Merge pull request #63 from silinternational/develop

display the sp name when known

Author: longrunningprocess

Makefile

@@ -9,6 +9,7 @@ errors:
 	docker-compose exec idp4 cat /var/log/apache2/error.log
 	docker-compose exec hub2 cat /var/log/apache2/error.log
 	docker-compose exec idp3 cat /var/log/apache2/error.log
+	docker-compose exec sp cat /var/log/apache2/error.log
 
 clean:
 	docker-compose kill

README.md

@@ -0,0 +1,117 @@
+<?php
+return [
+    'http://ssp-idp1.local:8085' => [
+        'enabled' => true,
+        'metadata-set' => 'saml20-idp-remote',
+        'entityid' => 'http://ssp-idp1.local:8085',
+        'name' => [
+            'en' => 'IdP 1'
+        ],
+        'SingleSignOnService'  => 'http://ssp-idp1.local:8085/saml2/idp/SSOService.php',
+        'SingleLogoutService'  => 'http://ssp-idp1.local:8085/saml2/idp/SingleLogoutService.php',
+        'certData' => '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',
+    ],
+    'http://ssp-idp2.local:8086'=> [
+        'enabled' => true,
+        'metadata-set' => 'saml20-idp-remote',
+        'entityid' => 'http://ssp-idp2.local:8086',
+        'name' => [
+            'en' => 'IdP 2'
+        ],
+        'SingleSignOnService'  => 'http://ssp-idp2.local:8086/saml2/idp/SSOService.php',
+        'SingleLogoutService'  => 'http://ssp-idp2.local:8086/saml2/idp/SingleLogoutService.php',
+        'certData' => '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',
+    ],
+    'http://ssp-idp4.local:8088'=> [
+        'enabled' => true,
+        'metadata-set' => 'saml20-idp-remote',
+        'entityid' => 'http://ssp-idp4.local:8088',
+        'name' => [
+            'en' => 'IdP 4'
+        ],
+        'SingleSignOnService'  => 'http://ssp-idp4.local:8088/saml2/idp/SSOService.php',
+        'SingleLogoutService'  => 'http://ssp-idp4.local:8088/saml2/idp/SingleLogoutService.php',
+        'certData' => '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',
+    ],
+    'jaars-idp'=> [
+        'enabled' => true,
+        'metadata-set' => 'saml20-idp-remote',
+        'entityid' => 'jaars-idp',
+        'name' => [
+            'en' => 'jaars'
+        ],
+        'logoURL' => 'https://static.gtis.guru/idp-logo/jaars-logo.png'
+    ],
+    'sil-idp'=> [
+        'enabled' => true,
+        'metadata-set' => 'saml20-idp-remote',
+        'entityid' => 'sil-idp',
+        'name' => [
+            'en' => 'sil'
+        ],
+        'logoURL' => 'https://static.gtis.guru/idp-logo/sil-logo.png'
+    ],
+    'usa-idp'=> [
+        'enabled' => true,
+        'metadata-set' => 'saml20-idp-remote',
+        'entityid' => 'usa-idp',
+        'name' => [
+            'en' => 'usa'
+        ],
+        'logoURL' => 'https://static.gtis.guru/idp-logo/usa-logo.png'
+    ],
+    'wga-idp'=> [
+        'enabled' => true,
+        'metadata-set' => 'saml20-idp-remote',
+        'entityid' => 'wga-idp',
+        'name' => [
+            'en' => 'wga'
+        ],
+        'logoURL' => 'https://static.gtis.guru/idp-logo/wga-logo.png'
+    ],
+    'collaborate-idp'=> [
+        'enabled' => true,
+        'metadata-set' => 'saml20-idp-remote',
+        'entityid' => 'collaborate-idp',
+        'name' => [
+            'en' => 'collaborate'
+        ],
+        'logoURL' => 'https://static.gtis.guru/idp-logo/collaborate-logo.png'
+    ],
+    'mock-jaars-idp'=> [
+        'enabled' => false,
+        'metadata-set' => 'saml20-idp-remote',
+        'entityid' => 'mock-jaars-idp',
+        'name' => [
+            'en' => 'jaars'
+        ],
+        'logoURL' => 'https://static.gtis.guru/idp-logo/jaars-logo.png'
+    ],
+    'mock-sil-idp'=> [
+        'enabled' => false,
+        'metadata-set' => 'saml20-idp-remote',
+        'entityid' => 'mock-sil-idp',
+        'name' => [
+            'en' => 'sil'
+        ],
+        'logoURL' => 'https://static.gtis.guru/idp-logo/sil-logo.png'
+    ],
+    'mock-usa-idp'=> [
+        'enabled' => false,
+        'metadata-set' => 'saml20-idp-remote',
+        'entityid' => 'mock-usa-idp',
+        'name' => [
+            'en' => 'usa'
+        ],
+        'logoURL' => 'https://static.gtis.guru/idp-logo/usa-logo.png'
+    ],
+    'mock-wga-idp'=> [
+        'enabled' => false,
+        'metadata-set' => 'saml20-idp-remote',
+        'entityid' => 'mock-wga-idp',
+        'name' => [
+            'en' => 'wga'
+        ],
+        'logoURL' => 'https://static.gtis.guru/idp-logo/wga-logo.png'
+    ],
+];

