Skip to content

Commit

Permalink
Merge e70a0f3 into b682689
Browse files Browse the repository at this point in the history
  • Loading branch information
@ThibHrrd
ThibHrrd authored May 12, 2022
2 parents b682689 + e70a0f3 commit d05acdf
Show file tree
Hide file tree
Showing 64 changed files with 3,187 additions and 2 deletions.
3 changes: 3 additions & 0 deletions cmd/remote/status.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -41,6 +41,9 @@ var statusCmd = &cobra.Command{
Args: cobra.NoArgs,
RunE: func(cmd *cobra.Command, args []string) error {
c, err := cliclient.NewClient(cmd)
if err != nil {
return err
}
state := &statusState{}
defer cmdx.PrintRow(cmd, state)

Expand Down
3 changes: 3 additions & 0 deletions cmd/remote/version.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -29,6 +29,9 @@ var versionCmd = &cobra.Command{
Args: cobra.NoArgs,
RunE: func(cmd *cobra.Command, args []string) error {
c, err := cliclient.NewClient(cmd)
if err != nil {
return err
}

resp, _, err := c.MetadataApi.GetVersion(cmd.Context()).Execute()
if err != nil {
Expand Down
11 changes: 11 additions & 0 deletions driver/registery_default_saml.go
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,11 @@
package driver

import "github.com/ory/kratos/selfservice/flow/saml"

func (m *RegistryDefault) SAMLHandler() *saml.Handler {
if m.selfserviceSAMLHandler == nil {
m.selfserviceSAMLHandler = saml.NewHandler(m)
}

return m.selfserviceSAMLHandler
}
6 changes: 6 additions & 0 deletions driver/registry_default.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -35,11 +35,13 @@ import (
"github.com/ory/kratos/hash"
"github.com/ory/kratos/schema"
"github.com/ory/kratos/selfservice/flow/recovery"
"github.com/ory/kratos/selfservice/flow/saml"
"github.com/ory/kratos/selfservice/flow/settings"
"github.com/ory/kratos/selfservice/flow/verification"
"github.com/ory/kratos/selfservice/hook"
"github.com/ory/kratos/selfservice/strategy/link"
"github.com/ory/kratos/selfservice/strategy/profile"
samlstrategy "github.com/ory/kratos/selfservice/strategy/saml/strategy"
"github.com/ory/kratos/x"

"github.com/cenkalti/backoff"
Expand Down Expand Up @@ -118,6 +120,8 @@ type RegistryDefault struct {
selfserviceLoginHandler *login.Handler
selfserviceLoginRequestErrorHandler *login.ErrorHandler

selfserviceSAMLHandler *saml.Handler

selfserviceSettingsHandler *settings.Handler
selfserviceSettingsErrorHandler *settings.ErrorHandler
selfserviceSettingsExecutor *settings.HookExecutor
Expand Down Expand Up @@ -150,6 +154,7 @@ func (m *RegistryDefault) Audit() *logrusx.Logger {

func (m *RegistryDefault) RegisterPublicRoutes(ctx context.Context, router *x.RouterPublic) {
m.LoginHandler().RegisterPublicRoutes(router)
m.SAMLHandler().RegisterPublicRoutes(router)
m.RegistrationHandler().RegisterPublicRoutes(router)
m.LogoutHandler().RegisterPublicRoutes(router)
m.SettingsHandler().RegisterPublicRoutes(router)
Expand Down Expand Up @@ -274,6 +279,7 @@ func (m *RegistryDefault) selfServiceStrategies() []interface{} {
m.selfserviceStrategies = []interface{}{
password2.NewStrategy(m),
oidc.NewStrategy(m),
samlstrategy.NewStrategy(m),
profile.NewStrategy(m),
link.NewStrategy(m),
totp.NewStrategy(m),
Expand Down
4 changes: 2 additions & 2 deletions driver/registry_default_test.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -686,7 +686,7 @@ func TestDefaultRegistry_AllStrategies(t *testing.T) {
_, reg := internal.NewFastRegistryWithMocks(t)

t.Run("case=all login strategies", func(t *testing.T) {
expects := []string{"password", "oidc", "totp", "webauthn", "lookup_secret"}
expects := []string{"password", "oidc", "saml", "totp", "webauthn", "lookup_secret"}
s := reg.AllLoginStrategies()
require.Len(t, s, len(expects))
for k, e := range expects {
Expand All @@ -695,7 +695,7 @@ func TestDefaultRegistry_AllStrategies(t *testing.T) {
})

