FOLIO: Use shib_cql if Shib is used for login #2902
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -120,6 +120,13 @@ class Folio extends AbstractAPI implements | |
| 'Open - Awaiting delivery', | ||
| ]; | ||
|
|
||
| /** | ||
| * VuFind configuration, config.ini | ||
| * | ||
| * @var array | ||
| */ | ||
| protected $mainConfig = null; | ||
|
|
||
| /** | ||
| * Constructor | ||
| * | ||
|
|
@@ -150,6 +157,20 @@ public function setConfig($config) | |
| $this->tenant = $this->config['API']['tenant']; | ||
| } | ||
|
|
||
| /** | ||
| * Set main configuration | ||
| * | ||
| * Store a reference to the config.ini configuration | ||
| * | ||
| * @param array $mainConfig Configuration array loaded from the main VuFind configuration | ||
|
There was a problem hiding this comment. I don't think you need both of the lines above, and I'd adjust the This is obviously not a big deal, but I'm trying to avoid unnecessary references to VuFind® since if we mention it, we should include the ®, and it's less of a hassle to just avoid mentioning the name. ;-) |
||
| * | ||
| * @return void | ||
| */ | ||
| public function setMainConfig($mainConfig) | ||
| { | ||
| $this->mainConfig = $mainConfig; | ||
| } | ||
|
|
||
| /** | ||
| * Get the type of FOLIO ID used to match up with VuFind's bib IDs. | ||
| * | ||
|
|
@@ -995,6 +1016,10 @@ protected function patronLoginWithOkapi($username, $password) | |
| * Support method for patronLogin(): authenticate the patron with a CQL looup. | ||
| * Returns the CQL query for retrieving more information about the user. | ||
| * | ||
| * NOTE: this method looks for the existence of a $SERVER['Shib-Session-ID'] variable | ||
| * and, if found, looks for a `shib-cql` configuration stanza to use instead of the | ||
| * standard `cql` stanza. | ||
| * | ||
| * @param string $username The patron username | ||
| * @param string $password The patron password | ||
| * | ||
|
|
@@ -1005,9 +1030,16 @@ protected function getUserWithCql($username, $password) | |
| // Construct user query using barcode, username, etc. | ||
| $usernameField = $this->config['User']['username_field'] ?? 'username'; | ||
| $passwordField = $this->config['User']['password_field'] ?? false; | ||
| if ( | ||
| isset($this->config['User']['shib_cql']) | ||
| && array_key_exists('Shib-Session-ID', $_SERVER) | ||
|
There was a problem hiding this comment. The Shibboleth session ID is configurable here: https://github.com/vufind-org/vufind/blob/dev/config/vufind/config.ini#L835 -- I wonder if it's worth making config.ini available to the FOLIO driver so it can check for this configuration (or if it's at least worth adding a setting to Folio.ini to allow override of the name of the parameter). We also try to avoid directly referencing $_SERVER in our code, since Laminas wraps this up in the request object. However, that raises the question of whether it's worth creating a new dependency on the request object for this one feature. Something to think about, at least. And just as a matter of style, I think There was a problem hiding this comment.
Ah, good point...I thought I had seen that value somewhere. If you can point me in the right direction to "make config.ini available to the FOLIO driver" I'm happy to add that. I'll push a change for the There was a problem hiding this comment. The easiest way to make the setting available to the FOLIO driver is through the factory... so in FolioFactory.php, you can add something like: and then $config will be an object representation of config.ini that you can either pass directly into the Folio constructor, provide via a setter, etc. The best approach to getting the data into the driver is probably a matter of taste. :-) And no worries about the isset/array_key_exists thing. In PHP, the general rule is that if you can do something with either a function or a built-in keyword, the keyword approach is usually faster and more concise. But of course that requires you to know all the options available to you. :-) There was a problem hiding this comment. I also notice that there were two array_key_exists calls here, but only one has been changed to isset. Though perhaps you're holding off on changing the other one since other parts of our discussion may impact the same line of code. :-) There was a problem hiding this comment. I'm working on this because it is tangentially related to something else. (I'm setting a feature flag in the main VuFind configuration in preparation for isolating code to propose as pull requests to the upstream VuFind.) Is this a legitimate way to inject the main VuFind configuration into the ILS driver? FolioFactory.php<?php
namespace IndexDataShared\ILS\Driver;
use Psr\Container\ContainerInterface;
class FolioFactory extends \VuFind\ILS\Driver\FolioFactory
{
/**
* Create an object
*
* Adds the main VuFind configuration object to the ILS driver.
