1
0
mirror of https://github.com/LaCasemate/fab-manager.git synced 2024-12-04 15:24:23 +01:00
fab-manager/lib/omni_auth/strategies/sso_oauth2_provider.rb

152 lines
5.0 KiB
Ruby
Raw Normal View History

2019-01-31 17:15:26 +01:00
# frozen_string_literal: true
2016-03-23 18:39:41 +01:00
require 'omniauth-oauth2'
2019-01-31 17:15:26 +01:00
module OmniAuth::Strategies
# Authentication strategy provided trough oAuth 2.0
class SsoOauth2Provider < OmniAuth::Strategies::OAuth2
2016-03-23 18:39:41 +01:00
2019-01-31 17:15:26 +01:00
def self.active_provider
active_provider = AuthProvider.active
if active_provider.providable_type != OAuth2Provider.name
raise "Trying to instantiate the wrong provider: Expected OAuth2Provider, received #{active_provider.providable_type}"
2016-03-23 18:39:41 +01:00
end
2019-01-31 17:15:26 +01:00
active_provider
end
2016-03-23 18:39:41 +01:00
2019-01-31 17:15:26 +01:00
# Strategy name.
option :name, active_provider.strategy_name
2016-03-23 18:39:41 +01:00
2019-01-31 17:15:26 +01:00
option :client_options,
site: active_provider.providable.base_url,
authorize_url: active_provider.providable.authorization_endpoint,
token_url: active_provider.providable.token_endpoint
2016-03-23 18:39:41 +01:00
2021-11-02 11:24:10 +01:00
def authorize_params
super.tap do |params|
2021-11-03 12:29:18 +01:00
params[:scope] = 'api://b8b974a0-ecee-45fd-89cc-91d8f09d7904/User.read'
2021-11-02 11:24:10 +01:00
end
end
def callback_url
url = Rails.application.config.action_controller.default_url_options
"#{url[:protocol]}://#{url[:host]}#{script_name}#{callback_path}"
end
2016-03-23 18:39:41 +01:00
2019-01-31 17:15:26 +01:00
uid { parsed_info['user.uid'.to_sym] }
2016-03-23 18:39:41 +01:00
2019-01-31 17:15:26 +01:00
info do
{
mapping: parsed_info
}
end
extra do
{
raw_info: raw_info
}
end
# retrieve data from various url, querying each only once
def raw_info
@raw_info ||= {}
2021-11-16 09:47:36 +01:00
logger.debug "[raw_info] @raw_infos = #{@raw_info}"
2019-01-31 17:15:26 +01:00
unless @raw_info.size.positive?
OmniAuth::Strategies::SsoOauth2Provider.active_provider.providable.o_auth2_mappings.each do |mapping|
2021-11-16 09:47:36 +01:00
logger.debug "mapping = #{mapping}"
2019-01-31 17:15:26 +01:00
unless @raw_info.key?(mapping.api_endpoint.to_sym)
2021-11-16 09:47:36 +01:00
logger.debug "api_endpoint = #{mapping.api_endpoint.to_sym}"
logger.debug "access_token = #{access_token}"
logger.debug "token get = #{access_token.get(mapping.api_endpoint)}"
logger.debug "parsed = #{access_token.get(mapping.api_endpoint).parsed}"
2019-01-31 17:15:26 +01:00
@raw_info[mapping.api_endpoint.to_sym] = access_token.get(mapping.api_endpoint).parsed
2016-03-23 18:39:41 +01:00
end
end
end
2019-01-31 17:15:26 +01:00
@raw_info
end
2016-03-23 18:39:41 +01:00
2019-01-31 17:15:26 +01:00
def parsed_info
@parsed_info ||= {}
unless @parsed_info.size.positive?
OmniAuth::Strategies::SsoOauth2Provider.active_provider.providable.o_auth2_mappings.each do |mapping|
if mapping.transformation
case mapping.transformation['type']
## INTEGER
when 'integer'
@parsed_info[local_sym(mapping)] = map_integer(mapping.transformation,
mapping.api_endpoint.to_sym,
mapping.api_field)
## BOOLEAN
when 'boolean'
@parsed_info[local_sym(mapping)] = map_boolean(mapping.transformation,
mapping.api_endpoint.to_sym,
mapping.api_field)
## DATE
when 'date'
@params[local_sym(mapping)] = map_date(mapping.transformation,
mapping.api_endpoint.to_sym,
mapping.api_field)
## OTHER TRANSFORMATIONS (not supported)
else
@parsed_info[local_sym(mapping)] = raw_info[mapping.api_endpoint.to_sym][mapping.api_field]
end
2019-01-31 17:15:26 +01:00
## NO TRANSFORMATION
else
@parsed_info[local_sym(mapping)] = raw_info[mapping.api_endpoint.to_sym][mapping.api_field]
2016-03-23 18:39:41 +01:00
end
end
end
2019-01-31 17:15:26 +01:00
@parsed_info
end
private
2016-03-23 18:39:41 +01:00
2019-01-31 17:15:26 +01:00
def local_sym(mapping)
(mapping.local_model + '.' + mapping.local_field).to_sym
end
def map_integer(transformation, api_endpoint, api_field)
value = nil
transformation['mapping'].each do |m|
if m['from'] == raw_info[api_endpoint][api_field]
value = m['to']
break
end
2019-01-31 17:15:26 +01:00
end
# if no transformation had set any value, return the raw value
value || raw_info[api_endpoint.to_sym][api_field]
end
def map_boolean(transformation, api_endpoint, api_field)
return false if raw_info[api_endpoint][api_field] == transformation['false_value']
true if raw_info[api_endpoint][api_field] == transformation['true_value']
end
def map_date(transformation, api_endpoint, api_field)
case transformation['format']
when 'iso8601'
DateTime.iso8601(raw_info[api_endpoint][api_field])
when 'rfc2822'
DateTime.rfc2822(raw_info[api_endpoint][api_field])
when 'rfc3339'
DateTime.rfc3339(raw_info[api_endpoint][api_field])
when 'timestamp-s'
DateTime.strptime(raw_info[api_endpoint][api_field], '%s')
when 'timestamp-ms'
DateTime.strptime(raw_info[api_endpoint][api_field], '%Q')
else
DateTime.parse(raw_info[api_endpoint][api_field])
end
2016-03-23 18:39:41 +01:00
end
end
2019-01-31 17:15:26 +01:00
end