simplesamlphp /
simplesamlphp-module-webauthn
@@ -9,21 +9,21 @@ discard block |
||
| 9 | 9 | |
| 10 | 10 | <h1><?php echo htmlspecialchars($this->t('{webauthn:webauthn:heading1}')); ?></h1> |
| 11 | 11 | <h2><?php echo htmlspecialchars($this->t('{webauthn:webauthn:accountEnabled}')); ?></h2> |
| 12 | - <?php if((isset($this->data['FIDO2Tokens'])?((is_array($this->data['FIDO2Tokens']) || $this->data['FIDO2Tokens'] instanceof Countable)?count($this->data['FIDO2Tokens']):strlen($this->data['FIDO2Tokens'])):0) > 0): ?> |
|
| 12 | + <?php if ((isset($this->data['FIDO2Tokens']) ? ((is_array($this->data['FIDO2Tokens']) || $this->data['FIDO2Tokens'] instanceof Countable) ?count($this->data['FIDO2Tokens']) : strlen($this->data['FIDO2Tokens'])) : 0) > 0) : ?> |
|
| 13 | 13 | <div id="currentTokens"> |
| 14 | 14 | <span id='tokencaption'><?php echo htmlspecialchars($this->t('{webauthn:webauthn:tokenList}')); ?></span> |
| 15 | 15 | <ul> |
| 16 | - <?php foreach($this->data['FIDO2Tokens'] as $index => $this->data['token']): ?> |
|
| 17 | - <?php if($this->data['FIDO2AuthSuccessful'] == false or $this->data['FIDO2AuthSuccessful'] != $this->data['token'][0]): ?> |
|
| 16 | + <?php foreach ($this->data['FIDO2Tokens'] as $index => $this->data['token']): ?> |
|
| 17 | + <?php if ($this->data['FIDO2AuthSuccessful'] == false or $this->data['FIDO2AuthSuccessful'] != $this->data['token'][0]): ?> |
|
| 18 | 18 | <li class='othertoken'><?php echo htmlspecialchars($this->data['token'][3]); ?></li> |
| 19 | 19 | <?php else: ?> |
| 20 | 20 | <li class='currenttoken'><?php echo htmlspecialchars($this->data['token'][3]); ?> <?php echo htmlspecialchars($this->t('{webauthn:webauthn:currentToken}')); ?></li> |
| 21 | 21 | <?php endif; ?> |
| 22 | - <?php endforeach;?> |
|
| 22 | + <?php endforeach; ?> |
|
| 23 | 23 | </ul> |
| 24 | 24 | </div> |
| 25 | 25 | <?php endif; ?> |
| 26 | - <?php if((isset($this->data['regURL'])?((is_array($this->data['regURL']) || $this->data['regURL'] instanceof Countable)?count($this->data['regURL']):strlen($this->data['regURL'])):0) > 0): ?> |
|
| 26 | + <?php if ((isset($this->data['regURL']) ? ((is_array($this->data['regURL']) || $this->data['regURL'] instanceof Countable) ?count($this->data['regURL']) : strlen($this->data['regURL'])) : 0) > 0) : ?> |
|
| 27 | 27 | <form id='regform' method='POST' action='<?php echo $this->data['regURL']; ?>'> |
| 28 | 28 | <input type='hidden' id='resp' name='response_id' value='0'/> |
| 29 | 29 | <input type='hidden' id='data' name='attestation_client_data_json' value='nix'/> |
@@ -36,9 +36,9 @@ discard block |
||
| 36 | 36 | value='<?php echo htmlspecialchars($this->t('{webauthn:webauthn:newTokenDefaultName}')); ?> <?php echo htmlspecialchars((new DateTime("now"))->format('Y-m-d')); ?>' /> |
| 37 | 37 | </form> |
| 38 | 38 | <div class='space'></div> |
| 39 | - <?php if((isset($this->data['FIDO2Tokens'])?((is_array($this->data['FIDO2Tokens']) || $this->data['FIDO2Tokens'] instanceof Countable)?count($this->data['FIDO2Tokens']):strlen($this->data['FIDO2Tokens'])):0) > 0): ?> |
|
