<?php
/**
* Template form for giving consent.
*
* Parameters:
* - 'srcMetadata': Metadata/configuration for the source.
* - 'dstMetadata': Metadata/configuration for the destination.
* - 'yesTarget': Target URL for the yes-button. This URL will receive a POST request.
* - 'yesData': Parameters which should be included in the yes-request.
* - 'noTarget': Target URL for the no-button. This URL will receive a GET request.
* - 'noData': Parameters which should be included in the no-request.
* - 'attributes': The attributes which are about to be released.
* - 'sppp': URL to the privacy policy of the destination, or FALSE.
*
* @package simpleSAMLphp
* @version $Id$
*/
assert('is_array($this->data["srcMetadata"])');
assert('is_array($this->data["dstMetadata"])');
assert('is_string($this->data["yesTarget"])');
assert('is_array($this->data["yesData"])');
assert('is_string($this->data["noTarget"])');
assert('is_array($this->data["noData"])');
assert('is_array($this->data["attributes"])');
assert('$this->data["sppp"] === FALSE || is_string($this->data["sppp"])');
/* Parse parameters. */
if (array_key_exists('name', $this->data['srcMetadata'])) {
$srcName = $this->data['srcMetadata']['name'];
if (is_array($srcName)) {
$srcName = $this->t($srcName);
}
} else {
$srcName = $this->data['srcMetadata']['entityid'];
}
if (array_key_exists('name', $this->data['dstMetadata'])) {
$dstName = $this->data['dstMetadata']['name'];
if (is_array($dstName)) {
$dstName = $this->t($dstName);
}
} else {
$dstName = $this->data['dstMetadata']['entityid'];
}
$spPurpose = 'unspecified';
if (array_key_exists('descr_purpose', $this->data['dstMetadata'])) {
$spPurpose = $this->data['dstMetadata']['descr_purpose'];
if (is_array($spPurpose)) {
$spPurpose = $this->t($spPurpose);
}
}
$attributes = $this->data['attributes'];
$this->data['header'] = $this->t('{consent:consent_header}');
$this->data['head'] = '<link rel="stylesheet" type="text/css" href="/' . $this->data['baseurlpath'] . 'module.php/consent/style.css" />' . "\n";
$this->data['head'] .= '<script type="text/javascript" src="/' . $this->data['baseurlpath'] . 'resources/jquery.js"></script>
<script type="text/javascript">
$(document).ready(function() {
$("table[id=table_with_attributes]").hide();
$("legend[@id=attribute_switch]").
click(function(event){
$("table[id=table_with_attributes]").toggle();
$("div[@id=addattributes]").toggle();
});
$("a[@id=addattributesb]").
click(function(event){
event.preventDefault();
$("table[id=table_with_attributes]").show();
$("div[@id=addattributes]").hide("fast");
});
});
</script>
';
$this->includeAtTemplateBase('includes/header.php');
?>
<div id="content">
<p>
<?php echo $this->t('{consent:consent_accept}', array(
'IDPNAME' => $srcName,
'SPNAME' => $dstName,
'SPDESC' => $spPurpose,
)) ?>
</p>
<p style="margin: 1em">
<form style="display: inline; margin: 0px; padding: 0px" action="<?php echo htmlspecialchars($this->data['yesTarget']); ?>">
<?php
// Embed hidden fields...
foreach ($this->data['yesData'] as $name => $value) {
echo('<input type="hidden" name="' . htmlspecialchars($name) . '" value="' . htmlspecialchars($value) . '" />');
}
?>
<input type="submit" name="yes" id="yesbutton" value="<?php echo htmlspecialchars($this->t('{consent:yes}')) ?>" />
<?php
if ($this->data['usestorage']) {
$checked = ($this->data['checked'] ? 'checked="checked"' : '');
echo('<input type="checkbox" name="saveconsent" ' . $checked . ' value="1" /> ' . $this->t('{consent:remember}') . '');
}
?>
</form>
<form style="display: inline; margin-left: .5em;" action="<?php echo htmlspecialchars($this->data['noTarget']); ?>" method="get">
<?php
foreach ($this->data['noData'] as $name => $value) {
echo('<input type="hidden" name="' . htmlspecialchars($name) . '" value="' . htmlspecialchars($value) . '" />');
}
?>
<input type="submit" style="display: inline" name="no" id="nobutton" value="<?php echo htmlspecialchars($this->t('{consent:no}')) ?>" />
</p>
</form>
<?php
if ($this->data['sppp'] !== FALSE) {
echo "<p>" . htmlspecialchars($this->t('{consent:consent_privacypolicy}')) . " ";
echo "<a target='_new_window' href='" . htmlspecialchars($this->data['sppp']) . "'>" . htmlspecialchars($dstName) . "</a>";
echo "</p>";
}
?>
<form style="display: inline; margin-left: .5em;" action="<?php echo htmlspecialchars($this->data['noTarget']); ?>" method="get">
<?php
foreach ($this->data['noData'] as $name => $value) {
echo('<input type="hidden" name="' . htmlspecialchars($name) . '" value="' . htmlspecialchars($value) . '" />');
}
?>
<!-- Show attributes that are sent to the service in a fieldset.
This fieldset is not expanded by default, but can be shown by clicking on the legend.
-->
<fieldset>
<legend id="attribute_switch"> ยป <?php echo $this->t('{consent:consent_attributes_header}'); ?></legend>
<div id="addattributes"><a id="addattributesb"><?php echo $this->t('{consent:show_attributes}'); ?></a></div>
<table id="table_with_attributes" class="attributes">
<?php
$alternate = array('odd', 'even'); $i = 0;
foreach ($attributes as $name => $value) {
$nameTag = '{attributes:attribute_' . str_replace(":", "_", strtolower($name) ) . '}';
if ($this->getTag($nameTag) !== NULL) {
$name = $this->t($nameTag);
}
if (sizeof($value) > 1) {
echo '<tr class="' . $alternate[($i++ % 2)] . '"><td class="attrname">' . htmlspecialchars($name) . '</td><td class="attrvalue"><ul>';
foreach ($value AS $v) {
echo '<li>' . htmlspecialchars($v) . '</li>';
}
echo '</ul></td></tr>';
} else {
echo '<tr class="' . $alternate[($i++ % 2)] . '"><td class="attrname">' . htmlspecialchars($name) . '</td><td class="attrvalue">' . htmlspecialchars($value[0]) . '</td></tr>';
}
echo("\n");
}
?>
</table>
</fieldset>
<!-- end attribute view -->
</form>
<?php
$this->includeAtTemplateBase('includes/footer.php');
?>