rancher/types
1
0
Fork 0
mirror of https://github.com/rancher/types.git synced 2025-09-17 07:19:17 +00:00
Code Issues Releases Wiki Activity

Add SAML-ping type

Browse Source
This commit is contained in:
rajashree
2018-03-30 16:12:30 -07:00
committed by Craig Jellick
parent d8ca395c0b
commit aa93cb066d
7 changed files with 1489 additions and 99 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
apis/management.cattle.io/v3/authn_types.go
View File

@@ -269,3 +269,26 @@ type FreeIpaConfig struct {
type FreeIpaTestAndApplyInput struct {
LdapTestAndApplyInput `json:",inline" mapstructure:",squash"`
}
type SamlConfig struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
AuthConfig `json:",inline" mapstructure:",squash"`
IDPMetadataContent string `json:"idpMetadataContent" norman:"required"`
SPSelfSignedCert string `json:"spCert" norman:"required"`
SPSelfSignedKey string `json:"spKey" norman:"required"`
GroupsField string `json:"groupsField" norman:"required"`
DisplayNameField string `json:"displayNameField" norman:"required"`
UserNameField string `json:"userNameField" norman:"required"`
UIDField string `json:"uidField" norman:"required"`
RancherAPIHost string `json:"rancherApiHost" norman:"required"`
}
type PingConfig struct {
SamlConfig `json:",inline" mapstructure:",squash"`
}
type SamlConfigTestInput struct {
FinalRedirectURL string `json:"finalRedirectUrl"`
}

16
apis/management.cattle.io/v3/schema/schema.go
View File

@@ -407,7 +407,21 @@ func authnTypes(schemas *types.Schemas) *types.Schemas {
return f
})
}).
MustImport(&Version, v3.FreeIpaTestAndApplyInput{})
MustImport(&Version, v3.FreeIpaTestAndApplyInput{}).
// Saml Config
// Ping-Saml Config
MustImportAndCustomize(&Version, v3.PingConfig{}, func(schema *types.Schema) {
schema.BaseType = "authConfig"
schema.ResourceActions = map[string]types.Action{
"disable": {},
"testAndEnable": {
Input: "samlConfigTestInput",
},
}
schema.CollectionMethods = []string{}
schema.ResourceMethods = []string{http.MethodGet, http.MethodPut}
}).
MustImport(&Version, v3.SamlConfigTestInput{})
}
func userTypes(schema *types.Schemas) *types.Schemas {

1462
apis/management.cattle.io/v3/zz_generated_deepcopy.go
View File

File diff suppressed because it is too large Load Diff

16
apis/management.cattle.io/v3public/authn_types.go
View File

@@ -58,6 +58,14 @@ type AzureADProvider struct {
RedirectURL string `json:"redirectUrl"`
}
type SamlProvider struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
AuthProvider `json:",inline"`
RedirectURL string `json:"redirectUrl"`
}
type AzureADLogin struct {
GenericLogin `json:",inline"`
Code string `json:"code" norman:"type=string,required"`
@@ -74,3 +82,11 @@ type FreeIpaProvider struct {
metav1.ObjectMeta `json:"metadata,omitempty"`
AuthProvider `json:",inline"`
}
type PingProvider struct {
SamlProvider `json:",inline"`
}
type SamlLogin struct {
FinalRedirectURL string `json:"finalRedirectUrl"`
}

14
apis/management.cattle.io/v3public/schema/public_schema.go
View File

@@ -81,6 +81,19 @@ func authProvidersTypes(schemas *types.Schemas) *types.Schemas {
schema.ResourceMethods = []string{http.MethodGet}
}).
MustImport(&PublicVersion, v3public.AzureADLogin{}).
// Saml provider
MustImportAndCustomize(&PublicVersion, v3public.PingProvider{}, func(schema *types.Schema) {
schema.BaseType = "authProvider"
schema.ResourceActions = map[string]types.Action{
"login": {
Input: "samlLogin",
Output: "token",
},
}
schema.CollectionMethods = []string{}
schema.ResourceMethods = []string{http.MethodGet}
}).
MustImport(&PublicVersion, v3public.SamlLogin{}).
// OpenLdap provider
MustImportAndCustomize(&PublicVersion, v3public.OpenLdapProvider{}, func(schema *types.Schema) {
schema.BaseType = "authProvider"
@@ -105,5 +118,4 @@ func authProvidersTypes(schemas *types.Schemas) *types.Schemas {
schema.CollectionMethods = []string{}
schema.ResourceMethods = []string{http.MethodGet}
})
}

56
client/management/v3/zz_generated_ping_config.go Normal file
View File

@@ -0,0 +1,56 @@
package client
const (
PingConfigType = "pingConfig"
PingConfigFieldAccessMode = "accessMode"
PingConfigFieldAllowedPrincipalIDs = "allowedPrincipalIds"
PingConfigFieldAnnotations = "annotations"
PingConfigFieldCreated = "created"
PingConfigFieldCreatorID = "creatorId"
PingConfigFieldDisplayNameField = "displayNameField"
PingConfigFieldEnabled = "enabled"
PingConfigFieldGroupsField = "groupsField"
PingConfigFieldIDPMetadataContent = "idpMetadataContent"
PingConfigFieldIDPMetadataFilePath = "idpMetadataFilePath"
PingConfigFieldIDPMetadataURL = "idpMetadataUrl"
PingConfigFieldLabels = "labels"
PingConfigFieldName = "name"
PingConfigFieldOwnerReferences = "ownerReferences"
PingConfigFieldRancherAPIHost = "rancherApiHost"
PingConfigFieldRemoved = "removed"
PingConfigFieldSPSelfSignedCert = "spCert"
PingConfigFieldSPSelfSignedCertFilePath = "spSelfSignedCertFilePath"
PingConfigFieldSPSelfSignedKey = "spKey"
PingConfigFieldSPSelfSignedKeyFilePath = "spSelfSignedKeyFilePath"
PingConfigFieldType = "type"
PingConfigFieldUIDField = "uidField"
PingConfigFieldUserNameField = "userNameField"
PingConfigFieldUuid = "uuid"
)
type PingConfig struct {
AccessMode string `json:"accessMode,omitempty" yaml:"accessMode,omitempty"`
AllowedPrincipalIDs []string `json:"allowedPrincipalIds,omitempty" yaml:"allowedPrincipalIds,omitempty"`
Annotations map[string]string `json:"annotations,omitempty" yaml:"annotations,omitempty"`
Created string `json:"created,omitempty" yaml:"created,omitempty"`
CreatorID string `json:"creatorId,omitempty" yaml:"creatorId,omitempty"`
DisplayNameField string `json:"displayNameField,omitempty" yaml:"displayNameField,omitempty"`
Enabled bool `json:"enabled,omitempty" yaml:"enabled,omitempty"`
GroupsField string `json:"groupsField,omitempty" yaml:"groupsField,omitempty"`
IDPMetadataContent string `json:"idpMetadataContent,omitempty" yaml:"idpMetadataContent,omitempty"`
IDPMetadataFilePath string `json:"idpMetadataFilePath,omitempty" yaml:"idpMetadataFilePath,omitempty"`
IDPMetadataURL string `json:"idpMetadataUrl,omitempty" yaml:"idpMetadataUrl,omitempty"`
Labels map[string]string `json:"labels,omitempty" yaml:"labels,omitempty"`
Name string `json:"name,omitempty" yaml:"name,omitempty"`
OwnerReferences []OwnerReference `json:"ownerReferences,omitempty" yaml:"ownerReferences,omitempty"`
RancherAPIHost string `json:"rancherApiHost,omitempty" yaml:"rancherApiHost,omitempty"`
Removed string `json:"removed,omitempty" yaml:"removed,omitempty"`
SPSelfSignedCert string `json:"spCert,omitempty" yaml:"spCert,omitempty"`
SPSelfSignedCertFilePath string `json:"spSelfSignedCertFilePath,omitempty" yaml:"spSelfSignedCertFilePath,omitempty"`
SPSelfSignedKey string `json:"spKey,omitempty" yaml:"spKey,omitempty"`
SPSelfSignedKeyFilePath string `json:"spSelfSignedKeyFilePath,omitempty" yaml:"spSelfSignedKeyFilePath,omitempty"`
Type string `json:"type,omitempty" yaml:"type,omitempty"`
UIDField string `json:"uidField,omitempty" yaml:"uidField,omitempty"`
UserNameField string `json:"userNameField,omitempty" yaml:"userNameField,omitempty"`
Uuid string `json:"uuid,omitempty" yaml:"uuid,omitempty"`
}

1
user/manager.go
View File

@@ -11,4 +11,5 @@ type Manager interface {
EnsureToken(tokenName, description, userName string) (string, error)
EnsureUser(principalName, displayName string) (*v3.User, error)
CheckAccess(accessMode string, allowedPrincipalIDs []string, user v3.Principal, groups []v3.Principal) (bool, error)
SetPrincipalOnCurrentUserByUserID(userID string, principal v3.Principal) (*v3.User, error)
}