Skip to content

Commit

Permalink
Merge branch 'MDL-62753' of https://github.com/OdyX/moodle
Browse files Browse the repository at this point in the history
  • Loading branch information
David Monllao committed Jul 9, 2018
2 parents 6ce5055 + 90ae1b9 commit 1ef11d5
Showing 1 changed file with 25 additions and 28 deletions.
53 changes: 25 additions & 28 deletions auth/shibboleth/logout.php
View file
Expand Up @@ -120,11 +120,17 @@
}
/******************************************************************************/

function LogoutNotification($SessionID){
/**
* Handles SOAP Back-channel logout notification
*
* @param string $spsessionid SP-provided Shibboleth Session ID
* @return SoapFault or void if everything was fine
*/
function LogoutNotification($spsessionid) {

global $CFG, $SESSION, $DB;

// Delete session of user using $SessionID
// Delete session of user using $spsessionid.
if(empty($CFG->dbsessions)) {

// File session
Expand All @@ -140,13 +146,13 @@ function LogoutNotification($SessionID){
// Read session file data
$data = file($dir.'/'.$file);
if (isset($data[0])){
$user_session = unserializesession($data[0]);
$usersession = unserializesession($data[0]);

// Check if we have found session that shall be deleted
if (isset($user_session['SESSION']) && isset($user_session['SESSION']->shibboleth_session_id)){
if (isset($usersession['SESSION']) && isset($usersession['SESSION']->shibboleth_session_id)) {

// If there is a match, delete file
if ($user_session['SESSION']->shibboleth_session_id == $SessionID){
if ($usersession['SESSION']->shibboleth_session_id == $spsessionid) {
// Delete session file
if (!unlink($dir.'/'.$file)){
return new SoapFault('LogoutError', 'Could not delete Moodle session file.');
Expand All @@ -160,34 +166,25 @@ function LogoutNotification($SessionID){
}
}
} else {
// DB Session
//TODO: this needs to be rewritten to use new session stuff
if (!empty($CFG->sessiontimeout)) {
$ADODB_SESS_LIFE = $CFG->sessiontimeout;
}

if ($user_session_data = $DB->get_records_sql('SELECT sesskey, sessdata FROM {sessions2} WHERE expiry > NOW()')) {
foreach ($user_session_data as $session_data) {

// Get user session
$user_session = adodb_unserialize( urldecode($session_data->sessdata) );

if (isset($user_session['SESSION']) && isset($user_session['SESSION']->shibboleth_session_id)){

// If there is a match, delete file
if ($user_session['SESSION']->shibboleth_session_id == $SessionID){
// Delete this session entry
if (ADODB_Session::destroy($session_data->sesskey) !== true){
return new SoapFault('LogoutError', 'Could not delete Moodle session entry in database.');
}
// DB Sessions.
$sessions = $DB->get_records_sql(
'SELECT userid, sessdata FROM {sessions} WHERE timemodified > ?',
array(time() - $CFG->sessiontimeout)
);
foreach ($sessions as $session) {
// Get user session from DB.
if (session_decode(base64_decode($session->sessdata))) {
if (isset($_SESSION['SESSION']) && isset($_SESSION['SESSION']->shibboleth_session_id)) {
// If there is a match, kill the session.
if ($_SESSION['SESSION']->shibboleth_session_id == trim($spsessionid)) {
// Delete this user's sessions.
\core\session\manager::kill_user_sessions($session->userid);
}
}
}
}
}

// If now SoapFault was thrown the function will return OK as the SP assumes

// If no SoapFault was thrown, the function will return OK as the SP assumes.
}

/*****************************************************************************/
Expand Down

0 comments on commit 1ef11d5

Please sign in to comment.