Add option to environment to require SAML for a more secure installat…

…ion.
snipe · Dec 16, 2021 · 3c8d70c · 3c8d70c
1 parent 5232280
commit 3c8d70c
Show file tree

Hide file tree

Showing 2 changed files with 18 additions and 1 deletion.
diff --git a/app/Http/Controllers/Auth/LoginController.php b/app/Http/Controllers/Auth/LoginController.php
@@ -74,6 +74,12 @@ public function showLoginForm(Request $request)
  return redirect()->intended('/');
  }
 
+ //If the environment is set to ALWAYS require SAML, go straight to the SAML route.
+ if((env("REQUIRE_SAML", false)))
+ {
+ return redirect()->route('saml.login');
+ }
+
  if ($this->saml->isEnabled() && Setting::getSettings()->saml_forcelogin == '1' && ! ($request->has('nosaml') || $request->session()->has('error'))) {
  return redirect()->route('saml.login');
  }

diff --git a/config/app.php b/config/app.php
@@ -250,8 +250,19 @@
 
  'enable_csp' => env('ENABLE_CSP', false),
 
+ /*
+ |--------------------------------------------------------------------------
+ | Require SAML Login
+ |--------------------------------------------------------------------------
+ |
+ | Disable the ability to login via form login, and require all logins to
+ | process via SAML login. (If you are not using SAML, this option should
+ | be left alone.)
+ |
+ */
 
-
+ 'require_saml' => env('REQUIRE_SAML', false),
+
 
  /*
  |--------------------------------------------------------------------------