migrate referent + profile edition

[platal.git] / modules / auth.php

<?php
/***************************************************************************
 *  Copyright (C) 2003-2006 Polytechnique.org                              *
 *  http://opensource.polytechnique.org/                                   *
 *                                                                         *
 *  This program is free software; you can redistribute it and/or modify   *
 *  it under the terms of the GNU General Public License as published by   *
 *  the Free Software Foundation; either version 2 of the License, or      *
 *  (at your option) any later version.                                    *
 *                                                                         *
 *  This program is distributed in the hope that it will be useful,        *
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of         *
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          *
 *  GNU General Public License for more details.                           *
 *                                                                         *
 *  You should have received a copy of the GNU General Public License      *
 *  along with this program; if not, write to the Free Software            *
 *  Foundation, Inc.,                                                      *
 *  59 Temple Place, Suite 330, Boston, MA  02111-1307  USA                *
 ***************************************************************************/

class AuthModule extends PLModule
{
    function handlers()
    {
        return array(
            'auth-redirect.php' => $this->make_hook('redirect', AUTH_COOKIE),
            'auth-groupex.php'  => $this->make_hook('groupex',  AUTH_COOKIE),
        );
    }

    function handler_redirect(&$page)
    {
        redirect(Env::get('dest', '/'));
    }

    function handler_groupex(&$page)
    {
        global $globals;

        require_once dirname(__FILE__).'/auth/methods.inc.php';

        $gpex_pass = $_GET["pass"];
        $gpex_url  = urldecode($_GET["url"]);
        if (strpos($gpex_url, '?') === false) {
            $gpex_url .= "?PHPSESSID=" . $_GET["session"];
        } else {
            $gpex_url .= "&PHPSESSID=" . $_GET["session"];
        }

        /* a-t-on besoin d'ajouter le http:// ? */
        if (!preg_match("/^(http|https):\/\/.*/",$gpex_url))
            $gpex_url = "http://$gpex_url";
        $gpex_challenge = $_GET["challenge"];

        // mise à jour de l'heure et de la machine de dernier login sauf quand on est en suid
        if (!isset($_SESSION['suid'])) {
            $logger = (isset($_SESSION['log']) && $_SESSION['log']->uid == $uid)
                      ? $_SESSION['log']
                      : new DiogenesCoreLogger($uid);
            $logger->log('connexion_auth_ext', $_SERVER['PHP_SELF']);
        }

        /* on parcourt les entrees de groupes_auth */
        $res = $globals->xdb->iterRow('select privkey,name,datafields from groupesx_auth');

        while (list($privkey,$name,$datafields) = $res->next()) {
            if (md5($gpex_challenge.$privkey) == $gpex_pass) {
                $returl = $gpex_url.gpex_make_params($gpex_challenge,$privkey,$datafields);
                redirect($returl);
            }
        }

        /* si on n'a pas trouvé, on renvoit sur x.org */
        redirect('https://www.polytechnique.org/');
    }
}

?>