Added filtering for addInstitution app

vyskocilpavel · vyskocilpavel · commit 65e2c1ce344f · 2018-06-21T09:32:26.000+02:00
* Now we filter out all whitelisted entityIds from list od all entityIds and users will not see whitelisted entityIds in addInstitution app.
diff --git a/lib/Disco.php b/lib/Disco.php
@@ -68,7 +68,11 @@ public function handleRequest()
 
 		// no choice possible. Show discovery service page
 		$idpList = $this->getIdPList();
-		$idpList = $this->filterList($idpList);
+		if (isset($this->originalsp['disco.addInstitutionApp']) && $this->originalsp['disco.addInstitutionApp'] === true ) {
+			$idpList = $this->filterAddInstitutionList($idpList);
+		} else {
+			$idpList = $this->filterList($idpList);
+		}
 		$preferredIdP = $this->getRecommendedIdP();
 		$preferredIdP = array_key_exists($preferredIdP, $idpList) ? $preferredIdP : null;
 
@@ -121,6 +125,29 @@ protected function filterList($list)
 		return $list;
 	}
 
+	/**
+	 * Filter a list of entities for addInstitution app according to if entityID is whitelisted or not
+	 *
+	 * @param array $list A map of entities to filter.
+	 * @return array The list in $list after filtering entities.
+	 * @throws SimpleSAML_Error_Exception if all IdPs are filtered out and no one left.
+	 */
+	protected function filterAddInstitutionList($list)
+	{
+		foreach ($list as $entityId => $idp) {
+			if (in_array($entityId, $this->whitelist)){
+				unset($list[$entityId]);
+			}
+		}
+
+		if (empty($list)) {
+			throw new SimpleSAML_Error_Exception('All IdPs has been filtered out. And no one left.');
+		}
+
+		return $list;
+
+	}
+
 	/**
 	 * Filter out IdP which are not in SAML2 Scoping attribute list (SAML2 feature)
 	 * @param $list
