BUG 000 Add hook for the SSO plugin

gulliver/system/class.rbac.php

@@ -64,6 +64,8 @@ class RBAC
   var $aRbacPlugins = array();
   var $sSystem = '';
 
+  var $singleSignOn = false;
+
   static private $instance = NULL;
 
   private function __construct() {

workflow/engine/methods/login/authentication.php

@@ -23,15 +23,9 @@
  *
  */
 
-
-  if (!isset($_POST['form']) ) {
-    G::SendTemporalMessage ('ID_USER_HAVENT_RIGHTS_SYSTEM', "error");
-    G::header  ("location: login.html");die;
-  }
-
-
 try {
 
+  if (!$RBAC->singleSignOn) {
     $frm = $_POST['form'];
     $usr = '';
     $pwd = '';
@@ -125,9 +119,16 @@ try {
             $loginInfo = new loginInfo ($usr, $pwd, $lSession  );
             $oPluginRegistry->executeTriggers ( PM_LOGIN , $loginInfo );
     }
-
     $_SESSION['USER_LOGGED']  = $uid;
     $_SESSION['USR_USERNAME'] = $usr;
+  }
+  else {
+    $uid = $RBAC->userObj->fields['USR_UID'];
+    $usr = $RBAC->userObj->fields['USR_USERNAME'];
+    $_SESSION['USER_LOGGED']  = $uid;
+    $_SESSION['USR_USERNAME'] = $usr;
+  }
+
   $aUser = $RBAC->userObj->load($_SESSION['USER_LOGGED']);
   $RBAC->loadUserRolePermission($RBAC->sSystem, $_SESSION['USER_LOGGED']);
   //$rol = $RBAC->rolesObj->load($RBAC->aUserInfo['PROCESSMAKER']['ROLE']['ROL_UID']);
@@ -204,6 +205,7 @@ try {
   /* Check password using policy - Start */
   require_once 'classes/model/UsersProperties.php';
   $oUserProperty = new UsersProperties();
+  if (!$RBAC->singleSignOn) {
     $aUserProperty = $oUserProperty->loadOrCreateIfNotExists($_SESSION['USER_LOGGED'], array('USR_PASSWORD_HISTORY' => serialize(array(md5($currentPwd)))));
     $aErrors       = $oUserProperty->validatePassword($_POST['form']['USR_PASSWORD'], $aUserProperty['USR_LAST_UPDATE_DATE'], $aUserProperty['USR_LOGGED_NEXT_TIME']);
 
@@ -247,6 +249,11 @@ try {
     else {
       $sLocation = $oUserProperty->redirectTo($_SESSION['USER_LOGGED'], $lang);
     }
+  }
+  else {
+    G::header('Location: ' . $oUserProperty->redirectTo($_SESSION['USER_LOGGED'], $lang));
+    die();
+  }
 
   $oHeadPublisher =& headPublisher::getSingleton();
   $oHeadPublisher->extJsInit = true;

workflow/engine/methods/login/login.php

@@ -82,6 +82,18 @@
   session_start ();
   session_regenerate_id ();
 
+  // Execute SSO trigger - Start
+  $pluginRegistry =& PMPluginRegistry::getSingleton();
+  if (defined('PM_SINGLE_SIGN_ON')) {
+    if ($pluginRegistry->existsTrigger(PM_SINGLE_SIGN_ON)) {
+      if ($pluginRegistry->executeTriggers(PM_SINGLE_SIGN_ON, null)) {
+        require_once 'authentication.php';
+        die();
+      }
+    }
+  }
+  // Execute SSO trigger - End
+
   if (strlen ( $msg ) > 0) {
     $_SESSION ['G_MESSAGE'] = $msg;
   }