-
Notifications
You must be signed in to change notification settings - Fork 58
/
sso_start.php
57 lines (49 loc) · 2.23 KB
/
sso_start.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
<?php
// This file is part of Moodle - http://moodle.org/
//
// Moodle is free software: you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// Moodle is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU General Public License for more details.
//
// You should have received a copy of the GNU General Public License
// along with Moodle. If not, see <http://www.gnu.org/licenses/>.
/**
* This page contains the SSO login page.
*
* @package local_o365
* @author Lai Wei <lai.wei@enovation.ie>
* @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
* @copyright (C) 2018 onwards Microsoft, Inc. (http://microsoft.com/)
*/
// phpcs:ignore moodle.Files.RequireLogin.Missing -- This file is called from Microsoft Teams tab.
require_once(__DIR__ . '/../../config.php');
echo "<script src=\"https://statics.teams.microsoft.com/sdk/v1.9.0/js/MicrosoftTeams.min.js\" crossorigin=\"anonymous\"></script>";
echo "<script src=\"https://secure.aadcdn.microsoftonline-p.com/lib/1.0.17/js/adal.min.js\" crossorigin=\"anonymous\"></script>";
$js = '
microsoftTeams.initialize();
// Get the tab context, and use the information to navigate to Microsoft login page
microsoftTeams.getContext(function (context) {
// ADAL.js configuration
let config = {
tenant: context.tid,
clientId: "' . get_config('auth_oidc', 'clientid') . '",
redirectUri: "' . $CFG->wwwroot . '/local/o365/sso_end.php",
cacheLocation: "localStorage",
navigateToLoginRequestUrl: false,
// Setup extra query parameters for ADAL
// - openid and profile scope adds profile information to the id_token
// - login_hint provides the expected user name
extraQueryParameters: "scope=openid+profile&login_hint=" + encodeURIComponent(context.loginHint),
};
// Navigate to the Entra ID login page
let authContext = new AuthenticationContext(config);
authContext.login();
});
';
echo html_writer::script($js);