| 40 | - <?php foreach($this->data['FIDO2Tokens'] as $index => $this->data['token']): ?> |
|
| 41 | - <?php if($this->data['FIDO2AuthSuccessful'] != $this->data['token'][0]): ?> |
|
| 39 | + <?php if ((isset($this->data['FIDO2Tokens']) ? ((is_array($this->data['FIDO2Tokens']) || $this->data['FIDO2Tokens'] instanceof Countable) ?count($this->data['FIDO2Tokens']) : strlen($this->data['FIDO2Tokens'])) : 0) > 0) : ?> |
|
| 40 | + <?php foreach ($this->data['FIDO2Tokens'] as $index => $this->data['token']): ?> |
|
| 41 | + <?php if ($this->data['FIDO2AuthSuccessful'] != $this->data['token'][0]): ?> |
|
| 42 | 42 | <form class='deleteform' id='delete-<?php echo htmlspecialchars($index); ?>' method='POST' action='<?php echo $this->data['delURL']; ?>'> |
| 43 | 43 | <input type='hidden' id='credId-<?php echo htmlspecialchars($index); ?>' name='credId' value='<?php echo htmlspecialchars($this->data['token'][0]); ?>'/> |
| 44 | 44 | <button type='submit' id='submit-<?php echo htmlspecialchars($index); ?>' name='submit' value='DELETE'> |
@@ -46,7 +46,7 @@ discard block |
||
| 46 | 46 | </button> |
| 47 | 47 | </form> |
| 48 | 48 | <?php endif; ?> |
| 49 | - <?php endforeach;?> |
|
| 49 | + <?php endforeach; ?> |
|
| 50 | 50 | <div class='space'></div> |
| 51 | 51 | <form id='nevermind' method='POST' action='<?php echo $this->data['delURL']; ?>'> |
| 52 | 52 | <button type='submit' id='submit-nevermind' name='submit' value='NEVERMIND'> |
@@ -55,7 +55,7 @@ discard block |
||
| 55 | 55 | </form> |
| 56 | 56 | <?php endif; ?> |
| 57 | 57 | <?php endif; ?> |
| 58 | - <?php if((isset($this->data['authURL'])?((is_array($this->data['authURL']) || $this->data['authURL'] instanceof Countable)?count($this->data['authURL']):strlen($this->data['authURL'])):0) > 0): ?> |
|
| 58 | + <?php if ((isset($this->data['authURL']) ? ((is_array($this->data['authURL']) || $this->data['authURL'] instanceof Countable) ?count($this->data['authURL']) : strlen($this->data['authURL'])) : 0) > 0) : ?> |
|
| 59 | 59 | <form id='authform' method='POST' action='<?php echo $this->data['authURL']; ?>'> |
| 60 | 60 | <input type='hidden' id='resp' name='response_id' value='0'/> |
| 61 | 61 | <input type='hidden' id='data_raw_b64' name='client_data_raw' value='garnix'/> |
@@ -67,7 +67,7 @@ discard block |
||
| 67 | 67 | <input type='hidden' id='operation' name='operation' value='AUTH'/> |
| 68 | 68 | <input type='checkbox' id='credentialChange' name='credentialChange'> |
| 69 | 69 | <label for='credentialChange'> |
| 70 | - <?php if((isset($this->data['FIDO2Tokens'])?((is_array($this->data['FIDO2Tokens']) || $this->data['FIDO2Tokens'] instanceof Countable)?count($this->data['FIDO2Tokens']):strlen($this->data['FIDO2Tokens'])):0) < 2): ?> |
|
| 70 | + <?php if ((isset($this->data['FIDO2Tokens']) ? ((is_array($this->data['FIDO2Tokens']) || $this->data['FIDO2Tokens'] instanceof Countable) ?count($this->data['FIDO2Tokens']) : strlen($this->data['FIDO2Tokens'])) : 0) < 2) : ?> |
|
| 71 | 71 | <?php echo htmlspecialchars($this->t('{webauthn:webauthn:wantsAdd}')); ?> |
