d8/dce/openid__connect_8php_source.html

<?php

/* Copyright (C) 2023   Maximilien Rozniecki  <mrozniecki@easya.solutions>

 * Copyright (C) 2024       Frédéric France         <frederic.france@free.fr>

 *

 * This program is free software; you can redistribute it and/or modify

 * it under the terms of the GNU General Public License as published by

 * the Free Software Foundation; either version 3 of the License, or

 * (at your option) any later version.

 *

 * This program is distributed in the hope that it will be useful,

 * but WITHOUT ANY WARRANTY; without even the implied warranty of

 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

 * GNU General Public License for more details.

 *

 * You should have received a copy of the GNU General Public License

 * along with this program. If not, see <http://www.gnu.org/licenses/>.

 */


// Load Dolibarr environment

require '../main.inc.php';

require_once DOL_DOCUMENT_ROOT.'/core/lib/admin.lib.php';

require_once DOL_DOCUMENT_ROOT.'/core/lib/openid_connect.lib.php';

require_once DOL_DOCUMENT_ROOT.'/core/class/html.form.class.php';

require_once DOL_DOCUMENT_ROOT.'/core/lib/openid_connect.lib.php';


$langs->load("admin");

$langs->load("openidconnect");


if (!$user->admin) accessforbidden();


$action = GETPOST('action', 'alpha');


/*

 *  Actions

 */


$errors = [];

$error = 0;


if ($action == 'set') {

  $client_id = GETPOST('MAIN_AUTHENTICATION_OIDC_LOGIN_CLAIM', 'alpha');

  $res = dolibarr_set_const($db, 'MAIN_AUTHENTICATION_OIDC_LOGIN_CLAIM', $client_id, 'chaine', 0, '', 0);

  if (!$res > 0) {

    $errors[] = $db->lasterror();

    $error++;

  }


  $client_id = GETPOST('MAIN_AUTHENTICATION_OIDC_CLIENT_ID', 'alpha');

  $res = dolibarr_set_const($db, 'MAIN_AUTHENTICATION_OIDC_CLIENT_ID', $client_id, 'chaine', 0, '', 0);

  if (!$res > 0) {

    $errors[] = $db->lasterror();

    $error++;

  }


  $client_secret = GETPOST('MAIN_AUTHENTICATION_OIDC_CLIENT_SECRET', 'alpha');

  $res = dolibarr_set_const($db, 'MAIN_AUTHENTICATION_OIDC_CLIENT_SECRET', $client_secret, 'chaine', 0, '', 0);

  if (!$res > 0) {

    $errors[] = $db->lasterror();

    $error++;

  }


  $scopes = GETPOST('MAIN_AUTHENTICATION_OIDC_SCOPES', 'alpha');

  $res = dolibarr_set_const($db, 'MAIN_AUTHENTICATION_OIDC_SCOPES', $scopes, 'chaine', 0, '', 0);

  if (!$res > 0) {

    $errors[] = $db->lasterror();

    $error++;

  }


  $authorize_url = GETPOST('MAIN_AUTHENTICATION_OIDC_AUTHORIZE_URL', 'alpha');

  $res = dolibarr_set_const($db, 'MAIN_AUTHENTICATION_OIDC_AUTHORIZE_URL', $authorize_url, 'chaine', 0, '', 0);

  if (!$res > 0) {

    $errors[] = $db->lasterror();

    $error++;

  }


  $value = GETPOST('MAIN_AUTHENTICATION_OIDC_TOKEN_URL', 'alpha');

  $res = dolibarr_set_const($db, 'MAIN_AUTHENTICATION_OIDC_TOKEN_URL', $value, 'chaine', 0, '', 0);

  if (!$res > 0) {

    $errors[] = $db->lasterror();

    $error++;

  }


  $value = GETPOST('MAIN_AUTHENTICATION_OIDC_USERINFO_URL', 'alpha');

  $res = dolibarr_set_const($db, 'MAIN_AUTHENTICATION_OIDC_USERINFO_URL', $value, 'chaine', 0, '', 0);

  if (!$res > 0) {

    $errors[] = $db->lasterror();

    $error++;

  }


  $logout_url = GETPOST('MAIN_AUTHENTICATION_OIDC_LOGOUT_URL', 'alpha');

  $res = dolibarr_set_const($db, 'MAIN_AUTHENTICATION_OIDC_LOGOUT_URL', $logout_url, 'chaine', 0, '', 0);

  if (!$res > 0) {

    $errors[] = $db->lasterror();

    $error++;

  }

}


if ($action != '') {

  if (!$error) {

    setEventMessage($langs->trans("SetupSaved"));

    header("Location: " . $_SERVER["PHP_SELF"]);

    exit;

  } else {

    setEventMessages('', $errors, 'errors');

