137d2401aSAnna Dabrowska<?php 237d2401aSAnna Dabrowska 3*1fad6988SAndreas Gohruse dokuwiki\Form\Form; 4d9be1cb5SAnna Dabrowskause dokuwiki\plugin\oauth\SessionManager; 537d2401aSAnna Dabrowskause OAuth\Common\Http\Exception\TokenResponseException; 637d2401aSAnna Dabrowska 737d2401aSAnna Dabrowska/** 837d2401aSAnna Dabrowska * DokuWiki Plugin oauth (Action Component) 937d2401aSAnna Dabrowska * 1037d2401aSAnna Dabrowska * @license GPL 2 http://www.gnu.org/licenses/gpl-2.0.html 1137d2401aSAnna Dabrowska * @author Andreas Gohr <andi@splitbrain.org> 1237d2401aSAnna Dabrowska */ 1337d2401aSAnna Dabrowskaclass action_plugin_oauth_login extends DokuWiki_Action_Plugin 1437d2401aSAnna Dabrowska{ 1537d2401aSAnna Dabrowska /** @var helper_plugin_oauth */ 1637d2401aSAnna Dabrowska protected $hlp; 1737d2401aSAnna Dabrowska 1837d2401aSAnna Dabrowska /** 1937d2401aSAnna Dabrowska * Constructor 2037d2401aSAnna Dabrowska * 2137d2401aSAnna Dabrowska * Initializes the helper 2237d2401aSAnna Dabrowska */ 2337d2401aSAnna Dabrowska public function __construct() 2437d2401aSAnna Dabrowska { 2537d2401aSAnna Dabrowska $this->hlp = plugin_load('helper', 'oauth'); 2637d2401aSAnna Dabrowska } 2737d2401aSAnna Dabrowska 2837d2401aSAnna Dabrowska /** 2937d2401aSAnna Dabrowska * Registers a callback function for a given event 3037d2401aSAnna Dabrowska * 3137d2401aSAnna Dabrowska * @param Doku_Event_Handler $controller DokuWiki's event controller object 3237d2401aSAnna Dabrowska * @return void 3337d2401aSAnna Dabrowska */ 3437d2401aSAnna Dabrowska public function register(Doku_Event_Handler $controller) 3537d2401aSAnna Dabrowska { 3637d2401aSAnna Dabrowska global $conf; 3737d2401aSAnna Dabrowska if ($conf['authtype'] != 'oauth') return; 3837d2401aSAnna Dabrowska 3937d2401aSAnna Dabrowska $conf['profileconfirm'] = false; // password confirmation doesn't work with oauth only users 4037d2401aSAnna Dabrowska 4137d2401aSAnna Dabrowska $controller->register_hook('DOKUWIKI_STARTED', 'BEFORE', $this, 'handleStart'); 42*1fad6988SAndreas Gohr $controller->register_hook('HTML_LOGINFORM_OUTPUT', 'BEFORE', $this, 'handleOldLoginForm'); // @deprecated 43*1fad6988SAndreas Gohr $controller->register_hook('FORM_LOGIN_OUTPUT', 'BEFORE', $this, 'handleLoginForm'); 4437d2401aSAnna Dabrowska $controller->register_hook('ACTION_ACT_PREPROCESS', 'BEFORE', $this, 'handleDoLogin'); 4537d2401aSAnna Dabrowska } 4637d2401aSAnna Dabrowska 4737d2401aSAnna Dabrowska /** 4837d2401aSAnna Dabrowska * Start an oAuth login or restore environment after successful login 4937d2401aSAnna Dabrowska * 5037d2401aSAnna Dabrowska * @param Doku_Event $event 5137d2401aSAnna Dabrowska * @return void 5237d2401aSAnna Dabrowska */ 5337d2401aSAnna Dabrowska public function handleStart(Doku_Event $event) 5437d2401aSAnna Dabrowska { 5537d2401aSAnna Dabrowska global $INPUT; 5637d2401aSAnna Dabrowska 5737d2401aSAnna Dabrowska // login has been done, but there's environment to be restored 58d9be1cb5SAnna Dabrowska // TODO when is this the case? 59d9be1cb5SAnna Dabrowska $sessionManager = SessionManager::getInstance(); 60d9be1cb5SAnna Dabrowska if ($sessionManager->getDo() || $sessionManager->getRev()) { 6137d2401aSAnna Dabrowska $this->restoreSessionEnvironment(); 6237d2401aSAnna Dabrowska return; 6337d2401aSAnna Dabrowska } 6437d2401aSAnna Dabrowska 6537d2401aSAnna Dabrowska // see if a login needs to be started 6637d2401aSAnna Dabrowska $servicename = $INPUT->str('oauthlogin'); 6737d2401aSAnna Dabrowska if ($servicename) $this->startOAuthLogin($servicename); 6837d2401aSAnna Dabrowska } 6937d2401aSAnna Dabrowska 7037d2401aSAnna Dabrowska /** 71d9be1cb5SAnna Dabrowska * Add the oAuth login links to login form 7237d2401aSAnna Dabrowska * 7337d2401aSAnna Dabrowska * @param Doku_Event $event event object by reference 74*1fad6988SAndreas Gohr * @deprecated can be removed in the future 7537d2401aSAnna Dabrowska * @return void 7637d2401aSAnna Dabrowska */ 77*1fad6988SAndreas Gohr public function handleOldLoginForm(Doku_Event $event) 7837d2401aSAnna Dabrowska { 7937d2401aSAnna Dabrowska /** @var Doku_Form $form */ 8037d2401aSAnna Dabrowska $form = $event->data; 81*1fad6988SAndreas Gohr $html = $this->prepareLoginButtons(); 82*1fad6988SAndreas Gohr if (!$html) return; 83*1fad6988SAndreas Gohr 84*1fad6988SAndreas Gohr $form->_content[] = form_openfieldset( 85*1fad6988SAndreas Gohr [ 86*1fad6988SAndreas Gohr '_legend' => $this->getLang('loginwith'), 87*1fad6988SAndreas Gohr 'class' => 'plugin_oauth', 88*1fad6988SAndreas Gohr ] 89*1fad6988SAndreas Gohr ); 90*1fad6988SAndreas Gohr $form->_content[] = $html; 91*1fad6988SAndreas Gohr $form->_content[] = form_closefieldset(); 92*1fad6988SAndreas Gohr } 93*1fad6988SAndreas Gohr 94*1fad6988SAndreas Gohr 95*1fad6988SAndreas Gohr /** 96*1fad6988SAndreas Gohr * Add the oAuth login links to login form 97*1fad6988SAndreas Gohr * 98*1fad6988SAndreas Gohr * @param Doku_Event $event event object by reference 99*1fad6988SAndreas Gohr * @deprecated can be removed in the future 100*1fad6988SAndreas Gohr * @return void 101*1fad6988SAndreas Gohr */ 102*1fad6988SAndreas Gohr public function handleLoginForm(Doku_Event $event) 103*1fad6988SAndreas Gohr { 104*1fad6988SAndreas Gohr /** @var Form $form */ 105*1fad6988SAndreas Gohr $form = $event->data; 106*1fad6988SAndreas Gohr $html = $this->prepareLoginButtons(); 107*1fad6988SAndreas Gohr if (!$html) return; 108*1fad6988SAndreas Gohr 109*1fad6988SAndreas Gohr $form->addFieldsetOpen($this->getLang('loginwith'))->addClass('plugin_oauth'); 110*1fad6988SAndreas Gohr $form->addHTML($html); 111*1fad6988SAndreas Gohr $form->addFieldsetClose(); 112*1fad6988SAndreas Gohr } 113*1fad6988SAndreas Gohr 114*1fad6988SAndreas Gohr /** 115*1fad6988SAndreas Gohr * Create HTML for the various login buttons 116*1fad6988SAndreas Gohr * 117*1fad6988SAndreas Gohr * @return string the HTML 118*1fad6988SAndreas Gohr */ 119*1fad6988SAndreas Gohr protected function prepareLoginButtons() { 12037d2401aSAnna Dabrowska $html = ''; 12137d2401aSAnna Dabrowska 12237d2401aSAnna Dabrowska $validDomains = $this->hlp->getValidDomains(); 12337d2401aSAnna Dabrowska 12437d2401aSAnna Dabrowska if (count($validDomains) > 0) { 12537d2401aSAnna Dabrowska $html .= sprintf($this->getLang('eMailRestricted'), join(', ', $validDomains)); 12637d2401aSAnna Dabrowska } 12737d2401aSAnna Dabrowska 12837d2401aSAnna Dabrowska foreach ($this->hlp->listServices() as $service) { 12937d2401aSAnna Dabrowska $html .= $service->loginButton(); 13037d2401aSAnna Dabrowska } 13137d2401aSAnna Dabrowska 132*1fad6988SAndreas Gohr return $html; 13337d2401aSAnna Dabrowska } 13437d2401aSAnna Dabrowska 13537d2401aSAnna Dabrowska /** 13637d2401aSAnna Dabrowska * When singleservice is wanted, do not show login, but execute login right away 13737d2401aSAnna Dabrowska * 13837d2401aSAnna Dabrowska * @param Doku_Event $event 13937d2401aSAnna Dabrowska * @return bool 14037d2401aSAnna Dabrowska */ 14137d2401aSAnna Dabrowska public function handleDoLogin(Doku_Event $event) 14237d2401aSAnna Dabrowska { 14337d2401aSAnna Dabrowska global $ID; 14437d2401aSAnna Dabrowska 14537d2401aSAnna Dabrowska if ($event->data != 'login') return true; 14637d2401aSAnna Dabrowska 14737d2401aSAnna Dabrowska $singleService = $this->getConf('singleService'); 14837d2401aSAnna Dabrowska if (!