Fix #380

pitbulk · pitbulk · commit 45329e512ccf · 2019-06-25T12:26:01.000+02:00
diff --git a/src/Saml2/Auth.php b/src/Saml2/Auth.php
@@ -520,7 +520,7 @@ public function getAttributeWithFriendlyName($friendlyName)
      * @param bool        $isPassive       When true the AuthNRequest will set the Ispassive='true'
      * @param bool        $stay            True if we want to stay (returns the url string) False to redirect
      * @param bool        $setNameIdPolicy When true the AuthNRequest will set a nameIdPolicy element
-     * @param string $nameIdValueReq Indicates to the IdP the subject that should be authenticated
+     * @param string      $nameIdValueReq  Indicates to the IdP the subject that should be authenticated
      *
      * @return string|null If $stay is True, it return a string with the SLO URL + LogoutRequest + parameters
      *
@@ -664,12 +664,13 @@ public function getLastRequestID()
      * @param bool     $forceAuthn      When true the AuthNRequest will set the ForceAuthn='true'
      * @param bool     $isPassive       When true the AuthNRequest will set the Ispassive='true'
      * @param bool     $setNameIdPolicy When true the AuthNRequest will set a nameIdPolicy element
+     * @param string   $nameIdValueReq  Indicates to the IdP the subject that should be authenticated
      *
      * @return AuthnRequest The AuthnRequest object
      */
-    public function buildAuthnRequest($settings, $forceAuthn, $isPassive, $setNameIdPolicy)
+    public function buildAuthnRequest($settings, $forceAuthn, $isPassive, $setNameIdPolicy, $nameIdValueReq = null)
     {
-        return new AuthnRequest($settings, $forceAuthn, $isPassive, $setNameIdPolicy);
+        return new AuthnRequest($settings, $forceAuthn, $isPassive, $setNameIdPolicy, $nameIdValueReq);
     }
 
     /**
@@ -719,7 +720,7 @@ public function buildResponseSignature($samlResponse, $relayState, $signAlgorith
      * @throws Exception
      * @throws Error
      */
-    private function buildMessageSignature($samlMessage, $relayState, $signAlgorithm = XMLSecurityKey::RSA_SHA256, $type="SAMLRequest")
+    private function buildMessageSignature($samlMessage, $relayState, $signAlgorithm = XMLSecurityKey::RSA_SHA256, $type = "SAMLRequest")
     {
         $key = $this->_settings->getSPkey();
         if (empty($key)) {

Original file line number	Diff line number	Diff line change
`@@ -520,7 +520,7 @@ public function getAttributeWithFriendlyName($friendlyName)`
`520`	`520`	`* @param bool $isPassive When true the AuthNRequest will set the Ispassive='true'`
`521`	`521`	`* @param bool $stay True if we want to stay (returns the url string) False to redirect`
`522`	`522`	`* @param bool $setNameIdPolicy When true the AuthNRequest will set a nameIdPolicy element`
`523`		`- * @param string $nameIdValueReq Indicates to the IdP the subject that should be authenticated`
	`523`	`+ * @param string $nameIdValueReq Indicates to the IdP the subject that should be authenticated`
`524`	`524`	`*`
`525`	`525`	`* @return string\|null If $stay is True, it return a string with the SLO URL + LogoutRequest + parameters`
`526`	`526`	`*`
`@@ -664,12 +664,13 @@ public function getLastRequestID()`
`664`	`664`	`* @param bool $forceAuthn When true the AuthNRequest will set the ForceAuthn='true'`
`665`	`665`	`* @param bool $isPassive When true the AuthNRequest will set the Ispassive='true'`
`666`	`666`	`* @param bool $setNameIdPolicy When true the AuthNRequest will set a nameIdPolicy element`
	`667`	`+ * @param string $nameIdValueReq Indicates to the IdP the subject that should be authenticated`
`667`	`668`	`*`
`668`	`669`	`* @return AuthnRequest The AuthnRequest object`
`669`	`670`	`*/`
`670`		`- public function buildAuthnRequest($settings, $forceAuthn, $isPassive, $setNameIdPolicy)`
	`671`	`+ public function buildAuthnRequest($settings, $forceAuthn, $isPassive, $setNameIdPolicy, $nameIdValueReq = null)`
`671`	`672`	`{`
`672`		`- return new AuthnRequest($settings, $forceAuthn, $isPassive, $setNameIdPolicy);`
	`673`	`+ return new AuthnRequest($settings, $forceAuthn, $isPassive, $setNameIdPolicy, $nameIdValueReq);`
`673`	`674`	`}`
`674`	`675`
`675`	`676`	`/**`
`@@ -719,7 +720,7 @@ public function buildResponseSignature($samlResponse, $relayState, $signAlgorith`
`719`	`720`	`* @throws Exception`
`720`	`721`	`* @throws Error`
`721`	`722`	`*/`
`722`		`- private function buildMessageSignature($samlMessage, $relayState, $signAlgorithm = XMLSecurityKey::RSA_SHA256, $type="SAMLRequest")`
	`723`	`+ private function buildMessageSignature($samlMessage, $relayState, $signAlgorithm = XMLSecurityKey::RSA_SHA256, $type = "SAMLRequest")`
`723`	`724`	`{`
`724`	`725`	`$key = $this->_settings->getSPkey();`
`725`	`726`	`if (empty($key)) {`