RCNdev
diff --git a/‎modules/admin/lib/Controller/Config.php‎
Lines changed: 28 additions & 8 deletions b/‎modules/admin/lib/Controller/Config.php‎
Lines changed: 28 additions & 8 deletions
diff --git a/‎modules/admin/lib/Controller/Federation.php‎
Lines changed: 61 additions & 15 deletions b/‎modules/admin/lib/Controller/Federation.php‎
Lines changed: 61 additions & 15 deletions
diff --git a/‎modules/admin/lib/Controller/Test.php‎
Lines changed: 58 additions & 6 deletions b/‎modules/admin/lib/Controller/Test.php‎
Lines changed: 58 additions & 6 deletions
diff --git a/‎phpunit.xml‎
Lines changed: 1 addition & 0 deletions b/‎phpunit.xml‎
Lines changed: 1 addition & 0 deletions
@@ -29,6 +29,12 @@ class Config
     /** @var \SimpleSAML\Configuration */
     protected $config;
 
+    /**
+     * @var \SimpleSAML\Utils\Auth|string
+     * @psalm-var \SimpleSAML\Utils\Auth|class-string
+     */
+    protected $authUtils = Utils\Auth::class;
+
     /** @var Menu */
     protected $menu;
 
@@ -50,16 +56,27 @@ public function __construct(Configuration $config, Session $session)
     }
 
 
+    /**
+     * Inject the \SimpleSAML\Utils\Auth dependency.
+     *
+     * @param \SimpleSAML\Utils\Auth $authUtils
+     */
+    public function setAuthUtils(Utils\Auth $authUtils): void
+    {
+        $this->authUtils = $authUtils;
+    }
+
+
     /**
      * Display basic diagnostic information on hostname, port and protocol.
      *
-     * @param Request $request The current request.
+     * @param \Symfony\Component\HttpFoundation\Request $request The current request.
      *
      * @return \SimpleSAML\XHTML\Template
      */
     public function diagnostics(Request $request): Template
     {
-        Utils\Auth::requireAdmin();
+        $this->authUtils::requireAdmin();
 
         $t = new Template($this->config, 'admin:diagnostics.twig');
         $t->data = [
@@ -88,11 +105,13 @@ public function diagnostics(Request $request): Template
     /**
      * Display the main admin page.
      *
+     * @param \Symfony\Component\HttpFoundation\Request $request The current request.
+     *
      * @return \SimpleSAML\XHTML\Template
      */
-    public function main(): Template
+    public function main(/** @scrutinizer ignore-unused */ Request $request): Template
     {
-        Utils\Auth::requireAdmin();
+        $this->authUtils::requireAdmin();
 
         $t = new Template($this->config, 'admin:config.twig');
         $t->data = [
@@ -125,11 +144,13 @@ public function main(): Template
     /**
      * Display the output of phpinfo().
      *
-     * @return RunnableResponse
+     * @param \Symfony\Component\HttpFoundation\Request $request The current request.
+     *
+     * @return \SimpleSAML\HTTP\RunnableResponse
      */
-    public function phpinfo(): RunnableResponse
+    public function phpinfo(/** @scrutinizer ignore-unused */ Request $request): RunnableResponse
     {
-        Utils\Auth::requireAdmin();
+        $this->authUtils::requireAdmin();
 
         return new RunnableResponse('phpinfo');
     }
@@ -397,7 +418,6 @@ protected function getWarnings(): array
                     curl_close($ch);
                 }
 
-
                 if ($latest && version_compare($this->config->getVersion(), ltrim($latest['tag_name'], 'v'), 'lt')) {
                     $warnings[] = [
                         Translate::noop(
 
@@ -38,7 +38,19 @@ class Federation
     /** @var \SimpleSAML\Configuration */
     protected $config;
 
-    /** @var MetaDataStorageHandler */
+    /**
+     * @var \SimpleSAML\Auth\Source|string
+     * @psalm-var \SimpleSAML\Auth\Source|class-string
+     */
+    protected $authSource = Auth\Source::class;
+
+    /**
+     * @var \SimpleSAML\Utils\Auth|string
+     * @psalm-var \SimpleSAML\Utils\Auth|class-string
+     */
+    protected $authUtils = Utils\Auth::class;
+
+    /** @var \SimpleSAML\Metadata\MetaDataStorageHandler */
     protected $mdHandler;
 
