Authen-NZRealMe
view release on metacpan or search on metacpan
lib/Authen/NZRealMe.pm view on Meta::CPAN
if($resp->is_success) {
$framework->set_state(login_flt => $resp->flt);
# ... redirect to main menu etc
}
elsif($resp->is_timeout) {
# Present logon screen again with message
}
elsif($resp->is_cancel) {
# Present logon screen again with message
}
elsif($resp->is_not_registered) {
# Only happens if allow_create set to false
# and user does not have a logon for our site
}
else {
# Some other failure occurred, user might like to try again later.
# Should present $resp->status_message to user and also give contact
# details for RealMe Help Desk
}
Sample code for HTTP-Artifact would be identical except for the 'resolve'
lib/Authen/NZRealMe/ResolutionResponse.pm view on Meta::CPAN
use strict;
use Carp qw(croak);
use Authen::NZRealMe::CommonURIs qw(URI);
my $urn_success = URI('saml_success');
my $urn_cancel = URI('saml_auth_fail');
my $urn_timeout = URI('rm_timeout');
my $urn_old_timeout = URI('gls_timeout');
my $urn_not_reg = URI('saml_unkpncpl');
sub new {
my $class = shift;
my $xml = shift;
my $self = bless { xml => $xml }, $class;
return $self;
}
sub xml { return shift->{xml}; }
sub service_type { return shift->{service_type}; }
sub status_urn { return shift->{status_urn}; }
sub status_message { return shift->{status_message} || ''; }
sub is_success { return shift->status_urn eq $urn_success; }
sub is_error { return shift->status_urn ne $urn_success; }
sub is_timeout { return $_[0]->status_urn eq $urn_timeout
|| $_[0]->status_urn eq $urn_old_timeout; }
sub is_cancel { return shift->status_urn eq $urn_cancel; }
sub is_not_registered { return shift->status_urn eq $urn_not_reg; }
sub flt { return shift->{flt}; }
sub fit { return shift->{fit}; }
sub _icms_token { return shift->{_icms_token_}; }
sub logon_strength { return shift->{logon_strength}; }
sub date_of_birth { return shift->{date_of_birth}; }
sub place_of_birth { return shift->{place_of_birth}; }
sub country_of_birth { return shift->{country_of_birth}; }
sub surname { return shift->{surname}; }
sub first_name { return shift->{first_name}; }
sub mid_names { return shift->{mid_names}; }
lib/Authen/NZRealMe/ResolutionResponse.pm view on Meta::CPAN
response received from the Identity Provider.
The C<is_success> or C<is_error> methods can be used to determine whether the
user's logon was successful.
On success, the user's FLT can be retrieved using the C<flt> method.
On failure, the URN identifying the exact error can be determined using the
C<status_urn> method. Convenience methods are also provided for identifying
common error codes that you might want to handle (see: C<is_cancel>,
C<is_timeout>, C<is_not_registered>).
=head1 METHODS
=head2 new
Constructor. Should not be called directly. Instead, call the
C<resolve_artifact> method on the service provider object.
=head2 xml
lib/Authen/NZRealMe/ResolutionResponse.pm view on Meta::CPAN
"try again" link.
=head2 is_cancel
Returns true if the user selected 'Cancel' or 'Return to agency site' rather
than logging in. After this error, it is safe to present the user with a "try
again" link.
=head2 is_not_registered
Returns true if the logon was successful but the user's RealMe Login account
has not been associated with this service provider (agency web site).
This situation will only occur if the original authentication request specified
a false value for the C<allow_create> option. Agency sites which use a
separate flow for the initial sign-up process will need to handle this error.
=head2 as_string
t/60-resolve-post-login.t view on Meta::CPAN
# in 80-resolve-identity.t.
#
# So let's just press on and examine the response
isa_ok($resp => 'Authen::NZRealMe::ResolutionResponse', 'resolution response');
ok($resp->is_success, 'response status is success');
ok(!$resp->is_error, 'response status is not error');
ok(!$resp->is_timeout, 'response status is not timeout');
ok(!$resp->is_cancel, 'response status is not cancel');
ok(!$resp->is_not_registered, 'response status is not "not registered"');
is(
$resp->flt => 'CHCBD4387DCB7782F1D97B5C4E6A57267B3',
'response includes flt'
);
is($resp->surname => undef, 'surname is not defined');
is($resp->first_name => undef, 'first_name is not defined');
is($resp->mid_names => undef, 'mid_names is not defined');
is($resp->date_of_birth => undef, 'date_of_birth is not defined');
t/60-resolve-post-login.t view on Meta::CPAN
};
is($@ => '', 'no exceptions with clock wound back');
isa_ok($resp => 'Authen::NZRealMe::ResolutionResponse', 'resolution response');
ok($resp->is_success, 'response status is success');
ok(!$resp->is_error, 'response status is not error');
ok(!$resp->is_timeout, 'response status is not timeout');
ok(!$resp->is_cancel, 'response status is not cancel');
ok(!$resp->is_not_registered, 'response status is not "not registered"');
is(
$resp->flt => 'CHCBD4387DCB7782F1D97B5C4E6A57267B3',
'response includes flt'
);
is($resp->surname => undef, 'surname is not defined');
is($resp->first_name => undef, 'first_name is not defined');
is($resp->mid_names => undef, 'mid_names is not defined');
is($resp->date_of_birth => undef, 'date_of_birth is not defined');
t/60-resolve-post-login.t view on Meta::CPAN
};
is($@ => '', 'no exceptions with clock wound back');
isa_ok($resp => 'Authen::NZRealMe::ResolutionResponse', 'resolution response');
ok(!$resp->is_success, 'response status is not success');
ok($resp->is_error, 'response status is error');
ok($resp->is_timeout, 'response status is timeout');
ok(!$resp->is_cancel, 'response status is not cancel');
ok(!$resp->is_not_registered, 'response status is not "not registered"');
is(
$resp->status_urn,
'urn:nzl:govt:ict:stds:authn:deployment:GLS:SAML:2.0:status:Timeout',
'response status_urn'
);
