feat: process result->authentication and add to the PIResponse

* Create AuthenticationStatus + update PIResponse to process authenticationStatus * update authenticationstatus controll * Update PIResponse.php Co-authored-by: Nils Behlen <29949516+nilsbehlen@users.noreply.github.com> Co-authored-by: Pavel Břoušek <brousek@ics.muni.cz>

feat: process result->authentication and add to the PIResponse
3dfadc88 · lukasmatusiewicz · Pavel Břoušek · 760c0078 · 3dfadc88 · 3dfadc88
Verified Commit 3dfadc88 authored 3 years ago by lukasmatusiewicz Committed by Pavel Břoušek 3 years ago
--- a/src/AuthenticationStatus.php
+++ b/src/AuthenticationStatus.php
+<?php
+
+declare(strict_types=1);
+
+namespace PrivacyIDEA\PHPClient;
+
+abstract class AuthenticationStatus
+{
+    public const CHALLENGE = 'CHALLENGE';
+    public const ACCEPT = 'ACCEPT';
+    public const REJECT = 'REJECT';
+    public const NONE = 'NONE';
+}
--- a/src/PIResponse.php
+++ b/src/PIResponse.php
@@ -41,6 +41,11 @@ class PIResponse
     */
    public $value = false;

+    /**
+     * @var string Authentication Status
+     */
+    public $authenticationStatus = '';
+
    /**
     * @var array additional attributes of the user that can be sent by the server
     */
@@ -101,6 +106,19 @@ class PIResponse
        if (isset($map['detail']['transaction_id'])) {
            $ret->transactionID = $map['detail']['transaction_id'];
        }
+
+        // Check that the authentication status is one of the allowed ones
+        $r = $map['result']['authentication'] ?: null;
+        if (in_array(
+            $r,
+            [AuthenticationStatus::CHALLENGE, AuthenticationStatus::ACCEPT, AuthenticationStatus::REJECT],
+            true
+        )) {
+            $ret->authenticationStatus = $r;
+        } else {
+            $privacyIDEA->debugLog('Unknown authentication status');
+            $ret->authenticationStatus = AuthenticationStatus::NONE;
+        }
        $ret->status = $map['result']['status'] ?: false;
        $ret->value = $map['result']['value'] ?: false;