代码拉取完成,页面将自动刷新
package samlconfig
import (
"context"
"fmt"
"github.com/mitchellh/mapstructure"
"github.com/rancher/rancher/pkg/auth/providers/common"
"github.com/rancher/rancher/pkg/auth/providers/saml"
"github.com/rancher/types/apis/management.cattle.io/v3"
"github.com/rancher/types/config"
corev1 "github.com/rancher/types/apis/core/v1"
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
"k8s.io/apimachinery/pkg/runtime"
)
type authProvider struct {
authConfigs v3.AuthConfigInterface
secrets corev1.SecretInterface
}
func Register(ctx context.Context, apiContext *config.ScaledContext) {
a := newAuthProvider(apiContext)
apiContext.Management.AuthConfigs("").AddHandler(ctx, "authConfigController", a.sync)
}
func newAuthProvider(apiContext *config.ScaledContext) *authProvider {
a := &authProvider{
authConfigs: apiContext.Management.AuthConfigs(""),
secrets: apiContext.Core.Secrets(""),
}
return a
}
func (a *authProvider) sync(key string, config *v3.AuthConfig) (runtime.Object, error) {
samlConfig := &v3.SamlConfig{}
if key == "" || config == nil {
return nil, nil
}
if config.Name != saml.PingName && config.Name != saml.ADFSName && config.Name != saml.KeyCloakName &&
config.Name != saml.OKTAName {
return nil, nil
}
if !config.Enabled {
return nil, nil
}
authConfigObj, err := a.authConfigs.ObjectClient().UnstructuredClient().Get(config.Name, metav1.GetOptions{})
if err != nil {
return nil, fmt.Errorf("failed to retrieve SamlConfig, error: %v", err)
}
u, ok := authConfigObj.(runtime.Unstructured)
if !ok {
return nil, fmt.Errorf("failed to retrieve SamlConfig, cannot read k8s Unstructured data")
}
storedSamlConfigMap := u.UnstructuredContent()
mapstructure.Decode(storedSamlConfigMap, samlConfig)
metadataMap, ok := storedSamlConfigMap["metadata"].(map[string]interface{})
if !ok {
return nil, fmt.Errorf("failed to retrieve SamlConfig metadata, cannot read k8s Unstructured data")
}
typemeta := &metav1.ObjectMeta{}
mapstructure.Decode(metadataMap, typemeta)
samlConfig.ObjectMeta = *typemeta
if samlConfig.SpKey != "" {
value, err := common.ReadFromSecret(a.secrets, samlConfig.SpKey, "spkey")
if err != nil {
return nil, err
}
samlConfig.SpKey = value
}
return nil, saml.InitializeSamlServiceProvider(samlConfig, config.Name)
}
此处可能存在不合适展示的内容,页面不予展示。您可通过相关编辑功能自查并修改。
如您确认内容无涉及 不当用语 / 纯广告导流 / 暴力 / 低俗色情 / 侵权 / 盗版 / 虚假 / 无价值内容或违法国家有关法律法规的内容,可点击提交进行申诉,我们将尽快为您处理。
马建仓 AI 助手