How to use SimpleSAMLphp in yii structure?

Question

How to use SimpleSAMLphp in yii structure?

I have two projects in yii structure and I want to use both projects using SimpleSAMLphp with SSO. The condition, I need, if I enter the first project, I want to access the second project. Thank you in advance.

+6

yii yii-components simplesamlphp

Anil Bhattarai100 Apr 3 '14 at 6:02

source share

3 answers

clapas · Answer 1 · 2014-10-09T16:10:04+0000

First, you download the SAML library by temporarily disabling the Yii autoloader. This is just so you can use SAML classes and methods:

<?php class YiiSAML extends CComponent { private $_yiiSAML = null; static private function pre() { require_once (Yii::app()->params['simpleSAML'] . '/lib/_autoload.php'); // temporary disable Yii autoloader spl_autoload_unregister(array( 'YiiBase', 'autoload' )); } static private function post() { // enable Yii autoloader spl_autoload_register(array( 'YiiBase', 'autoload' )); } public function __construct() { self::pre(); //We select our authentication source: $this->_yiiSAML = new SimpleSAML_Auth_Simple(Yii::app()->params['authSource']); self::post(); } static public function loggedOut($param, $stage) { self::pre(); $state = SimpleSAML_Auth_State::loadState($param, $stage); self::post(); if (isset($state['saml:sp:LogoutStatus'])) $ls = $state['saml:sp:LogoutStatus']; /* Only works for SAML SP */ else return true; return $ls['Code'] === 'urn:oasis:names:tc:SAML:2.0:status:Success' && !isset($ls['SubCode']); } public function __call($method, $args) { $params = (is_array($args) and !empty($args)) ? $args[0] : $args; if (method_exists($this->_yiiSAML, $method)) return $this->_yiiSAML->$method($params); else throw new YiiSAMLException(Yii::t('app', 'The method {method} does not exist in the SAML class', array( '{method}' => $method ))); } } class YiiSAMLException extends CException { }

Then you define a filter that extends the CFilter Yii class:

 <?php Yii::import('lib.YiiSAML'); class SAMLControl extends CFilter { protected function preFilter($filterChain) { $msg = Yii::t('yii', 'You are not authorized to perform this action.'); $saml = new YiiSAML(); if (Yii::app()->user->isGuest) { Yii::app()->user->loginRequired(); return false; } else { $saml_attributes = $saml->getAttributes(); if (!$saml->isAuthenticated() or Yii::app()->user->id != $saml_attributes['User.id'][0]) { Yii::app()->user->logout(); Yii::app()->user->loginRequired(); return false; } return true; } } }

And finally, in the controllers you want to limit, you override the filters() method:

 public function filters() { return array( array( 'lib.SAMLControl' ) , // perform access control for CRUD operations ... ); }

Hope this helps.

Rochak chauhan · Answer 2 · 2014-09-30T04:59:48+0000

This can be done simply using the vendors directory.

Download the PHP library from https://simplesamlphp.org/
Embed it in the Yii Framework as a provider library. ( http://www.yiiframework.com/doc/guide/1.1/en/extension.integration )

Good luck :)

Tihomir Mihaylov · Answer 3 · 2015-05-19T19:50:48+0000

I came across a Yii extension for SimpleSAMLphp on github

https://github.com/asasmoyo/yii-simplesamlphp

You can download simplesamlphp as a provider library, and then specify the startup file in the extension.

In addition to the extension, you can copy all the necessary configurations and metadata to the application and configure the SimpleSAML configuration to download the configurations from your directory so that you can leave the provider package intact for future updates.

How to use SimpleSAMLphp in yii structure?

More articles: