authentik/authentik/sources/ldap/managed.py

"""LDAP Source managed objects"""
from authentik.managed.manager import EnsureExists, ObjectManager
from authentik.sources.ldap.models import LDAPPropertyMapping


class LDAPProviderManager(ObjectManager):
    """LDAP Source managed objects"""

    def reconcile(self):
        return [
            EnsureExists(
                LDAPPropertyMapping,
                "goauthentik.io/sources/ldap/default-name",
                name="authentik default LDAP Mapping: Name",
                object_field="name",
                expression="return ldap.get('name')",
            ),
            EnsureExists(
                LDAPPropertyMapping,
                "goauthentik.io/sources/ldap/default-mail",
                name="authentik default LDAP Mapping: mail",
                object_field="email",
                expression="return ldap.get('mail')",
            ),
            # Active Directory-specific mappings
            EnsureExists(
                LDAPPropertyMapping,
                "goauthentik.io/sources/ldap/ms-samaccountname",
                name="authentik default Active Directory Mapping: sAMAccountName",
                object_field="username",
                expression="return ldap.get('sAMAccountName')",
            ),
            EnsureExists(
                LDAPPropertyMapping,
                "goauthentik.io/sources/ldap/ms-userprincipalname",
                name="authentik default Active Directory Mapping: userPrincipalName",
                object_field="attributes.upn",
                expression="return ldap.get('userPrincipalName')",
            ),
            EnsureExists(
                LDAPPropertyMapping,
                "goauthentik.io/sources/ldap/ms-givenName",
                name="authentik default Active Directory Mapping: givenName",
                object_field="attributes.givenName",
                expression="return ldap.get('givenName')",
            ),
            EnsureExists(
                LDAPPropertyMapping,
                "goauthentik.io/sources/ldap/ms-sn",
                name="authentik default Active Directory Mapping: sn",
                object_field="attributes.sn",
                expression="return ldap.get('sn')",
            ),
            # OpenLDAP specific mappings
            EnsureExists(
                LDAPPropertyMapping,
                "goauthentik.io/sources/ldap/openldap-uid",
                name="authentik default OpenLDAP Mapping: uid",
                object_field="username",
                expression="return ldap.get('uid')",
            ),
            EnsureExists(
                LDAPPropertyMapping,
                "goauthentik.io/sources/ldap/openldap-cn",
                name="authentik default OpenLDAP Mapping: cn",
                object_field="name",
                expression="return ldap.get('cn')",
            ),
        ]
Managed objects (#519) * managed: add base manager and Ops * core: use ManagedModel for Token and PropertyMapping * providers/saml: implement managed objects for SAML Provider * sources/ldap: migrate to managed * providers/oauth2: migrate to managed * providers/proxy: migrate to managed * : load .managed in apps managed: add reconcile task, run on startup * providers/oauth2: fix import path for managed * providers/saml: don't set FriendlyName when mapping is none * : use ObjectManager in tests to ensure objects exist ci: use vmImage ubuntu-latest * providers/saml: add new mapping for username and user id * tests: remove docker proxy * tests/e2e: use updated attribute names * docs: update SAML docs * tests/e2e: fix remaining saml cases * outposts: make tokens as managed * : make PropertyMapping SerializerModel web: add page for property-mappings * web: add codemirror to common_styles because codemirror * docs: fix member-of in nextcloud * docs: nextcloud add admin * web: fix refresh reloading data two times * web: add loading lock to table to prevent double loads * web: add ability to use null in QueryArgs (value will be skipped) * web: add hide option to property mappings * web: fix linting 2021-02-03 20:18:31 +00:00			`"""LDAP Source managed objects"""`
			`from authentik.managed.manager import EnsureExists, ObjectManager`
			`from authentik.sources.ldap.models import LDAPPropertyMapping`


			`class LDAPProviderManager(ObjectManager):`
			`"""LDAP Source managed objects"""`