development/hub/idp-remote.php

@@ -0,0 +1,8 @@
+<?php
+return [
+	'ssp-sp.local' => [
+		'AssertionConsumerService' => 'http://ssp-sp.local:8082/module.php/saml/sp/saml2-acs.php/hub-discovery',
+		'SingleLogoutService' => 'http://ssp-sp.local:8082/module.php/saml/sp/saml2-logout.php/hub-discovery',
+		'name' => 'Local SP'
+	] 
+];

development/hub/saml20-idp-remote.php

@@ -0,0 +1,11 @@
+<?php
+$config = [
+    'admin' => [
+        'core:AdminPassword',
+    ],
+    'hub-discovery' => [
+        'saml:SP',
+        'entityID' => 'ssp-sp.local',
+        'idp' => 'ssp-hub.local',
+    ],
+];

development/hub/sp-remote.php

@@ -0,0 +1,8 @@
+<?php
+$metadata['ssp-hub.local'] = [
+    'enabled' => true,
+    'metadata-set' => 'saml20-idp-remote',
+    'entityid' => 'ssp-hub.local',
+    'SingleSignOnService'  => 'http://ssp-hub.local/saml2/idp/SSOService.php',
+    'SingleLogoutService'  => 'http://ssp-hub.local/saml2/idp/SingleLogoutService.php'
+];

development/sp/authsources.php

@@ -1,4 +1,3 @@
-
 {
 	"title": {
 		"en": "Choose an identity account",
@@ -12,6 +11,12 @@
 		"fr": "Choisissez un compte d'identité",
 		"ko": "ID 계정 선택"
 	},
+	"header-for-sp": {
+		"en": "Choose an identity account to continue to {spName}",
+		"es": "Elija una cuenta de identidad para continuar en {spName}",
+		"fr": "Choisissez un compte d'identité pour continuer vers {spName}",
+		"ko": "{spName}을 계속 진행하려면 신원 계정을 선택하십시오."
+	},
 	"enabled": {
 		"en": "Login with your {idpName} identity account",
 		"es": "Inicie sesión con su cuenta de identidad {idpName}",

development/sp/saml20-idp-remote.php

@@ -5,8 +5,9 @@ services:
     image: silintl/ssp-base:develop
     volumes:
       - ./development/hub/authsources.php:/data/vendor/simplesamlphp/simplesamlphp/config/authsources.php
-      - ./development/hub/saml20-idp-remote.php:/data/vendor/simplesamlphp/simplesamlphp/metadata/saml20-idp-remote.php
+      - ./development/hub/idp-remote.php:/data/vendor/simplesamlphp/simplesamlphp/metadata/idp-remote.php
       - ./development/hub/saml20-idp-hosted.php:/data/vendor/simplesamlphp/simplesamlphp/metadata/saml20-idp-hosted.php
+      - ./development/hub/sp-remote.php:/data/vendor/simplesamlphp/simplesamlphp/metadata/sp-remote.php
       - ./www/default-favicon.ico:/data/vendor/simplesamlphp/simplesamlphp/www/favicon.ico
       - ./www/default-favicon.png:/data/vendor/simplesamlphp/simplesamlphp/www/favicon.png
       - ./www/default-logo.png:/data/vendor/simplesamlphp/simplesamlphp/www/logo.png
@@ -238,3 +239,23 @@ services:
       SECRET_SALT: "xbcCMIHHzsgE8yYC6OIBjsp+ruZYghHn1k5Bv/IGbrg="
       IDP_NAME: "idp-3"
       IDP_DISPLAY_NAME: "Idp 3"
+
+  sp:
+    image: silintl/ssp-base:develop
+    volumes:
+      - ./development/sp/authsources.php:/data/vendor/simplesamlphp/simplesamlphp/config/authsources.php
+      - ./development/sp/saml20-idp-remote.php:/data/vendor/simplesamlphp/simplesamlphp/metadata/saml20-idp-remote.php
+    ports:
+      - "8082:80"
+    env_file:
+      - local.env
+    environment:
+      ADMIN_PASS: "a"
+      SECURE_COOKIE: "false"
+      SHOW_SAML_ERRORS: "true"
+      ADMIN_PROTECT_INDEX_PAGE: "false"
+      THEME_USE: "material:material"
+      ADMIN_EMAIL: "admin1@example.org"
+      SECRET_SALT: "xbcCMIHHzsgE8yYC6OIBjsp+ruZYghHn1k5Bv/IGbrg="
+      IDP_NAME: "sp"
+      IDP_DISPLAY_NAME: "sp"

dictionaries/selectidp.definition.json

@@ -29,7 +29,14 @@ function clickedAnyway(idpName) {
     <header class="mdl-layout__header">
         <div class="mdl-layout__header-row">
             <span class="mdl-layout-title">
-                <?= $this->t('{material:selectidp:header}') ?>
+            <?php
+            $spName = $this->data['spName'] ?? null;
+            if (empty($spName)) {
+                echo $this->t('{material:selectidp:header}');
+            } else {
+                echo htmlentities($this->t('{material:selectidp:header-for-sp}', ['{spName}' => $spName]));
+            }
+            ?>
             </span>
         </div>
     </header>