is(
$resp->status_message,
'RealMe login service session timeout',
t/61-resolve-artifact-login.t view on Meta::CPAN
# in 80-resolve-identity.t.
#
# So let's just press on and examine the response
isa_ok($resp => 'Authen::NZRealMe::ResolutionResponse', 'resolution response');
ok($resp->is_success, 'response status is success');
ok(!$resp->is_error, 'response status is not error');
ok(!$resp->is_timeout, 'response status is not timeout');
ok(!$resp->is_cancel, 'response status is not cancel');
ok(!$resp->is_not_registered, 'response status is not "not registered"');
is(
$resp->flt => 'CHC600C1AE5D993A8AE7E382006E9521C07',
'response includes flt'
);
is($resp->surname => undef, 'surname is not defined');
is($resp->first_name => undef, 'first_name is not defined');
is($resp->mid_names => undef, 'mid_names is not defined');
is($resp->date_of_birth => undef, 'date_of_birth is not defined');
t/62-resolve-encrypted-artifact-login.t view on Meta::CPAN
# in 80-resolve-identity.t.
#
# So let's just press on and examine the response
isa_ok($resp => 'Authen::NZRealMe::ResolutionResponse', 'resolution response');
ok($resp->is_success, 'response status is success');
ok(!$resp->is_error, 'response status is not error');
ok(!$resp->is_timeout, 'response status is not timeout');
ok(!$resp->is_cancel, 'response status is not cancel');
ok(!$resp->is_not_registered, 'response status is not "not registered"');
is(
$resp->flt => 'CHCC4E6AB97B57DCB57267B3D4387782F1D',
'response includes flt'
);
is($resp->surname => undef, 'surname is not defined');
is($resp->first_name => undef, 'first_name is not defined');
is($resp->mid_names => undef, 'mid_names is not defined');
is($resp->date_of_birth => undef, 'date_of_birth is not defined');
t/80-resolve-identity.t view on Meta::CPAN
$artifact
);
# And then the response
isa_ok($resp => 'Authen::NZRealMe::ResolutionResponse', 'resolution response');
ok($resp->is_success, 'response status is success');
ok(!$resp->is_error, 'response status is not error');
ok(!$resp->is_timeout, 'response status is not timeout');
ok(!$resp->is_cancel, 'response status is not cancel');
ok(!$resp->is_not_registered, 'response status is not "not registered"');
is($resp->first_name => 'Ignatius', 'first_name' );
is($resp->mid_names => 'Quantifico', 'mid_names' );
is($resp->surname => 'Wallaphocter', 'surname' );
is($resp->date_of_birth => '1988-07-06', 'date_of_birth' );
is($resp->place_of_birth => 'Pahiatua', 'place_of_birth' );
is($resp->country_of_birth => 'New Zealand', 'country_of_birth' );
is($resp->gender => 'M', 'gender' );
is($resp->address_unit => '208', 'address_unit' );
is($resp->address_street => 'Queen Street', 'address_street' );
is($resp->address_suburb => 'Petone', 'address_suburb' );
t/82-resolve-identity-sha256.t view on Meta::CPAN
$artifact
);
# And then the response
isa_ok($resp => 'Authen::NZRealMe::ResolutionResponse', 'resolution response');
ok($resp->is_success, 'response status is success');
ok(!$resp->is_error, 'response status is not error');
ok(!$resp->is_timeout, 'response status is not timeout');
ok(!$resp->is_cancel, 'response status is not cancel');
ok(!$resp->is_not_registered, 'response status is not "not registered"');
is($resp->first_name => 'Ignatius', 'first_name' );
is($resp->mid_names => 'Quantifico', 'mid_names' );
is($resp->surname => 'Wallaphocter', 'surname' );
is($resp->date_of_birth => '1988-07-06', 'date_of_birth' );
is($resp->place_of_birth => 'Pahiatua', 'place_of_birth' );
is($resp->country_of_birth => 'New Zealand', 'country_of_birth' );
is($resp->gender => 'M', 'gender' );
is($resp->address_unit => '208', 'address_unit' );
is($resp->address_street => 'Queen Street', 'address_street' );
is($resp->address_suburb => 'Petone', 'address_suburb' );
( run in 1.919 second using v1.01-cache-2.11-cpan-0a987023a57 )