Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php function miniorange_saml_menu() { $T8["\141\144\155\x69\156\x2f\143\x6f\1..
Decoded Output download
<?php
function miniorange_saml_menu()
{
$T8["admin/config/people/miniorange_saml"] = array("title" => "miniOrange SAML Login Configuration", "description" => "miniOrange SAML Login Configuration", "page callback" => "drupal_get_form", "page arguments" => array("miniorange_saml_customer_setup"), "access arguments" => array("administer site configuration"), "file" => "miniorange_saml_customer_setup.inc");
$T8["admin/config/people/miniorange_saml/customer_setup"] = array("title" => "Register/Login", "weight" => -9, "type" => MENU_DEFAULT_LOCAL_TASK, "access arguments" => array("administer site configuration"), "page arguments" => array("miniorange_saml_customer_setup"), "file" => "miniorange_saml_customer_setup.inc");
$T8["admin/config/people/miniorange_saml/idp_setup"] = array("title" => "Service Provider Metadata", "weight" => -8, "access arguments" => array("administer site configuration"), "page arguments" => array("miniorange_sp_information"), "file" => "miniorange_sp_information.inc", "type" => MENU_LOCAL_TASK);
$T8["admin/config/people/miniorange_saml/sp_setup"] = array("title" => "Service Provider Setup", "weight" => -7, "type" => MENU_LOCAL_TASK, "access arguments" => array("administer site configuration"), "page arguments" => array("miniorange_saml_idp_setup"), "file" => "miniorange_saml_idp_setup.inc");
$T8["admin/config/people/miniorange_saml/signon_settings"] = array("title" => "Signin", "weight" => -6, "type" => MENU_LOCAL_TASK, "access arguments" => array("administer site configuration"), "page arguments" => array("miniorange_saml_login_options"), "file" => "miniorange_saml_login_options.inc");
$T8["admin/config/people/miniorange_saml/mapping_config"] = array("title" => "Mapping", "weight" => -5, "type" => MENU_LOCAL_TASK, "access arguments" => array("administer site configuration"), "page arguments" => array("miniorange_saml_mapping"), "file" => "miniorange_saml_mapping.inc");
$T8["admin/config/people/miniorange_saml/export_config"] = array("title" => "Import/Export", "weight" => -4, "type" => MENU_LOCAL_TASK, "access arguments" => array("administer site configuration"), "page arguments" => array("miniorange_saml_export_config"), "file" => "miniorange_saml_export_config.inc");
$T8["admin/config/people/miniorange_saml/custom_certificate"] = array("title" => "Custom Certificate", "weight" => -3, "type" => MENU_LOCAL_TASK, "access arguments" => array("administer site configuration"), "page arguments" => array("mo_saml_add_custom_certificate"), "file" => "mo_saml_add_custom_certificate.inc");
$T8["admin/config/people/miniorange_saml/licensing"] = array("title" => "Upgrade Plans", "weight" => -2, "type" => MENU_LOCAL_TASK, "access arguments" => array("administer site configuration"), "page arguments" => array("miniorange_saml_licensing"), "file" => "miniorange_saml_licensing.inc");
$T8["samllogin"] = array("access callback" => TRUE, "page callback" => "saml_login", "type" => MENU_CALLBACK);
$T8["samlassertion"] = array("access callback" => TRUE, "page callback" => "saml_response", "type" => MENU_CALLBACK);
$T8["samllogout"] = array("access callback" => TRUE, "page callback" => "saml_logout", "type" => MENU_CALLBACK);
$T8["testConfig"] = array("access callback" => TRUE, "page callback" => "test_configuration", "type" => MENU_CALLBACK);
$T8["showSAMLrequest"] = array("access callback" => TRUE, "page callback" => "SAML_Request_Generator", "type" => MENU_CALLBACK);
$T8["showSAMLresponse"] = array("access callback" => TRUE, "page callback" => "SAML_Response_Generator", "type" => MENU_CALLBACK);
$T8["mosp_metadata"] = array("access callback" => TRUE, "page callback" => "miniorange_saml_metadata", "type" => MENU_CALLBACK);
$T8["mosp_download_metadata"] = array("access arguments" => array("administer site configuration"), "page callback" => "miniorange_saml_download_metadata", "type" => MENU_CALLBACK);
$T8["moLicenseFetch"] = array("access callback" => TRUE, "page callback" => "moLicenseFetch", "type" => MENU_CALLBACK);
return $T8;
}
function moLicenseFetch($So = TRUE)
{
global $base_url;
$im = variable_get("miniorange_saml_customer_admin_email", NULL);
$yI = variable_get("miniorange_saml_customer_admin_phone", NULL);
$rR = new MiniorangeSAMLCustomer($im, $yI, NULL, NULL);
$Ah = $rR->ccl() !== NULL ? json_decode($rR->ccl()) : '';
if (isset($Ah->status) && $Ah->status == "SUCCESS") {
goto DZ;
}
$X4 = t("Failed to fetch update");
$ma = "error";
goto v0;
DZ:
variable_set("mo_last_license_fetch_time", time());
variable_set("miniorange_saml_licenseExpiry", $Ah->licenseExpiry);
variable_set("miniorange_saml_supportExpiry", $Ah->supportExpiry);
variable_set("miniorange_saml_licenseType", $Ah->licenseType);
variable_set("miniorange_saml_licensePlan", $Ah->licensePlan);
$X4 = t("Successfully fetched the update");
$ma = "status";
v0:
if (!$So) {
goto ZH;
}
drupal_set_message($X4, $ma);
drupal_goto($base_url . "/admin/config/people/miniorange_saml");
ZH:
}
function miniorange_saml_update_status_alter(&$p_)
{
$lY = system_get_info("module", "miniorange_saml")["version"];
$Yr = isset($p_["miniorange_saml"]["recommended"]) ? $p_["miniorange_saml"]["recommended"] : 99.98999999999999;
$QA = strtotime(variable_get("miniorange_saml_licenseExpiry", ''));
if (!(isset($p_["miniorange_saml"]) && $QA < time() && strcmp($lY, $Yr) != 0)) {
goto Y_;
}
if (!(time() - variable_get("mo_last_license_fetch_time", 0) >= 3600 * 24)) {
goto K7;
}
moLicenseFetch(FALSE);
K7:
$QA = strtotime(variable_get("miniorange_saml_licenseExpiry", ''));
if (!($QA < time())) {
goto gH;
}
drupal_set_message("your license is expired. You need to renew your license.", "error");
gH:
Y_:
}
function miniorange_saml_metadata()
{
_generate_metadata(false);
}
function miniorange_saml_download_metadata()
{
_generate_metadata(true);
}
function _generate_metadata($Z2 = false)
{
$Zd = Utilities::miniorange_get_baseURL();
$PS = $Zd;
$kS = variable_get("miniorange_saml_entity_id", '');
$Rx = !empty($kS) ? $kS : $Zd;
if (substr($PS, -1) == "/") {
goto yU;
}
$H2 = $PS . "/?q=samlassertion";
$xf = $PS . "/user/logout";
goto uJ;
yU:
$H2 = $PS . "?q=samlassertion";
$xf = $PS . "?user/logout";
uJ:
$Xi = Utilities::desanitize_certificate(Utilities::getPublicCertificate());
if (!(isset($_REQUEST["certificate"]) && $_REQUEST["certificate"] == "true")) {
goto WP;
}
$i6 = "Content-Disposition: attachment; filename="sp-certificate.crt"";
header($i6);
echo filter_xss(Utilities::getPublicCertificate());
exit;
WP:
if ($Z2) {
goto yG;
}
header("Content-Type: text/xml");
goto jd;
yG:
header("Content-Disposition: attachment; filename="Metadata.xml"");
jd:
echo "<?xml version="1.0"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" validUntil="2024-03-27T23:59:59Z" cacheDuration="PT1446808792S" entityID="" . $Rx . "">
<md:SPSSODescriptor AuthnRequestsSigned="true" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">\xa <md:KeyDescriptor use="signing">\xa <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">\xa <ds:X509Data>\xa <ds:X509Certificate>" . $Xi . "</ds:X509Certificate>\xa </ds:X509Data>\xa </ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="encryption">\xa <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>\xa <ds:X509Certificate>" . $Xi . "</ds:X509Certificate>\xa </ds:X509Data>\xa </ds:KeyInfo>
</md:KeyDescriptor>\xa <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="" . $xf . ""/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="" . $xf . ""/>\xa <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat>
<md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:unspecified</md:NameIDFormat>\xa <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="" . $H2 . "" index="1"/>\xa </md:SPSSODescriptor>
<md:Organization>\xa <md:OrganizationName xml:lang="en-US">miniOrange</md:OrganizationName>
<md:OrganizationDisplayName xml:lang="en-US">miniOrange</md:OrganizationDisplayName>\xa <md:OrganizationURL xml:lang="en-US">https://miniorange.com</md:OrganizationURL>\xa </md:Organization>
<md:ContactPerson contactType="technical">
<md:GivenName>miniOrange</md:GivenName>\xa <md:EmailAddress>[email protected]</md:EmailAddress>
</md:ContactPerson>
<md:ContactPerson contactType="support">
<md:GivenName>miniOrange</md:GivenName>
<md:EmailAddress>[email protected]</md:EmailAddress>
</md:ContactPerson>\xa </md:EntityDescriptor>";
exit;
}
function test_configuration()
{
$Zd = Utilities::miniorange_get_baseURL();
$zF = "testValidate";
$Lw = $_GET["testid"];
$g3 = db_query("SELECT * FROM {miniorange_saml_idp_list} WHERE id = {$Lw}");
$Dx = $g3->fetchAssoc();
$MV = $Dx["mo_idp_sso_url"];
$vX = $Zd . "/?q=samlassertion";
$kS = variable_get("miniorange_saml_entity_id", $Zd);
$bW = $Dx["mo_idp_request_signed"];
$O6 = $Dx["security_signature_algorithm"];
$bG = $Dx["mo_idp_http_binding_sso"];
$cR = $Dx["mo_idp_nameid_format"];
$BE = Utilities::createAuthnRequest($vX, $kS, $MV, $cR, $bG, "false");
$hx = new MiniOrangeAuthnRequest();
$hx->sendSamlRequestByBindingType($BE, $bG, $zF, $MV, $bW, $O6);
}
function SAML_Request_Generator()
{
$bz = variable_get("miniorange_saml_idp_login_url", '');
$cR = variable_get("miniorange_nameid_format", '');
global $base_url;
$H2 = $base_url . "/?q=samlassertion";
$ud = Utilities::createSAMLRequest($H2, $base_url, $bz, $cR);
$zF = "displaySAMLRequest";
Utilities::Print_SAML_Request($ud, $zF);
}
function SAML_Response_Generator()
{
saml_login("showSamlResponse");
}
function miniorange_saml_form_alter(&$form, &$form_state, $Vl)
{
$Zd = Utilities::miniorange_get_baseURL();
$K9 = variable_get("miniorange_saml_force_auth", FALSE);
$Sa = variable_get("miniorange_saml_enable_backdoor", FALSE);
$nn = variable_get("miniorange_saml_auto_redirect_to_idp", FALSE);
$pC = variable_get("miniorange_saml_enable_login", FALSE);
$Bm = variable_get("miniorange_saml_default_relaystate", $Zd . "/" . current_path());
if (!$pC) {
goto c9;
}
if (!($K9 && !user_is_logged_in() && !isset($_POST["pass"]))) {
goto ja;
}
$ri = drupal_get_query_parameters();
if (!(!$Sa || !isset($ri["saml_login"]) || $ri["saml_login"] != "false")) {
goto hS;
}
saml_login($Bm);
hS:
ja:
$uq = '';
if (!(($Vl == "user_login_block" || $Vl == "user_login") && !isset($_POST["pass"]))) {
goto Ry;
}
$ri = drupal_get_query_parameters();
if (!$Sa) {
goto oH;
}
if (isset($ri["saml_login"])) {
goto Vu;
}
if (!($nn && $Vl == "user_login" && strtolower($uq) != "false")) {
goto bR;
}
saml_login($Bm);
bR:
goto ma;
Vu:
$uq = $ri["saml_login"];
ma:
oH:
if (!($nn && $Vl == "user_login" && strtolower($uq) != "false")) {
goto bw;
}
saml_login($Bm);
bw:
$g3 = db_query("SELECT * FROM {miniorange_saml_idp_list}");
$Dx = $g3->fetchAll();
$EP = count($Dx);
if (!isset($Dx)) {
goto kv;
}
m3:
if (!($EP != 0)) {
goto yW;
}
foreach ($Dx as $hm) {
$og = $hm->mo_idp_name;
$AY = $Zd . "/?q=samllogin&idpname=" . $og;
$form["loginurl_"[$EP]] = array(array("#markup" => "<a href="" . $AY . "">Login using " . $og . "</a><br>"));
$EP--;
yd:
}
BQ:
goto m3;
yW:
kv:
Ry:
c9:
}
function saml_login($Bm = '')
{
$sw = drupal_get_query_parameters();
$Zd = Utilities::miniorange_get_baseURL();
$Ew = isset($_GET["idpname"]) ? $_GET["idpname"] : '';
if (!empty($Ew)) {
goto Ol;
}
$Ew = variable_get("miniorange_saml_default_idp_name", '');
Ol:
$g3 = db_query("SELECT * FROM {miniorange_saml_idp_list} WHERE mo_idp_name = '{$Ew}'");
$Dx = $g3->fetchAssoc();
if (!empty($Dx)) {
goto ZU;
}
echo "<div style="font-family:Calibri;padding:0 3%;">";
echo "<div style="color: #a94442;background-color: #f2dede;padding: 15px;margin-bottom: 20px;text-align:center;border:1px solid #E6B3B2;font-size:18pt;"> ERROR</div>
<div style="color: #a94442;font-size:14pt; margin-bottom:20px;"><p><strong>Error: </strong>Identity Provider not configured.</p>
<p>Please contact your administrator and report the following error:</p>
<p><strong>Possible Cause: </strong>The value of IDP name is wrong.</p>
</div>";
exit;
ZU:
$MV = $Dx["mo_idp_sso_url"];
$H2 = $Zd . "/?q=samlassertion";
$kS = variable_get("miniorange_saml_entity_id", $Zd);
$bW = $Dx["mo_idp_request_signed"];
$bG = $Dx["mo_idp_http_binding_sso"];
$cR = $Dx["mo_idp_nameid_format"];
$O6 = $Dx["security_signature_algorithm"];
$Bm = isset($sw["destination"]) ? trim($sw["destination"], "'") : $Bm;
if (!empty($Bm)) {
goto Ru;
}
$Bm = variable_get("miniorange_saml_default_relaystate", '');
Ru:
if (!empty($Bm)) {
goto pZ;
}
$Bm = $_SERVER["HTTP_REFERER"];
pZ:
if (!empty($Bm)) {
goto ed;
}
$NW = isset($_SERVER["HTTPS"]) && $_SERVER["HTTPS"] === "on" ? "https" : "http";
$t4 = $NW . "://{$_SERVER["HTTP_HOST"]}{$_SERVER["REQUEST_URI"]}";
$Bm = $t4;
ed:
if (!(empty($Bm) || strpos($Bm, "samllogin"))) {
goto aq;
}
$Bm = $Zd;
aq:
$hx = new MiniOrangeAuthnRequest();
$hx->initiateLogin($H2, $MV, $kS, $cR, $Bm, $bG, $bW, $O6);
}
function miniorange_saml_user_logout()
{
Utilities::mo_saml_logout();
$jX = variable_get("miniorange_saml_default_redirect_url_logout", '');
