登录 注册
开源 企业版 高校版 私有云 Gitee AI NEW
开源项目 > 服务器应用 > 容器/虚拟机 &&
扫描微信二维码支付
取消
支付完成
Watch
不关注 关注所有动态 仅关注版本发行动态 关注但不提醒动态
36 Star 396 Fork 71

GVPrancher / rancher

代码 Issues 0 Pull Requests 0 Wiki 统计 流水线
服务
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
克隆/下载
providers.go 4.38 KB
一键复制 编辑 原始数据 按行查看 历史
carolyn 提交于 2018-08-14 13:01 . add keycloak as an auth provider
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128
package providers



import (

	"context"

	"fmt"

	"sync"



	"github.com/rancher/rancher/pkg/auth/providers/activedirectory"

	"github.com/rancher/rancher/pkg/auth/providers/azure"

	"github.com/rancher/rancher/pkg/auth/providers/common"

	"github.com/rancher/rancher/pkg/auth/providers/github"

	"github.com/rancher/rancher/pkg/auth/providers/ldap"

	"github.com/rancher/rancher/pkg/auth/providers/local"

	"github.com/rancher/rancher/pkg/auth/providers/saml"

	"github.com/rancher/rancher/pkg/auth/tokens"

	"github.com/rancher/types/apis/management.cattle.io/v3"

	"github.com/rancher/types/client/management/v3"

	publicclient "github.com/rancher/types/client/management/v3public"

	"github.com/rancher/types/config"

)



var (

	providers       = make(map[string]common.AuthProvider)

	localProvider   = "local"

	providersByType = make(map[string]common.AuthProvider)

	confMu          sync.Mutex

)



func GetProvider(providerName string) (common.AuthProvider, error) {

	if provider, ok := providers[providerName]; ok {

		if provider != nil {

			return provider, nil

		}

	}

	return nil, fmt.Errorf("No such provider '%s'", providerName)

}



func GetProviderByType(configType string) common.AuthProvider {

	return providersByType[configType]

}



func Configure(ctx context.Context, mgmt *config.ScaledContext) {

	confMu.Lock()

	defer confMu.Unlock()

	userMGR := mgmt.UserManager

	tokenMGR := tokens.NewManager(ctx, mgmt)

	var p common.AuthProvider



	p = local.Configure(ctx, mgmt, userMGR, tokenMGR)

	providers[local.Name] = p

	providersByType[client.LocalConfigType] = p

	providersByType[publicclient.LocalProviderType] = p



	p = github.Configure(ctx, mgmt, userMGR, tokenMGR)

	providers[github.Name] = p

	providersByType[client.GithubConfigType] = p

	providersByType[publicclient.GithubProviderType] = p



	p = azure.Configure(ctx, mgmt, userMGR, tokenMGR)

	providers[azure.Name] = p

	providersByType[client.AzureADConfigType] = p

	providersByType[publicclient.AzureADProviderType] = p



	p = activedirectory.Configure(ctx, mgmt, userMGR, tokenMGR)

	providers[activedirectory.Name] = p

	providersByType[client.ActiveDirectoryConfigType] = p

	providersByType[publicclient.ActiveDirectoryProviderType] = p



	p = ldap.Configure(ctx, mgmt, userMGR, tokenMGR, ldap.OpenLdapName, client.OpenLdapTestAndApplyInputType, "openldap_user", "openldap_group")

	providers[ldap.OpenLdapName] = p

	providersByType[client.OpenLdapConfigType] = p

	providersByType[publicclient.OpenLdapProviderType] = p



	p = ldap.Configure(ctx, mgmt, userMGR, tokenMGR, ldap.FreeIpaName, client.FreeIpaTestAndApplyInputType, "freeipa_user", "freeipa_group")

	providers[ldap.FreeIpaName] = p

	providersByType[client.FreeIpaConfigType] = p

	providersByType[publicclient.FreeIpaProviderType] = p



	p = saml.Configure(ctx, mgmt, userMGR, tokenMGR, saml.PingName)

	providers[saml.PingName] = p

	providersByType[client.PingConfigType] = p

	providersByType[publicclient.PingProviderType] = p



	p = saml.Configure(ctx, mgmt, userMGR, tokenMGR, saml.ADFSName)

	providers[saml.ADFSName] = p

	providersByType[client.ADFSConfigType] = p

	providersByType[publicclient.ADFSProviderType] = p



	p = saml.Configure(ctx, mgmt, userMGR, tokenMGR, saml.KeyCloakName)

	providers[saml.KeyCloakName] = p

	providersByType[client.KeyCloakConfigType] = p

	providersByType[publicclient.KeyCloakProviderType] = p

}



func AuthenticateUser(input interface{}, providerName string) (v3.Principal, []v3.Principal, string, error) {

	return providers[providerName].AuthenticateUser(input)

}



func GetPrincipal(principalID string, myToken v3.Token) (v3.Principal, error) {

	principal, err := providers[myToken.AuthProvider].GetPrincipal(principalID, myToken)



	if err != nil && myToken.AuthProvider != localProvider {

		p2, e2 := providers[localProvider].GetPrincipal(principalID, myToken)

		if e2 == nil {

			return p2, nil

		}

	}



	return principal, err

}



func SearchPrincipals(name, principalType string, myToken v3.Token) ([]v3.Principal, error) {

	principals, err := providers[myToken.AuthProvider].SearchPrincipals(name, principalType, myToken)

	if err != nil {

		return principals, err

	}

	if myToken.AuthProvider != localProvider {

		lp := providers[localProvider]

		if lpDedupe, _ := lp.(*local.Provider); lpDedupe != nil {

			localPrincipals, err := lpDedupe.SearchPrincipalsDedupe(name, principalType, myToken, principals)

			if err != nil {

				return principals, err

			}

			principals = append(principals, localPrincipals...)

		}

	}

	return principals, err

}
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化
Go
1
https://gitee.com/rancher/rancher.git
git@gitee.com:rancher/rancher.git
rancher
rancher
rancher
v2.0.12-rc4
点此查找更多帮助

搜索帮助

Git 命令在线学习 如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
评论
仓库举报
回到顶部
344bd9b3 5694891 D2dac590 5694891