Add try/catch to finding of original SP

MKodde · MKodde · commit 9358fc09e974 · 2020-09-15T16:01:11.000+02:00
The original SP is not always returning an SP entity, but sometimes
throws an Entity not found exception. This is probably warranted, but
will be caught later in the process.

This was breaking for the debug authentication. Where the internal sp
entity id of EB is used as the issuer of the authn request. This yielded
an entity not found exception from the repositories as internal entities
are not stored in the database anymore.

Simply catching the exception and continuing with the issuer sp entity
id should solve this issue
diff --git a/library/EngineBlock/Corto/ProxyServer.php b/library/EngineBlock/Corto/ProxyServer.php
@@ -16,15 +16,16 @@
  * limitations under the License.
  */
 
-use OpenConext\EngineBlock\Metadata\Loa;
-use OpenConext\EngineBlock\Metadata\MfaEntity;
-use OpenConext\EngineBlock\Metadata\TransparentMfaEntity;
-use OpenConext\EngineBlockBundle\Authentication\AuthenticationState;
 use OpenConext\EngineBlock\Metadata\Entity\AbstractRole;
 use OpenConext\EngineBlock\Metadata\Entity\IdentityProvider;
 use OpenConext\EngineBlock\Metadata\Entity\ServiceProvider;
+use OpenConext\EngineBlock\Metadata\Loa;
+use OpenConext\EngineBlock\Metadata\MetadataRepository\EntityNotFoundException;
 use OpenConext\EngineBlock\Metadata\MetadataRepository\MetadataRepositoryInterface;
+use OpenConext\EngineBlock\Metadata\MfaEntity;
 use OpenConext\EngineBlock\Metadata\Service;
+use OpenConext\EngineBlock\Metadata\TransparentMfaEntity;
+use OpenConext\EngineBlockBundle\Authentication\AuthenticationState;
 use OpenConext\Value\Saml\Entity;
 use OpenConext\Value\Saml\EntityId;
 use OpenConext\Value\Saml\EntityType;
@@ -416,8 +417,15 @@ public function sendAuthenticationRequest(
             throw new EngineBlock_Corto_ProxyServer_Exception(sprintf('Unknown message type: "%s"', get_class($sspMessage)));
         }
 
+        try {
+            $originalSpEnitytId = $this->findOriginalServiceProvider($spRequest, $this->_logger)->entityId;
+        } catch (EntityNotFoundException $e) {
+            // On debug requests, the entity ID can not be found in the database as this is the EngineBlock internal
+            // entity which does not reside in the database.
+            $originalSpEnitytId = $spEntityId;
+        }
         // Add authncontextclassref if configured
-        $service = $identityProvider->getCoins()->mfaEntities()->findByEntityId($this->findOriginalServiceProvider($spRequest, $this->_logger)->entityId);
+        $service = $identityProvider->getCoins()->mfaEntities()->findByEntityId($originalSpEnitytId);
         if ($service instanceof MfaEntity) {
             $sspMessage->setRequestedAuthnContext([
                 'AuthnContextClassRef' => [