  }

}


/*

 *  View

 */


$form = new Form($db);


llxHeader();


$linkback='<a href="'.DOL_URL_ROOT.'/admin/modules.php">'.$langs->trans("BackToModuleList").'</a>';

print load_fiche_titre($langs->trans("OpenIDconnectSetup"), $linkback, 'title_setup');

print "<br>\n";


$head = openid_connect_prepare_head();


print dol_get_fiche_head($head, 'settings', $langs->trans("Parameters"), 0, 'action');


print '<br>';

print '<form method="post" action="'.$_SERVER["PHP_SELF"].'">';

print '<input type="hidden" name="token" value="'.newToken().'">';

print '<input type="hidden" name="action" value="set">';


$var=true;


print '<table class="noborder" width="100%">';

print '<tr class="liste_titre">';

print '<td>'.$langs->trans("Parameters").'</td>'."\n";

print '<td align="center">&nbsp;</td>'."\n";

print '<td align="right">'.$langs->trans("Value").'</td>'."\n";

print "</tr>\n";


// MAIN_AUTHENTICATION_OIDC_LOGIN_CLAIM

$var = !$var;

print '<tr ' . $bc[$var] . '>' . "\n";

print '<td>'.$langs->trans("MainAuthenticationOidcLoginClaimName").'</td>'."\n";

print '<td>'.$langs->trans("MainAuthenticationOidcLoginClaimDesc").'</td>'."\n";

print '<td align="right">' . "\n";

print '<input name="MAIN_AUTHENTICATION_OIDC_LOGIN_CLAIM" id="MAIN_AUTHENTICATION_OIDC_LOGIN_CLAIM" class="minwidth300" value="'.dol_escape_htmltag((GETPOSTISSET('MAIN_AUTHENTICATION_OIDC_LOGIN_CLAIM') ? GETPOST('MAIN_AUTHENTICATION_OIDC_LOGIN_CLAIM', 'nohtml') : (!empty($conf->global->MAIN_AUTHENTICATION_OIDC_LOGIN_CLAIM) ? getDolGlobalString("MAIN_AUTHENTICATION_OIDC_LOGIN_CLAIM") : ''))).'"></td></tr>';

print '</td></tr>' . "\n";


// MAIN_AUTHENTICATION_OIDC_CLIENT_ID

$var = !$var;

print '<tr ' . $bc[$var] . '>' . "\n";

print '<td>'.$langs->trans("MainAuthenticationOidcClientIdName").'</td>'."\n";

print '<td>'.$langs->trans("MainAuthenticationOidcClientIdDesc").'</td>'."\n";

print '<td align="right">' . "\n";

print '<input name="MAIN_AUTHENTICATION_OIDC_CLIENT_ID" id="MAIN_AUTHENTICATION_OIDC_CLIENT_ID" class="minwidth300" value="'.dol_escape_htmltag((GETPOSTISSET('MAIN_AUTHENTICATION_OIDC_CLIENT_ID') ? GETPOST('MAIN_AUTHENTICATION_OIDC_CLIENT_ID', 'nohtml') : (!empty($conf->global->MAIN_AUTHENTICATION_OIDC_CLIENT_ID) ? getDolGlobalString("MAIN_AUTHENTICATION_OIDC_CLIENT_ID") : ''))).'"></td></tr>';

print '</td></tr>' . "\n";


// MAIN_AUTHENTICATION_OIDC_CLIENT_SECRET

$var = !$var;

print '<tr ' . $bc[$var] . '>' . "\n";

print '<td>'.$langs->trans("MainAuthenticationOidcClientSecretName").'</td>'."\n";

print '<td>'.$langs->trans("MainAuthenticationOidcClientSecretDesc").'</td>'."\n";

print '<td align="right">' . "\n";

print '<input type="password" name="MAIN_AUTHENTICATION_OIDC_CLIENT_SECRET" id="MAIN_AUTHENTICATION_OIDC_CLIENT_SECRET" class="minwidth300" value="'.dol_escape_htmltag((GETPOSTISSET('MAIN_AUTHENTICATION_OIDC_CLIENT_SECRET') ? GETPOST('MAIN_AUTHENTICATION_OIDC_CLIENT_SECRET', 'nohtml') : (!empty($conf->global->MAIN_AUTHENTICATION_OIDC_CLIENT_SECRET) ? getDolGlobalString("MAIN_AUTHENTICATION_OIDC_CLIENT_SECRET") : ''))).'"></td></tr>';

print '</td></tr>' . "\n";