t.Run("case=all registration strategies", func(t *testing.T) {
expects := []string{"password", "oidc", "webauthn"}
expects := []string{"password", "oidc", "saml", "webauthn"}
s := reg.AllRegistrationStrategies()
require.Len(t, s, len(expects))
for k, e := range expects {
Expand Down
251 changes: 251 additions & 0 deletions embedx/config.schema.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -312,6 +312,225 @@
}
}
},
"selfServiceSAMLProvider": {
"type": "object",
"properties": {
"id": {
"title":"ID of the IdentityProvider",
"type": "string",
"examples": [
"activedirectory1"
]
},
"label": {
"title": "Optional string which will be used when generating labels for UI buttons.",
"type": "string",
"examples": [
"Microsoft Active Directory"
]
},
"public_cert_path": {
"title": "Public Certificate Path",
"description": "The Public Certificate for your SAML Messages",
"type": "string",
"format": "uri",
"examples": [
"file://path/to/cert",
"https://foo.bar.com/path/to/cert"
]
},
"private_key_path": {
"title": "Private Key Path",
"description": "The Private Key for your SAML Messages",
"type": "string",
"format": "uri",
"examples": [
"file://path/to/key",
"https://foo.bar.com/path/to/key"
]
},
"mapper_url": {
"title": "Jsonnet Mapper URL",
"description": "Location for the jsonnet mapping between provider's data and Ory Kratos data",
"type": "string",
"format": "uri",
"examples": [
"file://path/to/oidc.jsonnet",
"https://foo.bar.com/path/to/oidc.jsonnet",
"base64://bG9jYWwgc3ViamVjdCA9I..."
]
},
"idp_information": {
"type": "object",
"properties": {
"idp_metadata_url": {
"title": "IDP Metadata URL",
"description": "The URL of the metadata of the IDP",
"type": "string",
"examples": [
"https://path/to/metadata"
]
},
"idp_certificate_path": {
"title": "IDP Certificate Path",
"description": "The path to the certificate of the IDP",
"type": "string",
"examples": [
"file://path/to/certificate",
"https://foo.bar.com/path/to/certificate"
]
},
"idp_logout_url": {
"title": "IDP Logout URL",
"description": "The URL of the SLO API of the IDP",
"type": "string",
"examples": [
"https://path/to/logout"
]
},
"idp_sso_url": {
"title": "IDP SSO URL",
"description": "The URL of the SSO Handler at the IDP",
"type": "string",
"examples": [
"https://path/to/sso"
]
},
"idp_entity_id": {
"title": "The EntityID of the IDP",
"description": "It is a unique identifier representing the IDP in saml requests",
"type": "string",
"examples": [
"https://samltest.id/saml/idp"
]
}
},
"allOf": [
{
"if": {
"properties": {
"idp_metadata_url": {
"const": {}
}
}
},
"then": {
"required": [
"idp_logout_url",
"idp_certificate_path",
"idp_entity_id"
]
},
"else":{
"properties": {
"idp_certificate_path": {
"const": {}
},
"idp_logout_url": {
"const": {}
},
"idp_entity_id":{
"const":{}
},
"idp_sso_url":{
"const":{}
}
}
}
}
]
},
"attributes_map": {
"type": "object",
"properties": {
"id": {
"title": "ID",
"description": "Name of the IDP attribute representing user ID on Kratos",
"type": "string",
"examples": [
"file://path/to/oidc.jsonnet",
"https://foo.bar.com/path/to/oidc.jsonnet",
"base64://bG9jYWwgc3ViamVjdCA9I..."
]
},
"firstname": {
"title": "Firstname",
"description": "Name of the IDP attribute representing user firstname on Kratos",
"type": "string",
"examples": [
"John"
]
},
"lastname": {
"title": "Lastname",
"description": "Name of the IDP attribute representing user lastname on Kratos",
"type": "string",
"examples": [
"Doe"
]
},
"nickname": {
"title": "Nickname",
"description": "Name of the IDP attribute representing user username on Kratos",
"type": "string",
"examples": [
"JohnDoe1337"
]
},
"gender": {
"title": "Gender",
"description": "Name of the IDP attribute representing user's gender on Kratos",
"type": "string",
"examples": [
"Male",
"Female",
"Non-binary"
]
},
"birthdate": {
"title": "Birthdate",
"description": "Name of the IDP attribute representing user birthdate on Kratos",
"type": "string",
"examples": [
"08/23/1978"
]
},
"picture": {
"title": "Picture",
"description": "Name of the IDP attribute representing user picture on Kratos",
"type": "string",
"examples": [
"https://imagepicture.jpg"
]
},
"email": {
"title": "Email",
"description": "Name of the IDP attribute representing user email on Kratos",
"type": "string",
"examples": [
"[email protected]"
]
},
"phone_number": {
"title": "Phone Number",
"description": "Name of the IDP attribute representing user phone number on Kratos",
"type": "string",
"examples": [
"+33678984320"
]
}
}
}
},
"additionalProperties": false,
"required": [
"id",
"label",
"public_cert_path",
"private_key_path",
"mapper_url"
]
},
"selfServiceOIDCProvider": {
"type": "object",
"properties": {
Expand Down Expand Up @@ -770,6 +989,9 @@
"oidc": {
"$ref": "#/definitions/selfServiceAfterRegistrationMethod"
},
"saml": {
"$ref": "#/definitions/selfServiceAfterRegistrationMethod"
},
"hooks": {
"$ref": "#/definitions/selfServiceHooks"
}
Expand Down Expand Up @@ -1394,6 +1616,35 @@
]
}
},
"saml": {
"type": "object",
"title": "Specify SAML configuration",
"showEnvVarBlockForObject": true,
"additionalProperties": false,
"properties": {
"enabled": {
"type": "boolean",
"title": "Enables SAML Authentication Method",
"default": false
},
"config": {
"type": "object",
"additionalProperties": false,
"properties": {
"providers": {
"title": "SAML Provider",
"description": "All information required to implement a SAML authentication",
"type": "array",
"items": {
"$ref": "#/definitions/selfServiceSAMLProvider"
}
}
}


}
}
},
"oidc": {
"type": "object",
"title": "Specify OpenID Connect and OAuth2 Configuration",
Expand Down
Loading

0 comments on commit d05acdf

Please sign in to comment.