$Zr = isset($_GET["q"]) ? $_GET["q"] : '';
if (!(strpos($Zr, "masquerade") === false)) {
goto VF;
}
if (!(isset($jX) && !empty($jX))) {
goto RJ;
}
session_destroy();
drupal_goto($jX);
RJ:
VF:
}
function saml_logout()
{
session_destroy();
drupal_goto($_REQUEST["RelayState"]);
}
function saml_response()
{
global $user;
$Zd = Utilities::miniorange_get_baseURL();
$KN = variable_get("miniorange_saml_entity_id", '');
$KN = isset($KN) && !empty($KN) ? $KN : $Zd;
$lU = variable_get("miniorange_saml_default_role", '');
$VW = variable_get("miniorange_saml_login_by", 0);
if ($VW == 1) {
goto uA;
}
$wm = variable_get("miniorange_saml_email_attribute", '');
goto WH;
uA:
$wm = variable_get("miniorange_saml_username_attribute", '');
WH:
if (isset($_GET["SAMLResponse"])) {
goto eA;
}
$m4 = array();
$Mh = variable_get("miniorange_saml_attr1_name", '');
$qs = variable_get("miniorange_saml_idp_attr1_name", '');
$v7 = variable_get("miniorange_saml_attr2_name", '');
$Te = variable_get("miniorange_saml_idp_attr2_name", '');
$Bb = variable_get("miniorange_saml_attr3_name", '');
$Fl = variable_get("miniorange_saml_idp_attr3_name", '');
$oZ = variable_get("miniorange_saml_attr4_name", '');
$gn = variable_get("miniorange_saml_idp_attr4_name", '');
$CO = variable_get("miniorange_saml_attr5_name", '');
$mB = variable_get("miniorange_saml_idp_attr5_name", '');
$eo = variable_get("miniorange_saml_sp_user_attributes", '');
if (!(!empty($Mh) && !empty($qs))) {
goto WS;
}
$m4[$Mh] = $qs;
WS:
if (!(!empty($v7) && !empty($Te))) {
goto Qp;
}
$m4[$v7] = $Te;
Qp:
if (!(!empty($Bb) && !empty($Fl))) {
goto cS;
}
$m4[$Bb] = $Fl;
cS:
if (!(!empty($oZ) && !empty($gn))) {
goto Wl;
}
$m4[$oZ] = $gn;
Wl:
if (!(!empty($CO) && !empty($mB))) {
goto I8;
}
$m4[$CO] = $mB;
I8:
$mr = isset($eo) ? json_decode($eo, TRUE) : [];
if (!is_array($mr)) {
goto ak;
}
foreach ($mr as $qr) {
$nj = $qr["attr_name"];
$MM = $qr["attr_value"];
$m4[$nj] = $MM;
QS:
}
iv:
ak:
$CP = array();
$CP = !empty(variable_get("rolemap", '')) ? variable_get("rolemap", '') : NULL;
$kE = new MiniOrangeAcs();
$xy = variable_get("minorange_saml_customer_admin_fraud_check");
$EO = variable_get("miniorange_saml_customer_admin_token");
$im = variable_get("miniorange_saml_customer_admin_email");
global $base_url;
global $ey;
$Qj = $_SERVER["DOCUMENT_ROOT"] . $ey;
$Iu = trim($base_url, "/");
if (preg_match("#^http(s)?://#", $Iu)) {
goto Ef;
}
$Iu = "http://" . $Iu;
Ef:
$OE = parse_url($Iu);
if (empty($OE)) {
goto oT;
}
$Oa = isset($OE["path"]) ? $OE["path"] : '';
$Sz = preg_replace("/^www\./", '', $OE["host"] . $Oa);
oT:
$kT = $Qj . $Sz;
$Cn = variable_get("miniorange_saml_license_key", NULL);
if (($kT == AESEncryption::decrypt_data($xy, $EO) || $kT == AESEncryption::decrypt_data($xy, $EO, "AES-128-ECB")) && $im != null && $im != '' && $Cn != Null && $Cn != '') {
goto p6;
}
if ($Cn != null && $Cn != '') {
goto L_;
}
if ($im != null && $im != '') {
goto ZO;
}
if (!($im == null || $im == '')) {
goto zX;
}
echo "<div style="font-family:Calibri;padding:0 3%;">";
echo "<div style="color: #a94442;background-color: #f2dede;padding: 15px;margin-bottom: 20px;text-align:center;border:1px solid #E6B3B2;font-size:18pt;"> ERROR</div>
<div style="color: #a94442;font-size:14pt; margin-bottom:20px;"><p><strong>Error: </strong>You are not logged in.</p>
<p>Please login first to activate single sign on.</p>\xa <p><strong>Possible Cause: </strong>Make sure you have logged in/ Register in to module.</p>
</div>\xa <div style="margin:3%;display:block;text-align:center;"></div>\xa <div style="margin:3%;display:block;text-align:center;">
<input style="padding:1%;width:100px;background: #0091CD none repeat scroll 0% 0%;cursor: pointer;font-size:15px;border-width: 1px;border-style: solid;border-radius: 3px;white-space: nowrap;box-sizing: border-box;border-color: #0073AA;box-shadow: 0px 1px 0px rgba(120, 200, 230, 0.6) inset;color: #FFF;"type="button" value="Done" onClick="self.close();">
</div>";
exit;
zX:
goto gZ;
ZO:
echo "<div style="font-family:Calibri;padding:0 3%;">";
echo "<div style="color: #a94442;background-color: #f2dede;padding: 15px;margin-bottom: 20px;text-align:center;border:1px solid #E6B3B2;font-size:18pt;"> ERROR</div>
<div style="color: #a94442;font-size:14pt; margin-bottom:20px;"><p><strong>Error: </strong>License key you have entered has already been used.</p>
<p>Please enter a key which has not been used before on any other instance or if you have exausted all your keys then buy more license from Licensing.</p>\xa </div>\xa <div style="margin:3%;display:block;text-align:center;"></div>
<div style="margin:3%;display:block;text-align:center;">
<input style="padding:1%;width:100px;background: #0091CD none repeat scroll 0% 0%;cursor: pointer;font-size:15px;border-width: 1px;border-style: solid;border-radius: 3px;white-space: nowrap;box-sizing: border-box;border-color: #0073AA;box-shadow: 0px 1px 0px rgba(120, 200, 230, 0.6) inset;color: #FFF;"type="button" value="Done" onClick="self.close();">\xa </div>";
exit;
gZ:
goto zC;
L_:
echo "<div style="font-family:Calibri;padding:0 3%;">";
echo "<div style="color: #a94442;background-color: #f2dede;padding: 15px;margin-bottom: 20px;text-align:center;border:1px solid #E6B3B2;font-size:18pt;"> ERROR</div>
<div style="color: #a94442;font-size:14pt; margin-bottom:20px;"><p><strong>Error: </strong>License key you have not entered.</p>
<p>Please enter a key which has not been used before on any other instance and activate the module.</p>
</div>
<div style="margin:3%;display:block;text-align:center;"></div>
<div style="margin:3%;display:block;text-align:center;">\xa <input style="padding:1%;width:100px;background: #0091CD none repeat scroll 0% 0%;cursor: pointer;font-size:15px;border-width: 1px;border-style: solid;border-radius: 3px;white-space: nowrap;box-sizing: border-box;border-color: #0073AA;box-shadow: 0px 1px 0px rgba(120, 200, 230, 0.6) inset;color: #FFF;"type="button" value="Done" onClick="self.close();">
</div>";
exit;
zC:
goto Rs;
p6:
$b3 = $kE->processSamlResponse($_POST, $Zd, $KN, $wm, $m4, $CP);
Rs:
if (!($b3["email"] == '' || !filter_var($b3["email"], FILTER_VALIDATE_EMAIL))) {
goto qz;
}
echo "<div style="font-family:Calibri;padding:0 3%;">";
echo "<div style="color: #a94442;background-color: #f2dede;padding: 15px;margin-bottom: 20px;text-align:center;border:1px solid #E6B3B2;font-size:18pt;"> ERROR</div>
<div style="color: #a94442;font-size:14pt; margin-bottom:20px;"><p><strong>Error: </strong>User is restrictred to login.</p>\xa <p>Please contact your administrator and report the following error:</p>\xa <p><strong>Possible Cause: </strong> Error in reciving the email ID.</p>
</div>\xa <div style="margin:3%;display:block;text-align:center;">";
echo " <div style="margin:3%;display:block;text-align:center;"><a href=" ";
echo $base_url;
echo " "><input style="padding:1%;width:100px;background: #0091CD none repeat scroll 0% 0%;cursor: pointer;font-size:15px;border-width: 1px;border-style: solid;border-radius: 3px;white-space: nowrap;box-sizing: border-box;border-color: #0073AA;box-shadow: 0px 1px 0px rgba(120, 200, 230, 0.6) inset;color: #FFF;"type="button" value="Done" onClick="self.close();"></a></div>
";
exit;
qz:
if (variable_get("miniorange_saml_login_by") == 1) {
goto zs;
}
$Sc = user_load_by_mail($b3["username"]);
goto t_;
zs:
$Sc = user_load_by_name($b3["username"]);
t_:
if (!($Sc == NULL)) {
goto eX;
}
$RK = variable_get("miniorange_saml_disable_autocreate_users", FALSE);
if ($RK) {
goto D_;
}
$tF = user_password(8);
$V2 = array_search($lU, user_roles());
$DI[$V2] = $lU;
$u4 = array("name" => $b3["username"], "mail" => $b3["email"], "pass" => $tF, "status" => 1, "roles" => $DI);
$Sc = user_save(NULL, $u4);
goto VY;
D_:
echo "<div style="font-family:Calibri;padding:0 3%;">";
echo "<div style="color: #a94442;background-color: #f2dede;padding: 15px;margin-bottom: 20px;text-align:center;border:1px solid #E6B3B2;font-size:18pt;"> ERROR</div>
<div style="color: #a94442;font-size:14pt; margin-bottom:20px;"><p><strong>Error: </strong>User is restrictred to login.</p>\xa <p>Please contact your administrator and report the following error:</p>\xa <p><strong>Possible Cause: </strong> Non existing users are not allowed to login.</p>
</div>
<div style="margin:3%;display:block;text-align:center;">";
echo " <div style="margin:3%;display:block;text-align:center;"><a href=" ";
echo $base_url;
echo " "><input style="padding:1%;width:100px;background: #0091CD none repeat scroll 0% 0%;cursor: pointer;font-size:15px;border-width: 1px;border-style: solid;border-radius: 3px;white-space: nowrap;box-sizing: border-box;border-color: #0073AA;box-shadow: 0px 1px 0px rgba(120, 200, 230, 0.6) inset;color: #FFF;"type="button" value="Done" onClick="self.close();"></a></div>\xa ";
exit;
VY:
eX:
$tT = $b3["customFieldAttributes"];
if (!(isset($tT) && !empty($tT))) {
goto y9;
}
foreach ($tT as $EO => $IV) {
$Sc = user_load($Sc->uid);
$Sc->{$EO}["und"][0]["value"] = $IV;
user_save($Sc);
RQ:
}
kt:
y9:
$xt = $b3["customFieldRoles"];
if (is_null($Sc)) {
goto Ix;
}
$Sc = user_load($Sc->uid);
if (!variable_get("miniorange_saml_disable_role_update")) {
goto Ug;
}
$C4 = $Sc->{"roles"};
foreach ($C4 as $EO => $IV) {
if (in_array($IV, $CP)) {
goto O7;
}
$TE[$EO] = $IV;
O7:
Ya:
}
iN:
Ug:
if (empty($xt)) {
goto Jm;
}
foreach ($xt as $EO => $IV) {
$TE[$EO] = $IV;
$Sc->{"roles"} = $TE;
user_save($Sc);
OW:
}
X7:
Jm:
Ix:
if (flood_is_allowed($b3["username"], 3600) && user_is_blocked($b3["username"]) == FALSE) {
goto P_;
}
flood_register_event($b3, 3600);
form_set_error("user_login_block", t("You are not allowed to login"));
drupal_goto();
goto iD;
P_:
flood_clear_event($b3["username"]);
$user = user_load($Sc->uid);
$fr = array();
$fr["name"] = $user->name;
$V2 = array_slice($Sc->roles, 1);
$EO = '';
if (!isset($V2[0])) {
goto gz;
}
$EO = array_search($V2[0], user_roles());
gz:
if (!(isset($EO) && !is_null($EO) && $EO != '')) {
goto Sx;
}
$XF = variable_get(str_replace(" ", '', $Sc->{"roles"}[$EO] . "_sin"), '');
if (is_null($XF)) {
goto PQ;
}
$ur = variable_get(str_replace(" ", '', $Sc->{"roles"}[$EO] . "_sin"), '');
PQ:
Sx:
$hM = variable_get("miniorange_saml_default_relaystate", '');
if (isset($ur) && $ur != '') {
goto ZM;
}
if (isset($hM) && $hM != '') {
goto PH;
}
if (isset($b3["relay_state"]) && $b3["relay_state"] != '') {
goto IK;
}
$fr["redirect"] = $Zd;
goto wW;
IK:
$fr["redirect"] = $b3["relay_state"];
wW:
goto xV;
PH:
$fr["redirect"] = $hM;
xV:
goto UZ;
ZM:
$fr["redirect"] = $ur;
UZ:
$_SESSION["sessionIndex"] = $b3["sessionIndex"];
$_SESSION["NameID"] = $b3["NameID"];
$_SESSION["mo_saml"]["logged_in_with_idp"] = true;
if (!(isset($EO) && !is_null($EO) && $EO != '')) {
goto lc;
}
$j7 = variable_get(str_replace(" ", '', $Sc->{"roles"}[$EO] . "_sout"), '');
if (is_null($j7)) {
goto YZ;
}
$_SESSION["logout"] = variable_get(str_replace(" ", '', $Sc->{"roles"}[$EO] . "_sout"), '');
YZ:
lc:
user_login_finalize($fr);
drupal_goto($fr["redirect"]);
iD:
goto VR;
eA:
session_destroy();
drupal_goto($Zd);
VR:
}
function miniorange_saml_init()
{
$Bm = '';
$K9 = variable_get("miniorange_saml_force_auth", FALSE);
$pC = variable_get("miniorange_saml_enable_login", FALSE);
$Pg = variable_get("miniorange_saml_enable_backdoor", FALSE);
if (!$pC) {
goto qS;
}
if ($Pg && isset($_GET["saml_login"]) && $_GET["saml_login"] == "false") {
goto aK;
}
if (!($K9 && !user_is_logged_in() && !isset($_POST["SAMLResponse"]) && !isset($_POST["pass"]))) {
goto vA;
}
if (!(strpos(request_uri(), "cron.php") == false)) {
goto Hl;
}
saml_login($Bm);
Hl:
vA:
goto zb;
aK:
zb:
if (!(variable_get("miniorange_saml_license_key", NULL) == NULL)) {
goto Fd;
}
variable_del("miniorange_saml_enable_login");
variable_del("miniorange_saml_force_auth");
variable_del("miniorange_saml_enable_backdoor");
Fd:
qS:
}
function miniorange_saml_cron()
{
$g3 = db_query("SELECT * FROM {miniorange_saml_idp_list}");
$Dx = $g3->fetchAll();
$Lw = -1;
if (!isset($Dx)) {
goto qr;
}
foreach ($Dx as $hm) {
$Hd = $hm->miniorange_saml_fetch_metadata_time_intervals;
$t4 = $hm->miniorange_saml_meta_data_url;
$og = $hm->mo_idp_name;
$Lw = $hm->id;
if (!(($Hd == 1 || $Hd == true) && $t4 != '')) {
goto zo;
}
$ah = array("ssl" => array("verify_peer" => false, "verify_peer_name" => false));
$XY = file_get_contents($t4, false, stream_context_create($ah));
Utilities::upload_metadata($XY, $og, $Hd, $t4, true, $Lw);
zo:
h2:
}
bY:
qr:
}
function miniorange_saml_seckit_options_alter(&$Lc)
{
$gp = variable_get("miniorange_saml_idp_login_url", '');
$hv = parse_url($gp, PHP_URL_HOST);
$Lc["seckit_csrf"]["origin_whitelist"][] = "https://" . $hv;
$Lc["seckit_csrf"]["origin_whitelist"][] = "https://" . $hv . "/";
$W0 = parse_url($gp, PHP_URL_PORT);
if (is_null($W0)) {
goto Ud;
}
$hv = $hv . ":" . $W0;
Ud:
$Lc["seckit_csrf"]["origin_whitelist"][] = "https://" . $hv;
$Lc["socket_csrf"]["origin_whitelist"][] = "https://" . $hv . "/";
$Lc["seckit_csrf"]["origin_whitelist"][] = "null";
} ?>Did this file decode correctly?
