osso 0.0.3.6 → 0.0.3.11
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.buildkite/pipeline.yml +5 -3
- data/Gemfile.lock +5 -1
- data/bin/annotate +1 -0
- data/db/schema.rb +11 -54
- data/lib/osso/db/migrate/20200714223226_add_identity_provider_service_enum.rb +1 -1
- data/lib/osso/db/migrate/20200722230116_add_identity_provider_status_enum_and_use_on_identity_providers.rb +15 -0
- data/lib/osso/db/migrate/20200723153750_add_missing_timestamps.rb +35 -0
- data/lib/osso/db/migrate/20200723162228_drop_unneeded_tables.rb +9 -0
- data/lib/osso/graphql/mutation.rb +4 -2
- data/lib/osso/graphql/mutations.rb +3 -1
- data/lib/osso/graphql/mutations/base_mutation.rb +8 -2
- data/lib/osso/graphql/mutations/configure_identity_provider.rb +10 -1
- data/lib/osso/graphql/mutations/create_oauth_client.rb +30 -0
- data/lib/osso/graphql/mutations/delete_enterprise_account.rb +34 -0
- data/lib/osso/graphql/mutations/delete_oauth_client.rb +30 -0
- data/lib/osso/graphql/query.rb +4 -1
- data/lib/osso/graphql/resolvers/enterprise_accounts.rb +12 -4
- data/lib/osso/graphql/resolvers/oauth_clients.rb +1 -1
- data/lib/osso/graphql/schema.rb +4 -0
- data/lib/osso/graphql/types.rb +2 -0
- data/lib/osso/graphql/types/base_connection.rb +15 -0
- data/lib/osso/graphql/types/base_object.rb +4 -0
- data/lib/osso/graphql/types/enterprise_account.rb +4 -0
- data/lib/osso/graphql/types/identity_provider.rb +8 -3
- data/lib/osso/graphql/types/identity_provider_status.rb +14 -0
- data/lib/osso/graphql/types/oauth_client.rb +13 -1
- data/lib/osso/helpers/auth.rb +11 -12
- data/lib/osso/models/access_token.rb +18 -0
- data/lib/osso/models/authorization_code.rb +20 -0
- data/lib/osso/models/enterprise_account.rb +20 -0
- data/lib/osso/models/identity_provider.rb +29 -0
- data/lib/osso/models/models.rb +2 -0
- data/lib/osso/models/oauth_client.rb +17 -1
- data/lib/osso/models/redirect_uri.rb +17 -0
- data/lib/osso/models/user.rb +22 -0
- data/lib/osso/version.rb +1 -1
- data/osso-rb.gemspec +1 -0
- data/spec/factories/identity_providers.rb +22 -0
- data/spec/graphql/mutations/configure_identity_provider_spec.rb +14 -4
- data/spec/graphql/mutations/create_oauth_client_spec.rb +55 -0
- data/spec/graphql/mutations/delete_enterprise_account_spec.rb +63 -0
- data/spec/graphql/mutations/delete_oauth_client_spec.rb +51 -0
- data/spec/graphql/query/enterprise_account_spec.rb +1 -1
- data/spec/graphql/query/enterprise_accounts_spec.rb +32 -18
- data/spec/graphql/query/identity_provider_spec.rb +9 -6
- data/spec/graphql/query/{oauth_clients_account_spec.rb → oauth_clients_spec.rb} +2 -0
- metadata +30 -8
- data/lib/osso/db/migrate/20200328143303_create_oauth_tables.rb +0 -57
- data/lib/osso/graphql/mutations/set_identity_provider.rb +0 -27
- data/lib/osso/models/saml_provider.rb +0 -49
- data/lib/osso/models/saml_providers/azure_saml_provider.rb +0 -22
- data/lib/osso/models/saml_providers/okta_saml_provider.rb +0 -23
@@ -1,27 +0,0 @@
|
|
1
|
-
# frozen_string_literal: true
|
2
|
-
|
3
|
-
module Osso
|
4
|
-
module GraphQL
|
5
|
-
module Mutations
|
6
|
-
class SetSamlProvider < BaseMutation
|
7
|
-
null false
|
8
|
-
|
9
|
-
argument :provider, Types::IdentityProviderService, required: true
|
10
|
-
argument :id, ID, required: true
|
11
|
-
|
12
|
-
field :identity_provider, Types::IdentityProvider, null: false
|
13
|
-
field :errors, [String], null: false
|
14
|
-
|
15
|
-
def resolve(provider:, id:)
|
16
|
-
identity_provider = Osso::Models::IdentityProvider.find(id)
|
17
|
-
identity_provider.service = provider
|
18
|
-
identity_provider.save!
