137d2401aSAnna Dabrowska<?php 237d2401aSAnna Dabrowska 31fad6988SAndreas Gohruse dokuwiki\Form\Form; 4d9be1cb5SAnna Dabrowskause dokuwiki\plugin\oauth\SessionManager; 537d2401aSAnna Dabrowskause OAuth\Common\Http\Exception\TokenResponseException; 637d2401aSAnna Dabrowska 737d2401aSAnna Dabrowska/** 837d2401aSAnna Dabrowska * DokuWiki Plugin oauth (Action Component) 937d2401aSAnna Dabrowska * 1037d2401aSAnna Dabrowska * @license GPL 2 http://www.gnu.org/licenses/gpl-2.0.html 1137d2401aSAnna Dabrowska * @author Andreas Gohr <andi@splitbrain.org> 1237d2401aSAnna Dabrowska */ 1337d2401aSAnna Dabrowskaclass action_plugin_oauth_login extends DokuWiki_Action_Plugin 1437d2401aSAnna Dabrowska{ 1537d2401aSAnna Dabrowska /** @var helper_plugin_oauth */ 1637d2401aSAnna Dabrowska protected $hlp; 1737d2401aSAnna Dabrowska 1837d2401aSAnna Dabrowska /** 1937d2401aSAnna Dabrowska * Constructor 2037d2401aSAnna Dabrowska * 2137d2401aSAnna Dabrowska * Initializes the helper 2237d2401aSAnna Dabrowska */ 2337d2401aSAnna Dabrowska public function __construct() 2437d2401aSAnna Dabrowska { 2537d2401aSAnna Dabrowska $this->hlp = plugin_load('helper', 'oauth'); 2637d2401aSAnna Dabrowska } 2737d2401aSAnna Dabrowska 2837d2401aSAnna Dabrowska /** 2937d2401aSAnna Dabrowska * Registers a callback function for a given event 3037d2401aSAnna Dabrowska * 3137d2401aSAnna Dabrowska * @param Doku_Event_Handler $controller DokuWiki's event controller object 3237d2401aSAnna Dabrowska * @return void 3337d2401aSAnna Dabrowska */ 3437d2401aSAnna Dabrowska public function register(Doku_Event_Handler $controller) 3537d2401aSAnna Dabrowska { 3637d2401aSAnna Dabrowska global $conf; 3737d2401aSAnna Dabrowska if ($conf['authtype'] != 'oauth') return; 3837d2401aSAnna Dabrowska 3937d2401aSAnna Dabrowska $conf['profileconfirm'] = false; // password confirmation doesn't work with oauth only users 4037d2401aSAnna Dabrowska 4137d2401aSAnna Dabrowska $controller->register_hook('DOKUWIKI_STARTED', 'BEFORE', $this, 'handleStart'); 421fad6988SAndreas Gohr $controller->register_hook('HTML_LOGINFORM_OUTPUT', 'BEFORE', $this, 'handleOldLoginForm'); // @deprecated 431fad6988SAndreas Gohr $controller->register_hook('FORM_LOGIN_OUTPUT', 'BEFORE', $this, 'handleLoginForm'); 4437d2401aSAnna Dabrowska $controller->register_hook('ACTION_ACT_PREPROCESS', 'BEFORE', $this, 'handleDoLogin'); 4537d2401aSAnna Dabrowska } 4637d2401aSAnna Dabrowska 4737d2401aSAnna Dabrowska /** 4837d2401aSAnna Dabrowska * Start an oAuth login or restore environment after successful login 4937d2401aSAnna Dabrowska * 5037d2401aSAnna Dabrowska * @param Doku_Event $event 5137d2401aSAnna Dabrowska * @return void 5237d2401aSAnna Dabrowska */ 5337d2401aSAnna Dabrowska public function handleStart(Doku_Event $event) 5437d2401aSAnna Dabrowska { 5537d2401aSAnna Dabrowska global $INPUT; 5637d2401aSAnna Dabrowska 5737d2401aSAnna Dabrowska // login has been done, but there's environment to be restored 58d9be1cb5SAnna Dabrowska // TODO when is this the case? 59d9be1cb5SAnna Dabrowska $sessionManager = SessionManager::getInstance(); 60d9be1cb5SAnna Dabrowska if ($sessionManager->getDo() || $sessionManager->getRev()) { 6137d2401aSAnna Dabrowska $this->restoreSessionEnvironment(); 6237d2401aSAnna Dabrowska return; 6337d2401aSAnna Dabrowska } 6437d2401aSAnna Dabrowska 6537d2401aSAnna Dabrowska // see if a login needs to be started 6637d2401aSAnna Dabrowska $servicename = $INPUT->str('oauthlogin'); 6737d2401aSAnna Dabrowska if ($servicename) $this->startOAuthLogin($servicename); 6837d2401aSAnna Dabrowska } 6937d2401aSAnna Dabrowska 7037d2401aSAnna Dabrowska /** 71d9be1cb5SAnna Dabrowska * Add the