Welcome to mirror list, hosted at ThFree Co, Russian Federation.

crowd.rb « strategies « omniauth « lib « omniauth_crowd « gems « vendor - gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/vendor/gems/omniauth_crowd/lib/omniauth/strategies/crowd.rb
blob: 7126d8328e0fb7cd5ba1d2b213c230f4d3da4aa5 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89

require 'omniauth'
require 'active_support'
require 'active_support/core_ext/object'
module OmniAuth
  module Strategies
    class Crowd
      include OmniAuth::Strategy

      autoload :Configuration, 'omniauth/strategies/crowd/configuration'
      autoload :CrowdValidator, 'omniauth/strategies/crowd/crowd_validator'
      def initialize(app, options = {}, &block)
        options.symbolize_keys!()
        super(app, {:name=> :crowd}.merge(options), &block)
        @configuration = OmniAuth::Strategies::Crowd::Configuration.new(options)
      end

      protected

      def request_phase
        if (env['REQUEST_METHOD'] == 'POST') && (not request.params['username'])
          get_credentials
        else
          session['omniauth.crowd'] = {'username' => request['username'], 'password' => request['password']}
          redirect callback_url
        end
      end

      def get_client_ip
        env['HTTP_X_FORWARDED_FOR'] ? env['HTTP_X_FORWARDED_FOR'] : env['REMOTE_ADDRESS']
      end

      def get_sso_tokens
        env['HTTP_COOKIE'].split(';').select { |val| 
          val.strip.start_with?(@configuration.session_cookie)
        }.map { |val| 
          val.strip.split('=').last
        }            
      end

      def get_credentials

        configuration = @configuration

        OmniAuth::Form.build(:title => (options[:title] || "Crowd Authentication")) do
          text_field 'Login', 'username'
          password_field 'Password', 'password'

          if configuration.use_sessions? && configuration.sso_url
            fieldset 'SSO' do
              html "<a href=\"#{configuration.sso_url}/users/auth/crowd/callback\">" + (configuration.sso_url_image ? "<img src=\"#{configuration.sso_url_image}\" />" : '') + "</a>"
            end
          end

        end.to_response

      end
      
      def callback_phase

        creds = session.delete 'omniauth.crowd'
        username = creds.nil? ? nil : creds['username']
        password = creds.nil? ? nil : creds['password']

        unless creds
          if @configuration.use_sessions? && request.cookies[@configuration.session_cookie]
            validator = CrowdValidator.new(@configuration, username, password, get_client_ip, get_sso_tokens)
          else
            return fail!(:no_credentials)
          end
        else
          validator = CrowdValidator.new(@configuration, username, password, get_client_ip, nil)
        end

        @user_info = validator.user_info

        return fail!(:invalid_credentials) if @user_info.nil? || @user_info.empty?

        super
      end

      def auth_hash
        OmniAuth::Utils.deep_merge(super, {
          'uid' => @user_info.delete("user"),
          'info' => @user_info
        })
      end
    end
  end
end
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-16 08:33:17 +0300