* Refactor authentication to allow for OpenID Connect
The authentication class has been refactored to separate the `validate` function for the method `create_user_session`. This is needed for the OpenID Connect module to authenticate a user without going through the process of all authentication plugins. Only the function `check_user_cidr` has been rewritten to use a single loop instead of a double-loop.
Due to the fact that create_user_function is public, the $result associative array is checked to ensure the required fields are present and the UUID fields are valid UUIDs. Further checking could be done against the database to ensure the UUIDs exist but this has been suppressed at this time because database queries would be required.
* Database class modified to allow for login banners for OpenID Connect
The database class is responsible for creating the view for login. The OpenID application required banners to be present so that any OpenID Connect authentication mechanism could be used. Each banner displayed has the properties of: name, image, alt, and url. The name is the class name of the authentication plugin. This will match the action in the URL. The image is the image banner used for the login. The alt is the alternate text used for screen readers. Each authenticator is responsible for providing each of the field values.
* Added PHPDocs for the check_cidr function
* Add backwards compatibility for PHP versions below 8
* Remove get_banner_alt
* Update check_cidr to allow cidr array
* Update authentication.php
* Update functions.php
* Update authentication.php
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove class_exists wrapper for class definitions
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove include statement of class file
* remove closing tag
* remove invalid method params
* remove closing tag
* remove closing tag
* Update auto_loader to load each class file in the project
Update the auto_loader class to use an include statement on each file in the project to load the class within the file. This will allow mismatched names within the file to be loaded and mapped according to the declaration instead of the filename. The class is then checked against the parsed classes from the PHP engine so that namespaces are available and mapped to the file they were declared in. An update was also made to the search algorithm used to find a file that was not already loaded by collapsing the array to have only valid matches to increase performance on a cache miss. Logging within the auto_loader has been moved to a function.
Multiple files were modified to allow the include statement. When the class has the `if(class_exists())` statement, the auto_loader is called to check for the class. This caused an infinite loop scenario so all wrappers have been removed. The auto_loader will now break the loop by directly modifying the internal classes array instead of trying to restart with the 'reload_classes' method.
- APCu is used to cache classes so any loading of the classes is done only once. To clear the APCu cache, restart php-fpm or call the auto_loader::clear_cache() function.
- Cache file is used when APCu is not available. To clear the cache remove it from the tmp folder or call the auto_loader::clear_cache() function.
- All classes must no longer have a class_exists wrapper to benefit from the performance boost.
- Classes should not be directly included when the auto_loader is used.
* remove include statement of class file
* Update destinations.php
* pass objects to authentication plugins when possible
Pass the settings and authentication objects to the plugins to re-use existing objects
* Update authentication.php
Logging after all checks are complete ensures the session ID is correct when logging it in the user_logs table
Co-authored-by: Tim Fry <tim@fusionpbx.com>
* [bug fix] get the domain from the username
When the URL domain doesn't match the user's domain
Authentication can use domain from the username.
username:
user@domain