oAuth login links to login form 7237d2401aSAnna Dabrowska * 7337d2401aSAnna Dabrowska * @param Doku_Event $event event object by reference 741fad6988SAndreas Gohr * @deprecated can be removed in the future 7537d2401aSAnna Dabrowska * @return void 7637d2401aSAnna Dabrowska */ 771fad6988SAndreas Gohr public function handleOldLoginForm(Doku_Event $event) 7837d2401aSAnna Dabrowska { 7937d2401aSAnna Dabrowska /** @var Doku_Form $form */ 8037d2401aSAnna Dabrowska $form = $event->data; 811fad6988SAndreas Gohr $html = $this->prepareLoginButtons(); 821fad6988SAndreas Gohr if (!$html) return; 831fad6988SAndreas Gohr 841fad6988SAndreas Gohr $form->_content[] = form_openfieldset( 851fad6988SAndreas Gohr [ 861fad6988SAndreas Gohr '_legend' => $this->getLang('loginwith'), 871fad6988SAndreas Gohr 'class' => 'plugin_oauth', 881fad6988SAndreas Gohr ] 891fad6988SAndreas Gohr ); 901fad6988SAndreas Gohr $form->_content[] = $html; 911fad6988SAndreas Gohr $form->_content[] = form_closefieldset(); 921fad6988SAndreas Gohr } 931fad6988SAndreas Gohr 941fad6988SAndreas Gohr 951fad6988SAndreas Gohr /** 961fad6988SAndreas Gohr * Add the oAuth login links to login form 971fad6988SAndreas Gohr * 981fad6988SAndreas Gohr * @param Doku_Event $event event object by reference 991fad6988SAndreas Gohr * @deprecated can be removed in the future 1001fad6988SAndreas Gohr * @return void 1011fad6988SAndreas Gohr */ 1021fad6988SAndreas Gohr public function handleLoginForm(Doku_Event $event) 1031fad6988SAndreas Gohr { 1041fad6988SAndreas Gohr /** @var Form $form */ 1051fad6988SAndreas Gohr $form = $event->data; 1061fad6988SAndreas Gohr $html = $this->prepareLoginButtons(); 1071fad6988SAndreas Gohr if (!$html) return; 1081fad6988SAndreas Gohr 1091fad6988SAndreas Gohr $form->addFieldsetOpen($this->getLang('loginwith'))->addClass('plugin_oauth'); 1101fad6988SAndreas Gohr $form->addHTML($html); 1111fad6988SAndreas Gohr $form->addFieldsetClose(); 1121fad6988SAndreas Gohr } 1131fad6988SAndreas Gohr 1141fad6988SAndreas Gohr /** 1151fad6988SAndreas Gohr * Create HTML for the various login buttons 1161fad6988SAndreas Gohr * 1171fad6988SAndreas Gohr * @return string the HTML 1181fad6988SAndreas Gohr */ 1191fad6988SAndreas Gohr protected function prepareLoginButtons() { 12037d2401aSAnna Dabrowska $html = ''; 12137d2401aSAnna Dabrowska 12237d2401aSAnna Dabrowska $validDomains = $this->hlp->getValidDomains(); 12337d2401aSAnna Dabrowska 12437d2401aSAnna Dabrowska if (count($validDomains) > 0) { 125*6f3a59e8SAndreas Gohr $html .= '<p class="plugin-oauth-emailrestriction">' . sprintf( 126*6f3a59e8SAndreas Gohr $this->getLang('eMailRestricted'), 127*6f3a59e8SAndreas Gohr '<b>' . join(', ', $validDomains) . '</b>' 128*6f3a59e8SAndreas Gohr ) . '</p>'; 12937d2401aSAnna Dabrowska } 13037d2401aSAnna Dabrowska 13137d2401aSAnna Dabrowska foreach ($this->hlp->listServices() as $service) { 13237d2401aSAnna Dabrowska $html .= $service->loginButton(); 13337d2401aSAnna Dabrowska } 13437d2401aSAnna Dabrowska 1351fad6988SAndreas Gohr return $html; 13637d2401aSAnna Dabrowska } 13737d2401aSAnna Dabrowska 13837d2401aSAnna Dabrowska /** 13937d2401aSAnna Dabrowska * When singleservice is wanted, do not show login, but execute login right away 14037d2401aSAnna Dabrowska * 14137d2401aSAnna Dabrowska * @param Doku_Event $event 14237d2401aSAnna Dabrowska * @return bool 14337d2401aSAnna Dabrowska */ 14437d2401aSAnna Dabrowska public function handleDoLogin(Doku_Event $event) 14537d2401aSAnna Dabrowska { 14637d2401aSAnna Dabrowska global $ID; 14737d2401aSAnna Dabrowska 14837d2401aSAnna Dabrowska if ($event->data != 'login') return true; 14937d2401aSAnna Dabrowska 15037d2401aSAnna Dabrowska $singleService = $this->getConf('singleService'); 15137d2401aSAnna Dabrowska if (!