*
* @param ContainerInterface $container Service manager
* @param string $requestedName Service being created
* @param null|array $options Extra options (optional)
*
* @return object
*
* @throws ServiceNotFoundException if unable to resolve the service.
* @throws ServiceNotCreatedException if an exception is raised when
* creating a service.
* @throws ContainerException&\Throwable if any other error occurs
*/
public function __invoke(
ContainerInterface $container,
$requestedName,
array $options = null
) {
$mainConfig = $container->get(\VuFind\Config\PluginManager::class)
->get('config');
$driver = parent::__invoke($container, $requestedName, $options);
if (method_exists($requestedName, 'setMainConfig')) {
$driver->setMainConfig($mainConfig);
}
return $driver;
}
}FOLIO driver (in part)<?php
namespace IndexDataShared\ILS\Driver;
class Folio extends \VuFind\ILS\Driver\Folio
{
/**
* VuFind configuration
*
* @var array
*/
protected $mainConfig = null;
/**
* Set main configuration
*
* Store a reference to the main VuFind configuration
*
* @param array $mainConfigArray Configuration array loaded from the main VuFind configuration
*/
public function setMainConfig($mainConfig)
{
$this->mainConfig = $mainConfig;
}There was a problem hiding this comment. Yes, @dltj, that is an appropriate way to inject the main configuration! A few random thoughts and comments: 1.) In the comments, I would suggest just referring to config.ini instead of saying "main VuFind configuration" -- it's both shorter and more explicit. 2.) It looks like you may still be enforcing an 80-character wrap in some places (or maybe you just copied and pasted some old wrapped code). If the tools are still forcing this on you, you should merge the latest dev branch here, since we raised the limit to 120 characters quite a while ago... but this PR has been sitting around long enough that it might predate that change. 3.) Since you're setting the configuration with a setter instead of via the constructor, you'll need to be careful to account for the possibility of a null value anywhere you read the property. That's not a problem, and you probably already know that, but just mentioning it because it's a detail that can get easily overlooked in the heat of coding. ;-) 4.) When working with ILS drivers, it's always important to remember that there's the possibility of having multiple instances of the same driver via the MultiBackend driver (e.g. in case a consortium needs to connect to multiple FOLIO instances). This is why it's generally preferable to inject settings via the ILS driver configuration instead of the main configuration, since that allows separate instances to be customized individually. In this instance, since you're looking for a global Shibboleth setting, and that seems to me like a higher-level concern than the ILS driver, I think the config.ini injection is probably appropriate (which is why I proposed it in the first place). There's also the option in the future of adding an override in Folio.ini that falls back to config.ini if some crazy use case comes up where we need the ability to differentiate further. But in any case, I'm just mentioning this as an important consideration because once config.ini is injected, it can get increasingly tempting to use it for things, and some of those things may not be the best way of achieving whatever goals are being worked on. I hope this helps (and sorry for wasting time with anything that didn't need to be said... but I figured better to over-warn than under-warn). :-) There was a problem hiding this comment. Ah, very good discussion discussion...
THANKYOU THANKYOU for all of the comments. I'm about to push a new version of the branch that is rebased on the current dev branch. There was a problem hiding this comment. Glad to help! Regarding style fixes, note that now that you're up to date with the latest dev branch, you can run If you're interested in learning how to do constructor injection, we can certainly discuss. (I don't think there's a need to change anything, but if you have any questions about the PHP syntax, etc., I'm happy to answer them for your future reference). |
||
| ) { | ||
| $cql = $this->config['User']['shib_cql']; | ||
| } else { | ||
| $cql = $this->config['User']['cql'] | ||
| ?? '%%username_field%% == "%%username%%"' | ||
| . ($passwordField ? ' and %%password_field%% == "%%password%%"' : ''); | ||
| } | ||
| $placeholders = [ | ||
| '%%username_field%%', | ||
| '%%password_field%%', | ||
|
|
||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I'd change this to "Configuration loaded from config.ini"