main
1# frozen_string_literal: true
2
3class ResponsesController < ApplicationController
4 def show
5 if session[:saml].present?
6 saml = Saml::Kit::Document.to_saml_document(session[:saml][:xml])
7 return render_error(:forbidden, model: saml) if saml.invalid?
8
9 post_back(saml, session[:saml][:params][:RelayState])
10 else
11 redirect_to my_dashboard_path
12 end
13 end
14
15 private
16
17 def post_back(saml, relay_state)
18 if saml.is_a?(Saml::Kit::AuthenticationRequest)
19 @url, @saml_params = saml.response_for(
20 current_user, binding: :http_post, relay_state: relay_state
21 ) do |builder|
22 @saml_response_builder = builder
23 end
24 mfa_issued_at = session[:mfa].present? ? session[:mfa][:issued_at] : nil
25 reset_session
26 session[:user_session_key] = Current.user_session.key
27 session[:mfa] = { issued_at: mfa_issued_at } if mfa_issued_at.present?
28 else
29 @url, @saml_params = saml.response_for(
30 binding: :http_post, relay_state: relay_state
31 ) do |builder|
32 @saml_response_builder = builder
33 end
34 reset_session
35 end
36 end
37end