// MAIN_AUTHENTICATION_OIDC_SCOPES

$var = !$var;

print '<tr ' . $bc[$var] . '>' . "\n";

print '<td>'.$langs->trans("MainAuthenticationOidcScopesName").'</td>'."\n";

print '<td>'.$langs->trans("MainAuthenticationOidcScopesDesc").'</td>'."\n";

print '<td align="right">' . "\n";

print '<input name="MAIN_AUTHENTICATION_OIDC_SCOPES" id="MAIN_AUTHENTICATION_OIDC_SCOPES" class="minwidth300" value="'.dol_escape_htmltag((GETPOSTISSET('MAIN_AUTHENTICATION_OIDC_SCOPES') ? GETPOST('MAIN_AUTHENTICATION_OIDC_SCOPES', 'nohtml') : (!empty($conf->global->MAIN_AUTHENTICATION_OIDC_SCOPES) ? getDolGlobalString("MAIN_AUTHENTICATION_OIDC_SCOPES") : ''))).'"></td></tr>';

print '</td></tr>' . "\n";


// MAIN_AUTHENTICATION_OIDC_AUTHORIZE_URL

$var = !$var;

print '<tr ' . $bc[$var] . '>' . "\n";

print '<td>'.$langs->trans("MainAuthenticationOidcAuthorizeUrlName").'</td>'."\n";

print '<td>'.$langs->trans("MainAuthenticationOidcAuthorizeUrlDesc").'</td>'."\n";

print '<td align="right">' . "\n";

print '<input name="MAIN_AUTHENTICATION_OIDC_AUTHORIZE_URL" id="MAIN_AUTHENTICATION_OIDC_AUTHORIZE_URL" class="minwidth300" value="'.dol_escape_htmltag((GETPOSTISSET('MAIN_AUTHENTICATION_OIDC_AUTHORIZE_URL') ? GETPOST('MAIN_AUTHENTICATION_OIDC_AUTHORIZE_URL', 'nohtml') : (!empty($conf->global->MAIN_AUTHENTICATION_OIDC_AUTHORIZE_URL) ? getDolGlobalString("MAIN_AUTHENTICATION_OIDC_AUTHORIZE_URL") : ''))).'"></td></tr>';

print '</td></tr>' . "\n";


// MAIN_AUTHENTICATION_OIDC_TOKEN_URL

$var = !$var;

print '<tr ' . $bc[$var] . '>' . "\n";

print '<td>'.$langs->trans("MainAuthenticationOidcTokenUrlName").'</td>'."\n";

print '<td>'.$langs->trans("MainAuthenticationOidcTokenUrlDesc").'</td>'."\n";

print '<td align="right">' . "\n";

print '<input name="MAIN_AUTHENTICATION_OIDC_TOKEN_URL" id="MAIN_AUTHENTICATION_OIDC_TOKEN_URL" class="minwidth300" value="'.dol_escape_htmltag((GETPOSTISSET('MAIN_AUTHENTICATION_OIDC_TOKEN_URL') ? GETPOST('MAIN_AUTHENTICATION_OIDC_TOKEN_URL', 'nohtml') : (!empty($conf->global->MAIN_AUTHENTICATION_OIDC_TOKEN_URL) ? getDolGlobalString("MAIN_AUTHENTICATION_OIDC_TOKEN_URL") : ''))).'"></td></tr>';

print '</td></tr>' . "\n";


// MAIN_AUTHENTICATION_OIDC_USERINFO_URL

$var = !$var;

print '<tr ' . $bc[$var] . '>' . "\n";

print '<td>'.$langs->trans("MainAuthenticationOidcUserinfoUrlName").'</td>'."\n";

print '<td>'.$langs->trans("MainAuthenticationOidcUserinfoUrlDesc").'</td>'."\n";

print '<td align="right">' . "\n";

print '<input name="MAIN_AUTHENTICATION_OIDC_USERINFO_URL" id="MAIN_AUTHENTICATION_OIDC_USERINFO_URL" class="minwidth300" value="'.dol_escape_htmltag((GETPOSTISSET('MAIN_AUTHENTICATION_OIDC_USERINFO_URL') ? GETPOST('MAIN_AUTHENTICATION_OIDC_USERINFO_URL', 'nohtml') : (!empty($conf->global->MAIN_AUTHENTICATION_OIDC_USERINFO_URL) ? getDolGlobalString("MAIN_AUTHENTICATION_OIDC_USERINFO_URL") : ''))).'"></td></tr>';

print '</td></tr>' . "\n";


// MAIN_AUTHENTICATION_OIDC_LOGOUT_URL

$var = !$var;

print '<tr ' . $bc[$var] . '>' . "\n";

print '<td>'.$langs->trans("MainAuthenticationOidcLogoutUrlName").'</td>'."\n";

print '<td>'.$langs->trans("MainAuthenticationOidcLogoutUrlDesc").'</td>'."\n";

print '<td align="right">' . "\n";

print '<input name="MAIN_AUTHENTICATION_OIDC_LOGOUT_URL" id="MAIN_AUTHENTICATION_OIDC_LOGOUT_URL" class="minwidth300" value="'.dol_escape_htmltag((GETPOSTISSET('MAIN_AUTHENTICATION_OIDC_LOGOUT_URL') ? GETPOST('MAIN_AUTHENTICATION_OIDC_LOGOUT_URL', 'nohtml') : (!empty($conf->global->MAIN_AUTHENTICATION_OIDC_LOGOUT_URL) ? getDolGlobalString("MAIN_AUTHENTICATION_OIDC_LOGOUT_URL") : ''))).'"></td></tr>';

print '</td></tr>' . "\n";