| 72 | 72 | <?php else: ?> |
| 73 | 73 | <?php echo htmlspecialchars($this->t('{webauthn:webauthn:wantsModification}')); ?> |
@@ -16,8 +16,11 @@ discard block |
||
| 16 | 16 | <?php foreach($this->data['FIDO2Tokens'] as $index => $this->data['token']): ?> |
| 17 | 17 | <?php if($this->data['FIDO2AuthSuccessful'] == false or $this->data['FIDO2AuthSuccessful'] != $this->data['token'][0]): ?> |
| 18 | 18 | <li class='othertoken'><?php echo htmlspecialchars($this->data['token'][3]); ?></li> |
| 19 | - <?php else: ?> |
|
| 20 | - <li class='currenttoken'><?php echo htmlspecialchars($this->data['token'][3]); ?> <?php echo htmlspecialchars($this->t('{webauthn:webauthn:currentToken}')); ?></li> |
|
| 19 | + <?php else { |
|
| 20 | + : ?> |
|
| 21 | + <li class='currenttoken'><?php echo htmlspecialchars($this->data['token'][3]); |
|
| 22 | +} |
|
| 23 | +?> <?php echo htmlspecialchars($this->t('{webauthn:webauthn:currentToken}')); ?></li> |
|
| 21 | 24 | <?php endif; ?> |
| 22 | 25 | <?php endforeach;?> |
| 23 | 26 | </ul> |
@@ -69,8 +72,11 @@ discard block |
||
| 69 | 72 | <label for='credentialChange'> |
| 70 | 73 | <?php if((isset($this->data['FIDO2Tokens'])?((is_array($this->data['FIDO2Tokens']) || $this->data['FIDO2Tokens'] instanceof Countable)?count($this->data['FIDO2Tokens']):strlen($this->data['FIDO2Tokens'])):0) < 2): ?> |
| 71 | 74 | <?php echo htmlspecialchars($this->t('{webauthn:webauthn:wantsAdd}')); ?> |
| 72 | - <?php else: ?> |
|
| 73 | - <?php echo htmlspecialchars($this->t('{webauthn:webauthn:wantsModification}')); ?> |
|
| 75 | + <?php else { |
|
| 76 | + : ?> |
|
| 77 | + <?php echo htmlspecialchars($this->t('{webauthn:webauthn:wantsModification}')); |
|
| 78 | +} |
|
| 79 | +?> |
|
| 74 | 80 | <?php endif; ?> |
| 75 | 81 | </label><br/> |
| 76 | 82 | <button type='button' id='authformSubmit'><?php echo htmlspecialchars($this->t('{webauthn:webauthn:authTokenButton}')); ?></button> |
@@ -130,7 +130,7 @@ |
||
| 130 | 130 | $frontendData = []; |
| 131 | 131 | $frontendData['challengeEncoded'] = $challengeEncoded; |
| 132 | 132 | $frontendData['state'] = []; |
| 133 | - foreach (['Source', 'FIDO2Scope','FIDO2Username','FIDO2Displayname','requestTokenModel'] as $stateItem) { |
|
| 133 | + foreach (['Source', 'FIDO2Scope', 'FIDO2Username', 'FIDO2Displayname', 'requestTokenModel'] as $stateItem) { |
|
| 134 | 134 | $frontendData['state'][$stateItem] = $state[$stateItem]; |
| 135 | 135 | } |
| 136 | 136 | |
@@ -202,7 +202,7 @@ |
||
| 202 | 202 | 'private' => false, |
| 203 | 203 | ]); |
| 204 | 204 | $response->setExpires(new DateTime('Thu, 19 Nov 1981 08:52:00 GMT')); |
| 205 | - */ |
|
| 205 | + */ |
|
| 206 | 206 | |
| 207 | 207 | return $response; |
| 208 | 208 | } |
@@ -196,7 +196,7 @@ |
||
| 196 | 196 | $id = $this->authState::saveState($state, 'webauthn:request'); |
| 197 | 197 | if ($debugEnabled === true) { |
| 198 | 198 | $response = new RunnableResponse( |
| 199 | - function ($regObject, $id) { |
|
| 199 | + function($regObject, $id) { |
|
| 200 | 200 | echo $regObject->getDebugBuffer(); |