			`def reconcile(self):`
			`return [`
			`EnsureExists(`
			`LDAPPropertyMapping,`
*: rewrite managed objects, use nullable text flag instead of boolean as uid (#533) 2021-02-06 15:56:21 +00:00			`"goauthentik.io/sources/ldap/default-name",`
			`name="authentik default LDAP Mapping: Name",`
Managed objects (#519) * managed: add base manager and Ops * core: use ManagedModel for Token and PropertyMapping * providers/saml: implement managed objects for SAML Provider * sources/ldap: migrate to managed * providers/oauth2: migrate to managed * providers/proxy: migrate to managed * : load .managed in apps managed: add reconcile task, run on startup * providers/oauth2: fix import path for managed * providers/saml: don't set FriendlyName when mapping is none * : use ObjectManager in tests to ensure objects exist ci: use vmImage ubuntu-latest * providers/saml: add new mapping for username and user id * tests: remove docker proxy * tests/e2e: use updated attribute names * docs: update SAML docs * tests/e2e: fix remaining saml cases * outposts: make tokens as managed * : make PropertyMapping SerializerModel web: add page for property-mappings * web: add codemirror to common_styles because codemirror * docs: fix member-of in nextcloud * docs: nextcloud add admin * web: fix refresh reloading data two times * web: add loading lock to table to prevent double loads * web: add ability to use null in QueryArgs (value will be skipped) * web: add hide option to property mappings * web: fix linting 2021-02-03 20:18:31 +00:00			`object_field="name",`
			`expression="return ldap.get('name')",`
			`),`
			`EnsureExists(`
			`LDAPPropertyMapping,`
*: rewrite managed objects, use nullable text flag instead of boolean as uid (#533) 2021-02-06 15:56:21 +00:00			`"goauthentik.io/sources/ldap/default-mail",`
Managed objects (#519) * managed: add base manager and Ops * core: use ManagedModel for Token and PropertyMapping * providers/saml: implement managed objects for SAML Provider * sources/ldap: migrate to managed * providers/oauth2: migrate to managed * providers/proxy: migrate to managed * : load .managed in apps managed: add reconcile task, run on startup * providers/oauth2: fix import path for managed * providers/saml: don't set FriendlyName when mapping is none * : use ObjectManager in tests to ensure objects exist ci: use vmImage ubuntu-latest * providers/saml: add new mapping for username and user id * tests: remove docker proxy * tests/e2e: use updated attribute names * docs: update SAML docs * tests/e2e: fix remaining saml cases * outposts: make tokens as managed * : make PropertyMapping SerializerModel web: add page for property-mappings * web: add codemirror to common_styles because codemirror * docs: fix member-of in nextcloud * docs: nextcloud add admin * web: fix refresh reloading data two times * web: add loading lock to table to prevent double loads * web: add ability to use null in QueryArgs (value will be skipped) * web: add hide option to property mappings * web: fix linting 2021-02-03 20:18:31 +00:00			`name="authentik default LDAP Mapping: mail",`
			`object_field="email",`
			`expression="return ldap.get('mail')",`
			`),`
sources/ldap: add more flatten to user sync, start adding tests for OpenLDAP 2021-02-05 12:19:24 +00:00			`# Active Directory-specific mappings`
Managed objects (#519) * managed: add base manager and Ops * core: use ManagedModel for Token and PropertyMapping * providers/saml: implement managed objects for SAML Provider * sources/ldap: migrate to managed * providers/oauth2: migrate to managed * providers/proxy: migrate to managed * : load .managed in apps managed: add reconcile task, run on startup * providers/oauth2: fix import path for managed * providers/saml: don't set FriendlyName when mapping is none * : use ObjectManager in tests to ensure objects exist ci: use vmImage ubuntu-latest * providers/saml: add new mapping for username and user id * tests: remove docker proxy * tests/e2e: use updated attribute names * docs: update SAML docs * tests/e2e: fix remaining saml cases * outposts: make tokens as managed * : make PropertyMapping SerializerModel web: add page for property-mappings * web: add codemirror to common_styles because codemirror * docs: fix member-of in nextcloud * docs: nextcloud add admin * web: fix refresh reloading data two times * web: add loading lock to table to prevent double loads * web: add ability to use null in QueryArgs (value will be skipped) * web: add hide option to property mappings * web: fix linting 2021-02-03 20:18:31 +00:00			`EnsureExists(`
			`LDAPPropertyMapping,`
*: rewrite managed objects, use nullable text flag instead of boolean as uid (#533) 2021-02-06 15:56:21 +00:00			`"goauthentik.io/sources/ldap/ms-samaccountname",`