$singleService) return true; 14937d2401aSAnna Dabrowska 15037d2401aSAnna Dabrowska $enabledServices = $this->hlp->listServices(); 15137d2401aSAnna Dabrowska if (count($enabledServices) !== 1) { 15237d2401aSAnna Dabrowska msg($this->getLang('wrongConfig'), -1); 15337d2401aSAnna Dabrowska return false; 15437d2401aSAnna Dabrowska } 15537d2401aSAnna Dabrowska 15637d2401aSAnna Dabrowska $service = array_shift($enabledServices); 15737d2401aSAnna Dabrowska 15837d2401aSAnna Dabrowska $url = wl($ID, ['oauthlogin' => $service->getServiceID()], true, '&'); 15937d2401aSAnna Dabrowska send_redirect($url); 16037d2401aSAnna Dabrowska return true; // never reached 16137d2401aSAnna Dabrowska } 16237d2401aSAnna Dabrowska 16337d2401aSAnna Dabrowska /** 16437d2401aSAnna Dabrowska * start the oauth login 16537d2401aSAnna Dabrowska * 16637d2401aSAnna Dabrowska * This will redirect to the external service and stop processing in this request. 16737d2401aSAnna Dabrowska * The second part of the login will happen in auth 16837d2401aSAnna Dabrowska * 16937d2401aSAnna Dabrowska * @see auth_plugin_oauth 17037d2401aSAnna Dabrowska */ 17137d2401aSAnna Dabrowska protected function startOAuthLogin($servicename) 17237d2401aSAnna Dabrowska { 17337d2401aSAnna Dabrowska global $ID; 17437d2401aSAnna Dabrowska $service = $this->hlp->loadService($servicename); 17537d2401aSAnna Dabrowska if (is_null($service)) return; 17637d2401aSAnna Dabrowska 17737d2401aSAnna Dabrowska // remember service in session 178d9be1cb5SAnna Dabrowska $sessionManager = SessionManager::getInstance(); 179d9be1cb5SAnna Dabrowska $sessionManager->setServiceName($servicename); 180d9be1cb5SAnna Dabrowska $sessionManager->setPid($ID); 181d9be1cb5SAnna Dabrowska $sessionManager->saveState(); 18237d2401aSAnna Dabrowska 18337d2401aSAnna Dabrowska try { 18437d2401aSAnna Dabrowska $service->login(); // redirects 18537d2401aSAnna Dabrowska } catch (TokenResponseException $e) { 18637d2401aSAnna Dabrowska $this->hlp->showException($e, 'login failed'); 18737d2401aSAnna Dabrowska } 18837d2401aSAnna Dabrowska } 18937d2401aSAnna Dabrowska 19037d2401aSAnna Dabrowska /** 19137d2401aSAnna Dabrowska * Restore the request environment that had been set before the oauth shuffle 19237d2401aSAnna Dabrowska */ 19337d2401aSAnna Dabrowska protected function restoreSessionEnvironment() 19437d2401aSAnna Dabrowska { 19537d2401aSAnna Dabrowska global $INPUT, $ACT, $TEXT, $PRE, $SUF, $SUM, $RANGE, $DATE_AT, $REV; 196d9be1cb5SAnna Dabrowska 197d9be1cb5SAnna Dabrowska $sessionManager = SessionManager::getInstance(); 198d9be1cb5SAnna Dabrowska $ACT = $sessionManager->getDo(); 199d9be1cb5SAnna Dabrowska $_REQUEST = $sessionManager->getRequest(); 20037d2401aSAnna Dabrowska 20137d2401aSAnna Dabrowska $REV = $INPUT->int('rev'); 20237d2401aSAnna Dabrowska $DATE_AT = $INPUT->str('at'); 20337d2401aSAnna Dabrowska $RANGE = $INPUT->str('range'); 20437d2401aSAnna Dabrowska if ($INPUT->post->has('wikitext')) { 20537d2401aSAnna Dabrowska $TEXT = cleanText($INPUT->post->str('wikitext')); 20637d2401aSAnna Dabrowska } 20737d2401aSAnna Dabrowska $PRE = cleanText(substr($INPUT->post->str('prefix'), 0, -1)); 20837d2401aSAnna Dabrowska $SUF = cleanText($INPUT->post->str('suffix')); 20937d2401aSAnna Dabrowska $SUM = $INPUT->post->str('summary'); 21037d2401aSAnna Dabrowska 211d9be1cb5SAnna Dabrowska $sessionManager->setDo(''); 212d9be1cb5SAnna Dabrowska $sessionManager->setRequest([]); 213d9be1cb5SAnna Dabrowska $sessionManager->saveState(); 21437d2401aSAnna Dabrowska } 21537d2401aSAnna Dabrowska} 216