4915205678
* core: start migrating to flows for authorisation * sources/oauth: start type-hinting * core: create default user * core: only show user delete button if an unenrollment flow exists * flows: Correctly check initial policies on flow with context * policies: add more verbosity to engine * sources/oauth: migrate to flows * sources/oauth: fix typing errors * flows: add more tests * sources/oauth: start implementing unittests * sources/ldap: add option to disable user sync, move connection init to model * sources/ldap: re-add default PropertyMappings * providers/saml: re-add default PropertyMappings * admin: fix missing stage count * stages/identification: fix sources not being shown * crypto: fix being unable to save with private key * crypto: re-add default self-signed keypair * policies: rewrite cache_key to prevent wrong cache * sources/saml: migrate to flows for auth and enrollment * stages/consent: add new stage * admin: fix PropertyMapping widget not rendering properly * core: provider.authorization_flow is mandatory * flows: add support for "autosubmit" attribute on form * flows: add InMemoryStage for dynamic stages * flows: optionally allow empty flows from FlowPlanner * providers/saml: update to authorization_flow * sources/*: fix flow executor URL * flows: fix pylint error * flows: wrap responses in JSON object to easily handle redirects * flow: dont cache plan's context * providers/oauth: rewrite OAuth2 Provider to use flows * providers/*: update docstrings of models * core: fix forms not passing help_text through safe * flows: fix HttpResponses not being converted to JSON * providers/oidc: rewrite to use flows * flows: fix linting
46 lines
1.5 KiB
Python
46 lines
1.5 KiB
Python
"""passbook app_gw models"""
|
|
import string
|
|
from random import SystemRandom
|
|
from typing import Optional
|
|
|
|
from django.db import models
|
|
from django.http import HttpRequest
|
|
from django.utils.translation import gettext as _
|
|
from oidc_provider.models import Client
|
|
|
|
from passbook import __version__
|
|
from passbook.core.models import Provider
|
|
from passbook.lib.utils.template import render_to_string
|
|
|
|
|
|
class ApplicationGatewayProvider(Provider):
|
|
"""Protect applications that don't support any of the other
|
|
Protocols by using a Reverse-Proxy."""
|
|
|
|
name = models.TextField()
|
|
internal_host = models.TextField()
|
|
external_host = models.TextField()
|
|
|
|
client = models.ForeignKey(Client, on_delete=models.CASCADE)
|
|
|
|
form = "passbook.providers.app_gw.forms.ApplicationGatewayProviderForm"
|
|
|
|
def html_setup_urls(self, request: HttpRequest) -> Optional[str]:
|
|
"""return template and context modal with URLs for authorize, token, openid-config, etc"""
|
|
cookie_secret = "".join(
|
|
SystemRandom().choice(string.ascii_uppercase + string.digits)
|
|
for _ in range(50)
|
|
)
|
|
return render_to_string(
|
|
"app_gw/setup_modal.html",
|
|
{"provider": self, "cookie_secret": cookie_secret, "version": __version__},
|
|
)
|
|
|
|
def __str__(self):
|
|
return f"Application Gateway {self.name}"
|
|
|
|
class Meta:
|
|
|
|
verbose_name = _("Application Gateway Provider")
|
|
verbose_name_plural = _("Application Gateway Providers")
|