mirror of
https://github.com/grafana/grafana.git
synced 2024-12-02 05:29:42 -06:00
25 lines
859 B
Go
25 lines
859 B
Go
package ssoutils
|
|
|
|
import (
|
|
ac "github.com/grafana/grafana/pkg/services/accesscontrol"
|
|
"github.com/grafana/grafana/pkg/setting"
|
|
)
|
|
|
|
func EvalAuthenticationSettings(cfg *setting.Cfg) ac.Evaluator {
|
|
return ac.EvalAny(
|
|
ac.EvalAll(
|
|
ac.EvalPermission(ac.ActionSettingsWrite, ac.ScopeSettingsSAML),
|
|
ac.EvalPermission(ac.ActionSettingsRead, ac.ScopeSettingsSAML),
|
|
),
|
|
ac.EvalPermission(ac.ActionLDAPStatusRead))
|
|
}
|
|
|
|
func OauthSettingsEvaluator(cfg *setting.Cfg) ac.Evaluator {
|
|
result := make([]ac.Evaluator, 0, len(cfg.SSOSettingsConfigurableProviders))
|
|
for provider := range cfg.SSOSettingsConfigurableProviders {
|
|
result = append(result, ac.EvalPermission(ac.ActionSettingsRead, ac.ScopeSettingsOAuth(provider)))
|
|
result = append(result, ac.EvalPermission(ac.ActionSettingsWrite, ac.ScopeSettingsOAuth(provider)))
|
|
}
|
|
return ac.EvalAny(result...)
|
|
}
|