<?phpnamespace Hslavich\OneloginSamlBundle\Controller;use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;use Symfony\Component\HttpFoundation\Response;use Symfony\Component\Security\Core\Security;use Symfony\Component\HttpFoundation\Request;class SamlController extends AbstractController{ protected $samlAuth; public function __construct(\OneLogin\Saml2\Auth $samlAuth) { $this->samlAuth = $samlAuth; } public function loginAction(Request $request) { $authErrorKey = Security::AUTHENTICATION_ERROR; $session = $targetPath = $error = null; if ($request->hasSession()) { $session = $request->getSession(); $firewallName = array_slice(explode('.', trim($request->attributes->get('_firewall_context'))), -1)[0]; $targetPath = $session->get('_security.'.$firewallName.'.target_path'); } if ($request->attributes->has($authErrorKey)) { $error = $request->attributes->get($authErrorKey); } elseif (null !== $session && $session->has($authErrorKey)) { $error = $session->get($authErrorKey); $session->remove($authErrorKey); } if ($error instanceof \Exception) { throw new \RuntimeException($error->getMessage()); } $this->samlAuth->login($targetPath); } public function metadataAction() { $metadata = $this->samlAuth->getSettings()->getSPMetadata(); $response = new Response($metadata); $response->headers->set('Content-Type', 'xml'); return $response; } public function assertionConsumerServiceAction() { throw new \RuntimeException('You must configure the check path to be handled by the firewall.'); } public function singleLogoutServiceAction() { throw new \RuntimeException('You must activate the logout in your security firewall configuration.'); }}