| 201 | 201 | echo $regObject->getValidateBuffer(); |
| 202 | 202 | echo "<form id='regform' method='POST' action='" . |
@@ -202,7 +202,7 @@ |
||
| 202 | 202 | 'private' => false, |
| 203 | 203 | ]); |
| 204 | 204 | $response->setExpires(new DateTime('Thu, 19 Nov 1981 08:52:00 GMT')); |
| 205 | - */ |
|
| 205 | + */ |
|
| 206 | 206 | |
| 207 | 207 | return $response; |
| 208 | 208 | } |
@@ -172,7 +172,7 @@ |
||
| 172 | 172 | |
| 173 | 173 | if ($debugEnabled) { |
| 174 | 174 | $response = new RunnableResponse( |
| 175 | - function ($authObject, $state) { |
|
| 175 | + function($authObject, $state) { |
|
| 176 | 176 | echo $authObject->getDebugBuffer(); |
| 177 | 177 | echo $authObject->getValidateBuffer(); |
| 178 | 178 | echo "Debug mode, not continuing to " . ($state['FIDO2WantsRegister'] ? "credential registration page." : "destination."); |
@@ -149,10 +149,10 @@ discard block |
||
| 149 | 149 | /** |
| 150 | 150 | * §7.2 STEP 18 : detect physical object cloning on the token |
| 151 | 151 | */ |
| 152 | - $counter = $authObject->getCounter(); |
|
| 153 | - if ($previousCounter == 0 && $counter == 0) { |
|
| 152 | + $counter = $authObject->getCounter(); |
|
| 153 | + if ($previousCounter == 0 && $counter == 0) { |
|
| 154 | 154 | // no cloning check, it is a brand new token |
| 155 | - } elseif ($counter > $previousCounter) { |
|
| 155 | + } elseif ($counter > $previousCounter) { |
|
| 156 | 156 | // Signature counter was incremented compared to last time, good |
| 157 | 157 | $store = $state['webauthn:store']; |
| 158 | 158 | $store->updateSignCount($oneToken[0], $counter); |
@@ -208,7 +208,7 @@ discard block |
||
| 208 | 208 | 'private' => false, |
| 209 | 209 | ]); |
| 210 | 210 | $response->setExpires(new DateTime('Thu, 19 Nov 1981 08:52:00 GMT')); |
| 211 | - */ |
|
| 211 | + */ |
|
| 212 | 212 | |
| 213 | 213 | return $response; |
| 214 | 214 | } |
@@ -7,7 +7,7 @@ |
||
| 7 | 7 | <?php $this->includeAtTemplateBase('includes/header.php'); ?> |
| 8 | 8 | |
| 9 | 9 | <h1><?php echo htmlspecialchars($this->t('{webauthn:webauthn:heading1}')); ?></h1> |
| 10 | - <?php if((isset($this->data['authURL'])?((is_array($this->data['authURL']) || $this->data['authURL'] instanceof Countable)?count($this->data['authURL']):strlen($this->data['authURL'])):0) > 0): ?> |
|
| 10 | + <?php if ((isset($this->data['authURL']) ? ((is_array($this->data['authURL']) || $this->data['authURL'] instanceof Countable) ?count($this->data['authURL']) : strlen($this->data['authURL'])) : 0) > 0) : ?> |
|
| 11 | 11 | <form id='authform' method='POST' action='<?php echo $this->data['authURL']; ?>'> |
| 12 | 12 | <input type='hidden' id='resp' name='response_id' value='0'/> |
| 13 | 13 | <input type='hidden' id='data' name='attestation_client_data_json' value='nix'/> |
@@ -18,8 +18,11 @@ |
||
| 18 | 18 | <input type='hidden' id='operation' name='operation' value='AUTH'/> |
| 19 | 19 | <button type='button' id='authformSubmit'><?php echo htmlspecialchars($this->t('{webauthn:webauthn:authTokenButton}')); ?></button> |
| 20 | 20 | </form> |
| 21 | - <?php else: ?> |
|
