set SESSION->saml2idp during unsolicited logins

skodak · skodak · commit 9fedfa35e3ae · 2024-06-13T08:03:02.000+02:00
This makes the IdP known in saml_login_complete()
and tenant callback.
diff --git a/.extlib/simplesamlphp/modules/saml/src/Auth/Source/SP.php b/.extlib/simplesamlphp/modules/saml/src/Auth/Source/SP.php
@@ -1136,6 +1136,11 @@ public static function handleUnsolicitedAuth(string $authId, array $state, strin
         // Moodle hack to handle IdP unsolicited logins.
         $wantsurl = (new \moodle_url($redirectTo))->out(false);
         $SESSION->wantsurl = $wantsurl;
+        if (!empty($state['saml:sp:IdP'])) {
+            $SESSION->saml2idp = md5($state['saml:sp:IdP']);
+        } else {
+            unset($SESSION->saml2idp);
+        }
         $saml2auth->saml_login_complete($state['Attributes']);
         // Should never get to here.
 
