IntenseWebs/mattermost
3
0
Fork 0
mirror of https://github.com/mattermost/mattermost.git synced 2025-02-25 18:55:24 -06:00
Code Issues Packages Projects Releases Wiki Activity
Files
b4d444319b484c0770cdd40388127ba6f2cb9142
mattermost/api4/saml.go

167 lines
4.9 KiB
Go
Raw Normal View History

PLT-5860 Updated copyright date (#6058) * PLT-5860 Updated copyright date in about modal * PLT-5860 Updated copyright notice in JSX files * PLT-5860 Updated copyright notice in go files * Fixed misc copyright dates * Fixed component snapshots
2017-04-12 08:27:57 -04:00
// Copyright (c) 2017-present Mattermost, Inc. All Rights Reserved.
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
// See License.txt for license information.
package api4
import (
"mime/multipart"
"net/http"
Renaming repo
2017-09-06 23:05:10 -07:00
"github.com/mattermost/mattermost-server/model"
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
)
remove global refs from api/api4 (#7496)
2017-09-22 12:54:27 -05:00
func (api *API) InitSaml() {
api.BaseRoutes.SAML.Handle("/metadata", api.ApiHandler(getSamlMetadata)).Methods("GET")
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
remove global refs from api/api4 (#7496)
2017-09-22 12:54:27 -05:00
api.BaseRoutes.SAML.Handle("/certificate/public", api.ApiSessionRequired(addSamlPublicCertificate)).Methods("POST")
api.BaseRoutes.SAML.Handle("/certificate/private", api.ApiSessionRequired(addSamlPrivateCertificate)).Methods("POST")
api.BaseRoutes.SAML.Handle("/certificate/idp", api.ApiSessionRequired(addSamlIdpCertificate)).Methods("POST")
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
remove global refs from api/api4 (#7496)
2017-09-22 12:54:27 -05:00
api.BaseRoutes.SAML.Handle("/certificate/public", api.ApiSessionRequired(removeSamlPublicCertificate)).Methods("DELETE")
api.BaseRoutes.SAML.Handle("/certificate/private", api.ApiSessionRequired(removeSamlPrivateCertificate)).Methods("DELETE")
api.BaseRoutes.SAML.Handle("/certificate/idp", api.ApiSessionRequired(removeSamlIdpCertificate)).Methods("DELETE")
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
remove global refs from api/api4 (#7496)
2017-09-22 12:54:27 -05:00
api.BaseRoutes.SAML.Handle("/certificate/status", api.ApiSessionRequired(getSamlCertificateStatus)).Methods("GET")
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
}
func getSamlMetadata(c *Context, w http.ResponseWriter, r *http.Request) {
remove einterface gets (#7455)
2017-09-19 18:31:35 -05:00
metadata, err := c.App.GetSamlMetadata()
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
if err != nil {
c.Err = err
return
}
w.Header().Set("Content-Type", "application/xml")
w.Header().Set("Content-Disposition", "attachment; filename=\"metadata.xml\"")
w.Write([]byte(metadata))
}
Refactoring cfg refs and load / save functions (#7749) * refactoring cfg refs and load / save functions * improve error output
2017-10-31 09:39:31 -05:00
func parseSamlCertificateRequest(r *http.Request, maxFileSize int64) (*multipart.FileHeader, *model.AppError) {
err := r.ParseMultipartForm(maxFileSize)
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
if err != nil {
return nil, model.NewAppError("addSamlCertificate", "api.admin.add_certificate.no_file.app_error", nil, err.Error(), http.StatusBadRequest)
}
m := r.MultipartForm
fileArray, ok := m.File["certificate"]
if !ok {
return nil, model.NewAppError("addSamlCertificate", "api.admin.add_certificate.no_file.app_error", nil, "", http.StatusBadRequest)
}
if len(fileArray) <= 0 {
return nil, model.NewAppError("addSamlCertificate", "api.admin.add_certificate.array.app_error", nil, "", http.StatusBadRequest)
}
return fileArray[0], nil
}
func addSamlPublicCertificate(c *Context, w http.ResponseWriter, r *http.Request) {
Moving app from singular to being created for every request (#9889) * Moving app from singular to being created for every request. * Automatic refactor * Adding license header * Feedback fixes
2018-11-28 10:56:21 -08:00
if !c.App.SessionHasPermissionTo(c.App.Session, model.PERMISSION_MANAGE_SYSTEM) {
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
c.SetPermissionError(model.PERMISSION_MANAGE_SYSTEM)
return
}
Refactoring cfg refs and load / save functions (#7749) * refactoring cfg refs and load / save functions * improve error output
2017-10-31 09:39:31 -05:00
fileData, err := parseSamlCertificateRequest(r, *c.App.Config().FileSettings.MaxFileSize)
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
if err != nil {
c.Err = err
return
}
Remove more global refs / state (#7723) * remove more global refs / state * fix job enterprise initialization * fix api4 test compilation * saml api endpoints fix
2017-10-26 14:21:22 -05:00
if err := c.App.AddSamlPublicCertificate(fileData); err != nil {
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
c.Err = err
return
}
ReturnStatusOK(w)
}
func addSamlPrivateCertificate(c *Context, w http.ResponseWriter, r *http.Request) {
Moving app from singular to being created for every request (#9889) * Moving app from singular to being created for every request. * Automatic refactor * Adding license header * Feedback fixes
2018-11-28 10:56:21 -08:00
if !c.App.SessionHasPermissionTo(c.App.Session, model.PERMISSION_MANAGE_SYSTEM) {
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
c.SetPermissionError(model.PERMISSION_MANAGE_SYSTEM)
return
}