Original Code
<?php
function miniorange_saml_menu()
{
$T8["\141\144\155\x69\156\x2f\143\x6f\156\x66\x69\x67\57\x70\145\157\160\154\x65\57\x6d\x69\156\151\x6f\162\x61\x6e\x67\x65\137\163\x61\x6d\154"] = array("\164\151\x74\x6c\145" => "\155\151\156\151\117\x72\141\x6e\147\x65\x20\123\101\x4d\x4c\x20\114\157\147\x69\156\40\x43\x6f\x6e\146\x69\x67\x75\x72\141\x74\x69\157\x6e", "\144\x65\x73\143\162\x69\x70\164\x69\157\156" => "\155\151\x6e\151\117\162\141\156\147\x65\40\123\101\x4d\x4c\40\114\157\147\151\156\x20\103\x6f\156\x66\x69\147\165\162\x61\x74\151\157\156", "\160\x61\x67\145\x20\143\x61\154\154\142\x61\x63\153" => "\144\x72\x75\x70\x61\x6c\137\x67\145\164\x5f\146\x6f\162\x6d", "\160\x61\147\145\40\x61\x72\147\165\155\145\156\x74\x73" => array("\x6d\x69\156\151\x6f\x72\141\156\147\x65\137\x73\141\155\x6c\137\x63\x75\x73\x74\157\x6d\145\162\137\x73\x65\x74\165\x70"), "\x61\143\x63\x65\163\x73\x20\x61\x72\x67\165\155\x65\156\164\x73" => array("\141\144\155\x69\156\151\x73\x74\145\162\x20\x73\151\x74\145\x20\143\157\x6e\x66\x69\147\165\x72\x61\x74\151\157\156"), "\146\x69\x6c\x65" => "\155\x69\x6e\151\x6f\162\141\156\x67\145\137\x73\141\155\154\x5f\x63\x75\x73\164\x6f\155\145\x72\137\163\x65\x74\x75\x70\56\x69\x6e\x63");
$T8["\x61\x64\155\151\156\57\143\x6f\x6e\146\151\147\57\160\x65\157\160\154\145\57\x6d\x69\156\x69\x6f\162\141\x6e\x67\x65\137\x73\141\155\x6c\x2f\143\165\163\x74\157\x6d\145\162\137\x73\x65\164\165\160"] = array("\164\151\x74\154\145" => "\122\x65\x67\151\x73\x74\145\162\x2f\x4c\x6f\x67\151\156", "\167\145\x69\147\150\x74" => -9, "\x74\x79\x70\145" => MENU_DEFAULT_LOCAL_TASK, "\141\143\x63\x65\163\x73\x20\x61\x72\x67\165\155\x65\156\164\x73" => array("\141\144\x6d\x69\156\151\163\x74\145\x72\40\163\x69\164\x65\x20\143\157\156\x66\151\147\x75\x72\141\x74\x69\x6f\x6e"), "\160\x61\x67\145\x20\141\x72\x67\165\x6d\145\156\x74\x73" => array("\155\151\x6e\x69\x6f\x72\x61\156\147\x65\x5f\163\141\155\x6c\137\x63\x75\x73\164\157\x6d\x65\162\x5f\163\145\x74\165\x70"), "\x66\x69\x6c\145" => "\x6d\151\156\x69\157\162\x61\x6e\x67\145\137\x73\141\155\154\137\x63\165\163\164\157\x6d\x65\162\137\163\x65\x74\x75\160\56\151\x6e\143");
$T8["\141\144\x6d\151\156\x2f\143\157\x6e\146\151\x67\57\x70\x65\x6f\160\x6c\x65\57\x6d\x69\156\151\x6f\x72\141\x6e\147\x65\x5f\163\x61\155\x6c\57\x69\144\x70\137\163\145\164\x75\x70"] = array("\164\x69\x74\x6c\145" => "\123\x65\162\x76\151\143\x65\x20\x50\x72\157\x76\151\144\x65\x72\40\115\145\x74\x61\x64\141\164\141", "\x77\145\x69\147\150\x74" => -8, "\141\143\143\145\163\x73\40\141\x72\x67\x75\x6d\145\x6e\164\x73" => array("\x61\144\x6d\151\156\x69\x73\x74\x65\162\x20\x73\x69\164\x65\40\143\x6f\156\146\151\147\x75\x72\141\x74\x69\157\156"), "\160\x61\x67\x65\40\x61\x72\147\165\x6d\145\156\164\x73" => array("\x6d\x69\x6e\151\x6f\162\141\156\147\x65\137\x73\x70\x5f\151\x6e\x66\x6f\162\155\141\x74\x69\157\x6e"), "\x66\x69\154\145" => "\x6d\151\x6e\x69\x6f\162\141\156\147\145\137\163\160\x5f\x69\156\x66\x6f\162\x6d\x61\x74\151\157\156\56\151\156\x63", "\164\x79\x70\x65" => MENU_LOCAL_TASK);
$T8["\x61\144\x6d\x69\156\57\143\x6f\156\146\151\x67\x2f\x70\145\x6f\160\154\145\57\x6d\151\156\x69\157\x72\141\156\147\x65\x5f\x73\141\155\x6c\x2f\163\x70\137\x73\145\164\165\160"] = array("\164\151\x74\154\145" => "\x53\145\162\x76\151\143\x65\x20\120\x72\157\166\x69\144\145\162\40\x53\145\x74\165\x70", "\x77\145\151\x67\150\x74" => -7, "\x74\x79\160\x65" => MENU_LOCAL_TASK, "\x61\143\x63\145\x73\x73\x20\x61\x72\x67\165\155\x65\156\164\163" => array("\x61\144\x6d\x69\156\x69\163\164\x65\162\x20\x73\151\x74\x65\x20\143\x6f\156\146\x69\x67\165\162\x61\x74\151\157\x6e"), "\160\141\x67\x65\40\141\162\147\165\155\145\156\x74\x73" => array("\x6d\151\x6e\x69\x6f\x72\141\156\147\145\x5f\x73\x61\155\x6c\x5f\151\144\160\137\x73\x65\x74\x75\160"), "\x66\x69\x6c\145" => "\155\151\156\151\x6f\x72\141\x6e\x67\x65\137\x73\141\155\x6c\137\x69\144\160\x5f\163\x65\164\165\x70\56\x69\156\143");
$T8["\141\x64\155\x69\156\x2f\143\x6f\156\x66\x69\x67\x2f\x70\145\157\160\154\x65\57\155\151\x6e\151\157\x72\x61\x6e\147\145\137\163\x61\x6d\x6c\57\163\151\x67\156\x6f\x6e\137\163\145\x74\164\x69\x6e\x67\163"] = array("\164\x69\x74\154\145" => "\123\151\147\x6e\151\x6e", "\x77\145\151\x67\150\x74" => -6, "\164\x79\x70\145" => MENU_LOCAL_TASK, "\x61\x63\x63\145\163\163\40\141\x72\x67\165\155\145\x6e\164\x73" => array("\141\x64\155\151\156\151\163\x74\x65\162\40\x73\151\164\x65\x20\143\157\x6e\x66\x69\147\165\x72\x61\x74\x69\157\156"), "\x70\x61\147\145\x20\x61\162\147\165\x6d\x65\x6e\164\x73" => array("\x6d\151\x6e\151\x6f\162\x61\156\x67\145\x5f\163\x61\155\154\x5f\154\x6f\147\151\x6e\137\x6f\160\x74\151\157\x6e\x73"), "\x66\151\x6c\145" => "\155\x69\x6e\151\x6f\162\x61\x6e\147\x65\137\163\141\x6d\154\137\154\x6f\147\x69\156\x5f\157\x70\x74\x69\x6f\x6e\163\56\x69\x6e\x63");
$T8["\x61\144\155\x69\x6e\x2f\x63\x6f\156\x66\151\147\57\160\145\x6f\160\x6c\145\x2f\155\x69\156\x69\157\162\141\x6e\x67\x65\x5f\163\141\155\154\x2f\x6d\x61\x70\160\x69\x6e\147\137\143\x6f\x6e\x66\x69\147"] = array("\164\151\x74\x6c\x65" => "\x4d\141\x70\160\151\156\x67", "\167\x65\x69\147\x68\164" => -5, "\x74\x79\x70\145" => MENU_LOCAL_TASK, "\141\143\143\x65\x73\163\40\x61\162\x67\x75\x6d\x65\x6e\164\x73" => array("\x61\144\155\x69\156\151\163\164\x65\x72\40\163\x69\x74\145\40\143\x6f\156\146\x69\x67\165\x72\141\x74\151\x6f\156"), "\160\141\x67\x65\40\141\x72\x67\x75\x6d\x65\x6e\x74\163" => array("\x6d\x69\156\x69\x6f\162\141\156\x67\145\x5f\163\141\155\154\137\x6d\141\160\x70\151\156\x67"), "\146\x69\x6c\x65" => "\155\x69\156\151\x6f\162\141\156\x67\145\x5f\x73\141\x6d\x6c\x5f\x6d\x61\160\x70\x69\x6e\147\x2e\x69\x6e\143");
$T8["\x61\x64\x6d\151\x6e\57\143\157\x6e\146\151\147\57\x70\x65\x6f\160\x6c\145\57\155\x69\156\x69\x6f\162\141\156\x67\x65\x5f\163\x61\155\154\57\x65\x78\x70\x6f\162\x74\x5f\143\157\156\146\x69\x67"] = array("\x74\x69\164\154\x65" => "\x49\x6d\x70\157\162\x74\x2f\105\x78\160\x6f\162\x74", "\167\x65\151\x67\x68\164" => -4, "\x74\171\x70\145" => MENU_LOCAL_TASK, "\x61\143\143\x65\163\163\x20\141\x72\147\x75\155\145\x6e\164\x73" => array("\x61\x64\155\x69\x6e\151\x73\x74\x65\162\x20\x73\x69\x74\145\40\143\x6f\x6e\146\x69\147\165\162\141\x74\151\157\156"), "\160\141\x67\x65\40\141\x72\x67\x75\x6d\x65\x6e\x74\163" => array("\x6d\151\156\151\x6f\x72\141\x6e\147\x65\x5f\x73\x61\155\154\x5f\x65\x78\x70\x6f\x72\164\x5f\143\157\156\146\x69\147"), "\x66\151\154\145" => "\x6d\151\x6e\151\x6f\x72\x61\x6e\147\145\137\x73\x61\x6d\x6c\x5f\x65\x78\x70\157\x72\x74\137\143\x6f\x6e\x66\x69\x67\x2e\x69\x6e\143");
$T8["\141\144\155\x69\x6e\57\x63\157\x6e\x66\151\147\x2f\x70\145\157\x70\x6c\x65\x2f\155\151\156\151\x6f\162\141\156\147\145\x5f\x73\141\x6d\x6c\x2f\143\165\163\x74\x6f\x6d\x5f\x63\145\162\164\x69\146\x69\x63\x61\x74\x65"] = array("\x74\151\x74\154\145" => "\103\165\163\164\x6f\x6d\40\x43\x65\162\x74\151\x66\x69\143\x61\x74\x65", "\167\145\x69\x67\x68\164" => -3, "\164\171\x70\x65" => MENU_LOCAL_TASK, "\x61\143\x63\x65\163\163\x20\141\162\x67\x75\x6d\x65\x6e\x74\x73" => array("\x61\144\x6d\151\156\151\163\x74\145\162\40\x73\151\x74\145\x20\143\157\156\146\x69\x67\165\x72\141\164\151\x6f\x6e"), "\x70\141\147\x65\x20\141\162\x67\x75\155\145\x6e\x74\163" => array("\x6d\x6f\137\163\141\x6d\154\x5f\141\144\x64\137\x63\x75\163\164\157\x6d\x5f\143\x65\162\164\151\146\x69\x63\141\x74\145"), "\x66\x69\154\145" => "\155\x6f\137\x73\x61\155\154\137\x61\144\144\137\x63\165\163\164\157\x6d\x5f\143\x65\x72\x74\151\x66\x69\143\x61\x74\x65\x2e\151\156\x63");
$T8["\141\144\155\x69\x6e\57\143\157\x6e\x66\x69\147\57\160\x65\x6f\x70\154\145\57\155\151\x6e\x69\x6f\x72\141\156\x67\145\x5f\163\141\x6d\x6c\57\154\151\143\145\x6e\x73\151\156\147"] = array("\x74\x69\164\154\x65" => "\x55\160\x67\x72\141\144\145\40\120\154\141\x6e\x73", "\167\145\x69\147\150\164" => -2, "\164\171\160\145" => MENU_LOCAL_TASK, "\141\143\143\x65\163\163\40\141\162\147\x75\x6d\x65\x6e\x74\163" => array("\141\x64\155\151\x6e\151\x73\164\145\x72\40\163\x69\164\x65\x20\143\x6f\x6e\146\x69\147\165\x72\141\x74\x69\x6f\x6e"), "\x70\141\x67\145\x20\141\162\147\165\155\145\156\164\163" => array("\x6d\151\x6e\x69\157\162\141\156\147\x65\x5f\x73\x61\155\x6c\x5f\x6c\x69\143\x65\156\163\x69\156\147"), "\x66\151\x6c\x65" => "\155\151\x6e\x69\157\x72\x61\156\x67\145\x5f\x73\x61\x6d\154\137\x6c\151\143\x65\156\163\x69\156\x67\56\151\x6e\x63");
$T8["\x73\141\155\154\x6c\157\x67\x69\156"] = array("\x61\x63\x63\x65\163\163\40\x63\x61\x6c\x6c\x62\141\x63\x6b" => TRUE, "\160\141\x67\x65\x20\x63\141\154\x6c\x62\141\x63\153" => "\163\141\x6d\154\137\x6c\x6f\x67\151\x6e", "\164\x79\x70\145" => MENU_CALLBACK);
$T8["\163\141\155\154\141\163\x73\145\x72\164\x69\157\x6e"] = array("\x61\x63\143\145\x73\163\x20\x63\x61\x6c\x6c\x62\141\x63\153" => TRUE, "\160\x61\x67\145\40\143\x61\x6c\x6c\142\x61\x63\x6b" => "\163\x61\155\154\x5f\x72\145\163\160\157\156\163\x65", "\x74\171\160\x65" => MENU_CALLBACK);
$T8["\163\141\155\154\154\157\x67\157\165\164"] = array("\141\x63\x63\145\x73\163\40\143\x61\x6c\154\x62\141\143\153" => TRUE, "\x70\141\x67\x65\x20\x63\x61\154\x6c\142\141\143\x6b" => "\163\x61\155\x6c\x5f\154\157\x67\x6f\165\164", "\x74\x79\x70\x65" => MENU_CALLBACK);
$T8["\x74\145\163\x74\103\x6f\x6e\146\151\x67"] = array("\141\143\143\145\163\x73\40\x63\141\x6c\154\x62\x61\x63\153" => TRUE, "\160\x61\x67\145\40\x63\x61\154\x6c\x62\x61\x63\153" => "\x74\145\x73\164\x5f\143\x6f\156\x66\151\147\165\162\x61\164\x69\157\x6e", "\164\171\x70\145" => MENU_CALLBACK);
$T8["\163\x68\157\x77\x53\101\x4d\x4c\x72\x65\161\165\x65\x73\164"] = array("\x61\143\143\x65\x73\x73\40\x63\141\x6c\x6c\142\x61\x63\x6b" => TRUE, "\160\x61\x67\x65\x20\143\x61\x6c\x6c\142\x61\143\x6b" => "\123\x41\x4d\x4c\137\122\x65\161\x75\145\163\164\x5f\107\145\x6e\145\x72\141\164\x6f\162", "\164\x79\x70\x65" => MENU_CALLBACK);
$T8["\x73\150\x6f\167\x53\x41\115\114\x72\x65\x73\x70\157\156\x73\x65"] = array("\x61\x63\143\145\x73\x73\40\143\141\154\x6c\x62\141\143\153" => TRUE, "\x70\141\147\x65\40\x63\x61\154\154\142\141\143\153" => "\x53\101\x4d\114\x5f\122\145\163\160\x6f\156\163\145\137\x47\145\x6e\145\x72\x61\x74\157\162", "\x74\171\x70\145" => MENU_CALLBACK);
$T8["\155\x6f\163\x70\137\x6d\145\x74\141\144\x61\164\141"] = array("\141\x63\x63\145\x73\163\x20\143\141\154\154\142\x61\x63\153" => TRUE, "\160\x61\147\x65\x20\x63\141\x6c\x6c\142\x61\143\153" => "\x6d\x69\x6e\x69\x6f\x72\141\x6e\147\145\137\x73\141\x6d\x6c\137\x6d\x65\164\x61\144\x61\x74\141", "\164\171\x70\x65" => MENU_CALLBACK);
$T8["\x6d\157\163\x70\137\144\x6f\x77\x6e\154\x6f\141\x64\137\155\x65\x74\141\x64\x61\x74\x61"] = array("\x61\x63\x63\x65\x73\x73\40\x61\162\147\165\x6d\145\156\164\x73" => array("\141\x64\155\x69\156\151\163\x74\145\162\x20\x73\151\x74\145\x20\143\157\156\x66\151\147\165\162\141\164\x69\x6f\x6e"), "\160\141\147\x65\40\143\x61\x6c\154\142\141\x63\x6b" => "\x6d\151\156\x69\x6f\162\x61\x6e\x67\145\137\163\141\x6d\154\137\x64\157\167\x6e\x6c\157\141\144\137\155\x65\164\141\144\x61\164\x61", "\x74\x79\160\x65" => MENU_CALLBACK);
$T8["\x6d\157\114\x69\x63\x65\x6e\x73\145\x46\x65\164\x63\x68"] = array("\x61\143\x63\x65\x73\163\40\143\141\x6c\x6c\142\141\x63\x6b" => TRUE, "\160\141\147\x65\40\x63\x61\x6c\x6c\142\x61\143\153" => "\155\x6f\x4c\x69\x63\x65\156\x73\145\106\145\164\143\x68", "\164\x79\160\145" => MENU_CALLBACK);
return $T8;
}
function moLicenseFetch($So = TRUE)
{
global $base_url;
$im = variable_get("\155\x69\156\x69\157\162\x61\x6e\147\145\137\x73\x61\155\x6c\x5f\x63\165\x73\x74\x6f\155\x65\x72\137\141\x64\x6d\151\x6e\x5f\x65\x6d\141\x69\x6c", NULL);
$yI = variable_get("\x6d\151\156\x69\x6f\162\141\156\147\145\137\163\141\155\154\x5f\143\x75\x73\164\x6f\155\x65\162\137\141\x64\155\x69\156\x5f\x70\x68\x6f\x6e\145", NULL);
$rR = new MiniorangeSAMLCustomer($im, $yI, NULL, NULL);
$Ah = $rR->ccl() !== NULL ? json_decode($rR->ccl()) : '';
if (isset($Ah->status) && $Ah->status == "\123\x55\x43\x43\105\123\x53") {
goto DZ;
}
$X4 = t("\106\x61\151\x6c\x65\144\40\x74\157\x20\146\145\164\x63\x68\x20\x75\x70\x64\141\x74\145");
$ma = "\145\x72\x72\157\162";
goto v0;
DZ:
variable_set("\x6d\157\137\154\141\163\x74\137\x6c\151\143\x65\156\x73\x65\137\x66\x65\x74\143\x68\x5f\x74\151\155\x65", time());
variable_set("\x6d\151\156\151\x6f\162\141\x6e\147\145\137\x73\x61\x6d\154\137\154\x69\143\x65\156\163\145\x45\x78\160\151\x72\171", $Ah->licenseExpiry);
variable_set("\x6d\151\x6e\x69\x6f\162\x61\x6e\147\145\x5f\163\x61\155\154\137\x73\x75\160\x70\x6f\x72\164\x45\170\160\151\162\171", $Ah->supportExpiry);
variable_set("\155\151\156\151\157\x72\141\x6e\x67\145\x5f\163\141\155\x6c\137\154\151\x63\x65\156\x73\145\x54\171\x70\145", $Ah->licenseType);
variable_set("\x6d\x69\x6e\151\157\x72\141\156\147\145\137\x73\x61\155\x6c\x5f\154\151\x63\145\x6e\x73\x65\120\154\141\x6e", $Ah->licensePlan);
$X4 = t("\123\165\x63\x63\145\x73\163\x66\165\154\x6c\171\40\x66\145\x74\x63\x68\x65\144\40\x74\x68\145\x20\x75\x70\144\141\x74\x65");
$ma = "\x73\164\141\164\x75\163";
v0:
if (!$So) {
goto ZH;
}
drupal_set_message($X4, $ma);
drupal_goto($base_url . "\x2f\x61\144\x6d\x69\156\x2f\143\x6f\x6e\146\x69\147\x2f\160\145\x6f\x70\154\145\57\x6d\151\x6e\x69\x6f\162\141\156\x67\145\x5f\x73\x61\x6d\x6c");
ZH:
}
function miniorange_saml_update_status_alter(&$p_)
{
$lY = system_get_info("\x6d\x6f\x64\x75\154\145", "\x6d\x69\156\x69\157\x72\141\x6e\147\x65\x5f\163\141\155\x6c")["\x76\145\x72\163\x69\157\156"];
$Yr = isset($p_["\155\x69\x6e\x69\157\162\x61\156\x67\145\137\x73\141\x6d\x6c"]["\x72\x65\143\x6f\x6d\x6d\145\156\x64\x65\144"]) ? $p_["\155\x69\156\151\157\162\141\156\x67\x65\137\163\x61\x6d\154"]["\162\x65\143\x6f\x6d\x6d\x65\156\144\145\x64"] : 99.98999999999999;
$QA = strtotime(variable_get("\155\x69\x6e\x69\x6f\x72\141\x6e\147\145\137\163\141\x6d\x6c\137\154\151\143\145\x6e\163\x65\x45\170\160\x69\162\171", ''));
if (!(isset($p_["\x6d\151\x6e\151\x6f\x72\x61\156\x67\145\x5f\x73\x61\x6d\x6c"]) && $QA < time() && strcmp($lY, $Yr) != 0)) {
goto Y_;
}
if (!(time() - variable_get("\155\157\x5f\154\x61\x73\x74\x5f\154\x69\143\145\156\x73\145\137\x66\x65\164\x63\x68\x5f\x74\x69\155\145", 0) >= 3600 * 24)) {
goto K7;
}
moLicenseFetch(FALSE);
K7:
$QA = strtotime(variable_get("\x6d\x69\x6e\x69\157\x72\x61\156\x67\145\x5f\x73\141\x6d\154\137\x6c\x69\143\x65\156\163\145\105\170\160\151\162\x79", ''));
if (!($QA < time())) {
goto gH;
}
drupal_set_message("\171\x6f\x75\162\x20\154\151\143\x65\x6e\163\145\40\x69\x73\40\x65\x78\160\x69\162\145\x64\56\x20\131\x6f\165\40\x6e\x65\x65\x64\40\x74\x6f\40\x72\x65\x6e\145\x77\40\x79\157\x75\162\40\x6c\151\143\145\x6e\163\x65\56", "\145\x72\x72\x6f\x72");
gH:
Y_:
}
function miniorange_saml_metadata()
{
_generate_metadata(false);
}
function miniorange_saml_download_metadata()
{
_generate_metadata(true);
}
function _generate_metadata($Z2 = false)
{
$Zd = Utilities::miniorange_get_baseURL();
$PS = $Zd;
$kS = variable_get("\x6d\x69\x6e\151\157\162\x61\156\x67\145\x5f\163\x61\x6d\154\x5f\145\x6e\164\151\164\171\137\151\x64", '');
$Rx = !empty($kS) ? $kS : $Zd;
if (substr($PS, -1) == "\x2f") {
goto yU;
}
$H2 = $PS . "\x2f\77\161\75\163\x61\x6d\154\x61\x73\163\145\x72\x74\151\x6f\x6e";
$xf = $PS . "\57\x75\x73\x65\x72\57\154\x6f\147\157\165\164";
goto uJ;
yU:
$H2 = $PS . "\x3f\x71\x3d\x73\x61\155\x6c\x61\x73\x73\145\x72\x74\x69\157\x6e";
$xf = $PS . "\77\165\163\145\x72\57\154\157\x67\157\x75\x74";
uJ:
$Xi = Utilities::desanitize_certificate(Utilities::getPublicCertificate());
if (!(isset($_REQUEST["\143\x65\x72\x74\151\x66\151\143\141\x74\x65"]) && $_REQUEST["\143\145\162\x74\x69\x66\151\143\x61\x74\x65"] == "\x74\162\165\x65")) {
goto WP;
}
$i6 = "\x43\x6f\156\164\145\x6e\164\55\104\151\x73\160\157\163\x69\x74\151\x6f\156\x3a\40\141\x74\164\141\143\x68\155\x65\x6e\164\x3b\x20\x66\151\x6c\x65\156\141\155\145\x3d\42\163\160\55\x63\145\x72\x74\151\146\x69\143\141\164\145\56\x63\x72\164\x22";
header($i6);
echo filter_xss(Utilities::getPublicCertificate());
exit;
WP:
if ($Z2) {
goto yG;
}
header("\103\x6f\x6e\x74\x65\x6e\164\x2d\x54\171\160\145\x3a\40\164\145\x78\x74\57\170\155\154");
goto jd;
yG:
header("\103\x6f\x6e\x74\145\x6e\164\x2d\x44\151\x73\160\x6f\x73\x69\x74\x69\157\156\x3a\x20\x61\x74\x74\x61\143\150\155\x65\x6e\164\73\x20\146\151\x6c\145\156\141\155\145\75\x22\x4d\145\164\x61\x64\141\x74\x61\x2e\x78\x6d\154\x22");
jd:
echo "\x3c\x3f\170\155\154\40\166\x65\162\x73\x69\x6f\x6e\75\x22\61\x2e\60\42\77\76\12\x20\40\x20\x20\x3c\x6d\144\72\x45\156\164\151\x74\x79\x44\145\x73\x63\x72\151\160\x74\157\x72\40\x78\155\x6c\x6e\163\x3a\x6d\144\x3d\42\165\162\x6e\x3a\157\x61\163\x69\163\72\156\x61\155\x65\163\x3a\164\x63\x3a\123\x41\x4d\114\x3a\62\x2e\60\x3a\x6d\x65\164\141\x64\x61\164\x61\x22\x20\x76\141\x6c\151\x64\x55\156\164\x69\154\x3d\42\x32\x30\x32\x34\x2d\x30\63\x2d\x32\67\x54\62\x33\72\65\71\72\x35\x39\132\x22\40\x63\x61\x63\150\145\104\x75\162\141\164\x69\157\x6e\x3d\x22\x50\x54\x31\64\64\x36\x38\x30\x38\67\x39\x32\123\x22\40\145\156\x74\151\x74\x79\111\104\x3d\42" . $Rx . "\42\76\12\x20\x20\40\40\x20\x20\74\x6d\x64\x3a\123\120\x53\x53\x4f\104\145\x73\143\x72\151\x70\x74\x6f\x72\x20\x41\165\164\x68\156\122\x65\161\165\145\x73\164\x73\123\151\147\x6e\x65\x64\75\42\164\162\x75\145\42\40\127\x61\x6e\x74\101\x73\x73\x65\x72\x74\x69\157\156\x73\x53\x69\x67\156\x65\144\x3d\42\x74\x72\x75\145\42\x20\160\x72\x6f\x74\157\143\x6f\154\123\165\160\160\157\x72\x74\x45\x6e\165\155\x65\x72\x61\x74\x69\157\x6e\x3d\42\165\x72\156\x3a\x6f\x61\x73\151\x73\72\156\141\x6d\145\163\x3a\164\x63\72\x53\101\115\x4c\x3a\62\56\x30\x3a\160\x72\157\164\157\x63\x6f\x6c\x22\x3e\xa\40\x20\40\x20\x20\x20\x20\40\74\155\x64\x3a\x4b\x65\171\104\x65\x73\143\x72\151\160\164\157\x72\40\x75\163\x65\75\42\x73\x69\147\x6e\151\x6e\x67\42\76\xa\40\x20\x20\x20\x20\40\x20\40\x20\x20\74\x64\x73\72\113\x65\171\x49\156\146\157\x20\170\x6d\x6c\x6e\163\72\x64\x73\x3d\42\x68\x74\164\160\x3a\57\x2f\x77\167\167\56\167\63\x2e\x6f\x72\147\x2f\62\60\x30\60\57\60\x39\x2f\170\155\154\x64\163\151\x67\x23\x22\76\xa\x20\x20\40\40\40\40\40\40\40\x20\x20\x20\x3c\144\163\72\130\65\60\x39\x44\141\164\141\x3e\xa\x20\x20\40\x20\40\40\x20\x20\x20\40\x20\40\40\x20\74\144\163\x3a\130\65\x30\x39\103\x65\162\x74\151\146\151\x63\141\x74\145\76" . $Xi . "\x3c\57\144\163\x3a\130\65\x30\x39\103\145\162\164\x69\x66\151\143\x61\x74\x65\x3e\xa\40\x20\40\40\x20\x20\x20\x20\x20\40\40\x20\x3c\x2f\x64\163\72\x58\x35\x30\x39\x44\141\x74\141\76\xa\40\40\40\40\x20\x20\x20\40\40\x20\74\57\x64\163\x3a\113\x65\x79\x49\156\x66\157\x3e\12\40\x20\40\40\40\40\x20\40\x3c\x2f\155\144\72\113\145\x79\x44\x65\x73\x63\162\151\x70\x74\157\x72\x3e\12\x20\40\x20\40\40\x20\40\40\74\155\144\x3a\x4b\x65\x79\104\145\163\143\x72\x69\x70\x74\157\x72\40\x75\x73\145\x3d\42\145\x6e\143\162\x79\160\x74\x69\157\156\x22\76\xa\40\40\x20\40\40\40\x20\x20\x20\40\x3c\x64\163\x3a\113\x65\x79\111\156\146\157\40\x78\155\154\156\x73\72\x64\x73\75\42\150\164\164\x70\x3a\x2f\57\167\x77\167\56\167\63\x2e\157\x72\x67\x2f\x32\60\x30\60\57\60\71\57\x78\x6d\x6c\144\163\x69\x67\43\42\x3e\12\x20\40\x20\x20\x20\x20\x20\x20\x20\x20\x20\40\x3c\x64\x73\x3a\x58\x35\x30\71\104\141\164\x61\76\xa\x20\40\x20\x20\40\40\40\40\x20\40\40\x20\x20\x20\x3c\144\x73\72\x58\65\60\x39\103\x65\162\x74\151\146\151\x63\141\164\x65\76" . $Xi . "\x3c\57\x64\163\72\x58\65\60\71\103\145\x72\x74\x69\146\x69\143\x61\164\145\76\xa\40\x20\x20\40\x20\40\x20\x20\40\x20\40\x20\74\57\x64\x73\x3a\x58\x35\x30\x39\x44\141\164\141\76\xa\40\40\40\x20\x20\40\40\x20\40\40\x3c\x2f\x64\163\x3a\113\145\171\x49\x6e\x66\x6f\x3e\12\x20\x20\x20\x20\40\40\40\x20\x3c\x2f\x6d\144\72\x4b\x65\171\x44\145\x73\x63\x72\x69\160\164\x6f\162\x3e\xa\x20\x20\x20\x20\x20\40\40\x20\x3c\155\x64\72\x53\x69\x6e\147\x6c\x65\114\x6f\x67\157\x75\164\x53\145\x72\166\x69\x63\145\x20\102\151\x6e\144\151\x6e\147\75\42\x75\162\x6e\72\x6f\x61\x73\151\x73\72\156\x61\x6d\145\163\x3a\164\x63\x3a\x53\101\x4d\x4c\x3a\x32\x2e\60\72\142\x69\156\144\151\156\147\163\72\x48\x54\x54\x50\x2d\120\x4f\123\x54\x22\40\x4c\x6f\143\x61\164\151\x6f\x6e\x3d\x22" . $xf . "\42\x2f\76\12\x20\40\x20\x20\x20\x20\40\40\74\x6d\x64\72\x53\151\156\x67\x6c\145\x4c\x6f\x67\x6f\165\x74\123\145\162\x76\x69\x63\145\x20\x42\x69\x6e\144\151\x6e\x67\75\x22\165\x72\x6e\x3a\157\x61\x73\151\x73\72\x6e\x61\155\145\163\72\164\x63\x3a\123\101\x4d\x4c\x3a\62\56\x30\x3a\x62\151\x6e\144\151\x6e\147\x73\x3a\x48\124\124\x50\x2d\x52\x65\x64\x69\162\x65\x63\164\x22\x20\114\157\143\x61\164\151\x6f\156\75\42" . $xf . "\42\x2f\76\xa\40\40\40\x20\x20\40\40\40\74\x6d\x64\x3a\x4e\141\x6d\x65\x49\104\x46\x6f\162\155\141\x74\76\x75\162\156\72\157\x61\163\x69\x73\x3a\x6e\141\x6d\145\163\x3a\x74\143\72\x53\x41\115\x4c\x3a\61\x2e\61\x3a\x6e\141\x6d\145\151\144\x2d\x66\157\x72\x6d\x61\164\72\x65\x6d\x61\x69\154\101\144\x64\162\x65\163\163\74\x2f\155\x64\x3a\x4e\141\x6d\x65\x49\104\106\x6f\162\155\141\x74\76\12\40\x20\40\x20\x20\40\x20\x20\x3c\155\144\x3a\x4e\141\x6d\145\111\x44\106\x6f\162\155\141\x74\x3e\x75\x72\x6e\x3a\x6f\x61\x73\x69\163\72\x6e\x61\155\145\x73\72\x74\143\x3a\123\x41\x4d\x4c\72\62\x2e\60\72\x6e\x61\155\145\151\x64\55\146\x6f\x72\155\x61\x74\x3a\x75\x6e\163\160\145\x63\151\146\x69\145\144\74\x2f\x6d\x64\72\x4e\141\155\x65\x49\104\106\x6f\162\x6d\141\164\x3e\xa\40\x20\40\x20\40\40\x20\x20\74\x6d\144\72\116\141\x6d\145\x49\104\x46\157\162\x6d\x61\164\76\165\x72\156\72\157\x61\163\x69\163\x3a\156\141\155\145\x73\x3a\164\143\72\123\x41\115\114\x3a\x32\x2e\60\x3a\156\x61\155\145\x69\144\55\146\x6f\x72\155\x61\164\x3a\164\x72\141\156\x73\151\x65\156\x74\x3c\x2f\155\144\72\116\x61\155\x65\111\104\x46\157\162\155\x61\164\76\12\x20\40\x20\x20\x20\40\40\x20\x3c\x6d\x64\72\x41\163\x73\x65\x72\164\x69\157\x6e\103\x6f\x6e\163\165\155\145\162\x53\145\x72\x76\151\143\145\x20\x42\x69\x6e\144\151\x6e\147\x3d\x22\x75\x72\156\72\157\x61\x73\x69\x73\72\156\141\x6d\x65\163\x3a\x74\x63\72\123\101\115\114\x3a\62\56\60\x3a\x62\151\156\x64\x69\156\147\x73\72\110\124\x54\120\x2d\x50\x4f\x53\124\42\x20\114\x6f\143\x61\x74\151\x6f\156\x3d\x22" . $H2 . "\42\40\151\x6e\x64\x65\170\75\42\61\42\57\x3e\xa\40\x20\40\40\40\40\74\57\x6d\144\x3a\x53\120\x53\123\x4f\x44\145\x73\x63\x72\151\x70\164\157\162\x3e\12\40\x20\40\40\40\40\74\x6d\144\x3a\117\162\x67\141\156\151\172\141\x74\151\x6f\x6e\x3e\xa\40\40\x20\40\x20\40\x20\x20\74\x6d\x64\72\117\162\x67\x61\156\x69\x7a\141\164\151\x6f\x6e\x4e\x61\x6d\145\40\170\155\x6c\72\154\141\x6e\x67\x3d\42\145\156\x2d\125\123\x22\x3e\155\151\156\151\x4f\x72\x61\156\147\x65\x3c\x2f\155\144\x3a\x4f\x72\x67\141\x6e\x69\x7a\x61\164\151\157\x6e\x4e\141\155\x65\76\12\x20\40\40\40\x20\40\x20\x20\74\x6d\144\x3a\117\x72\147\141\156\151\x7a\x61\x74\151\x6f\156\x44\x69\163\160\154\x61\x79\116\x61\x6d\x65\40\x78\155\154\72\x6c\141\156\147\x3d\42\145\x6e\55\125\x53\42\76\155\151\x6e\151\117\162\x61\156\x67\x65\x3c\57\x6d\x64\72\x4f\162\x67\x61\x6e\x69\x7a\x61\164\151\x6f\x6e\104\x69\x73\160\x6c\x61\171\116\x61\155\145\76\xa\40\x20\40\40\x20\40\x20\x20\74\x6d\144\72\117\x72\147\141\x6e\151\172\x61\164\x69\157\x6e\x55\x52\x4c\x20\x78\155\154\x3a\154\141\x6e\147\75\42\x65\156\55\x55\123\x22\76\x68\164\164\160\x73\72\x2f\57\155\151\156\x69\x6f\162\141\156\147\x65\x2e\143\157\155\x3c\57\155\x64\72\x4f\x72\x67\x61\156\x69\172\141\164\x69\157\156\125\122\x4c\x3e\xa\40\40\40\x20\40\40\x3c\57\155\x64\x3a\x4f\x72\x67\141\156\x69\x7a\x61\x74\151\157\156\x3e\12\x20\x20\x20\40\x20\x20\74\x6d\144\72\103\157\156\164\141\x63\x74\x50\x65\x72\163\157\x6e\40\143\x6f\x6e\x74\141\x63\x74\124\x79\160\x65\75\42\164\145\143\x68\156\x69\143\141\x6c\x22\76\12\x20\x20\40\x20\x20\x20\x20\40\74\x6d\x64\72\x47\151\x76\x65\x6e\116\141\x6d\145\76\155\x69\x6e\x69\x4f\162\141\156\x67\145\74\x2f\155\x64\x3a\107\x69\166\145\x6e\x4e\141\x6d\145\76\xa\x20\40\x20\40\x20\x20\x20\x20\x3c\155\144\x3a\105\155\141\151\x6c\101\144\x64\162\x65\x73\x73\x3e\x69\156\x66\x6f\100\170\x65\x63\165\x72\151\146\171\x2e\x63\157\x6d\74\x2f\x6d\144\x3a\105\155\x61\x69\154\x41\x64\144\162\145\163\x73\x3e\12\40\x20\40\40\x20\40\x3c\57\155\144\72\x43\157\x6e\x74\141\143\x74\x50\x65\x72\x73\x6f\156\76\12\40\x20\40\x20\x20\x20\x3c\x6d\x64\72\103\x6f\156\x74\141\143\x74\x50\x65\162\163\x6f\156\x20\x63\157\156\x74\141\143\x74\x54\x79\x70\145\x3d\42\x73\x75\160\x70\157\x72\164\42\76\12\40\x20\40\x20\x20\40\x20\x20\x3c\155\144\x3a\x47\151\166\x65\156\116\141\x6d\x65\76\x6d\151\x6e\x69\x4f\x72\141\x6e\147\x65\x3c\57\155\144\x3a\x47\x69\166\145\x6e\116\141\x6d\145\76\12\40\x20\x20\40\x20\x20\40\x20\x3c\155\144\x3a\105\x6d\141\151\154\101\x64\144\x72\x65\163\163\76\x69\x6e\146\157\x40\x78\x65\x63\165\162\151\146\x79\x2e\143\x6f\x6d\x3c\x2f\x6d\x64\72\105\155\x61\151\154\101\144\x64\162\145\x73\x73\76\12\x20\40\x20\x20\40\x20\74\57\x6d\x64\72\103\x6f\x6e\x74\141\143\x74\120\145\x72\163\x6f\x6e\76\xa\x20\x20\x20\40\74\x2f\155\144\72\x45\156\164\151\164\x79\104\x65\x73\143\x72\x69\x70\x74\x6f\x72\x3e";
exit;
}
function test_configuration()
{
$Zd = Utilities::miniorange_get_baseURL();
$zF = "\164\x65\x73\164\x56\x61\154\151\144\x61\x74\145";
$Lw = $_GET["\164\x65\x73\x74\x69\144"];
$g3 = db_query("\x53\105\114\105\103\x54\x20\52\x20\106\122\117\x4d\x20\x7b\155\151\156\x69\157\162\141\x6e\x67\145\137\x73\141\155\154\x5f\151\x64\160\x5f\x6c\x69\163\164\x7d\x20\x57\x48\x45\122\105\40\151\x64\40\75\x20{$Lw}");
$Dx = $g3->fetchAssoc();
$MV = $Dx["\155\x6f\x5f\151\144\x70\x5f\163\163\x6f\x5f\165\162\x6c"];
$vX = $Zd . "\57\x3f\x71\x3d\x73\x61\155\154\141\x73\x73\x65\x72\164\151\x6f\x6e";
$kS = variable_get("\155\151\x6e\151\x6f\x72\x61\156\x67\x65\x5f\163\141\155\154\137\x65\156\164\x69\x74\171\137\x69\144", $Zd);
$bW = $Dx["\x6d\x6f\137\151\144\x70\x5f\162\x65\161\165\145\163\x74\x5f\x73\x69\x67\156\x65\x64"];
$O6 = $Dx["\163\145\143\165\162\x69\x74\171\x5f\x73\151\147\x6e\141\x74\165\x72\x65\137\x61\154\147\157\x72\151\164\x68\155"];
$bG = $Dx["\x6d\157\137\151\x64\160\x5f\150\x74\x74\160\x5f\x62\x69\156\144\151\x6e\147\x5f\x73\x73\x6f"];
$cR = $Dx["\x6d\x6f\137\x69\144\x70\x5f\x6e\141\155\145\x69\144\x5f\146\157\x72\x6d\x61\x74"];
$BE = Utilities::createAuthnRequest($vX, $kS, $MV, $cR, $bG, "\x66\141\x6c\x73\x65");
$hx = new MiniOrangeAuthnRequest();
$hx->sendSamlRequestByBindingType($BE, $bG, $zF, $MV, $bW, $O6);
}
function SAML_Request_Generator()
{
$bz = variable_get("\x6d\151\156\x69\x6f\162\141\156\147\145\x5f\163\141\155\x6c\137\x69\144\x70\x5f\x6c\x6f\147\x69\x6e\137\165\x72\154", '');
$cR = variable_get("\155\x69\156\x69\x6f\x72\141\156\x67\x65\x5f\156\141\155\x65\x69\144\137\146\157\x72\x6d\141\x74", '');
global $base_url;
$H2 = $base_url . "\57\77\x71\x3d\x73\x61\155\x6c\x61\163\163\x65\162\x74\151\157\x6e";
$ud = Utilities::createSAMLRequest($H2, $base_url, $bz, $cR);
$zF = "\x64\x69\163\x70\154\141\171\123\101\x4d\114\x52\x65\x71\x75\x65\x73\x74";
Utilities::Print_SAML_Request($ud, $zF);
}
function SAML_Response_Generator()
{
saml_login("\163\x68\157\167\x53\141\x6d\154\x52\145\x73\160\x6f\156\x73\x65");
}
function miniorange_saml_form_alter(&$form, &$form_state, $Vl)
{
$Zd = Utilities::miniorange_get_baseURL();
$K9 = variable_get("\x6d\151\x6e\x69\x6f\162\141\x6e\x67\145\137\x73\x61\155\x6c\137\x66\x6f\x72\x63\145\137\141\165\164\x68", FALSE);
$Sa = variable_get("\155\151\x6e\x69\x6f\x72\x61\x6e\x67\145\137\163\141\x6d\154\137\145\156\141\142\x6c\145\x5f\142\x61\143\153\x64\157\157\x72", FALSE);
$nn = variable_get("\155\151\156\151\x6f\162\141\x6e\147\x65\137\163\141\155\x6c\137\x61\x75\x74\x6f\137\x72\145\144\x69\x72\x65\143\x74\x5f\164\157\137\151\x64\160", FALSE);
$pC = variable_get("\x6d\151\156\151\157\x72\x61\156\x67\x65\137\163\x61\x6d\x6c\137\145\156\141\142\x6c\145\x5f\154\x6f\x67\x69\156", FALSE);
$Bm = variable_get("\155\151\x6e\151\157\x72\141\x6e\x67\x65\x5f\163\141\x6d\x6c\x5f\x64\145\x66\141\165\154\164\x5f\162\145\x6c\141\x79\x73\164\x61\x74\145", $Zd . "\x2f" . current_path());
if (!$pC) {
goto c9;
}
if (!($K9 && !user_is_logged_in() && !isset($_POST["\160\x61\163\163"]))) {
goto ja;
}
$ri = drupal_get_query_parameters();
if (!(!$Sa || !isset($ri["\x73\141\x6d\x6c\137\154\157\x67\x69\x6e"]) || $ri["\x73\x61\155\x6c\137\x6c\x6f\147\x69\156"] != "\x66\x61\x6c\x73\145")) {
goto hS;
}
saml_login($Bm);
hS:
ja:
$uq = '';
if (!(($Vl == "\x75\163\145\x72\137\x6c\x6f\147\x69\x6e\137\x62\154\157\143\153" || $Vl == "\x75\x73\145\162\137\154\157\x67\151\156") && !isset($_POST["\x70\141\x73\163"]))) {
goto Ry;
}
$ri = drupal_get_query_parameters();
if (!$Sa) {
goto oH;
}
if (isset($ri["\x73\x61\x6d\154\x5f\x6c\157\x67\151\x6e"])) {
goto Vu;
}
if (!($nn && $Vl == "\x75\163\x65\x72\x5f\154\157\147\151\156" && strtolower($uq) != "\x66\141\154\x73\145")) {
goto bR;
}
saml_login($Bm);
bR:
goto ma;
Vu:
$uq = $ri["\163\141\155\154\x5f\154\157\x67\x69\x6e"];
ma:
oH:
if (!($nn && $Vl == "\x75\163\x65\x72\137\x6c\x6f\147\151\156" && strtolower($uq) != "\x66\x61\x6c\x73\x65")) {
goto bw;
}
saml_login($Bm);
bw:
$g3 = db_query("\x53\x45\x4c\x45\x43\124\x20\x2a\40\x46\x52\x4f\x4d\x20\173\x6d\151\x6e\151\x6f\x72\x61\x6e\x67\145\x5f\163\x61\x6d\x6c\x5f\x69\144\x70\x5f\x6c\x69\163\x74\175");
$Dx = $g3->fetchAll();
$EP = count($Dx);
if (!isset($Dx)) {
goto kv;
}
m3:
if (!($EP != 0)) {
goto yW;
}
foreach ($Dx as $hm) {
$og = $hm->mo_idp_name;
$AY = $Zd . "\x2f\77\x71\75\163\141\x6d\x6c\x6c\157\x67\x69\156\46\x69\144\x70\x6e\141\155\145\75" . $og;
$form["\x6c\x6f\147\151\156\x75\x72\x6c\137"[$EP]] = array(array("\43\x6d\141\x72\153\165\x70" => "\74\x61\40\x68\x72\x65\146\x3d\42" . $AY . "\42\x3e\x4c\x6f\x67\151\x6e\x20\165\x73\x69\156\147\x20" . $og . "\74\57\141\x3e\74\x62\x72\x3e"));
$EP--;
yd:
}
BQ:
goto m3;
yW:
kv:
Ry:
c9:
}
function saml_login($Bm = '')
{
$sw = drupal_get_query_parameters();
$Zd = Utilities::miniorange_get_baseURL();
$Ew = isset($_GET["\151\144\160\156\141\x6d\x65"]) ? $_GET["\151\144\160\x6e\141\155\145"] : '';
if (!empty($Ew)) {
goto Ol;
}
$Ew = variable_get("\155\x69\x6e\151\157\x72\141\156\x67\145\137\163\x61\x6d\154\x5f\144\145\x66\x61\x75\x6c\x74\x5f\151\144\x70\x5f\156\x61\x6d\145", '');
Ol:
$g3 = db_query("\x53\x45\114\x45\x43\124\40\x2a\x20\x46\122\117\115\x20\x7b\155\x69\156\x69\157\162\x61\x6e\x67\145\x5f\x73\x61\155\154\x5f\151\x64\160\137\154\151\x73\x74\175\x20\x57\110\x45\122\105\40\x6d\157\x5f\x69\144\x70\x5f\156\x61\155\145\40\75\x20\47{$Ew}\47");
$Dx = $g3->fetchAssoc();
if (!empty($Dx)) {
goto ZU;
}
echo "\x3c\144\x69\166\x20\163\164\171\154\x65\x3d\x22\146\157\156\164\55\x66\x61\155\151\x6c\171\72\103\x61\154\x69\x62\162\x69\73\160\x61\x64\144\x69\156\x67\72\60\40\63\45\73\x22\x3e";
echo "\74\x64\x69\166\40\x73\x74\171\154\145\x3d\x22\143\157\154\157\162\x3a\40\x23\x61\x39\64\x34\64\x32\73\x62\x61\x63\153\147\x72\x6f\x75\x6e\144\55\x63\x6f\x6c\x6f\162\72\40\43\146\62\144\145\x64\145\x3b\160\x61\x64\x64\x69\156\x67\x3a\40\x31\65\160\170\x3b\x6d\141\162\x67\151\x6e\x2d\142\157\164\x74\x6f\155\x3a\40\x32\60\x70\170\x3b\x74\145\170\x74\x2d\141\x6c\151\147\x6e\x3a\x63\x65\156\x74\145\162\73\142\x6f\x72\x64\145\162\x3a\x31\x70\170\40\163\157\x6c\x69\144\x20\43\x45\66\102\63\x42\62\x3b\x66\157\156\x74\55\x73\x69\172\x65\x3a\61\70\x70\164\x3b\42\76\40\105\122\x52\117\122\x3c\57\x64\x69\166\x3e\12\x20\40\40\40\x20\40\x20\x20\40\x20\x20\40\40\x20\40\40\74\x64\151\166\40\163\x74\x79\x6c\x65\x3d\x22\x63\x6f\x6c\x6f\162\x3a\40\x23\141\x39\x34\64\x34\x32\x3b\x66\157\156\x74\55\163\151\172\x65\x3a\61\64\160\x74\73\40\155\x61\162\147\151\x6e\x2d\x62\157\x74\x74\157\x6d\x3a\x32\x30\x70\x78\73\x22\76\74\x70\76\x3c\x73\x74\162\157\156\147\76\x45\x72\x72\x6f\162\72\x20\74\x2f\x73\x74\162\157\156\x67\76\x49\144\x65\156\164\151\164\171\x20\x50\x72\x6f\x76\151\x64\x65\162\40\156\x6f\164\40\x63\157\156\146\x69\x67\x75\x72\x65\x64\56\x3c\57\160\76\12\x20\x20\x20\40\40\40\x20\x20\40\40\x20\40\40\40\x20\40\74\160\x3e\x50\x6c\145\x61\163\145\x20\143\x6f\156\x74\x61\x63\164\x20\171\x6f\x75\162\x20\x61\144\x6d\151\x6e\151\x73\164\x72\141\164\x6f\x72\40\141\156\144\x20\x72\x65\x70\x6f\162\164\40\164\x68\x65\40\146\157\x6c\154\157\167\x69\156\147\40\x65\x72\x72\x6f\162\72\74\57\x70\x3e\12\40\40\x20\40\40\40\40\40\40\40\x20\x20\40\x20\x20\x20\74\x70\x3e\74\x73\x74\x72\157\156\x67\76\120\157\x73\163\x69\x62\x6c\145\x20\x43\141\x75\163\x65\x3a\40\74\x2f\163\164\162\157\x6e\x67\x3e\x54\x68\145\x20\x76\141\154\x75\x65\x20\157\146\x20\111\104\120\40\156\x61\x6d\145\40\151\x73\x20\167\162\157\x6e\x67\56\x3c\x2f\160\x3e\12\x20\x20\40\x20\40\x20\x20\x20\x20\40\x20\x20\x20\x20\x20\40\x3c\x2f\x64\x69\166\x3e";
exit;
ZU:
$MV = $Dx["\x6d\157\x5f\151\x64\x70\137\163\x73\157\137\165\x72\154"];
$H2 = $Zd . "\x2f\x3f\x71\75\163\x61\x6d\154\x61\x73\163\x65\162\x74\x69\x6f\156";
$kS = variable_get("\155\x69\x6e\151\x6f\162\x61\156\x67\x65\x5f\163\141\x6d\154\137\145\156\164\151\164\x79\x5f\x69\x64", $Zd);
$bW = $Dx["\155\157\x5f\x69\x64\x70\137\x72\x65\x71\x75\x65\163\x74\x5f\x73\x69\x67\156\x65\x64"];
$bG = $Dx["\155\x6f\x5f\151\x64\160\x5f\x68\x74\x74\x70\x5f\x62\x69\156\x64\151\x6e\x67\x5f\163\163\x6f"];
$cR = $Dx["\155\157\137\151\x64\x70\x5f\x6e\141\155\145\151\144\x5f\x66\x6f\162\x6d\141\164"];
$O6 = $Dx["\163\x65\143\165\x72\x69\164\171\x5f\163\151\x67\x6e\x61\x74\165\162\145\x5f\x61\154\x67\157\x72\x69\x74\x68\155"];
$Bm = isset($sw["\x64\x65\163\164\151\x6e\x61\164\151\x6f\156"]) ? trim($sw["\x64\145\163\x74\x69\156\141\x74\151\157\x6e"], "\47") : $Bm;
if (!empty($Bm)) {
goto Ru;
}
$Bm = variable_get("\x6d\x69\x6e\151\157\162\x61\x6e\x67\x65\x5f\163\141\x6d\x6c\x5f\144\x65\146\141\x75\154\x74\137\x72\x65\x6c\141\x79\x73\x74\x61\x74\x65", '');
Ru:
if (!empty($Bm)) {
goto pZ;
}
$Bm = $_SERVER["\x48\x54\x54\120\137\x52\105\x46\x45\x52\x45\x52"];
pZ:
if (!empty($Bm)) {
goto ed;
}
$NW = isset($_SERVER["\110\124\x54\120\123"]) && $_SERVER["\110\x54\124\120\123"] === "\x6f\156" ? "\x68\164\164\x70\x73" : "\x68\x74\x74\x70";
$t4 = $NW . "\x3a\57\x2f{$_SERVER["\110\124\124\120\137\110\117\x53\x54"]}{$_SERVER["\122\x45\x51\125\x45\123\124\137\x55\122\111"]}";
$Bm = $t4;
ed:
if (!(empty($Bm) || strpos($Bm, "\163\x61\x6d\154\154\x6f\147\151\156"))) {
goto aq;
}
$Bm = $Zd;
aq:
$hx = new MiniOrangeAuthnRequest();
$hx->initiateLogin($H2, $MV, $kS, $cR, $Bm, $bG, $bW, $O6);
}
function miniorange_saml_user_logout()
{
Utilities::mo_saml_logout();
$jX = variable_get("\x6d\151\x6e\x69\157\x72\141\x6e\147\145\x5f\x73\141\x6d\x6c\137\x64\145\146\141\x75\x6c\164\137\x72\145\x64\x69\x72\x65\x63\164\x5f\165\162\x6c\x5f\x6c\x6f\147\x6f\x75\164", '');
$Zr = isset($_GET["\x71"]) ? $_GET["\x71"] : '';
if (!(strpos($Zr, "\155\x61\163\161\165\x65\x72\141\144\145") === false)) {
goto VF;
}
if (!(isset($jX) && !empty($jX))) {
goto RJ;
}
session_destroy();
drupal_goto($jX);
RJ:
VF:
}
function saml_logout()
{
session_destroy();
drupal_goto($_REQUEST["\x52\x65\154\141\171\123\x74\x61\x74\x65"]);