     /** @var Menu */
@@ -58,16 +70,50 @@ public function __construct(Configuration $config)
     }
 
 
+    /**
+     * Inject the \SimpleSAML\Auth\Source dependency.
+     *
+     * @param \SimpleSAML\Auth\Source $authSource
+     */
+    public function setAuthSource(Auth\Source $authSource): void
+    {
+        $this->authSource = $authSource;
+    }
+
+
+    /**
+     * Inject the \SimpleSAML\Utils\Auth dependency.
+     *
+     * @param \SimpleSAML\Utils\Auth $authUtils
+     */
+    public function setAuthUtils(Utils\Auth $authUtils): void
+    {
+        $this->authUtils = $authUtils;
+    }
+
+
+    /**
+     * Inject the \SimpleSAML\Metadata\MetadataStorageHandler dependency.
+     *
+     * @param \SimpleSAML\Metadata\MetaDataStorageHandler $mdHandler
+     */
+    public function setMetadataStorageHandler(MetadataStorageHandler $mdHandler): void
+    {
+        $this->mdHandler = $mdHandler;
+    }
+
+
     /**
      * Display the federation page.
      *
+     * @param \Symfony\Component\HttpFoundation\Request $request
      * @return \SimpleSAML\XHTML\Template
      * @throws \SimpleSAML\Error\Exception
      * @throws \SimpleSAML\Error\Exception
      */
-    public function main(): Template
+    public function main(/** @scrutinizer ignore-unused */ Request $request): Template
     {
-        Utils\Auth::requireAdmin();
+        $this->authUtils::requireAdmin();
 
         // initialize basic metadata array
         $hostedSPs = $this->getHostedSP();
@@ -289,7 +335,7 @@ private function getHostedSP(): array
         $entities = [];
 
         /** @var \SimpleSAML\Module\saml\Auth\Source\SP $source */
-        foreach (Auth\Source::getSourcesOfType('saml:SP') as $source) {
+        foreach ($this->authSource::getSourcesOfType('saml:SP') as $source) {
             $metadata = $source->getHostedMetadata();
             if (isset($metadata['keys'])) {
                 $certificates = $metadata['keys'];
@@ -345,13 +391,13 @@ private function getHostedSP(): array
     /**
      * Metadata converter
      *
-     * @param Request $request The current request.
+     * @param \Symfony\Component\HttpFoundation\Request $request The current request.
      *
      * @return \SimpleSAML\XHTML\Template
      */
     public function metadataConverter(Request $request): Template
     {
-        Utils\Auth::requireAdmin();
+        $this->authUtils::requireAdmin();
         if ($xmlfile = $request->files->get('xmlfile')) {
             $xmldata = trim(file_get_contents($xmlfile->getPathname()));
         } elseif ($xmldata = $request->request->get('xmldata')) {
@@ -422,24 +468,24 @@ public function metadataConverter(Request $request): Template
     /**
      * Download a certificate for a given entity.
      *
-     * @param Request $request The current request.
+     * @param \Symfony\Component\HttpFoundation\Request $request The current request.
      *
-     * @return Response PEM-encoded certificate.
+     * @return \Symfony\Component\HttpFoundation\Response PEM-encoded certificate.
      */
     public function downloadCert(Request $request): Response
     {
-        Utils\Auth::requireAdmin();
+        $this->authUtils::requireAdmin();
 
         $set = $request->get('set');
-        $prefix = $request->get('prefix');
+        $prefix = $request->get('prefix', '');
 
         if ($set === 'saml20-sp-hosted') {
             $sourceID = $request->get('source');
             /**
              * The second argument ensures non-nullable return-value
              * @var \SimpleSAML\Module\saml\Auth\Source\SP $source
              */
-            $source = \SimpleSAML\Auth\Source::getById($sourceID, Module\saml\Auth\Source\SP::class);
+            $source = $this->authSource::getById($sourceID, Module\saml\Auth\Source\SP::class);
             $mdconfig = $source->getMetadata();
         } else {
             $entityID = $request->get('entity');
@@ -465,13 +511,13 @@ public function downloadCert(Request $request): Response
     /**
      * Show remote entity metadata
      *
-     * @param Request $request The current request.
+     * @param \Symfony\Component\HttpFoundation\Request $request The current request.
      *
-     * @return Response
+     * @return \SimpleSAML\XHTML\Template
      */
-    public function showRemoteEntity(Request $request): Response
+    public function showRemoteEntity(Request $request): Template
     {
-        Utils\Auth::requireAdmin();
+        $this->authUtils::requireAdmin();
 