Refactoring cfg refs and load / save functions (#7749) * refactoring cfg refs and load / save functions * improve error output
2017-10-31 09:39:31 -05:00
fileData, err := parseSamlCertificateRequest(r, *c.App.Config().FileSettings.MaxFileSize)
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
if err != nil {
c.Err = err
return
}
Remove more global refs / state (#7723) * remove more global refs / state * fix job enterprise initialization * fix api4 test compilation * saml api endpoints fix
2017-10-26 14:21:22 -05:00
if err := c.App.AddSamlPrivateCertificate(fileData); err != nil {
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
c.Err = err
return
}
ReturnStatusOK(w)
}
func addSamlIdpCertificate(c *Context, w http.ResponseWriter, r *http.Request) {
Moving app from singular to being created for every request (#9889) * Moving app from singular to being created for every request. * Automatic refactor * Adding license header * Feedback fixes
2018-11-28 10:56:21 -08:00
if !c.App.SessionHasPermissionTo(c.App.Session, model.PERMISSION_MANAGE_SYSTEM) {
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
c.SetPermissionError(model.PERMISSION_MANAGE_SYSTEM)
return
}
Refactoring cfg refs and load / save functions (#7749) * refactoring cfg refs and load / save functions * improve error output
2017-10-31 09:39:31 -05:00
fileData, err := parseSamlCertificateRequest(r, *c.App.Config().FileSettings.MaxFileSize)
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
if err != nil {
c.Err = err
return
}
Remove more global refs / state (#7723) * remove more global refs / state * fix job enterprise initialization * fix api4 test compilation * saml api endpoints fix
2017-10-26 14:21:22 -05:00
if err := c.App.AddSamlIdpCertificate(fileData); err != nil {
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
c.Err = err
return
}
ReturnStatusOK(w)
}
func removeSamlPublicCertificate(c *Context, w http.ResponseWriter, r *http.Request) {
Moving app from singular to being created for every request (#9889) * Moving app from singular to being created for every request. * Automatic refactor * Adding license header * Feedback fixes
2018-11-28 10:56:21 -08:00
if !c.App.SessionHasPermissionTo(c.App.Session, model.PERMISSION_MANAGE_SYSTEM) {
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
c.SetPermissionError(model.PERMISSION_MANAGE_SYSTEM)
return
}
Remove more global refs / state (#7723) * remove more global refs / state * fix job enterprise initialization * fix api4 test compilation * saml api endpoints fix
2017-10-26 14:21:22 -05:00
if err := c.App.RemoveSamlPublicCertificate(); err != nil {
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
c.Err = err
return
}
ReturnStatusOK(w)
}
func removeSamlPrivateCertificate(c *Context, w http.ResponseWriter, r *http.Request) {
Moving app from singular to being created for every request (#9889) * Moving app from singular to being created for every request. * Automatic refactor * Adding license header * Feedback fixes
2018-11-28 10:56:21 -08:00
if !c.App.SessionHasPermissionTo(c.App.Session, model.PERMISSION_MANAGE_SYSTEM) {
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
c.SetPermissionError(model.PERMISSION_MANAGE_SYSTEM)
return
}
Remove more global refs / state (#7723) * remove more global refs / state * fix job enterprise initialization * fix api4 test compilation * saml api endpoints fix
2017-10-26 14:21:22 -05:00
if err := c.App.RemoveSamlPrivateCertificate(); err != nil {
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
c.Err = err
return
}
ReturnStatusOK(w)
}
func removeSamlIdpCertificate(c *Context, w http.ResponseWriter, r *http.Request) {
Moving app from singular to being created for every request (#9889) * Moving app from singular to being created for every request. * Automatic refactor * Adding license header * Feedback fixes
2018-11-28 10:56:21 -08:00
if !c.App.SessionHasPermissionTo(c.App.Session, model.PERMISSION_MANAGE_SYSTEM) {
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
c.SetPermissionError(model.PERMISSION_MANAGE_SYSTEM)
return
}
Remove more global refs / state (#7723) * remove more global refs / state * fix job enterprise initialization * fix api4 test compilation * saml api endpoints fix
2017-10-26 14:21:22 -05:00
if err := c.App.RemoveSamlIdpCertificate(); err != nil {
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
c.Err = err
return
}
ReturnStatusOK(w)
}
func getSamlCertificateStatus(c *Context, w http.ResponseWriter, r *http.Request) {
Moving app from singular to being created for every request (#9889) * Moving app from singular to being created for every request. * Automatic refactor * Adding license header * Feedback fixes
2018-11-28 10:56:21 -08:00
if !c.App.SessionHasPermissionTo(c.App.Session, model.PERMISSION_MANAGE_SYSTEM) {
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
c.SetPermissionError(model.PERMISSION_MANAGE_SYSTEM)
return
}
Remove more global refs / state (#7723) * remove more global refs / state * fix job enterprise initialization * fix api4 test compilation * saml api endpoints fix
2017-10-26 14:21:22 -05:00
status := c.App.GetSamlCertificateStatus()
Implement SAML endpoints for APIv4 (#5671) * Implement SAML endpoints for APIv4 * Fix unit test * Only disable encryption when removing puplic/private certs
2017-03-13 08:26:23 -04:00
w.Write([]byte(status.ToJson()))
}
Reference in New Issue Copy Permalink