|
19
|
-
{
|
20
|
-
identity_provider: identity_provider,
|
21
|
-
errors: [],
|
22
|
-
}
|
23
|
-
end
|
24
|
-
end
|
25
|
-
end
|
26
|
-
end
|
27
|
-
end
|
@@ -1,49 +0,0 @@
|
|
1
|
-
# frozen_string_literal: true
|
2
|
-
|
3
|
-
module Osso
|
4
|
-
module Models
|
5
|
-
# Base class for SAML Providers
|
6
|
-
class IdentityProvider < ActiveRecord::Base
|
7
|
-
NAME_FORMAT = 'urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress'
|
8
|
-
belongs_to :enterprise_account
|
9
|
-
belongs_to :oauth_client
|
10
|
-
has_many :users
|
11
|
-
|
12
|
-
before_create :create_enterprise_account
|
13
|
-
|
14
|
-
# def name
|
15
|
-
# raise(
|
16
|
-
# NoMethodError,
|
17
|
-
# '#name must be defined on each provider specific subclass',
|
18
|
-
# )
|
19
|
-
# end
|
20
|
-
|
21
|
-
# def saml_options
|
22
|
-
# raise(
|
23
|
-
# NoMethodError,
|
24
|
-
# '#saml_options must be defined on each provider specific subclass',
|
25
|
-
# )
|
26
|
-
# end
|
27
|
-
|
28
|
-
def assertion_consumer_service_url
|
29
|
-
[
|
30
|
-
ENV.fetch('BASE_URL'),
|
31
|
-
'auth',
|
32
|
-
'saml',
|
33
|
-
id,
|
34
|
-
'callback',
|
35
|
-
].join('/')
|
36
|
-
end
|
37
|
-
|
38
|
-
alias acs_url assertion_consumer_service_url
|
39
|
-
|
40
|
-
def create_enterprise_account
|
41
|
-
return if enterprise_account_id
|
42
|
-
|
43
|
-
self.enterprise_account = Models::EnterpriseAccount.create(
|
44
|
-
domain: domain,
|
45
|
-
)
|
46
|
-
end
|
47
|
-
end
|
48
|
-
end
|
49
|
-
end
|
@@ -1,22 +0,0 @@
|
|
1
|
-
# frozen_string_literal: true
|
2
|
-
|
3
|
-
module Osso
|
4
|
-
module Models
|
5
|
-
# Subclass for Azure / ADFS IDP instances
|
6
|
-
class AzureSamlProvider < Models::IdentityProvider
|
7
|
-
def name
|
8
|
-
'Azure'
|
9
|
-
end
|
10
|
-
|
11
|
-
def saml_options
|
12
|
-
attributes.slice(
|
13
|
-
'domain',
|
14
|
-
'idp_cert',
|
15
|
-
'idp_sso_target_url',
|
16
|
-
).merge(
|
17
|
-
issuer: "id:#{id}",
|
18
|
-
).symbolize_keys
|
19
|
-
end
|
20
|
-
end
|
21
|
-
end
|
22
|
-
end
|
@@ -1,23 +0,0 @@
|
|
1
|
-
# frozen_string_literal: true
|
2
|
-
|
3
|
-
module Osso
|
4
|
-
module Models
|
5
|
-
# Subclass for Okta IDP instances
|
6
|
-
class OktaSamlProvider < Models::IdentityProvider
|
7
|
-
def name
|
8
|
-
'Okta'
|
9
|
-
end
|
10
|
-
|
11
|
-
def saml_options
|
12
|
-
attributes.slice(
|
13
|
-
'domain',
|
14
|
-
'idp_cert',
|
15
|
-
'idp_sso_target_url',
|
16
|
-
).merge(
|
17
|
-
issuer: id,
|
18
|
-
name_identifier_format: NAME_FORMAT,
|
19
|
-
).symbolize_keys
|
20
|
-
end
|
21
|
-
end
|
22
|
-
end
|
23
|
-
end
|