mirror of
https://github.com/Luzifer/nginx-sso.git
synced 2024-12-30 01:31:18 +00:00
6fa934880e
* Re-add example configuration for Crowd * Implement Crowd authentication * Fix: Some errors just mean there is no user * Document crowd provider * Vendor new dependencies * Reduce error messages: Check for config details
87 lines
2 KiB
Go
87 lines
2 KiB
Go
package crowd
|
|
|
|
import (
|
|
"encoding/json"
|
|
"fmt"
|
|
"io/ioutil"
|
|
"net/http"
|
|
"net/url"
|
|
)
|
|
|
|
// Link is a child of Group
|
|
type Link struct {
|
|
Href string `json:"href"`
|
|
Rel string `json:"rel"`
|
|
}
|
|
|
|
// Group represents a group in Crowd
|
|
type Group struct {
|
|
Name string `json:"name"`
|
|
Link Link `json:"link"`
|
|
}
|
|
|
|
// Groups come in lists
|
|
type listGroups struct {
|
|
Groups []*Group `json:"groups"`
|
|
Expand string `json:"expand"`
|
|
}
|
|
|
|
// GetGroups retrieves a list of groups of which a user is a direct (and nested if donested is true) member.
|
|
func (c *Crowd) GetGroups(user string, donested bool) ([]*Group, error) {
|
|
groupList := listGroups{}
|
|
|
|
v := url.Values{}
|
|
v.Set("username", user)
|
|
var endpoint string
|
|
|
|
if donested {
|
|
endpoint = "nested"
|
|
} else {
|
|
endpoint = "direct"
|
|
}
|
|
|
|
url := c.url + "rest/usermanagement/1/user/group/" + endpoint + "?" + v.Encode()
|
|
client := http.Client{Jar: c.cookies}
|
|
req, err := http.NewRequest("GET", url, nil)
|
|
if err != nil {
|
|
return groupList.Groups, err
|
|
}
|
|
req.SetBasicAuth(c.user, c.passwd)
|
|
req.Header.Set("Accept", "application/json")
|
|
resp, err := client.Do(req)
|
|
if err != nil {
|
|
return groupList.Groups, err
|
|
}
|
|
defer resp.Body.Close()
|
|
|
|
switch resp.StatusCode {
|
|
case 404:
|
|
return groupList.Groups, fmt.Errorf("user not found")
|
|
case 200:
|
|
// fall through switch without returning
|
|
default:
|
|
return groupList.Groups, fmt.Errorf("request failed: %s", resp.Status)
|
|
}
|
|
|
|
body, err := ioutil.ReadAll(resp.Body)
|
|
if err != nil {
|
|
return groupList.Groups, err
|
|
}
|
|
|
|
err = json.Unmarshal(body, &groupList)
|
|
if err != nil {
|
|
return groupList.Groups, err
|
|
}
|
|
|
|
return groupList.Groups, nil
|
|
}
|
|
|
|
// GetNestedGroups retrieves a list of groups of which a user is a direct or nested member
|
|
func (c *Crowd) GetNestedGroups(user string) ([]*Group, error) {
|
|
return c.GetGroups(user, true)
|
|
}
|
|
|
|
// GetDirectGroups retrieves a list of groups of which a user is a direct member
|
|
func (c *Crowd) GetDirectGroups(user string) ([]*Group, error) {
|
|
return c.GetGroups(user, false)
|
|
}
|