}
function saml_response()
{
global $user;
$Zd = Utilities::miniorange_get_baseURL();
$KN = variable_get("\x6d\151\x6e\151\157\162\141\156\147\x65\x5f\163\x61\x6d\x6c\x5f\145\156\x74\151\x74\171\x5f\151\x64", '');
$KN = isset($KN) && !empty($KN) ? $KN : $Zd;
$lU = variable_get("\x6d\151\156\151\157\x72\141\x6e\x67\145\x5f\163\141\x6d\154\x5f\x64\145\146\x61\165\154\164\x5f\x72\157\154\x65", '');
$VW = variable_get("\x6d\151\156\151\157\x72\141\156\147\145\x5f\163\x61\x6d\x6c\137\x6c\157\x67\x69\x6e\x5f\x62\x79", 0);
if ($VW == 1) {
goto uA;
}
$wm = variable_get("\155\151\x6e\151\157\x72\141\156\147\145\x5f\163\141\155\x6c\x5f\145\155\x61\151\154\x5f\x61\x74\164\162\x69\x62\165\164\145", '');
goto WH;
uA:
$wm = variable_get("\x6d\x69\156\x69\157\162\141\x6e\147\x65\x5f\x73\141\155\x6c\x5f\x75\x73\145\x72\x6e\x61\x6d\x65\x5f\141\x74\164\x72\x69\x62\165\164\145", '');
WH:
if (isset($_GET["\x53\101\x4d\x4c\122\145\x73\160\157\x6e\x73\145"])) {
goto eA;
}
$m4 = array();
$Mh = variable_get("\x6d\x69\156\151\x6f\x72\x61\x6e\147\x65\x5f\163\x61\x6d\154\137\141\x74\164\x72\x31\x5f\156\141\x6d\145", '');
$qs = variable_get("\155\151\x6e\151\157\162\141\x6e\147\145\137\x73\141\155\154\137\x69\x64\x70\137\141\x74\164\162\61\x5f\x6e\x61\155\x65", '');
$v7 = variable_get("\155\x69\x6e\x69\x6f\162\x61\156\147\145\x5f\163\x61\x6d\154\137\141\164\x74\162\62\137\156\141\155\145", '');
$Te = variable_get("\155\151\x6e\x69\x6f\162\141\156\x67\x65\x5f\x73\x61\x6d\154\137\x69\x64\160\137\141\164\x74\x72\x32\x5f\156\141\155\145", '');
$Bb = variable_get("\x6d\151\156\x69\x6f\162\141\156\147\x65\137\163\141\x6d\154\x5f\x61\164\164\162\x33\137\156\141\x6d\145", '');
$Fl = variable_get("\x6d\x69\156\151\x6f\162\141\x6e\x67\x65\137\x73\141\155\x6c\137\151\x64\160\137\141\x74\x74\x72\63\137\x6e\141\x6d\145", '');
$oZ = variable_get("\x6d\x69\156\x69\157\x72\141\156\x67\145\x5f\x73\141\155\x6c\137\141\x74\x74\162\x34\137\156\x61\155\x65", '');
$gn = variable_get("\155\151\x6e\x69\157\x72\141\x6e\x67\x65\137\x73\x61\155\x6c\137\x69\x64\x70\137\x61\164\x74\x72\64\137\156\141\x6d\145", '');
$CO = variable_get("\x6d\151\156\x69\157\x72\x61\156\x67\145\x5f\163\141\x6d\x6c\x5f\141\164\x74\x72\65\137\156\x61\x6d\x65", '');
$mB = variable_get("\x6d\x69\x6e\x69\157\x72\x61\156\x67\145\x5f\x73\x61\x6d\154\137\x69\x64\160\x5f\141\x74\164\162\65\137\x6e\x61\x6d\145", '');
$eo = variable_get("\x6d\151\x6e\151\x6f\x72\x61\x6e\x67\145\137\163\x61\x6d\x6c\137\163\160\x5f\x75\163\145\162\x5f\x61\164\164\x72\151\142\x75\164\x65\163", '');
if (!(!empty($Mh) && !empty($qs))) {
goto WS;
}
$m4[$Mh] = $qs;
WS:
if (!(!empty($v7) && !empty($Te))) {
goto Qp;
}
$m4[$v7] = $Te;
Qp:
if (!(!empty($Bb) && !empty($Fl))) {
goto cS;
}
$m4[$Bb] = $Fl;
cS:
if (!(!empty($oZ) && !empty($gn))) {
goto Wl;
}
$m4[$oZ] = $gn;
Wl:
if (!(!empty($CO) && !empty($mB))) {
goto I8;
}
$m4[$CO] = $mB;
I8:
$mr = isset($eo) ? json_decode($eo, TRUE) : [];
if (!is_array($mr)) {
goto ak;
}
foreach ($mr as $qr) {
$nj = $qr["\141\x74\164\162\137\156\x61\155\x65"];
$MM = $qr["\x61\164\x74\162\137\166\x61\x6c\165\145"];
$m4[$nj] = $MM;
QS:
}
iv:
ak:
$CP = array();
$CP = !empty(variable_get("\x72\157\154\145\155\x61\160", '')) ? variable_get("\162\x6f\154\145\155\141\x70", '') : NULL;
$kE = new MiniOrangeAcs();
$xy = variable_get("\x6d\x69\156\x6f\162\x61\x6e\x67\x65\x5f\x73\x61\155\x6c\137\x63\165\x73\164\157\x6d\x65\x72\137\x61\x64\x6d\x69\x6e\137\x66\x72\x61\x75\x64\137\143\x68\145\143\153");
$EO = variable_get("\x6d\151\x6e\x69\157\162\141\x6e\x67\x65\137\x73\141\155\154\137\x63\x75\x73\164\157\155\x65\162\137\x61\x64\155\151\156\x5f\x74\157\153\x65\x6e");
$im = variable_get("\x6d\x69\x6e\151\x6f\x72\x61\156\x67\145\x5f\163\x61\155\x6c\x5f\x63\x75\163\x74\x6f\x6d\x65\x72\137\x61\144\x6d\x69\156\x5f\x65\x6d\141\151\154");
global $base_url;
global $ey;
$Qj = $_SERVER["\x44\x4f\103\125\115\105\116\124\x5f\122\x4f\117\x54"] . $ey;
$Iu = trim($base_url, "\x2f");
if (preg_match("\x23\136\150\164\164\x70\50\163\x29\x3f\x3a\57\x2f\x23", $Iu)) {
goto Ef;
}
$Iu = "\150\x74\x74\160\x3a\57\57" . $Iu;
Ef:
$OE = parse_url($Iu);
if (empty($OE)) {
goto oT;
}
$Oa = isset($OE["\160\x61\x74\x68"]) ? $OE["\x70\x61\164\x68"] : '';
$Sz = preg_replace("\x2f\136\167\167\x77\x5c\56\x2f", '', $OE["\x68\157\163\x74"] . $Oa);
oT:
$kT = $Qj . $Sz;
$Cn = variable_get("\x6d\151\156\151\x6f\x72\141\156\x67\x65\x5f\x73\141\155\154\137\x6c\151\143\145\x6e\x73\x65\137\x6b\145\171", NULL);
if (($kT == AESEncryption::decrypt_data($xy, $EO) || $kT == AESEncryption::decrypt_data($xy, $EO, "\x41\x45\x53\x2d\x31\62\70\55\105\103\x42")) && $im != null && $im != '' && $Cn != Null && $Cn != '') {
goto p6;
}
if ($Cn != null && $Cn != '') {
goto L_;
}
if ($im != null && $im != '') {
goto ZO;
}
if (!($im == null || $im == '')) {
goto zX;
}
echo "\74\144\151\x76\x20\163\x74\x79\x6c\145\x3d\x22\146\x6f\156\x74\x2d\146\141\155\151\154\171\x3a\x43\x61\154\151\142\x72\151\73\x70\x61\x64\144\x69\156\147\72\60\x20\x33\x25\73\x22\x3e";
echo "\x3c\144\x69\166\x20\163\x74\x79\x6c\145\x3d\x22\143\x6f\154\157\162\x3a\x20\43\141\71\64\64\64\x32\73\x62\141\143\x6b\x67\x72\x6f\x75\x6e\144\55\143\157\154\157\x72\x3a\40\43\x66\62\144\x65\144\x65\73\160\141\x64\144\x69\x6e\x67\72\x20\x31\x35\x70\x78\x3b\155\x61\162\x67\x69\156\x2d\x62\x6f\x74\164\157\155\72\x20\62\60\160\x78\x3b\x74\x65\170\x74\x2d\x61\x6c\151\147\x6e\72\x63\145\156\164\x65\x72\x3b\x62\x6f\162\x64\145\x72\72\x31\160\170\40\x73\157\x6c\151\x64\x20\43\105\66\102\x33\x42\x32\73\x66\157\156\x74\55\x73\151\x7a\x65\x3a\61\70\x70\x74\73\x22\76\40\105\x52\x52\117\122\x3c\x2f\x64\151\x76\x3e\12\40\40\x20\x20\40\x20\x20\40\x20\x20\40\40\x20\x20\x20\x20\x20\x20\40\x20\x20\x20\74\144\x69\166\40\x73\x74\171\154\x65\75\x22\x63\x6f\154\157\x72\72\x20\x23\141\71\64\x34\64\x32\73\x66\x6f\x6e\164\x2d\x73\x69\x7a\x65\72\x31\x34\x70\164\73\x20\155\141\x72\147\x69\156\55\142\x6f\164\x74\x6f\155\72\62\60\x70\x78\x3b\42\x3e\74\160\x3e\74\163\x74\x72\157\x6e\x67\76\x45\162\162\157\x72\x3a\x20\74\x2f\x73\x74\x72\x6f\156\147\76\x59\157\165\40\141\x72\145\x20\156\x6f\x74\40\154\157\147\147\x65\144\x20\151\x6e\x2e\74\57\x70\x3e\12\x20\x20\40\40\x20\x20\40\40\x20\40\x20\40\40\40\x20\40\x20\40\40\x20\40\40\40\x20\40\40\x20\x3c\160\x3e\120\x6c\x65\x61\163\145\40\x6c\157\x67\151\x6e\40\x66\x69\162\163\x74\40\164\157\40\x61\143\164\151\x76\141\x74\145\x20\x73\151\x6e\x67\154\x65\40\x73\151\147\156\x20\x6f\156\x2e\74\57\x70\76\xa\40\x20\40\40\40\40\40\40\x20\x20\40\x20\x20\40\40\40\x20\x20\x20\40\40\40\x20\40\x20\x20\40\74\x70\x3e\x3c\163\164\x72\157\156\147\76\x50\157\163\163\151\142\154\145\x20\103\141\x75\x73\x65\x3a\x20\74\57\163\x74\162\157\x6e\x67\x3e\115\x61\153\x65\40\163\x75\162\x65\x20\x79\157\165\x20\150\x61\166\x65\x20\154\157\x67\x67\x65\144\x20\151\x6e\57\x20\x52\145\147\x69\163\x74\145\x72\x20\151\x6e\40\x74\x6f\x20\155\x6f\x64\x75\154\145\56\74\x2f\x70\76\12\x20\40\x20\x20\40\x20\x20\40\x20\x20\x20\x20\x20\40\x20\x20\40\x20\40\x20\40\40\74\57\x64\151\166\x3e\xa\40\x20\x20\x20\x20\x20\40\x20\x20\x20\40\40\40\40\40\x20\x20\x20\40\40\40\x20\x3c\144\151\x76\40\x73\164\x79\x6c\x65\75\x22\x6d\x61\x72\x67\151\x6e\x3a\63\x25\73\x64\x69\163\x70\x6c\141\171\x3a\142\154\x6f\x63\153\73\x74\145\x78\x74\x2d\141\154\x69\147\x6e\72\143\x65\x6e\164\145\162\x3b\42\x3e\74\57\x64\x69\x76\76\xa\40\40\40\40\40\40\x20\x20\x20\x20\40\x20\40\x20\x20\x20\x20\x20\x20\40\40\x20\x3c\x64\x69\166\x20\x73\x74\171\154\x65\x3d\x22\x6d\141\162\147\151\x6e\72\x33\45\x3b\x64\x69\163\x70\x6c\141\171\x3a\142\154\x6f\x63\x6b\73\x74\145\170\x74\x2d\x61\x6c\x69\147\x6e\72\143\145\156\164\x65\x72\x3b\42\76\12\x20\x20\x20\40\x20\40\x20\x20\40\x20\x20\x20\40\40\40\x20\x20\40\40\40\x20\x20\x20\40\x20\40\40\x3c\x69\x6e\160\165\164\40\163\164\x79\x6c\x65\x3d\42\x70\141\x64\x64\151\156\147\72\61\x25\x3b\x77\151\144\x74\x68\72\61\60\x30\x70\x78\x3b\142\x61\143\153\147\162\157\165\156\144\72\x20\x23\x30\60\71\61\x43\104\40\x6e\157\x6e\145\40\162\x65\160\x65\141\164\x20\x73\143\x72\157\154\154\x20\x30\45\x20\60\x25\x3b\x63\165\162\163\x6f\162\x3a\x20\160\x6f\151\156\164\145\x72\73\146\x6f\156\x74\x2d\x73\151\172\x65\72\61\x35\x70\x78\73\142\157\x72\x64\x65\x72\55\x77\x69\144\x74\150\72\40\x31\x70\170\73\142\x6f\x72\144\x65\162\55\x73\164\x79\x6c\x65\72\x20\163\157\x6c\x69\144\73\x62\x6f\x72\x64\145\162\55\x72\141\x64\x69\x75\x73\72\40\x33\x70\x78\x3b\x77\x68\151\164\x65\55\163\x70\141\x63\145\72\40\156\x6f\x77\x72\141\160\x3b\142\x6f\x78\x2d\x73\x69\x7a\151\156\147\x3a\40\142\157\162\144\x65\x72\55\142\157\x78\x3b\x62\x6f\x72\144\145\162\55\143\157\x6c\157\162\x3a\40\43\x30\60\67\63\x41\101\73\x62\x6f\x78\x2d\163\150\141\x64\157\x77\72\40\x30\160\x78\40\x31\x70\x78\40\60\x70\170\x20\x72\147\142\141\x28\x31\x32\x30\54\x20\x32\x30\60\x2c\40\x32\x33\60\54\x20\60\56\66\51\40\151\156\x73\145\164\x3b\x63\157\x6c\157\x72\72\x20\43\x46\x46\x46\x3b\x22\164\171\160\x65\x3d\42\142\165\x74\164\157\156\x22\40\166\x61\x6c\165\145\75\42\104\x6f\156\x65\x22\x20\x6f\156\x43\154\x69\143\153\75\42\x73\x65\154\146\x2e\143\x6c\x6f\x73\x65\x28\51\73\x22\76\12\40\x20\x20\40\40\40\x20\x20\x20\x20\40\40\40\40\x20\40\x20\40\40\x20\x20\x20\74\57\144\151\x76\x3e";
exit;
zX:
goto gZ;
ZO:
echo "\x3c\x64\151\x76\40\163\164\x79\x6c\x65\75\x22\146\157\156\x74\55\146\141\155\x69\x6c\171\x3a\x43\x61\154\151\142\x72\151\73\x70\x61\x64\x64\151\156\147\72\x30\40\x33\x25\x3b\x22\76";
echo "\74\144\151\166\40\x73\x74\171\154\x65\x3d\42\x63\157\154\157\162\72\x20\x23\141\x39\x34\x34\64\62\x3b\x62\141\143\153\x67\162\157\165\156\x64\55\x63\x6f\154\157\162\72\x20\x23\x66\x32\144\x65\144\x65\73\160\x61\144\x64\x69\x6e\147\72\x20\61\65\160\x78\x3b\155\141\162\147\151\x6e\x2d\x62\157\164\164\157\155\72\40\x32\60\x70\x78\73\164\x65\170\x74\55\141\x6c\x69\x67\x6e\72\143\x65\156\164\145\162\x3b\x62\x6f\x72\144\x65\x72\x3a\x31\x70\170\40\x73\x6f\x6c\x69\144\x20\43\105\x36\x42\x33\x42\x32\x3b\146\157\x6e\164\55\163\x69\x7a\145\72\61\70\x70\x74\x3b\x22\76\40\x45\122\x52\117\122\x3c\x2f\144\151\x76\76\12\40\x20\40\x20\40\x20\40\40\x20\x20\40\40\40\40\x20\40\x20\x20\x20\40\x20\x20\x3c\x64\151\166\x20\x73\x74\171\154\145\x3d\42\143\157\x6c\x6f\x72\72\x20\x23\x61\x39\x34\64\64\x32\x3b\x66\x6f\x6e\164\55\x73\x69\172\x65\72\61\64\160\x74\73\40\x6d\141\x72\147\151\156\x2d\142\157\164\164\x6f\x6d\x3a\x32\x30\160\170\x3b\x22\76\x3c\x70\76\x3c\x73\x74\x72\x6f\156\147\x3e\x45\162\x72\157\162\x3a\40\74\57\163\x74\x72\157\156\x67\76\114\151\143\145\x6e\x73\145\x20\153\x65\171\x20\x79\x6f\x75\40\x68\141\166\145\40\x65\156\164\145\162\x65\144\40\150\x61\163\x20\x61\x6c\x72\x65\141\x64\171\x20\142\x65\145\x6e\x20\165\x73\x65\x64\x2e\74\57\x70\x3e\12\40\40\x20\40\x20\40\40\x20\40\x20\x20\x20\40\40\x20\x20\40\40\x20\x20\40\x20\40\x20\40\40\40\x3c\160\x3e\120\x6c\x65\x61\x73\145\x20\145\156\x74\145\x72\x20\x61\x20\153\145\x79\x20\167\150\151\143\x68\x20\150\141\163\40\x6e\157\164\x20\142\145\145\x6e\x20\165\163\x65\x64\x20\x62\145\x66\157\x72\x65\40\157\156\40\141\x6e\171\40\x6f\164\x68\145\x72\x20\151\x6e\x73\x74\141\156\x63\145\40\x6f\x72\x20\151\146\x20\171\157\165\40\x68\141\x76\x65\x20\x65\170\141\x75\x73\164\145\144\40\x61\x6c\154\x20\171\x6f\x75\x72\x20\153\x65\171\x73\x20\164\150\x65\x6e\x20\142\165\171\40\155\157\x72\x65\x20\x6c\151\143\145\156\163\145\40\x66\162\157\x6d\x20\x4c\x69\x63\x65\x6e\163\x69\156\147\56\x3c\x2f\x70\x3e\xa\x20\40\x20\40\40\40\40\x20\40\40\x20\40\x20\40\40\40\40\x20\x20\x20\x20\40\x3c\x2f\144\151\x76\76\xa\x20\40\x20\x20\40\40\40\40\x20\40\x20\40\x20\40\x20\x20\40\40\x20\40\x20\x20\74\x64\151\166\x20\163