Managed objects (#519) * managed: add base manager and Ops * core: use ManagedModel for Token and PropertyMapping * providers/saml: implement managed objects for SAML Provider * sources/ldap: migrate to managed * providers/oauth2: migrate to managed * providers/proxy: migrate to managed * : load .managed in apps managed: add reconcile task, run on startup * providers/oauth2: fix import path for managed * providers/saml: don't set FriendlyName when mapping is none * : use ObjectManager in tests to ensure objects exist ci: use vmImage ubuntu-latest * providers/saml: add new mapping for username and user id * tests: remove docker proxy * tests/e2e: use updated attribute names * docs: update SAML docs * tests/e2e: fix remaining saml cases * outposts: make tokens as managed * : make PropertyMapping SerializerModel web: add page for property-mappings * web: add codemirror to common_styles because codemirror * docs: fix member-of in nextcloud * docs: nextcloud add admin * web: fix refresh reloading data two times * web: add loading lock to table to prevent double loads * web: add ability to use null in QueryArgs (value will be skipped) * web: add hide option to property mappings * web: fix linting 2021-02-03 20:18:31 +00:00			`name="authentik default Active Directory Mapping: sAMAccountName",`
			`object_field="username",`
			`expression="return ldap.get('sAMAccountName')",`
			`),`
			`EnsureExists(`
			`LDAPPropertyMapping,`
*: rewrite managed objects, use nullable text flag instead of boolean as uid (#533) 2021-02-06 15:56:21 +00:00			`"goauthentik.io/sources/ldap/ms-userprincipalname",`
Managed objects (#519) * managed: add base manager and Ops * core: use ManagedModel for Token and PropertyMapping * providers/saml: implement managed objects for SAML Provider * sources/ldap: migrate to managed * providers/oauth2: migrate to managed * providers/proxy: migrate to managed * : load .managed in apps managed: add reconcile task, run on startup * providers/oauth2: fix import path for managed * providers/saml: don't set FriendlyName when mapping is none * : use ObjectManager in tests to ensure objects exist ci: use vmImage ubuntu-latest * providers/saml: add new mapping for username and user id * tests: remove docker proxy * tests/e2e: use updated attribute names * docs: update SAML docs * tests/e2e: fix remaining saml cases * outposts: make tokens as managed * : make PropertyMapping SerializerModel web: add page for property-mappings * web: add codemirror to common_styles because codemirror * docs: fix member-of in nextcloud * docs: nextcloud add admin * web: fix refresh reloading data two times * web: add loading lock to table to prevent double loads * web: add ability to use null in QueryArgs (value will be skipped) * web: add hide option to property mappings * web: fix linting 2021-02-03 20:18:31 +00:00			`name="authentik default Active Directory Mapping: userPrincipalName",`
			`object_field="attributes.upn",`
			`expression="return ldap.get('userPrincipalName')",`
			`),`
*: rewrite managed objects, use nullable text flag instead of boolean as uid (#533) 2021-02-06 15:56:21 +00:00			`EnsureExists(`
			`LDAPPropertyMapping,`
			`"goauthentik.io/sources/ldap/ms-givenName",`
			`name="authentik default Active Directory Mapping: givenName",`
			`object_field="attributes.givenName",`
			`expression="return ldap.get('givenName')",`
			`),`
			`EnsureExists(`
			`LDAPPropertyMapping,`
			`"goauthentik.io/sources/ldap/ms-sn",`
			`name="authentik default Active Directory Mapping: sn",`
			`object_field="attributes.sn",`
			`expression="return ldap.get('sn')",`
			`),`
sources/ldap: add more flatten to user sync, start adding tests for OpenLDAP 2021-02-05 12:19:24 +00:00			`# OpenLDAP specific mappings`
			`EnsureExists(`
			`LDAPPropertyMapping,`
*: rewrite managed objects, use nullable text flag instead of boolean as uid (#533) 2021-02-06 15:56:21 +00:00			`"goauthentik.io/sources/ldap/openldap-uid",`
sources/ldap: add more flatten to user sync, start adding tests for OpenLDAP 2021-02-05 12:19:24 +00:00			`name="authentik default OpenLDAP Mapping: uid",`
			`object_field="username",`
			`expression="return ldap.get('uid')",`
			`),`
sources/ldap: add property_mappings_group to make group mapping more customisable 2021-02-06 14:24:11 +00:00			`EnsureExists(`
			`LDAPPropertyMapping,`
*: rewrite managed objects, use nullable text flag instead of boolean as uid (#533) 2021-02-06 15:56:21 +00:00			`"goauthentik.io/sources/ldap/openldap-cn",`
sources/ldap: add property_mappings_group to make group mapping more customisable 2021-02-06 14:24:11 +00:00			`name="authentik default OpenLDAP Mapping: cn",`
			`object_field="name",`
			`expression="return ldap.get('cn')",`
			`),`
Managed objects (#519) * managed: add base manager and Ops * core: use ManagedModel for Token and PropertyMapping * providers/saml: implement managed objects for SAML Provider * sources/ldap: migrate to managed * providers/oauth2: migrate to managed * providers/proxy: migrate to managed * : load .managed in apps managed: add reconcile task, run on startup * providers/oauth2: fix import path for managed * providers/saml: don't set FriendlyName when mapping is none * : use ObjectManager in tests to ensure objects exist ci: use vmImage ubuntu-latest * providers/saml: add new mapping for username and user id * tests: remove docker proxy * tests/e2e: use updated attribute names * docs: update SAML docs * tests/e2e: fix remaining saml cases * outposts: make tokens as managed * : make PropertyMapping SerializerModel web: add page for property-mappings * web: add codemirror to common_styles because codemirror * docs: fix member-of in nextcloud * docs: nextcloud add admin * web: fix refresh reloading data two times * web: add loading lock to table to prevent double loads * web: add ability to use null in QueryArgs (value will be skipped) * web: add hide option to property mappings * web: fix linting 2021-02-03 20:18:31 +00:00			`]`