SilverStripe\SAML\Control\SAMLController
Class SAMLController
This controller handles serving metadata requests for the identity provider (IdP), as well as handling the creation
of new users and logging them into SilverStripe after being authenticated at the IdP.
Synopsis
class SAMLController
extends Controller
{
- // members
- private static array $allowed_actions = ;
- // methods
- public void index()
- public void acs()
- public void metadata()
- protected HTTPResponse getRedirect()
- protected bool checkForReplayAttack()
- public LoggerInterface getLogger()
- public SAMLLoginForm getForm()
Hierarchy
Extends
- SilverStripe\Control\Controller
Members
private
- $allowed_actions — array
Methods
protected
- checkForReplayAttack() — If processing reaches here, then the user is authenticated but potentially not valid. We first need to confirm that they are not an attacker performing a SAML replay attack (capturing the raw traffic from a compromised device and then re-submitting the same SAML response).
- getRedirect()
public
- acs() — Assertion Consumer Service
- getForm() — Gets the login form
- getLogger() — Get a logger
- index()
- metadata() — Generate this SP's metadata. This is needed for intialising the SP-IdP relationship.