         $entityId = $request->get('entityid');
         $set = $request->get('set');
 
@@ -30,6 +30,24 @@ class Test
     /** @var \SimpleSAML\Configuration */
     protected $config;
 
+    /**
+     * @var \SimpleSAML\Utils\Auth|string
+     * @psalm-var \SimpleSAML\Utils\Auth|class-string
+     */
+    protected $authUtils = Utils\Auth::class;
+
+    /**
+     * @var \SimpleSAML\Auth\Simple|string
+     * @psalm-var \SimpleSAML\Auth\Simple|class-string
+     */
+    protected $authSimple = Auth\Simple::class;
+
+    /**
+     * @var \SimpleSAML\Auth\State|string
+     * @psalm-var \SimpleSAML\Auth\State|class-string
+     */
+    protected $authState = Auth\State::class;
+
     /** @var Menu */
     protected $menu;
 
@@ -51,29 +69,63 @@ public function __construct(Configuration $config, Session $session)
     }
 
 
+    /**
+     * Inject the \SimpleSAML\Utils\Auth dependency.
+     *
+     * @param \SimpleSAML\Utils\Auth $authUtils
+     */
+    public function setAuthUtils(Utils\Auth $authUtils): void
+    {
+        $this->authUtils = $authUtils;
+    }
+
+
+    /**
+     * Inject the \SimpleSAML\Auth\Simple dependency.
+     *
+     * @param \SimpleSAML\Auth\Simple $authSimple
+     */
+    public function setAuthSimple(Auth\Simple $authSimple): void
+    {
+        $this->authSimple = $authSimple;
+    }
+
+
+    /**
+     * Inject the \SimpleSAML\Auth\State dependency.
+     *
+     * @param \SimpleSAML\Auth\State $authState
+     */
+    public function setAuthState(Auth\State $authState): void
+    {
+        $this->authState = $authState;
+    }
+
+
     /**
      * Display the list of available authsources.
      *
      * @param \Symfony\Component\HttpFoundation\Request $request
      * @param string|null $as
-     * @return \SimpleSAML\XHTML\Template
+     * @return \SimpleSAML\XHTML\Template|\SimpleSAML\HTTP\RunnableResponse
      */
     public function main(Request $request, string $as = null)
     {
-        Utils\Auth::requireAdmin();
+        $this->authUtils::requireAdmin();
         if (is_null($as)) {
             $t = new Template($this->config, 'admin:authsource_list.twig');
             $t->data = [
                 'sources' => Auth\Source::getSources(),
             ];
         } else {
-            $authsource = new Auth\Simple($as);
+            $simple = $this->authSimple;
+            $authsource = new $simple($as);
             if (!is_null($request->query->get('logout'))) {
-                $authsource->logout($this->config->getBasePath() . 'logout.php');
+                return new RunnableResponse([$authsource, 'logout'], [$this->config->getBasePath() . 'logout.php']);
             } elseif (!is_null($request->query->get(Auth\State::EXCEPTION_PARAM))) {
                 // This is just a simple example of an error
                 /** @var array $state */
-                $state = Auth\State::loadExceptionState();
+                $state = $this->authState::loadExceptionState();
                 Assert::keyExists($state, Auth\State::EXCEPTION_DATA);
                 throw $state[Auth\State::EXCEPTION_DATA];
             }
@@ -84,7 +136,7 @@ public function main(Request $request, string $as = null)
                     'ErrorURL' => $url,
                     'ReturnTo' => $url,
                 ];
-                $authsource->login($params);
+                return new RunnableResponse([$authsource, 'login'], [$params]);
             }
 
             $attributes = $authsource->getAttributes();
 
@@ -17,6 +17,7 @@
     <filter>
         <whitelist processUncoveredFilesFromWhitelist="true">
             <directory suffix=".php">./lib/</directory>
+            <directory suffix=".php">./modules/admin/lib/</directory>
             <directory suffix=".php">./modules/core/lib/</directory>
             <directory suffix=".php">./modules/saml/lib/</directory>
             <exclude>