123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105 |
- <?php
- exit;
- $my_chamilo_server = filter_xss($_SERVER['HTTP_HOST']);
- $account = [];
- if (isset($_SESSION['my_server_user_session'])) {
-
- }
- if (isset($_POST['user']) && isset($_POST['password'])) {
-
- $validate = validate_user($_POST['user'], $_POST['password']);
- if ($validate) {
-
- $account['username'] = 'jbrion525';
- $account['password'] = sha1(sha1('jbrion525'));
- $master_auth_uri = $my_chamilo_server.'/?q=user';
-
- $sso = [
- 'username' => $account['username'],
- 'secret' => $account['password'],
- 'master_domain' => $my_chamilo_server,
- 'master_auth_uri' => $master_auth_uri,
- 'lifetime' => time() + 3600,
- 'target' => filter_xss($_GET['sso_target']),
- ];
- $cookie = base64_encode(serialize($sso));
- $url = chamilo_sso_protocol().$master_auth_uri;
- $params = 'sso_referer='.urlencode($url).'&sso_cookie='.urlencode($cookie);
- $final_url = filter_xss($_GET['sso_referer']).'?'.$params;
-
- $_SESSION['my_server_user_session'] = $account;
-
-
- header('Location: '.$final_url);
- exit;
- } else {
- echo '<h2>Wrong parameters</h2>';
- }
- }
- if (isset($_POST['logout'])) {
-
- }
- function validate_user($user, $pass)
- {
- return true;
- }
- function filter_xss($val)
- {
-
- return $val;
- }
- function chamilo_sso_protocol()
- {
-
- return 'http://';
- }
- ?>
- <html>
- <form method="post">
- User <input name="user"/>
- Pass <input name="password" />
- <input type="submit" value="Login">
- </form>
- </html>
|