3 namespace BookStack\Http\Controllers\Auth;
5 use BookStack\Auth\Access\Saml2Service;
6 use BookStack\Http\Controllers\Controller;
8 class Saml2Controller extends Controller
10 protected $samlService;
13 * Saml2Controller constructor.
15 public function __construct(Saml2Service $samlService)
17 $this->samlService = $samlService;
18 $this->middleware('guard:saml2');
22 * Start the login flow via SAML2.
24 public function login()
26 $loginDetails = $this->samlService->login();
27 session()->flash('saml2_request_id', $loginDetails['id']);
29 return redirect($loginDetails['url']);
33 * Start the logout flow via SAML2.
35 public function logout()
37 $logoutDetails = $this->samlService->logout();
39 if ($logoutDetails['id']) {
40 session()->flash('saml2_logout_request_id', $logoutDetails['id']);
43 return redirect($logoutDetails['url']);
47 * Get the metadata for this SAML2 service provider.
49 public function metadata()
51 $metaData = $this->samlService->metadata();
53 return response()->make($metaData, 200, [
54 'Content-Type' => 'text/xml',
59 * Single logout service.
60 * Handle logout requests and responses.
64 $requestId = session()->pull('saml2_logout_request_id', null);
65 $redirect = $this->samlService->processSlsResponse($requestId) ?? '/';
67 return redirect($redirect);
71 * Assertion Consumer Service.
72 * Processes the SAML response from the IDP.
76 $requestId = session()->pull('saml2_request_id', null);
78 $user = $this->samlService->processAcsResponse($requestId);
80 $this->showErrorNotification(trans('errors.saml_fail_authed', ['system' => config('saml2.name')]));
82 return redirect('/login');
85 return redirect()->intended();
projects / bookstack / blob