacros | Update $sessionInfo with macros | | X | | | _Auth::authInit_ | | X | X | X | X | _(init^)_
| 11 | __UserDB__::setGroups | Set `$sessionInfo->{group}` | | X | | | _Auth::logout_ | | | | | X |
| 12 | setPersistentSessionInfo | Store some datas in persistent DB | | X | | 4 | __Issuer__::issuerForUnAuthUser | | X | X | | | Many (SSO, SLO, SOAP,...)
| 13 | setLocalGroups | Set `$sessionInfo->{group}` | | X | | 5 | __Auth__::extractFormInfo | First call to auth module | X | X | | |
| 14 | __MailReset__::sendPasswordMail | Called if password was changed | | ? | | | _UserDB::userDBInit_ | | | X | | | _(init^)_
| 15 | __Auth__::authenticate | 3rd call to _Auth_ module (for LDAP) | P | | | 6 | __UserDB__::getUser | First call to UserDB: set $\_user | | X | | |
| 16 | __Auth__::authFinish | Last call to _Auth_ | P | | | 7 | __Auth__::setAuthSessionInfo | Auth module can set infos to session | | X | | |
| 17 | __UserDB__::userDBFinish | Last call to _UserDB_ | P | | | | _PasswordDB::passwordDBInit_ | | | X | | | _(init^)_
| 18 | __PasswordDB__::passwordDBFinish | Last call to _PasswordDB_ | P | | | 8 | __PasswordDB__::modifyPassword | Unique call to PasswordDB | | X | | | ?
| 19 | grantSession | Apply the rule (user is authenticated | P | | | 9 | setSessionInfo | Store datas in `$sessionInfo` | | X | | |
| 20 | removeOther | Remove other opened sessions | P | | | 10 | setMacros | Update $sessionInfo with macros | | X | | |
| 21 | store | Store session in DB | N | | | | _create safe jail_ | | | X | | |
| 22 | buildCookie | Build LLNG cookie(s) | N | | | 11 | __UserDB__::setGroups | Set `$sessionInfo->{group}` | | X | | |
| 23 | checkNotification | Check if current user has messages | N | | | 12 | setPersistentSessionInfo | Store some datas in persistent DB | | X | | |
| 24 | __IssuerDB__::issuerForAuthUser | | * | | Many (SSO, SLO, SOAP, Attribute query,...) | 13 | setLocalGroups | Set `$sessionInfo->{group}` | | X | | |
| 25 | autoRedirect | Redirects to wanted url | * | | | 14 | __MailReset__::sendPasswordMail | Called if password was changed | | X |_3_| |
| 15 | __Auth__::authenticate | 3rd call to _Auth_ module (for LDAP) | | X | | |
| 16 | __Auth__::authFinish | Last call to _Auth_ | | X |_1_| |
| 17 | __UserDB__::userDBFinish | Last call to _UserDB_ | | X | | |
| 18 | __PasswordDB__::passwordDBFinish | Last call to _PasswordDB_ | | X |_2_| |
| 19 | grantSession | Apply the rule (user is authenticated | | X | | |
| 20 | removeOther | Remove other opened sessions | | X | | |
| 21 | store | Store session in DB | | X | | |
| | _setApacheUser_ | | | | | |
| 22 | buildCookie | Build LLNG cookie(s) | | X | | |
| 23 | checkNotification | Check if current user has messages | | X | X | |
| 24 | __IssuerDB__::issuerForAuthUser | | | X | X | | Many (SSO, SLO, SOAP, Attribute query,...)
| 25 | autoRedirect | Redirects to wanted url | | X | | |
| | _menuInit_ | | | | X | |
Notes:
1. Called after issuerForAuthUser
2. Called after menuInit
3. called after passwordDBFinish !!!
## Other requests ## Other requests