3 namespace BookStack\Http\Controllers\Auth;
5 use BookStack\Auth\Access\Saml2Service;
6 use BookStack\Http\Controllers\Controller;
8 class Saml2Controller extends Controller
11 protected $samlService;
14 * Saml2Controller constructor.
16 public function __construct(Saml2Service $samlService)
18 $this->samlService = $samlService;
19 $this->middleware('guard:saml2');
23 * Start the login flow via SAML2.
25 public function login()
27 $loginDetails = $this->samlService->login();
28 session()->flash('saml2_request_id', $loginDetails['id']);
30 return redirect($loginDetails['url']);
34 * Start the logout flow via SAML2.
36 public function logout()
38 $logoutDetails = $this->samlService->logout();
40 if ($logoutDetails['id']) {
41 session()->flash('saml2_logout_request_id', $logoutDetails['id']);
44 return redirect($logoutDetails['url']);
48 * Get the metadata for this SAML2 service provider.
50 public function metadata()
52 $metaData = $this->samlService->metadata();
53 return response()->make($metaData, 200, [
54 'Content-Type' => 'text/xml'
59 * Single logout service.
60 * Handle logout requests and responses.
64 $requestId = session()->pull('saml2_logout_request_id', null);
65 $redirect = $this->samlService->processSlsResponse($requestId) ?? '/';
66 return redirect($redirect);
70 * Assertion Consumer Service.
71 * Processes the SAML response from the IDP.
75 $requestId = session()->pull('saml2_request_id', null);
77 $user = $this->samlService->processAcsResponse($requestId);
79 $this->showErrorNotification(trans('errors.saml_fail_authed', ['system' => config('saml2.name')]));
80 return redirect('/login');
83 return redirect()->intended();
projects / bookstack / blob