\164\x79\x6c\145\x3d\42\155\141\x72\x67\x69\156\x3a\63\x25\x3b\x64\x69\x73\x70\x6c\x61\171\72\142\154\x6f\x63\153\x3b\164\x65\170\164\55\x61\154\x69\147\x6e\72\143\x65\156\x74\145\162\73\x22\x3e\74\57\x64\x69\x76\x3e\12\x20\40\40\x20\40\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\40\x20\40\40\40\40\40\40\x20\x20\40\40\74\144\151\x76\40\x73\x74\171\154\x65\75\x22\x6d\x61\x72\x67\x69\156\x3a\63\45\x3b\x64\x69\x73\160\x6c\x61\171\72\x62\154\157\x63\x6b\x3b\164\x65\170\164\55\141\x6c\x69\147\156\x3a\x63\x65\x6e\164\145\162\x3b\42\x3e\12\40\40\40\x20\40\x20\40\40\x20\x20\40\x20\40\40\40\x20\x20\40\x20\40\x20\40\x20\40\40\40\40\x20\40\x20\x20\74\x69\156\x70\x75\164\40\163\164\x79\154\x65\x3d\42\x70\x61\x64\144\151\156\147\72\x31\x25\x3b\167\151\144\164\150\x3a\61\60\60\160\x78\x3b\142\x61\143\153\147\x72\157\x75\x6e\144\72\x20\x23\60\60\71\x31\103\104\x20\156\x6f\x6e\145\40\162\x65\160\145\141\x74\x20\x73\x63\x72\x6f\x6c\154\40\x30\x25\40\60\x25\73\143\165\162\x73\x6f\x72\72\x20\160\x6f\x69\156\164\145\x72\x3b\x66\157\x6e\164\x2d\x73\x69\172\145\x3a\x31\x35\160\x78\x3b\x62\157\162\144\x65\162\55\167\x69\x64\164\150\x3a\40\x31\160\x78\x3b\x62\x6f\162\144\x65\162\55\x73\x74\x79\154\145\72\x20\163\x6f\154\151\x64\x3b\142\x6f\x72\144\145\162\x2d\x72\141\144\151\165\163\x3a\x20\x33\160\x78\x3b\167\x68\x69\164\x65\55\x73\160\x61\x63\x65\x3a\x20\156\x6f\167\x72\x61\x70\73\142\157\170\55\x73\151\x7a\151\156\147\x3a\40\142\x6f\x72\x64\x65\x72\55\x62\157\170\x3b\142\x6f\x72\144\x65\162\55\143\157\154\157\x72\72\40\43\60\60\x37\x33\101\101\x3b\142\x6f\x78\55\x73\150\141\x64\157\167\72\x20\x30\160\170\40\61\x70\170\40\60\160\x78\40\x72\x67\x62\141\50\x31\x32\60\x2c\x20\62\60\60\x2c\40\x32\x33\60\54\40\60\56\66\51\x20\x69\156\163\x65\164\73\143\x6f\154\x6f\162\72\40\43\x46\106\x46\x3b\x22\164\x79\x70\x65\75\x22\x62\165\164\x74\157\x6e\x22\x20\166\x61\154\x75\x65\x3d\x22\104\x6f\x6e\145\42\x20\157\x6e\103\154\x69\x63\153\x3d\x22\163\x65\x6c\x66\x2e\x63\x6c\157\x73\x65\50\51\73\x22\76\xa\x20\40\x20\40\40\x20\x20\x20\40\40\40\x20\40\x20\40\40\x20\x20\x20\x20\40\40\x20\x20\40\x20\40\x3c\57\x64\x69\x76\x3e";
exit;
gZ:
goto zC;
L_:
echo "\x3c\144\151\166\40\163\x74\x79\154\x65\x3d\42\x66\x6f\156\x74\x2d\x66\141\x6d\151\154\171\x3a\x43\x61\154\x69\142\162\151\x3b\x70\141\x64\144\151\x6e\x67\72\60\40\63\x25\73\x22\x3e";
echo "\74\144\x69\166\x20\x73\x74\x79\154\145\x3d\x22\x63\157\154\157\162\x3a\40\43\x61\71\x34\64\x34\62\73\x62\141\143\153\x67\162\157\165\156\144\x2d\x63\157\x6c\x6f\x72\x3a\40\43\146\x32\x64\145\x64\x65\x3b\x70\x61\144\144\151\x6e\147\x3a\x20\x31\65\x70\170\73\155\141\x72\147\151\x6e\x2d\142\x6f\164\x74\157\155\x3a\x20\62\60\160\x78\x3b\x74\145\x78\164\55\141\x6c\x69\147\x6e\72\143\x65\156\x74\x65\x72\x3b\142\x6f\162\x64\x65\x72\72\x31\x70\170\40\163\157\154\x69\144\x20\x23\105\x36\x42\x33\x42\62\73\x66\x6f\156\x74\x2d\163\x69\x7a\x65\x3a\61\70\160\x74\x3b\42\x3e\x20\x45\x52\122\x4f\x52\74\57\144\151\166\76\12\x20\40\40\x20\x20\40\x20\x20\40\40\40\40\x20\x20\40\40\40\x20\x20\40\x20\x20\74\x64\151\166\x20\x73\x74\x79\x6c\145\75\x22\x63\x6f\x6c\157\162\x3a\40\x23\141\x39\x34\64\x34\62\x3b\x66\x6f\x6e\x74\x2d\163\x69\x7a\x65\72\61\64\x70\164\73\40\155\141\x72\147\x69\156\x2d\x62\x6f\x74\164\157\155\x3a\62\x30\x70\x78\73\x22\x3e\74\160\x3e\x3c\x73\164\x72\x6f\156\147\x3e\x45\x72\162\157\162\72\40\74\x2f\163\164\x72\x6f\156\x67\76\x4c\151\143\145\156\x73\145\x20\153\x65\x79\x20\x79\x6f\165\40\150\x61\166\145\x20\156\157\164\x20\x65\x6e\x74\145\162\145\144\x2e\74\57\160\76\12\x20\40\x20\40\x20\40\x20\40\x20\x20\x20\x20\x20\x20\40\x20\40\40\40\40\x20\40\40\x20\40\x20\x3c\160\76\x50\154\145\141\163\x65\x20\x65\156\x74\x65\x72\40\141\x20\153\x65\171\x20\x77\150\x69\143\150\40\x68\141\163\x20\156\157\x74\x20\x62\x65\x65\x6e\x20\165\x73\x65\144\40\x62\145\146\157\x72\x65\x20\x6f\156\x20\x61\156\171\40\157\x74\x68\x65\x72\x20\151\x6e\163\x74\x61\156\143\145\x20\141\x6e\x64\x20\141\143\x74\151\x76\x61\164\145\40\x74\x68\x65\x20\x6d\157\x64\165\154\x65\x2e\74\x2f\160\x3e\12\x20\40\x20\40\x20\x20\40\40\40\x20\x20\40\40\x20\40\40\40\x20\40\40\x20\40\74\57\x64\x69\166\x3e\12\40\x20\x20\x20\x20\40\x20\40\x20\40\40\x20\x20\x20\x20\40\40\40\40\40\x20\40\x3c\144\151\x76\40\x73\164\171\154\x65\x3d\x22\x6d\x61\162\147\151\156\x3a\x33\x25\x3b\144\151\x73\160\154\141\x79\72\142\x6c\157\143\x6b\73\164\x65\x78\x74\55\141\x6c\151\147\x6e\x3a\143\x65\x6e\x74\x65\x72\73\42\76\74\x2f\144\x69\x76\x3e\12\40\x20\x20\40\x20\x20\40\40\40\x20\40\40\40\x20\40\x20\40\x20\x20\40\40\x20\40\40\x20\x20\x20\x3c\144\151\166\40\163\164\x79\x6c\145\75\42\x6d\141\x72\x67\x69\x6e\x3a\x33\45\x3b\144\x69\x73\160\x6c\141\x79\x3a\142\154\x6f\x63\153\x3b\164\x65\x78\x74\x2d\141\x6c\x69\x67\156\x3a\x63\145\x6e\x74\x65\162\73\42\x3e\xa\x20\40\40\40\x20\x20\40\40\x20\40\x20\x20\x20\40\40\x20\x20\40\x20\x20\40\40\x20\40\x20\40\40\x20\40\40\x20\40\x3c\151\x6e\160\165\x74\40\x73\x74\171\154\x65\75\x22\x70\141\144\144\x69\x6e\x67\x3a\61\45\73\167\151\144\164\150\72\x31\x30\60\x70\x78\73\142\141\143\153\x67\162\157\165\156\144\72\40\43\x30\x30\x39\61\x43\104\x20\x6e\157\156\145\40\x72\x65\160\145\x61\x74\x20\x73\x63\x72\x6f\154\x6c\x20\60\x25\x20\60\x25\x3b\x63\x75\162\163\157\162\x3a\x20\x70\157\x69\x6e\164\x65\162\73\x66\157\156\164\55\163\151\x7a\x65\x3a\61\x35\x70\x78\x3b\142\x6f\162\x64\x65\x72\55\167\151\x64\x74\150\72\x20\61\160\170\73\x62\x6f\162\144\145\162\x2d\163\x74\x79\x6c\x65\x3a\40\x73\157\x6c\x69\x64\x3b\x62\x6f\x72\144\145\x72\x2d\x72\141\144\x69\x75\163\72\40\x33\160\170\x3b\x77\150\x69\x74\145\55\x73\160\141\143\145\72\40\x6e\x6f\x77\162\x61\x70\x3b\142\157\170\x2d\x73\151\x7a\x69\x6e\147\x3a\40\142\x6f\162\x64\x65\x72\x2d\x62\157\x78\73\x62\x6f\162\144\145\162\55\x63\x6f\154\157\162\x3a\40\x23\x30\60\67\x33\101\101\x3b\x62\x6f\170\x2d\x73\150\x61\x64\x6f\167\72\40\60\x70\x78\40\x31\x70\170\x20\x30\160\170\40\162\x67\142\x61\x28\61\x32\x30\x2c\x20\62\x30\x30\54\40\x32\x33\60\x2c\40\60\x2e\x36\51\40\x69\x6e\x73\x65\164\73\x63\157\154\157\x72\72\x20\x23\x46\x46\x46\73\x22\164\x79\x70\145\75\42\x62\x75\x74\x74\157\156\x22\40\x76\141\154\x75\x65\x3d\42\104\157\156\x65\42\x20\x6f\156\x43\154\x69\x63\153\75\x22\x73\145\154\x66\x2e\143\x6c\x6f\x73\145\x28\51\x3b\x22\x3e\12\40\x20\40\40\x20\x20\40\x20\x20\x20\x20\x20\40\x20\x20\40\40\40\40\x20\40\x20\40\40\x20\40\40\74\x2f\144\151\x76\76";
exit;
zC:
goto Rs;
p6:
$b3 = $kE->processSamlResponse($_POST, $Zd, $KN, $wm, $m4, $CP);
Rs:
if (!($b3["\x65\155\x61\x69\x6c"] == '' || !filter_var($b3["\145\155\141\151\x6c"], FILTER_VALIDATE_EMAIL))) {
goto qz;
}
echo "\x3c\144\x69\166\x20\163\x74\171\x6c\x65\x3d\x22\x66\x6f\x6e\164\55\x66\x61\x6d\151\x6c\171\72\103\x61\154\x69\x62\162\x69\x3b\x70\141\144\x64\x69\x6e\147\x3a\x30\x20\63\x25\73\x22\x3e";
echo "\74\144\151\x76\x20\163\164\171\154\145\x3d\x22\143\157\154\x6f\162\x3a\x20\x23\x61\71\x34\64\x34\62\73\142\141\x63\x6b\147\x72\157\x75\x6e\144\x2d\143\157\x6c\157\x72\72\x20\x23\x66\62\144\x65\144\145\x3b\x70\x61\144\x64\151\156\x67\x3a\40\61\x35\x70\x78\x3b\155\141\162\147\x69\x6e\55\x62\157\164\164\157\x6d\x3a\x20\x32\x30\x70\x78\x3b\x74\145\x78\x74\x2d\141\x6c\x69\x67\x6e\x3a\143\145\156\164\x65\162\x3b\142\157\162\x64\145\x72\x3a\x31\x70\170\40\163\x6f\154\151\x64\x20\x23\105\x36\x42\63\102\x32\x3b\146\157\156\164\x2d\163\x69\x7a\x65\72\x31\70\160\164\73\42\x3e\x20\x45\122\122\x4f\x52\74\57\x64\x69\166\x3e\12\40\x20\40\40\x20\x20\x20\x20\x20\40\x20\40\x20\40\40\x20\40\40\x20\x20\74\x64\x69\x76\40\163\x74\x79\x6c\x65\x3d\42\x63\x6f\154\157\x72\72\x20\43\x61\x39\x34\64\x34\62\x3b\146\x6f\x6e\164\55\x73\x69\x7a\145\x3a\61\64\160\164\x3b\40\155\x61\x72\147\151\x6e\55\x62\x6f\x74\164\157\155\x3a\62\60\160\170\x3b\x22\x3e\x3c\160\76\x3c\163\x74\x72\x6f\156\x67\x3e\105\x72\x72\157\x72\x3a\x20\74\57\x73\164\162\x6f\x6e\147\x3e\125\163\x65\x72\40\x69\x73\x20\x72\145\163\x74\162\151\143\164\x72\x65\144\x20\164\x6f\40\154\157\x67\151\156\x2e\74\57\x70\76\xa\x20\40\40\x20\40\40\x20\40\40\40\x20\40\40\x20\x20\x20\40\x20\x20\40\x20\x20\40\40\74\160\x3e\x50\154\x65\141\x73\x65\40\143\x6f\x6e\x74\141\143\x74\x20\x79\x6f\165\162\x20\141\144\x6d\x69\x6e\151\163\x74\x72\x61\x74\157\162\x20\141\156\x64\40\x72\x65\160\157\x72\x74\40\x74\x68\145\40\146\x6f\x6c\x6c\157\x77\151\x6e\x67\x20\145\x72\x72\x6f\162\x3a\x3c\57\160\x3e\xa\40\x20\x20\40\x20\40\40\x20\40\40\40\x20\40\40\x20\x20\x20\x20\x20\40\x20\x20\x20\x20\74\x70\x3e\74\163\164\x72\157\156\147\x3e\x50\x6f\163\163\x69\142\x6c\x65\40\103\x61\165\163\145\72\40\x3c\57\163\x74\x72\157\156\x67\76\40\x45\x72\x72\157\x72\x20\151\156\40\x72\145\143\151\166\151\156\x67\x20\164\150\145\40\145\x6d\141\151\154\x20\x49\104\56\74\57\x70\x3e\12\40\x20\40\x20\40\40\40\40\40\40\x20\x20\x20\x20\x20\40\x20\x20\x20\x20\74\x2f\144\151\166\x3e\xa\40\40\40\40\40\40\x20\40\x20\x20\40\x20\x20\x20\40\40\x20\40\40\x20\x3c\x64\x69\166\40\x73\x74\x79\x6c\x65\x3d\42\155\141\x72\x67\x69\156\72\x33\x25\73\x64\x69\163\160\x6c\141\171\72\142\154\157\x63\x6b\73\164\145\170\x74\55\x61\154\151\x67\x6e\72\x63\x65\x6e\x74\145\162\x3b\x22\76";
echo "\40\40\x20\x20\x20\x20\x20\40\x20\x20\x20\40\40\x20\x20\40\x20\40\x20\x20\74\144\151\166\40\163\x74\171\x6c\x65\75\x22\155\x61\162\x67\x69\156\x3a\63\x25\x3b\144\x69\x73\x70\154\x61\171\x3a\142\154\157\143\x6b\73\164\145\170\164\x2d\x61\x6c\151\x67\156\x3a\143\x65\156\x74\x65\x72\x3b\x22\76\74\x61\x20\x68\x72\145\146\x3d\x22\x20";
echo $base_url;
echo "\40\x22\x3e\x3c\151\x6e\x70\165\x74\x20\163\x74\x79\154\145\x3d\42\x70\x61\144\144\x69\156\147\72\61\45\x3b\167\151\144\164\x68\72\61\x30\60\x70\x78\x3b\142\x61\143\x6b\147\162\x6f\x75\156\144\72\40\43\x30\60\x39\x31\103\x44\40\x6e\x6f\x6e\145\40\162\145\x70\x65\x61\x74\x20\x73\x63\162\x6f\154\x6c\40\x30\x25\x20\60\45\73\143\x75\162\163\157\x72\x3a\x20\x70\157\x69\x6e\164\x65\x72\73\x66\157\156\x74\55\x73\151\x7a\x65\x3a\x31\x35\x70\170\73\142\157\x72\x64\x65\162\55\x77\x69\x64\164\x68\x3a\x20\61\160\170\73\142\157\x72\x64\145\162\x2d\163\x74\171\x6c\145\72\40\x73\157\154\151\144\73\x62\x6f\162\x64\145\x72\x2d\x72\x61\144\x69\165\163\x3a\40\x33\160\x78\x3b\167\x68\151\x74\145\x2d\x73\160\141\x63\145\72\40\x6e\x6f\x77\x72\x61\x70\x3b\142\x6f\170\x2d\163\151\x7a\x69\x6e\147\x3a\x20\x62\157\162\144\145\x72\55\142\157\x78\73\x62\157\x72\144\x65\x72\55\143\x6f\x6c\157\x72\x3a\40\43\x30\x30\x37\x33\x41\101\x3b\142\157\x78\55\163\x68\141\144\157\x77\x3a\40\x30\x70\x78\x20\61\160\x78\40\60\x70\x78\x20\x72\x67\x62\x61\50\61\x32\60\54\x20\x32\60\x30\x2c\x20\x32\63\60\x2c\x20\x30\x2e\66\x29\40\151\x6e\x73\145\x74\x3b\143\157\154\157\x72\72\x20\x23\106\x46\x46\x3b\x22\x74\x79\x70\145\x3d\42\x62\x75\164\x74\x6f\156\42\40\x76\141\x6c\165\145\x3d\x22\x44\x6f\x6e\145\x22\x20\x6f\156\103\x6c\x69\x63\153\75\42\x73\x65\x6c\x66\x2e\x63\x6c\x6f\x73\145\50\x29\73\42\x3e\x3c\x2f\x61\76\x3c\57\144\151\166\x3e\12\40\x20\x20\40\x20\x20\x20\x20\x20\40\x20\40\40\40\x20\40\x20\x20\40\40";
exit;
qz:
if (variable_get("\155\x69\x6e\x69\157\x72\x61\156\x67\x65\137\163\141\155\154\x5f\154\157\x67\x69\x6e\137\142\x79") == 1) {
goto zs;
}
$Sc = user_load_by_mail($b3["\165\x73\145\162\x6e\141\155\x65"]);
goto t_;
zs:
$Sc = user_load_by_name($b3["\165\163\x65\x72\x6e\x61\x6d\145"]);
t_:
if (!($Sc == NULL)) {
goto eX;
}
$RK = variable_get("\x6d\x69\156\x69\157\x72\x61\x6e\x67\x65\x5f\x73\141\155\154\x5f\x64\151\163\x61\142\x6c\x65\137\141\165\164\x6f\x63\x72\x65\x61\164\x65\x5f\x75\163\145\162\163", FALSE);
if ($RK) {
goto D_;
}
$tF = user_password(8);
$V2 = array_search($lU, user_roles());
$DI[$V2] = $lU;
