app/Access/Guards/AsyncExternalBaseSessionGuard.php

<?php

namespace BookStack\Access\Guards;

/**
 * External Auth Session Guard.
 *
 * The login process for external auth (SAML2/OIDC) is async in nature, meaning it does not fit very well
 * into the default laravel 'Guard' auth flow. Instead, most of the logic is done via the relevant
 * controller and services. This class provides a safer, thin version of SessionGuard.
 */
class AsyncExternalBaseSessionGuard extends ExternalBaseSessionGuard
{
    /**
     * Validate a user's credentials.
     */
    public function validate(array $credentials = []): bool
    {
        return false;
    }

    /**
     * Attempt to authenticate a user using the given credentials.
     *
     * @param bool  $remember
     */
    public function attempt(array $credentials = [], $remember = false): bool
    {
        return false;
    }
}
Aligned SAML2 system with LDAP implementation in terms of guards and UI 2020-02-01 16:11:56 +00:00			`<?php`

Played around with a new app structure 2023-05-17 17:56:55 +01:00			`namespace BookStack\Access\Guards;`
Aligned SAML2 system with LDAP implementation in terms of guards and UI 2020-02-01 16:11:56 +00:00
Added files missed in previous commit 2020-02-02 10:59:03 +00:00			`/**`
Maintenance: Finished changes to meet phpstan level 3 2025-09-03 15:18:49 +01:00			`* External Auth Session Guard.`
Added files missed in previous commit 2020-02-02 10:59:03 +00:00			`*`
Maintenance: Finished changes to meet phpstan level 3 2025-09-03 15:18:49 +01:00			`* The login process for external auth (SAML2/OIDC) is async in nature, meaning it does not fit very well`
			`* into the default laravel 'Guard' auth flow. Instead, most of the logic is done via the relevant`
			`* controller and services. This class provides a safer, thin version of SessionGuard.`
Added files missed in previous commit 2020-02-02 10:59:03 +00:00			`*/`
Continued review of #2169 - Removed uneeded custom refresh or logout actions for OIDC. - Restructured how the services and guards are setup for external auth systems. SAML2 and OIDC now directly share a lot more logic. - Renamed any OpenId references to OIDC or OpenIdConnect - Removed non-required CSRF excemption for OIDC Not tested, Come to roadblock due to lack of PHP8 support in upstream dependancies. Certificate was deemed to be non-valid on every test attempt due to changes in PHP8. 2021-10-06 23:05:26 +01:00			`class AsyncExternalBaseSessionGuard extends ExternalBaseSessionGuard`
Aligned SAML2 system with LDAP implementation in terms of guards and UI 2020-02-01 16:11:56 +00:00			`{`
			`/**`
			`* Validate a user's credentials.`
			`*/`
Maintenance: Finished changes to meet phpstan level 3 2025-09-03 15:18:49 +01:00			`public function validate(array $credentials = []): bool`
Aligned SAML2 system with LDAP implementation in terms of guards and UI 2020-02-01 16:11:56 +00:00			`{`
Added files missed in previous commit 2020-02-02 10:59:03 +00:00			`return false;`
Aligned SAML2 system with LDAP implementation in terms of guards and UI 2020-02-01 16:11:56 +00:00			`}`

			`/**`
			`* Attempt to authenticate a user using the given credentials.`
			`*`
Apply fixes from StyleCI 2021-06-26 15:23:15 +00:00			`* @param bool $remember`
Aligned SAML2 system with LDAP implementation in terms of guards and UI 2020-02-01 16:11:56 +00:00			`*/`
Maintenance: Finished changes to meet phpstan level 3 2025-09-03 15:18:49 +01:00			`public function attempt(array $credentials = [], $remember = false): bool`
Aligned SAML2 system with LDAP implementation in terms of guards and UI 2020-02-01 16:11:56 +00:00			`{`
Added files missed in previous commit 2020-02-02 10:59:03 +00:00			`return false;`
Aligned SAML2 system with LDAP implementation in terms of guards and UI 2020-02-01 16:11:56 +00:00			`}`
			`}`