github
/
jumpserver
mirror of https://github.com/jumpserver/jumpserver
1
0
Fork 0
Code Issues Releases Wiki Activity
Browse Source

feat: saml2协议单点登录支持在页面上配置saml2协议的高级配置 (#7362)

pull/7367/head
jiangweidong 3 years ago committed by GitHub
parent
84924bc3f6
commit
c5013dcbd6
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
4 changed files with 10 additions and 10 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 13
      apps/authentication/backends/saml2/views.py
  2. 2
      apps/jumpserver/conf.py
  3. 2
      apps/jumpserver/settings/auth.py
  4. 3
      apps/settings/serializers/auth/saml2.py

13
apps/authentication/backends/saml2/views.py
Unescape View File

@ -92,14 +92,11 @@ class PrepareRequestMixin:
@staticmethod @staticmethod
def get_advanced_settings(): def get_advanced_settings():
other_settings = {} try:
other_settings_path = settings.SAML2_OTHER_SETTINGS_PATH other_settings = dict(settings.SAML2_SP_ADVANCED_SETTINGS)
if os.path.exists(other_settings_path): except Exception as error:
with open(other_settings_path, 'r') as json_data: logger.error('Get other settings error: %s', error)
try: other_settings = {}
other_settings = json.loads(json_data.read())
except Exception as error:
logger.error('Get other settings error: %s', error)
default = { default = {
"organization": { "organization": {

2
apps/jumpserver/conf.py
Unescape View File

@ -234,7 +234,7 @@ class Config(dict):
'SAML2_LOGOUT_COMPLETELY': True, 'SAML2_LOGOUT_COMPLETELY': True,
'AUTH_SAML2_ALWAYS_UPDATE_USER': True, 'AUTH_SAML2_ALWAYS_UPDATE_USER': True,
'SAML2_RENAME_ATTRIBUTES': {'uid': 'username', 'email': 'email'}, 'SAML2_RENAME_ATTRIBUTES': {'uid': 'username', 'email': 'email'},
'SAML2_OTHER_SETTINGS_PATH': '', 'SAML2_SP_ADVANCED_SETTINGS': {"organization": {"en": {"name": "JumpServer", "displayname": "JumpServer", "url": "https://jumpserver.org/"}}},
'SAML2_IDP_METADATA_URL': '', 'SAML2_IDP_METADATA_URL': '',
'SAML2_IDP_METADATA_XML': '', 'SAML2_IDP_METADATA_XML': '',
'SAML2_SP_KEY_CONTENT': '', 'SAML2_SP_KEY_CONTENT': '',

2
apps/jumpserver/settings/auth.py
Unescape View File

@ -129,7 +129,7 @@ AUTH_SAML2_AUTHENTICATION_FAILURE_REDIRECT_URI = CONFIG.AUTH_SAML2_AUTHENTICATIO
AUTH_SAML2_ALWAYS_UPDATE_USER = CONFIG.AUTH_SAML2_ALWAYS_UPDATE_USER AUTH_SAML2_ALWAYS_UPDATE_USER = CONFIG.AUTH_SAML2_ALWAYS_UPDATE_USER
SAML2_LOGOUT_COMPLETELY = CONFIG.SAML2_LOGOUT_COMPLETELY SAML2_LOGOUT_COMPLETELY = CONFIG.SAML2_LOGOUT_COMPLETELY
SAML2_RENAME_ATTRIBUTES = CONFIG.SAML2_RENAME_ATTRIBUTES SAML2_RENAME_ATTRIBUTES = CONFIG.SAML2_RENAME_ATTRIBUTES
SAML2_OTHER_SETTINGS_PATH = CONFIG.SAML2_OTHER_SETTINGS_PATH SAML2_SP_ADVANCED_SETTINGS = CONFIG.SAML2_SP_ADVANCED_SETTINGS
SAML2_LOGIN_URL_NAME = "authentication:saml2:saml2-login" SAML2_LOGIN_URL_NAME = "authentication:saml2:saml2-login"
SAML2_LOGOUT_URL_NAME = "authentication:saml2:saml2-logout" SAML2_LOGOUT_URL_NAME = "authentication:saml2:saml2-logout"

3
apps/settings/serializers/auth/saml2.py
Unescape View File

@ -17,6 +17,9 @@ class SAML2SettingSerializer(serializers.Serializer):
SAML2_IDP_METADATA_XML = serializers.CharField( SAML2_IDP_METADATA_XML = serializers.CharField(
allow_blank=True, required=False, label=_('IDP Metadata XML') allow_blank=True, required=False, label=_('IDP Metadata XML')
) )
SAML2_SP_ADVANCED_SETTINGS = serializers.JSONField(
required=False, label=_('SP ADVANCED SETTINGS')
)
SAML2_SP_KEY_CONTENT = serializers.CharField( SAML2_SP_KEY_CONTENT = serializers.CharField(
allow_blank=True, required=False, allow_blank=True, required=False,
write_only=True, label=_('SP Private Key') write_only=True, label=_('SP Private Key')

Write Preview
Loading…
Cancel
Save