$u4 = array("\156\141\155\145" => $b3["\x75\x73\145\x72\x6e\141\155\x65"], "\x6d\x61\x69\x6c" => $b3["\x65\x6d\141\151\154"], "\160\x61\163\163" => $tF, "\163\x74\x61\x74\x75\x73" => 1, "\x72\157\x6c\x65\163" => $DI);
$Sc = user_save(NULL, $u4);
goto VY;
D_:
echo "\74\144\151\166\40\x73\164\x79\x6c\145\x3d\42\146\157\x6e\x74\55\x66\141\x6d\151\x6c\x79\72\x43\141\x6c\151\142\x72\x69\73\160\141\144\144\151\156\x67\x3a\60\x20\x33\45\73\42\x3e";
echo "\x3c\x64\151\166\40\x73\164\x79\154\x65\x3d\42\143\x6f\154\157\162\72\x20\43\x61\71\x34\x34\64\62\73\142\x61\x63\x6b\x67\x72\157\165\x6e\144\55\x63\157\154\x6f\162\72\40\43\x66\x32\144\x65\x64\x65\73\x70\141\144\x64\x69\156\147\x3a\40\x31\x35\x70\170\73\x6d\141\162\147\x69\x6e\55\142\x6f\x74\x74\157\x6d\x3a\x20\x32\60\x70\170\x3b\164\x65\x78\164\x2d\141\x6c\151\x67\x6e\72\x63\x65\156\164\x65\162\x3b\x62\x6f\x72\144\145\162\72\61\160\170\40\163\157\x6c\x69\144\x20\x23\x45\66\102\63\x42\x32\x3b\x66\157\x6e\164\55\163\151\x7a\145\72\x31\x38\x70\164\x3b\x22\76\40\x45\x52\122\x4f\122\x3c\57\144\x69\x76\76\12\40\x20\x20\40\40\40\40\40\x20\x20\x20\40\x20\40\x20\40\40\40\x20\x20\x20\x20\x3c\144\x69\166\x20\x73\x74\171\x6c\x65\75\x22\x63\x6f\x6c\x6f\162\x3a\x20\x23\x61\71\64\x34\x34\62\x3b\x66\157\156\164\x2d\x73\151\x7a\145\72\61\64\x70\164\x3b\40\155\x61\x72\147\151\156\55\142\157\164\x74\x6f\x6d\72\62\60\x70\x78\x3b\x22\x3e\x3c\160\x3e\x3c\163\x74\162\x6f\x6e\147\x3e\105\x72\162\x6f\x72\72\x20\74\x2f\163\164\162\157\x6e\147\76\x55\x73\145\x72\40\151\x73\40\x72\x65\x73\x74\x72\151\143\164\162\x65\144\40\x74\x6f\40\154\157\147\151\156\56\x3c\x2f\160\x3e\xa\40\x20\x20\40\x20\40\40\40\x20\40\x20\40\x20\x20\40\40\40\40\40\x20\40\40\40\x20\x20\40\74\160\x3e\x50\154\x65\x61\x73\145\40\143\x6f\156\164\141\143\164\x20\171\157\x75\x72\x20\x61\x64\155\x69\x6e\151\x73\164\x72\x61\x74\157\x72\x20\141\156\x64\x20\162\145\160\x6f\x72\x74\40\164\x68\x65\40\146\x6f\x6c\154\x6f\x77\151\156\147\40\145\x72\162\157\162\x3a\74\57\160\76\xa\40\x20\x20\x20\40\x20\x20\x20\40\40\x20\40\x20\x20\40\x20\40\x20\x20\40\x20\40\x20\x20\x20\40\74\x70\76\74\163\x74\162\157\x6e\147\x3e\120\x6f\163\x73\151\142\x6c\x65\x20\103\141\x75\x73\145\x3a\x20\74\x2f\x73\164\162\x6f\156\x67\76\x20\116\157\156\40\145\x78\x69\163\x74\151\x6e\x67\40\x75\x73\145\x72\163\x20\x61\x72\145\40\x6e\157\x74\x20\x61\x6c\x6c\x6f\x77\145\144\40\x74\157\x20\x6c\x6f\x67\151\x6e\56\x3c\57\160\x3e\12\40\x20\x20\40\x20\40\x20\x20\x20\40\x20\x20\x20\x20\x20\x20\x20\40\40\x20\x20\40\74\57\144\151\x76\76\12\x20\x20\x20\40\40\40\40\40\x20\x20\x20\x20\40\40\40\x20\x20\40\x20\x20\40\40\x3c\x64\x69\166\40\x73\x74\x79\x6c\145\75\x22\x6d\x61\162\147\x69\x6e\72\x33\x25\x3b\x64\x69\163\160\x6c\141\x79\x3a\142\154\x6f\x63\153\73\164\x65\x78\164\x2d\141\x6c\151\147\156\72\x63\145\156\164\x65\162\x3b\42\76";
echo "\x20\40\40\x20\40\x20\40\40\x20\x20\x20\x20\40\40\x20\x20\x20\x20\40\40\40\x20\74\144\x69\166\40\x73\164\171\154\145\x3d\42\x6d\141\162\147\151\156\72\63\x25\73\144\x69\x73\160\154\x61\171\72\x62\x6c\157\x63\153\73\x74\x65\x78\x74\55\x61\x6c\x69\147\x6e\x3a\143\x65\x6e\x74\145\162\73\42\x3e\74\141\40\150\162\x65\146\x3d\42\x20";
echo $base_url;
echo "\40\42\x3e\74\x69\156\160\x75\x74\x20\163\x74\x79\154\145\75\42\160\x61\144\x64\x69\x6e\x67\72\61\45\73\167\151\144\x74\x68\72\x31\60\60\160\x78\73\142\141\x63\153\x67\x72\x6f\165\x6e\x64\x3a\40\43\60\60\71\x31\x43\x44\x20\156\x6f\156\x65\x20\162\145\x70\145\x61\x74\x20\x73\x63\x72\x6f\x6c\154\x20\x30\x25\40\60\x25\73\x63\165\162\163\157\162\72\40\160\157\151\156\164\145\x72\x3b\x66\157\156\164\x2d\163\x69\172\145\72\x31\65\x70\170\73\x62\157\x72\144\145\162\55\167\151\144\164\x68\x3a\40\x31\160\170\73\x62\x6f\162\x64\145\162\55\163\164\x79\154\145\72\40\x73\x6f\154\151\144\73\142\157\x72\x64\x65\x72\55\162\141\x64\x69\165\x73\72\40\x33\x70\x78\x3b\x77\x68\x69\164\145\x2d\163\x70\141\143\145\72\x20\156\157\x77\162\141\160\73\142\157\x78\x2d\163\x69\172\x69\x6e\147\72\40\x62\x6f\x72\144\145\162\x2d\142\x6f\x78\x3b\x62\157\x72\144\x65\x72\55\143\157\154\157\162\x3a\40\43\60\x30\x37\63\101\x41\73\142\x6f\x78\x2d\x73\x68\x61\144\157\167\72\40\60\x70\x78\40\61\x70\x78\40\60\160\170\x20\x72\147\142\x61\x28\61\62\60\x2c\x20\x32\60\60\54\x20\62\63\60\54\x20\60\x2e\66\x29\40\151\156\163\x65\164\73\143\157\x6c\x6f\162\x3a\40\x23\x46\x46\x46\73\42\x74\x79\160\145\x3d\x22\x62\165\x74\164\x6f\x6e\42\x20\x76\141\x6c\x75\145\75\42\x44\157\x6e\x65\x22\40\x6f\156\103\154\151\x63\x6b\x3d\42\163\x65\154\146\56\x63\x6c\157\x73\145\50\51\x3b\x22\76\x3c\57\141\76\x3c\57\144\x69\x76\76\xa\40\40\40\40\40\x20\x20\40\x20\40\x20\40\x20\40\40\x20\40\x20\x20\x20";
exit;
VY:
eX:
$tT = $b3["\x63\x75\163\164\x6f\x6d\x46\151\145\154\x64\x41\164\x74\162\151\142\165\164\x65\163"];
if (!(isset($tT) && !empty($tT))) {
goto y9;
}
foreach ($tT as $EO => $IV) {
$Sc = user_load($Sc->uid);
$Sc->{$EO}["\x75\156\144"][0]["\x76\x61\x6c\x75\145"] = $IV;
user_save($Sc);
RQ:
}
kt:
y9:
$xt = $b3["\x63\165\163\x74\x6f\x6d\106\x69\x65\154\144\122\157\x6c\145\x73"];
if (is_null($Sc)) {
goto Ix;
}
$Sc = user_load($Sc->uid);
if (!variable_get("\x6d\x69\x6e\x69\157\162\141\156\x67\145\x5f\x73\141\x6d\x6c\137\x64\x69\163\141\x62\x6c\145\137\162\x6f\154\x65\137\x75\x70\x64\141\x74\x65")) {
goto Ug;
}
$C4 = $Sc->{"\x72\157\x6c\x65\163"};
foreach ($C4 as $EO => $IV) {
if (in_array($IV, $CP)) {
goto O7;
}
$TE[$EO] = $IV;
O7:
Ya:
}
iN:
Ug:
if (empty($xt)) {
goto Jm;
}
foreach ($xt as $EO => $IV) {
$TE[$EO] = $IV;
$Sc->{"\162\157\x6c\145\x73"} = $TE;
user_save($Sc);
OW:
}
X7:
Jm:
Ix:
if (flood_is_allowed($b3["\x75\x73\145\162\x6e\141\155\x65"], 3600) && user_is_blocked($b3["\x75\163\x65\x72\156\141\x6d\145"]) == FALSE) {
goto P_;
}
flood_register_event($b3, 3600);
form_set_error("\x75\163\145\x72\x5f\154\157\147\x69\156\137\142\154\x6f\x63\x6b", t("\131\x6f\165\40\x61\x72\x65\x20\156\157\164\40\141\154\154\x6f\x77\145\x64\40\164\157\x20\154\x6f\147\x69\156"));
drupal_goto();
goto iD;
P_:
flood_clear_event($b3["\165\163\x65\162\156\x61\155\145"]);
$user = user_load($Sc->uid);
$fr = array();
$fr["\x6e\x61\x6d\145"] = $user->name;
$V2 = array_slice($Sc->roles, 1);
$EO = '';
if (!isset($V2[0])) {
goto gz;
}
$EO = array_search($V2[0], user_roles());
gz:
if (!(isset($EO) && !is_null($EO) && $EO != '')) {
goto Sx;
}
$XF = variable_get(str_replace("\40", '', $Sc->{"\162\x6f\154\145\x73"}[$EO] . "\137\163\151\156"), '');
if (is_null($XF)) {
goto PQ;
}
$ur = variable_get(str_replace("\x20", '', $Sc->{"\162\x6f\x6c\x65\x73"}[$EO] . "\137\163\151\156"), '');
PQ:
Sx:
$hM = variable_get("\155\x69\x6e\151\157\x72\x61\x6e\x67\145\x5f\163\x61\155\154\137\x64\x65\x66\x61\165\154\164\x5f\x72\x65\154\141\x79\163\x74\141\x74\x65", '');
if (isset($ur) && $ur != '') {
goto ZM;
}
if (isset($hM) && $hM != '') {
goto PH;
}
if (isset($b3["\x72\145\154\x61\171\x5f\x73\164\x61\164\145"]) && $b3["\x72\145\154\x61\x79\x5f\x73\164\141\164\145"] != '') {
goto IK;
}
$fr["\x72\x65\x64\151\x72\145\143\164"] = $Zd;
goto wW;
IK:
$fr["\162\x65\144\x69\162\145\143\x74"] = $b3["\162\145\x6c\141\171\137\163\164\141\x74\x65"];
wW:
goto xV;
PH:
$fr["\162\x65\x64\x69\162\145\x63\164"] = $hM;
xV:
goto UZ;
ZM:
$fr["\162\x65\x64\x69\162\x65\143\164"] = $ur;
UZ:
$_SESSION["\163\x65\x73\x73\151\157\156\x49\156\144\145\x78"] = $b3["\x73\145\x73\163\x69\157\156\x49\x6e\144\x65\x78"];
$_SESSION["\116\x61\x6d\145\x49\x44"] = $b3["\116\x61\x6d\145\111\104"];
$_SESSION["\155\x6f\x5f\163\141\x6d\154"]["\154\x6f\x67\x67\x65\144\x5f\x69\x6e\137\167\x69\x74\150\x5f\x69\x64\x70"] = true;
if (!(isset($EO) && !is_null($EO) && $EO != '')) {
goto lc;
}
$j7 = variable_get(str_replace("\40", '', $Sc->{"\x72\157\x6c\x65\x73"}[$EO] . "\x5f\x73\157\165\164"), '');
if (is_null($j7)) {
goto YZ;
}
$_SESSION["\154\157\147\157\x75\x74"] = variable_get(str_replace("\x20", '', $Sc->{"\x72\x6f\154\145\x73"}[$EO] . "\137\163\157\x75\x74"), '');
YZ:
lc:
user_login_finalize($fr);
drupal_goto($fr["\162\x65\144\x69\162\145\143\x74"]);
iD:
goto VR;
eA:
session_destroy();
drupal_goto($Zd);
VR:
}
function miniorange_saml_init()
{
$Bm = '';
$K9 = variable_get("\155\x69\156\151\x6f\162\141\156\147\x65\137\x73\x61\155\154\x5f\x66\x6f\162\143\145\x5f\141\x75\164\x68", FALSE);
$pC = variable_get("\155\151\x6e\151\x6f\162\141\x6e\147\x65\137\163\x61\155\154\x5f\x65\156\x61\142\154\x65\x5f\x6c\157\x67\151\156", FALSE);
$Pg = variable_get("\155\x69\x6e\x69\x6f\162\141\156\147\x65\137\163\x61\x6d\x6c\137\x65\x6e\x61\x62\x6c\x65\x5f\142\141\143\153\144\x6f\157\162", FALSE);
if (!$pC) {
goto qS;
}
if ($Pg && isset($_GET["\x73\x61\x6d\x6c\137\154\157\147\151\156"]) && $_GET["\163\141\155\x6c\x5f\154\x6f\147\x69\156"] == "\146\141\154\163\145") {
goto aK;
}
if (!($K9 && !user_is_logged_in() && !isset($_POST["\123\x41\115\114\122\145\x73\160\x6f\x6e\163\x65"]) && !isset($_POST["\160\141\x73\x73"]))) {
goto vA;
}
if (!(strpos(request_uri(), "\143\162\157\156\56\x70\x68\160") == false)) {
goto Hl;
}
saml_login($Bm);
Hl:
vA:
goto zb;
aK:
zb:
if (!(variable_get("\x6d\151\x6e\x69\157\162\141\x6e\x67\145\137\x73\141\155\154\137\x6c\151\x63\145\156\163\145\137\153\145\x79", NULL) == NULL)) {
goto Fd;
}
variable_del("\155\x69\x6e\151\157\x72\141\x6e\x67\x65\137\x73\x61\x6d\154\x5f\145\x6e\x61\142\154\x65\x5f\154\x6f\x67\151\156");
variable_del("\155\151\156\151\157\162\141\156\147\145\x5f\163\141\155\154\137\x66\x6f\x72\143\x65\137\141\165\x74\x68");
variable_del("\155\151\156\x69\157\x72\x61\156\147\145\137\x73\x61\x6d\154\x5f\x65\156\141\142\154\145\137\x62\x61\x63\x6b\144\157\x6f\162");
Fd:
qS:
}
function miniorange_saml_cron()
{
$g3 = db_query("\123\105\114\x45\x43\x54\40\x2a\x20\x46\122\x4f\115\40\173\x6d\x69\x6e\x69\157\x72\141\x6e\147\x65\x5f\163\141\x6d\x6c\137\x69\x64\160\x5f\154\x69\x73\x74\x7d");
$Dx = $g3->fetchAll();
$Lw = -1;
if (!isset($Dx)) {
goto qr;
}
foreach ($Dx as $hm) {
$Hd = $hm->miniorange_saml_fetch_metadata_time_intervals;
$t4 = $hm->miniorange_saml_meta_data_url;
$og = $hm->mo_idp_name;
$Lw = $hm->id;
if (!(($Hd == 1 || $Hd == true) && $t4 != '')) {
goto zo;
}
$ah = array("\x73\163\154" => array("\x76\x65\162\151\146\x79\137\x70\x65\x65\x72" => false, "\166\145\x72\x69\146\x79\x5f\x70\x65\145\162\137\x6e\x61\155\x65" => false));
$XY = file_get_contents($t4, false, stream_context_create($ah));
Utilities::upload_metadata($XY, $og, $Hd, $t4, true, $Lw);
zo:
h2:
}
bY:
qr:
}
function miniorange_saml_seckit_options_alter(&$Lc)
{
$gp = variable_get("\x6d\x69\x6e\151\x6f\x72\x61\156\147\145\x5f\163\141\x6d\x6c\x5f\x69\144\x70\x5f\x6c\x6f\147\151\x6e\137\165\162\154", '');
$hv = parse_url($gp, PHP_URL_HOST);
$Lc["\x73\x65\x63\x6b\x69\x74\x5f\x63\163\x72\x66"]["\x6f\x72\x69\147\x69\156\x5f\167\150\151\x74\x65\154\151\163\x74"][] = "\x68\x74\164\x70\x73\72\57\x2f" . $hv;
$Lc["\x73\145\143\x6b\151\x74\x5f\x63\163\162\146"]["\157\x72\x69\147\151\x6e\137\x77\x68\151\164\145\154\151\163\164"][] = "\150\164\164\160\163\72\x2f\57" . $hv . "\x2f";
$W0 = parse_url($gp, PHP_URL_PORT);
if (is_null($W0)) {
goto Ud;
}
$hv = $hv . "\x3a" . $W0;
Ud:
$Lc["\x73\145\x63\x6b\151\x74\x5f\143\163\x72\146"]["\157\162\x69\x67\x69\156\137\167\x68\x69\x74\145\x6c\151\163\x74"][] = "\x68\164\164\x70\x73\72\57\x2f" . $hv;
$Lc["\163\157\143\153\x65\164\x5f\143\x73\162\146"]["\x6f\x72\151\147\151\156\x5f\x77\x68\151\164\x65\x6c\151\x73\164"][] = "\150\164\164\160\x73\72\x2f\x2f" . $hv . "\x2f";
$Lc["\x73\x65\x63\x6b\151\164\137\x63\163\x72\146"]["\x6f\162\151\x67\x69\x6e\137\167\x68\x69\x74\145\154\x69\x73\164"][] = "\x6e\x75\x6c\154";
}Function Calls
| None |
Stats
| MD5 | f22d05ae623b83090d67099022bee46f |
| Eval Count | 0 |
| Decode Time | 196 ms |