SAMLParser: Extract all supported public keys.

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@2508 44740490-163a-0410-bde0-09ae8108e29a

SAMLParser: Extract all supported public keys.
git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@2508 44740490-163a-0410-bde0-09ae8108e29a
50d39dd5 · Olav Morken · a688801a · 50d39dd5
Commit 50d39dd5 authored 14 years ago by Olav Morken
--- a/lib/SimpleSAML/Metadata/SAMLParser.php
+++ b/lib/SimpleSAML/Metadata/SAMLParser.php
@@ -466,24 +466,9 @@ class SimpleSAML_Metadata_SAMLParser {
 			$ret['description'] = $spd['description'];
 		}
-		/* Add certificate data. Only the first valid certificate will be added. */
+		/* Add public keys. */
-		foreach($spd['keys'] as $key) {
+		if (!empty($spd['keys'])) {
-			if($key['type'] !== 'X509Certificate') {
+			$ret['keys'] = $spd['keys'];
-				continue;
-			}
-			if ($key['signing'] !== TRUE) {
-				continue;
-			}
-			$certData = base64_decode($key['X509Certificate']);
-			if($certData === FALSE) {
-				/* Empty/invalid certificate. */
-				continue;
-			}
-			$ret['certData'] = preg_replace('/\s+/', '', str_replace(array("\r", "\n"), '', $key['X509Certificate']));
-			break;
 		}
 		/* Add extensions. */
@@ -532,27 +517,9 @@ class SimpleSAML_Metadata_SAMLParser {
 		/* Find the ArtifactResolutionService endpoint. */
 		$ret['ArtifactResolutionService'] = $idp['ArtifactResolutionService'];
-		/* Add certificate to metadata. Only the first valid certificate will be added. */
+		/* Add public keys. */
-		$ret['certFingerprint'] = array();
+		if (!empty($idp['keys'])) {
-		foreach($idp['keys'] as $key) {
+			$ret['keys'] = $idp['keys'];
-			if($key['type'] !== 'X509Certificate') {
-				continue;
-			}
-			if ($key['signing'] !== TRUE) {
-				continue;
-			}
-			$certData = base64_decode($key['X509Certificate']);
-			if($certData === FALSE) {
-				/* Empty/invalid certificate. */
-				continue;
-			}
-			/* Add the certificate data to the metadata. Only the first certificate will be added. */
-			$ret['certData'] = preg_replace('/\s+/', '', str_replace(array("\r", "\n"), '', $key['X509Certificate']));
-			$ret['certFingerprint'][] = sha1($certData);
-			break;
 		}
 		/* Add extensions. */
@@ -626,24 +593,9 @@ class SimpleSAML_Metadata_SAMLParser {
 			$ret['description'] = $spd['description'];
 		}
-		/* Add certificate data. Only the first valid certificate will be added. */
+		/* Add public keys. */
-		foreach($spd['keys'] as $key) {
+		if (!empty($spd['keys'])) {
-			if($key['type'] !== 'X509Certificate') {
+			$ret['keys'] = $spd['keys'];
-				continue;
-			}
-			if ($key['signing'] !== TRUE) {
-				continue;
-			}
-			$certData = base64_decode($key['X509Certificate']);
-			if($certData === FALSE) {
-				/* Empty/invalid certificate. */
-				continue;
-			}
-			$ret['certData'] = preg_replace('/\s+/', '', str_replace(array("\r", "\n"), '', $key['X509Certificate']));
-			break;
 		}
@@ -706,27 +658,9 @@ class SimpleSAML_Metadata_SAMLParser {
 		$ret['ArtifactResolutionService'] = $idp['ArtifactResolutionService'];
-		/* Add certificate to metadata. Only the first valid certificate will be added. */
+		/* Add public keys. */
-		$ret['certFingerprint'] = array();
+		if (!empty($idp['keys'])) {
-		foreach($idp['keys'] as $key) {
+			$ret['keys'] = $idp['keys'];
-			if($key['type'] !== 'X509Certificate') {
-				continue;
-			}
-			if ($key['signing'] !== TRUE) {
-				continue;
-			}
-			$certData = base64_decode($key['X509Certificate']);
-			if($certData === FALSE) {
-				/* Empty/invalid certificate. */
-				continue;
-			}
-			/* Add the certificate data to the metadata. Only the first certificate will be added. */
-			$ret['certData'] = preg_replace('/\s+/', '', str_replace(array("\r", "\n"), '', $key['X509Certificate']));
-			$ret['certFingerprint'][] = sha1($certData);
-			break;
 		}
 		/* Add extensions. */