$singleService) return true; 15237d2401aSAnna Dabrowska 15337d2401aSAnna Dabrowska $enabledServices = $this->hlp->listServices(); 15437d2401aSAnna Dabrowska if (count($enabledServices) !== 1) { 15537d2401aSAnna Dabrowska msg($this->getLang('wrongConfig'), -1); 15637d2401aSAnna Dabrowska return false; 15737d2401aSAnna Dabrowska } 15837d2401aSAnna Dabrowska 15937d2401aSAnna Dabrowska $service = array_shift($enabledServices); 16037d2401aSAnna Dabrowska 16137d2401aSAnna Dabrowska $url = wl($ID, ['oauthlogin' => $service->getServiceID()], true, '&'); 16237d2401aSAnna Dabrowska send_redirect($url); 16337d2401aSAnna Dabrowska return true; // never reached 16437d2401aSAnna Dabrowska } 16537d2401aSAnna Dabrowska 16637d2401aSAnna Dabrowska /** 16737d2401aSAnna Dabrowska * start the oauth login 16837d2401aSAnna Dabrowska * 16937d2401aSAnna Dabrowska * This will redirect to the external service and stop processing in this request. 17037d2401aSAnna Dabrowska * The second part of the login will happen in auth 17137d2401aSAnna Dabrowska * 17237d2401aSAnna Dabrowska * @see auth_plugin_oauth 17337d2401aSAnna Dabrowska */ 17437d2401aSAnna Dabrowska protected function startOAuthLogin($servicename) 17537d2401aSAnna Dabrowska { 17637d2401aSAnna Dabrowska global $ID; 17737d2401aSAnna Dabrowska $service = $this->hlp->loadService($servicename); 17837d2401aSAnna Dabrowska if (is_null($service)) return; 17937d2401aSAnna Dabrowska 18037d2401aSAnna Dabrowska // remember service in session 181d9be1cb5SAnna Dabrowska $sessionManager = SessionManager::getInstance(); 182d9be1cb5SAnna Dabrowska $sessionManager->setServiceName($servicename); 183d9be1cb5SAnna Dabrowska $sessionManager->setPid($ID); 184d9be1cb5SAnna Dabrowska $sessionManager->saveState(); 18537d2401aSAnna Dabrowska 18637d2401aSAnna Dabrowska try { 18737d2401aSAnna Dabrowska $service->login(); // redirects 18837d2401aSAnna Dabrowska } catch (TokenResponseException $e) { 18937d2401aSAnna Dabrowska $this->hlp->showException($e, 'login failed'); 19037d2401aSAnna Dabrowska } 19137d2401aSAnna Dabrowska } 19237d2401aSAnna Dabrowska 19337d2401aSAnna Dabrowska /** 19437d2401aSAnna Dabrowska * Restore the request environment that had been set before the oauth shuffle 19537d2401aSAnna Dabrowska */ 19637d2401aSAnna Dabrowska protected function restoreSessionEnvironment() 19737d2401aSAnna Dabrowska { 19837d2401aSAnna Dabrowska global $INPUT, $ACT, $TEXT, $PRE, $SUF, $SUM, $RANGE, $DATE_AT, $REV; 199d9be1cb5SAnna Dabrowska 200d9be1cb5SAnna Dabrowska $sessionManager = SessionManager::getInstance(); 201d9be1cb5SAnna Dabrowska $ACT = $sessionManager->getDo(); 202d9be1cb5SAnna Dabrowska $_REQUEST = $sessionManager->getRequest(); 20337d2401aSAnna Dabrowska 20437d2401aSAnna Dabrowska $REV = $INPUT->int('rev'); 20537d2401aSAnna Dabrowska $DATE_AT = $INPUT->str('at'); 20637d2401aSAnna Dabrowska $RANGE = $INPUT->str('range'); 20737d2401aSAnna Dabrowska if ($INPUT->post->has('wikitext')) { 20837d2401aSAnna Dabrowska $TEXT = cleanText($INPUT->post->str('wikitext')); 20937d2401aSAnna Dabrowska } 21037d2401aSAnna Dabrowska $PRE = cleanText(substr($INPUT->post->str('prefix'), 0, -1)); 21137d2401aSAnna Dabrowska $SUF = cleanText($INPUT->post->str('suffix')); 21237d2401aSAnna Dabrowska $SUM = $INPUT->post->str('summary'); 21337d2401aSAnna Dabrowska 214d9be1cb5SAnna Dabrowska $sessionManager->setDo(''); 215d9be1cb5SAnna Dabrowska $sessionManager->setRequest([]); 216d9be1cb5SAnna Dabrowska $sessionManager->saveState(); 21737d2401aSAnna Dabrowska } 21837d2401aSAnna Dabrowska} 219