mirror of
https://github.com/grafana/grafana.git
synced 2025-02-12 00:25:46 -06:00
6b16fcea52
* break out go and js build commands * support oauth providers that return errors via redirect * remove extra call to get grafana.net org membership * removed GitHub specifics from generic OAuth * readded ability to name generic source * revert to a backward-compatible state, refactor and clean up * streamline oauth user creation, make generic oauth support more generic
85 lines
1.6 KiB
Go
85 lines
1.6 KiB
Go
package social
|
|
|
|
import (
|
|
"encoding/json"
|
|
"net/http"
|
|
|
|
"github.com/grafana/grafana/pkg/models"
|
|
|
|
"golang.org/x/oauth2"
|
|
)
|
|
|
|
type SocialGrafanaNet struct {
|
|
*oauth2.Config
|
|
url string
|
|
allowedOrganizations []string
|
|
allowSignup bool
|
|
}
|
|
|
|
type OrgRecord struct {
|
|
Login string `json:"login"`
|
|
}
|
|
|
|
func (s *SocialGrafanaNet) Type() int {
|
|
return int(models.GRAFANANET)
|
|
}
|
|
|
|
func (s *SocialGrafanaNet) IsEmailAllowed(email string) bool {
|
|
return true
|
|
}
|
|
|
|
func (s *SocialGrafanaNet) IsSignupAllowed() bool {
|
|
return s.allowSignup
|
|
}
|
|
|
|
func (s *SocialGrafanaNet) IsOrganizationMember(organizations []OrgRecord) bool {
|
|
if len(s.allowedOrganizations) == 0 {
|
|
return true
|
|
}
|
|
|
|
for _, allowedOrganization := range s.allowedOrganizations {
|
|
for _, organization := range organizations {
|
|
if organization.Login == allowedOrganization {
|
|
return true
|
|
}
|
|
}
|
|
}
|
|
|
|
return false
|
|
}
|
|
|
|
func (s *SocialGrafanaNet) UserInfo(client *http.Client) (*BasicUserInfo, error) {
|
|
var data struct {
|
|
Name string `json:"name"`
|
|
Login string `json:"username"`
|
|
Email string `json:"email"`
|
|
Role string `json:"role"`
|
|
Orgs []OrgRecord `json:"orgs"`
|
|
}
|
|
|
|
var err error
|
|
r, err := client.Get(s.url + "/api/oauth2/user")
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
defer r.Body.Close()
|
|
|
|
if err = json.NewDecoder(r.Body).Decode(&data); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
userInfo := &BasicUserInfo{
|
|
Name: data.Name,
|
|
Login: data.Login,
|
|
Email: data.Email,
|
|
Role: data.Role,
|
|
}
|
|
|
|
if !s.IsOrganizationMember(data.Orgs) {
|
|
return nil, ErrMissingOrganizationMembership
|
|
}
|
|
|
|
return userInfo, nil
|
|
}
|