Skip to content
GitLab
Menu
Projects
Groups
Snippets
/
Help
Help
Support
Community forum
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in
Toggle navigation
Menu
Open sidebar
id
go-sso
Commits
4c546e2f
Commit
4c546e2f
authored
Aug 23, 2020
by
ale
Browse files
Merge branch 'saml-enforce-groups' into 'master'
Enforce group membership checks in the SAML server See merge request
!9
parents
d00e7f54
01df95f6
Changes
1
Hide whitespace changes
Inline
Side-by-side
saml/saml.go
View file @
4c546e2f
...
...
@@ -124,6 +124,20 @@ func (c *Config) GetSSOGroups(serviceProviderID string) []string {
return
sp
.
SSOGroups
}
func
(
c
*
Config
)
GetAllSSOGroups
()
[]
string
{
tmp
:=
make
(
map
[
string
]
struct
{})
for
_
,
sp
:=
range
c
.
serviceProviderMap
{
for
_
,
group
:=
range
sp
.
SSOGroups
{
tmp
[
group
]
=
struct
{}{}
}
}
var
out
[]
string
for
group
:=
range
tmp
{
out
=
append
(
out
,
group
)
}
return
out
}
// Read users from a YAML-encoded file, in a format surprisingly
// compatible with git.autistici.org/id/auth/server.
//
...
...
@@ -311,7 +325,7 @@ func NewSAMLIDP(config *Config) (http.Handler, error) {
h
:=
idp
.
Handler
()
root
:=
mux
.
NewRouter
()
root
.
PathPrefix
(
ssoURL
.
Path
)
.
Handler
(
w
.
Wrap
(
h
,
svc
,
nil
))
root
.
PathPrefix
(
ssoURL
.
Path
)
.
Handler
(
w
.
Wrap
(
h
,
svc
,
config
.
GetAllSSOGroups
()
))
root
.
Handle
(
metadataURL
.
Path
,
h
)
return
root
,
nil
}
...
...
Write
Preview
Supports
Markdown
0%
Try again
or
attach a new file
.
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment