nor the names of its contributors may be used to endorse or promote products derived from this software without specific prior written permission. THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL ONELOGIN, INC. BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. ********************************************************************************/ /** * Return a SamlSettings object with user settings. * * @return SamlSettings object */ function get_saml_settings() { // this function should be modified to return the SAML settings for the current user $settings = new SamlSettings(); // when using Service Provider Initiated SSO (starting at index.php), this URL asks the IdP to authenticate the user. $settings->idp_sso_target_url = $GLOBALS['sugar_config']['SAML_loginurl']; // the certificate for the users account in the IdP $settings->x509certificate = $GLOBALS['sugar_config']['SAML_X509Cert']; // The URL where to the SAML Response/SAML Assertion will be posted $settings->assertion_consumer_service_url = $GLOBALS['sugar_config']['site_url']. "/index.php?module=Users&action=Authenticate"; // Name of this application $settings->issuer = "php-saml"; // Tells the IdP to return the email address of the current user $settings->name_identifier_format = "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress"; return $settings; }