forked from microsoft/moodle-auth_oidc
-
Notifications
You must be signed in to change notification settings - Fork 0
/
manageapplication.php
113 lines (92 loc) · 3.99 KB
/
manageapplication.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
<?php
// This file is part of Moodle - http://moodle.org/
//
// Moodle is free software: you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// Moodle is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU General Public License for more details.
//
// You should have received a copy of the GNU General Public License
// along with Moodle. If not, see <http://www.gnu.org/licenses/>.
/**
* OIDC application configuration page.
*
* @package auth_oidc
* @author Lai Wei <[email protected]>
* @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
* @copyright (C) 2022 onwards Microsoft, Inc. (http://microsoft.com/)
*/
use auth_oidc\form\application;
require_once(dirname(__FILE__) . '/../../config.php');
require_once($CFG->libdir . '/adminlib.php');
require_once($CFG->dirroot . '/auth/oidc/lib.php');
require_login();
$url = new moodle_url('/auth/oidc/manageapplication.php');
$PAGE->set_url($url);
$PAGE->set_context(context_system::instance());
$PAGE->set_pagelayout('admin');
$PAGE->set_heading(get_string('settings_page_application', 'auth_oidc'));
$PAGE->set_title(get_string('settings_page_application', 'auth_oidc'));
$jsparams = [AUTH_OIDC_IDP_TYPE_MICROSOFT, AUTH_OIDC_AUTH_METHOD_SECRET, AUTH_OIDC_AUTH_METHOD_CERTIFICATE,
get_string('auth_method_certificate', 'auth_oidc')];
$jsmodule = [
'name' => 'auth_oidc',
'fullpath' => '/auth/oidc/js/module.js',
];
$PAGE->requires->js_init_call('M.auth_oidc.init', $jsparams, true, $jsmodule);
admin_externalpage_setup('auth_oidc_application');
require_admin();
$oidcconfig = get_config('auth_oidc');
$form = new application(null, ['oidcconfig' => $oidcconfig]);
$formdata = [];
foreach (['idptype', 'clientid', 'clientauthmethod', 'clientsecret', 'clientprivatekey', 'clientcert', 'tenantnameorguid',
'authendpoint', 'tokenendpoint', 'oidcresource', 'oidcscope'] as $field) {
if (isset($oidcconfig->$field)) {
$formdata[$field] = $oidcconfig->$field;
}
}
$form->set_data($formdata);
if ($form->is_cancelled()) {
redirect($url);
} else if ($fromform = $form->get_data()) {
// Handle odd cases where clientauthmethod is not received.
if (!isset($fromform->clientauthmethod)) {
$fromform->clientauthmethod = optional_param('clientauthmethod', AUTH_OIDC_AUTH_METHOD_SECRET, PARAM_INT);
}
// Prepare config settings to save.
$configstosave = ['idptype', 'clientid', 'tenantnameorguid', 'clientauthmethod', 'authendpoint', 'tokenendpoint',
'oidcresource', 'oidcscope'];
// Depending on the value of clientauthmethod, save clientsecret or (clientprivatekey and clientcert).
switch ($fromform->clientauthmethod) {
case AUTH_OIDC_AUTH_METHOD_SECRET:
$configstosave[] = 'clientsecret';
break;
case AUTH_OIDC_AUTH_METHOD_CERTIFICATE:
$configstosave[] = 'clientprivatekey';
$configstosave[] = 'clientcert';
break;
}
// Save config settings.
foreach ($configstosave as $config) {
$existingsetting = get_config('auth_oidc', $config);
if ($fromform->$config != $existingsetting) {
set_config($config, $fromform->$config, 'auth_oidc');
add_to_config_log($config, $existingsetting, $fromform->$config, 'auth_oidc');
}
}
// Redirect message depend on IdP type.
if ($fromform->idptype == AUTH_OIDC_IDP_TYPE_OTHER) {
redirect($url, get_string('application_updated', 'auth_oidc'));
} else {
$localo365configurl = new moodle_url('/admin/settings.php', ['section' => 'local_o365']);
redirect($url, get_string('application_updated_azure', 'auth_oidc', $localo365configurl->out()));
}
}
echo $OUTPUT->header();
$form->display();
echo $OUTPUT->footer();