| 22 | - <p>Please first register your token on the <a href="<?php echo htmlspecialchars(SimpleSAML\Module::getModuleURL('webauthn/registration.php')); ?>">registration page</a> before continuing. |
|
| 21 | + <?php else { |
|
| 22 | + : ?> |
|
| 23 | + <p>Please first register your token on the <a href="<?php echo htmlspecialchars(SimpleSAML\Module::getModuleURL('webauthn/registration.php')); |
|
| 24 | +} |
|
| 25 | +?>">registration page</a> before continuing. |
|
| 23 | 26 | <?php endif; ?> |
| 24 | 27 | <script src="<?php echo htmlspecialchars(SimpleSAML\Module::getModuleUrl('webauthn/')); ?>assets/js/webauthn.js"></script> |
| 25 | 28 | <script src="<?php echo htmlspecialchars(SimpleSAML\Module::getModuleUrl('webauthn/')); ?>assets/js/authentication.js"></script> |
@@ -130,7 +130,7 @@ |
||
| 130 | 130 | $frontendData = []; |
| 131 | 131 | $frontendData['challengeEncoded'] = $challengeEncoded; |
| 132 | 132 | $frontendData['state'] = []; |
| 133 | - foreach (['Source', 'FIDO2Scope','FIDO2Username','FIDO2Displayname','requestTokenModel'] as $stateItem) { |
|
| 133 | + foreach (['Source', 'FIDO2Scope', 'FIDO2Username', 'FIDO2Displayname', 'requestTokenModel'] as $stateItem) { |
|
| 134 | 134 | $frontendData['state'][$stateItem] = $state[$stateItem]; |
| 135 | 135 | } |
| 136 | 136 | |
@@ -202,7 +202,7 @@ |
||
| 202 | 202 | 'private' => false, |
| 203 | 203 | ]); |
| 204 | 204 | $response->setExpires(new DateTime('Thu, 19 Nov 1981 08:52:00 GMT')); |
| 205 | - */ |
|
| 205 | + */ |
|
| 206 | 206 | |
| 207 | 207 | return $response; |
| 208 | 208 | } |
@@ -172,7 +172,7 @@ |
||
| 172 | 172 | |
| 173 | 173 | if ($debugEnabled) { |
| 174 | 174 | $response = new RunnableResponse( |
| 175 | - function ($authObject, $state) { |
|
| 175 | + function($authObject, $state) { |
|
| 176 | 176 | echo $authObject->getDebugBuffer(); |
| 177 | 177 | echo $authObject->getValidateBuffer(); |
| 178 | 178 | echo "Debug mode, not continuing to " . ($state['FIDO2WantsRegister'] ? "credential registration page." : "destination."); |
@@ -149,10 +149,10 @@ discard block |
||
| 149 | 149 | /** |
| 150 | 150 | * §7.2 STEP 18 : detect physical object cloning on the token |
| 151 | 151 | */ |
| 152 | - $counter = $authObject->getCounter(); |
|
| 153 | - if ($previousCounter == 0 && $counter == 0) { |
|
| 152 | + $counter = $authObject->getCounter(); |
|
| 153 | + if ($previousCounter == 0 && $counter == 0) { |
|
| 154 | 154 | // no cloning check, it is a brand new token |
| 155 | - } elseif ($counter > $previousCounter) { |
|
| 155 | + } elseif ($counter > $previousCounter) { |
|
| 156 | 156 | // Signature counter was incremented compared to last time, good |
| 157 | 157 | $store = $state['webauthn:store']; |
| 158 | 158 | $store->updateSignCount($oneToken[0], $counter); |
@@ -208,7 +208,7 @@ discard block |
||
| 208 | 208 | 'private' => false, |
| 209 | 209 | ]); |
| 210 | 210 | $response->setExpires(new DateTime('Thu, 19 Nov 1981 08:52:00 GMT')); |
| 211 | - */ |
|
| 211 | + */ |
|
| 212 | 212 | |
| 213 | 213 | return $response; |
| 214 | 214 | } |
