Change admin-authentication to use the 'admin' authentication source, if present.

olavmo-sikt · olavmo-sikt · commit d3012cbde2c1 · 2009-04-22T07:02:44.000Z
git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@1470 44740490-163a-0410-bde0-09ae8108e29a
diff --git a/config-templates/authsources.php b/config-templates/authsources.php
@@ -2,6 +2,17 @@
 
 $config = array(
 
+	/*
+	 * This is a authentication source which handles admin authentication.
+	 */
+	'admin' => array(
+		/*
+		 * The default is to use core:AdminPassword, but it can be replaced with
+		 * any authentication source.
+		 */
+		'core:AdminPassword',
+	),
+
 	'example-sql' => array(
 		'sqlauth:SQL',
 		'dsn' => 'pgsql:host=sql.example.org;port=5432;dbname=simplesaml',
diff --git a/lib/SimpleSAML/Utilities.php b/lib/SimpleSAML/Utilities.php
@@ -1688,7 +1688,7 @@ public static function isAdmin() {
 
 		$session = SimpleSAML_Session::getInstance();
 
-		return $session->isValid('login-admin');
+		return $session->isValid('admin') || $session->isValid('login-admin');
 	}
 
 
@@ -1721,11 +1721,20 @@ public static function requireAdmin() {
 			return;
 		}
 
+		$returnTo = SimpleSAML_Utilities::selfURL();
+
 		/* Not authenticated as admin user. Start authentication. */
-		$config = SimpleSAML_Configuration::getInstance();
-		SimpleSAML_Utilities::redirect('/' . $config->getBaseURL() . 'auth/login-admin.php',
-			array('RelayState' => SimpleSAML_Utilities::selfURL())
-		);
+
+		if (SimpleSAML_Auth_Source::getById('admin') !== NULL) {
+			SimpleSAML_Auth_Default::initLogin('admin', $returnTo);
+		} else {
+			/* For backwards-compatibility. */
+
+			$config = SimpleSAML_Configuration::getInstance();
+			SimpleSAML_Utilities::redirect('/' . $config->getBaseURL() . 'auth/login-admin.php',
+				array('RelayState' => $returnTo)
+						       );
+		}
 	}
 
 }
