37 Star 411 Fork 76

GVPrancher/rancher

加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
文件
克隆/下载
samlconfig.go 2.27 KB
一键复制 编辑 原始数据 按行查看 历史
Dan Ramich 提交于 2019-06-12 13:38 . goimport linting changes
package samlconfig
import (
"context"
"fmt"
"github.com/mitchellh/mapstructure"
"github.com/rancher/rancher/pkg/auth/providers/common"
"github.com/rancher/rancher/pkg/auth/providers/saml"
v3 "github.com/rancher/types/apis/management.cattle.io/v3"
"github.com/rancher/types/config"
corev1 "github.com/rancher/types/apis/core/v1"
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
"k8s.io/apimachinery/pkg/runtime"
)
type authProvider struct {
authConfigs v3.AuthConfigInterface
secrets corev1.SecretInterface
}
func Register(ctx context.Context, apiContext *config.ScaledContext) {
a := newAuthProvider(apiContext)
apiContext.Management.AuthConfigs("").AddHandler(ctx, "authConfigController", a.sync)
}
func newAuthProvider(apiContext *config.ScaledContext) *authProvider {
a := &authProvider{
authConfigs: apiContext.Management.AuthConfigs(""),
secrets: apiContext.Core.Secrets(""),
}
return a
}
func (a *authProvider) sync(key string, config *v3.AuthConfig) (runtime.Object, error) {
samlConfig := &v3.SamlConfig{}
if key == "" || config == nil {
return nil, nil
}
if config.Name != saml.PingName && config.Name != saml.ADFSName && config.Name != saml.KeyCloakName &&
config.Name != saml.OKTAName {
return nil, nil
}
if !config.Enabled {
return nil, nil
}
authConfigObj, err := a.authConfigs.ObjectClient().UnstructuredClient().Get(config.Name, metav1.GetOptions{})
if err != nil {
return nil, fmt.Errorf("failed to retrieve SamlConfig, error: %v", err)
}
u, ok := authConfigObj.(runtime.Unstructured)
if !ok {
return nil, fmt.Errorf("failed to retrieve SamlConfig, cannot read k8s Unstructured data")
}
storedSamlConfigMap := u.UnstructuredContent()
mapstructure.Decode(storedSamlConfigMap, samlConfig)
metadataMap, ok := storedSamlConfigMap["metadata"].(map[string]interface{})
if !ok {
return nil, fmt.Errorf("failed to retrieve SamlConfig metadata, cannot read k8s Unstructured data")
}
typemeta := &metav1.ObjectMeta{}
mapstructure.Decode(metadataMap, typemeta)
samlConfig.ObjectMeta = *typemeta
if samlConfig.SpKey != "" {
value, err := common.ReadFromSecret(a.secrets, samlConfig.SpKey, "spkey")
if err != nil {
return nil, err
}
samlConfig.SpKey = value
}
return nil, saml.InitializeSamlServiceProvider(samlConfig, config.Name)
}
Loading...
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化
Go
1
https://gitee.com/rancher/rancher.git
git@gitee.com:rancher/rancher.git
rancher
rancher
rancher
v2.2.7-rc7

搜索帮助

0d507c66 1850385 C8b1a773 1850385