$_capabilities
$_capabilities : array
An array of capabilities, so that the driver can report which operations it supports and which it doesn't.
The Horde_Auth_Shibboleth class only provides transparent authentication based on the headers set by a Shibboleth SP.
Note that this class does not provide any actual SP functionality, it just takes the username from the HTTP headers that should be set by the Shibboleth SP.
__construct(array $params = array())
Constructor.
array | $params | Parameters: 'password_header' - (string) Name of the header holding the password of the logged in user. 'password_holder' - (string) Where the hordeauth password is stored. 'password_preference' - (string) Name of the Horde preference holding the password of the logged in user. 'username_header' - (string) [REQUIRED] Name of the header holding the username of the logged in user. |
authenticate(string $userId, array $credentials, boolean $login = true) : boolean
Finds out if a set of login credentials are valid, and if requested, mark the user as logged in in the current session.
string | $userId | The userId to check. |
array | $credentials | The credentials to check. |
boolean | $login | Whether to log the user in. If false, we'll only test the credentials and won't modify the current session. Defaults to true. |
Whether or not the credentials are valid.
isLocked(string $userId, boolean $show_details = false) : boolean|array
Returns whether a user is currently locked.
string | $userId | The user to check. |
boolean | $show_details | Return timeout too? |
If $show_details is a true, an array with 'locked' and 'lock_timeout' values. Whether the user is locked, otherwise.
transparent() : boolean
Automatic authentication: checks if the username is set in the configured header.
Transparent authentication should set 'userId', 'credentials', or 'params' in $this->_credentials as needed - these values will be used to set the credentials in the session.
Transparent authentication should normally never throw an error - false should be returned.
Whether or not the client is allowed.
getCredential(mixed $name = null) : mixed
Returns internal credential value(s).
mixed | $name | The credential value to get. If null, will return the entire credential list. Valid names:
|
The credential information, or null if the credential doesn't exist.
_sort(array $users, boolean $sort) : array
Basic sort implementation.
If the backend has listUsers and doesn't have a native sorting option, fall back to this method.
array | $users | An array of usernames. |
boolean | $sort | Whether to sort or not. |
the users, sorted or not
_authenticate(string $userId, array $credentials)
Not implemented.
On failure, Horde_Auth_Exception should pass a message string (if any) in the message field, and the HordeAuth::REASON* constant in the code field (defaults to Horde_Auth::REASON_MESSAGE).
string | $userId | The userID to check. |
array | $credentials | An array of login credentials. |