checkTokenValidity($_GET['token']); if (Config::$CONSORTIUM['selfservice_registration'] !== NULL && $_GET['token'] == "SELF-REGISTER") { $mode = "SELFSERVICE"; $federation = Config::$CONSORTIUM['selfservice_registration']; $checkval = "OK-NEW"; } if (!isset($_GET['token']) || ( $checkval != "OK-NEW" && $checkval != "OK-EXISTING")) { pageheader(_("Error creating new IdP binding!"), "ADMIN-IDP"); echo "

"._("Error creating new IdP binding!")."

"; if ($checkval == "FAIL-ALREADYCONSUMED") { echo "

" . _("Sorry... this token has already been used to create an institution. If you got it from a mailing list, probably someone else used it before you.") . "

"; } elseif ($checkval == "FAIL-EXPIRED") { echo "

" . _("Sorry... this token has expired. Invitation tokens are valid for 24 hours. Please ask your federation administrator for a new one.") . "

"; } else { echo "

" . _("Sorry... you have come to the enrollment page without a valid token. Are you a nasty person? If not, you should go to your profile page instead.") . "

"; } footer(); exit(1); } else { // token is valid. Get meta-info and create inst // TODO get invitation level and mail, store it as property if ($mode == "SELFSERVICE") { $fed = new Federation($federation); $newidp = new IdP($fed->newIdP($_SESSION['user'], "FED", $mode)); CAT::writeAudit($_SESSION['user'], "MOD", "IdP " . $newidp->identifier . " - $mode registration"); } else { $newidp = $usermgmt->createIdPFromToken($_GET['token'], $_SESSION['user']); $usermgmt->invalidateToken($_GET['token']); CAT::writeAudit($_SESSION['user'], "MOD", "IdP " . $newidp->identifier . " - Token used and invalidated"); }; } if ($checkval == "OK-EXISTING") header("Location: overview_user.php"); else header("Location: edit_idp.php?inst_id=$newidp->identifier&wizard=true");