// REDIRECT_URL

$var = !$var;

print '<tr ' . $bc[$var] . '>' . "\n";

print '<td>'.$langs->trans("MainAuthenticationOidcRedirectUrlName").'</td>'."\n";

print '<td>'.$langs->trans("MainAuthenticationOidcRedirectUrlDesc").'</td>'."\n";

print '<td align="right">' . "\n";

print '<input class="minwidth300" value="'.dol_escape_htmltag(openid_connect_get_redirect_url()).'" disabled></td></tr>';

print '</td></tr>' . "\n";


// LOGOUT_URL

$var = !$var;

print '<tr ' . $bc[$var] . '>' . "\n";

print '<td>'.$langs->trans("MainAuthenticationOidcLogoutRedirectUrlName").'</td>'."\n";

print '<td>'.$langs->trans("MainAuthenticationOidcLogoutRedirectUrlDesc").'</td>'."\n";

print '<td align="right">' . "\n";

print '<input class="minwidth300" value="'.dol_escape_htmltag(getDolGlobalString('MAIN_LOGOUT_GOTO_URL', DOL_MAIN_URL_ROOT . "/index.php")).'" disabled></td></tr>';

print '</td></tr>' . "\n";


print '</table>'."\n";


print '<br>';

print '<div align="center">';

print '<input type="submit" class="button" value="'.$langs->trans("Save").'">';

print '</div>';


print '</form>';


print '<br>';


print dol_get_fiche_end();


llxFooter();

dolibarr_set_const
dolibarr_set_const($db, $name, $value, $type='chaine', $visible=0, $note='', $entity=1)
Insert a parameter (key,value) into database (delete old key then insert it again).
Definition admin.lib.php:671

llxHeader
if(!defined('NOREQUIRESOC')) if(!defined( 'NOREQUIRETRAN')) if(!defined('NOTOKENRENEWAL')) if(!defined( 'NOREQUIREMENU')) if(!defined('NOREQUIREHTML')) if(!defined( 'NOREQUIREAJAX')) llxHeader($head='', $title='', $help_url='', $target='', $disablejs=0, $disablehead=0, $arrayofjs='', $arrayofcss='', $morequerystring='', $morecssonbody='', $replacemainareaby='', $disablenofollow=0, $disablenoindex=0)
Empty header.
Definition wrapper.php:71

Form
Class to manage generation of HTML components Only common components must be here.
Definition html.form.class.php:57

llxFooter
llxFooter()
Footer empty.
Definition document.php:107

load_fiche_titre
load_fiche_titre($title, $morehtmlright='', $picto='generic', $pictoisfullpath=0, $id='', $morecssontable='', $morehtmlcenter='')
Load a title with picto.
Definition functions.lib.php:6367

setEventMessages
setEventMessages($mesg, $mesgs, $style='mesgs', $messagekey='', $noduplicate=0, $attop=0)
Set event messages in dol_events session object.
Definition functions.lib.php:9981

dol_get_fiche_head
dol_get_fiche_head($links=array(), $active='', $title='', $notab=0, $picto='', $pictoisfullpath=0, $morehtmlright='', $morecss='', $limittoshow=0, $moretabssuffix='', $dragdropfile=0)
Show tabs of a record.
Definition functions.lib.php:2594

dol_get_fiche_end
dol_get_fiche_end($notab=0)
Return tab footer of a card.
Definition functions.lib.php:2805

setEventMessage
setEventMessage($mesgs, $style='mesgs', $noduplicate=0, $attop=0)
Set event message in dol_events session object.
Definition functions.lib.php:9934

GETPOST
GETPOST($paramname, $check='alphanohtml', $method=0, $filter=null, $options=null, $noreplace=0)
Return value of a param into GET or POST supervariable.
Definition functions.lib.php:792

getDolGlobalString
getDolGlobalString($key, $default='')
Return a Dolibarr global constant string value.
Definition functions.lib.php:217

$conf
global $conf
The following vars must be defined: $type2label $form $conf, $lang, The following vars may also be de...
Definition member.php:79

accessforbidden
accessforbidden($message='', $printheader=1, $printfooter=1, $showonlymessage=0, $params=null)
Show a message to say access is forbidden and stop program.
Definition security.lib.php:1233