mirror of
https://github.com/mattermost/mattermost.git
synced 2025-02-25 18:55:24 -06:00
3fcecd521a
* Add ucLive support crazy testing lovely logs more cookie work arounds Added Access-Control-Expose-Headers to user login Add complete_saml_body template and revert loginWithSaml endpoint Set Access-Control-Allow-Credentials to true in user login Login via email instead of username Clean up code Add comment to give some context Move faml logic into saml function Communicate via chrome sendMessage api Remove unused code Add config to support multiple extensions Clean up embedded complete_saml template Fix indentation for templates Added license header to extension.go Add EnableExperimentalExtensions flag Extension validated for email auth Clean up api auth code Remove complete_saml_body.html * Add extension support in saml * Clean up code * Clean up extension validation
83 lines
2.2 KiB
Go
83 lines
2.2 KiB
Go
// Copyright (c) 2015-present Mattermost, Inc. All Rights Reserved.
|
|
// See License.txt for license information.
|
|
|
|
package app
|
|
|
|
import (
|
|
"github.com/mattermost/mattermost-server/model"
|
|
"html/template"
|
|
"net/http"
|
|
)
|
|
|
|
func (a *App) isExtensionSupportEnabled() bool {
|
|
return *a.Config().ExtensionSettings.EnableExperimentalExtensions
|
|
}
|
|
|
|
func (a *App) isExtensionValid(extensionId string) bool {
|
|
extensionIsValid := false
|
|
extensionIDs := a.Config().ExtensionSettings.AllowedExtensionsIDs
|
|
|
|
for _, id := range extensionIDs {
|
|
if extensionId == id {
|
|
extensionIsValid = true
|
|
}
|
|
}
|
|
|
|
return extensionIsValid
|
|
}
|
|
|
|
func (a *App) ValidateExtension(extensionId string) *model.AppError {
|
|
enabled := a.isExtensionSupportEnabled()
|
|
if !enabled {
|
|
return model.NewAppError("completeSaml", "api.user.saml.extension_unsupported", nil, "", http.StatusInternalServerError)
|
|
}
|
|
|
|
valid := a.isExtensionValid(extensionId)
|
|
if !valid {
|
|
params := map[string]interface{}{"ExtensionId": extensionId}
|
|
return model.NewAppError("completeSaml", "api.user.saml.invalid_extension", params, "", http.StatusInternalServerError)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func (a *App) SendMessageToExtension(w http.ResponseWriter, extensionId string, token string) *model.AppError {
|
|
var err error
|
|
var t *template.Template
|
|
if len(extensionId) == 0 {
|
|
return model.NewAppError("completeSaml", "api.user.saml.extension_id.app_error", nil, "", http.StatusInternalServerError)
|
|
}
|
|
|
|
t = template.New("complete_saml_extension_body")
|
|
t, err = t.ParseFiles("templates/complete_saml_extension_body.html")
|
|
|
|
if err != nil {
|
|
return model.NewAppError("completeSaml", "api.user.saml.app_error", nil, "err="+err.Error(), http.StatusInternalServerError)
|
|
}
|
|
|
|
w.Header().Set("Content-Type", "text/html")
|
|
w.WriteHeader(http.StatusOK)
|
|
|
|
var errMessage string
|
|
if len(token) == 0 {
|
|
loginError := model.NewAppError("completeSaml", "api.user.saml.app_error", nil, "", http.StatusInternalServerError)
|
|
errMessage = loginError.Message
|
|
}
|
|
|
|
data := struct {
|
|
ExtensionId string
|
|
Token string
|
|
Error string
|
|
}{
|
|
extensionId,
|
|
token,
|
|
errMessage,
|
|
}
|
|
|
|
if err := t.Execute(w, data); err != nil {
|
|
return model.NewAppError("completeSaml", "api.user.saml.app_error", nil, "err="+err.Error(), http.StatusInternalServerError)
|
|
}
|
|
|
|
return nil
|
|
}
|