AAFM#32982 -- implementatie SSO2

svn path=/Website/branches/v2015.1/; revision=25404
2015-06-05 13:36:35 +00:00
parent 9267307a9e
commit f321eb5473
45 changed files with 474 additions and 1104 deletions
--- a/CUST/AAAR/sso.asp
+++ b/CUST/AAAR/sso.asp
@@ -1,19 +0,0 @@
-<%@ language = "JavaScript" %>
-<% /*
-    $Revision$
-    $Id$
-    File:        cust/aaar/sso.asp
-    Description: Single Sign On script
-    Parameters:
-    Context:
-    Note:
-*/ %>
-<%
-    Session("customerId") = "AAAR";
-    ANONYMOUS_Allowed = 1;
-%>
-<!-- #include file="../../appl/Shared/common.inc" -->
-<!-- #include file="../../appl/shared/login.inc" -->
-<%
-    SecureSSO({ strSharedKey: "780c865f-47d3-40c2-9990-33591dcb3eea", Timeout: 10}); //Sharedkey - Should be the same at customer side
-%>
--- a/CUST/AAAR/sso/SSOprodAAAR.asp
+++ b/CUST/AAAR/sso/SSOprodAAAR.asp
@@ -1,23 +1,28 @@
 <%@language="VBScript"%>
 <%
 '*******************************************************************
-'Script: SSO.asp
+'Script: SSO.ASP
 '
 '        $Revision$
 '        $Id$
 '
-
 'Doel:   SSO bewerkstelligen voor ASP providers - deel 1 van 2
-'Auteur: Thorwald Beeris 
 '*******************************************************************
 '* declare *********************************************************
 Dim strGUID, strCTID, strUserName, strKey, strASPUrl, strSharedKey
 Dim strEncryptedCode, strControlEncryptedCode
 '* variables *******************************************************
-strASPUrl = "https://aaar.facilitor.nl/cust/aaar/sso.asp" 'HTTPS URL adres van ASP
+strASPUrl = "https://aaar.facilitor.nl?sso=2" 'HTTPS URL adres van ASP
 strSharedKey = "780c865f-47d3-40c2-9990-33591dcb3eea" 'Sharedkey - Should be the same at target side
 '*******************************************************************
 response.Buffer=true
+Dim proto, zelf
+If Request.ServerVariables("SERVER_PORT") = 443 Then
+    proto = "https://"
+Else
+    proto = "http://"
+End If
+zelf = proto & Request.ServerVariables("HTTP_HOST") & Request.ServerVariables("SCRIPT_NAME")
 %>
 <HTML>
 <HEAD>
@@ -31,7 +36,7 @@ function fnSubmit() {
 <BODY LANGUAGE="javascript" onload="return fnSubmit()">
 Een moment aub.
 <form action='<%=strASPUrl%>' method="post" name="form" ID="Form1">
-<input type="hidden" name="returnurl" value="<%="https://" & Request.ServerVariables("HTTP_HOST") & Request.ServerVariables("SCRIPT_NAME")%>" ID="Hidden1">
+<input type="hidden" name="returnurl" value="<%=zelf%>" ID="Hidden1">
 <%
 '* request action = requestid ***************************************
 strGUID = Request.form("guid")
@@ -57,9 +62,9 @@ else
      		response.Status = 401
      		response.Flush
      		response.End
-      	end if
-      end if
-    end if
+	      end if
+	    end if
+	  end if
 	end if

 	' * Strip domain name
@@ -76,7 +81,7 @@ else
 	'* crypt Controlkey *********************************************
 	'First coding phase
 	strKey = mid(strSharedKey & strCTID,1,Len(strCTID))
-	strControlEncryptedCode = EnCrypt("https://" & Request.ServerVariables("HTTP_HOST") & Request.ServerVariables("SCRIPT_NAME"))
+	strControlEncryptedCode = EnCrypt(zelf)
 	'Second coding phase
 	strKey = mid(strCTID,1,Len(strControlEncryptedCode))
 	strControlEncryptedCode = EnCrypt(strControlEncryptedCode)