2023-10-01 21:44:49 +01:00
|
|
|
package issuer
|
|
|
|
|
2023-10-04 14:51:38 +01:00
|
|
|
import (
|
|
|
|
"fmt"
|
|
|
|
"regexp"
|
|
|
|
"strings"
|
|
|
|
)
|
|
|
|
|
|
|
|
var isValidNamespace = regexp.MustCompile("^[0-9a-z.]+$")
|
|
|
|
|
2023-10-01 21:44:49 +01:00
|
|
|
type Manager struct {
|
|
|
|
m map[string]*WellKnownOIDC
|
|
|
|
}
|
|
|
|
|
2024-08-29 17:57:31 +01:00
|
|
|
func NewManager(services map[string]SsoConfig) (*Manager, error) {
|
2023-10-01 21:44:49 +01:00
|
|
|
l := &Manager{m: make(map[string]*WellKnownOIDC)}
|
2024-08-29 17:57:31 +01:00
|
|
|
for namespace, ssoService := range services {
|
|
|
|
if !isValidNamespace.MatchString(namespace) {
|
|
|
|
return nil, fmt.Errorf("invalid namespace: %s", namespace)
|
2023-10-04 14:51:38 +01:00
|
|
|
}
|
|
|
|
|
2024-08-29 17:57:31 +01:00
|
|
|
conf, err := ssoService.FetchConfig()
|
2023-10-01 21:44:49 +01:00
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
2023-10-04 14:51:38 +01:00
|
|
|
// save by namespace
|
2024-10-05 21:08:02 +01:00
|
|
|
conf.Namespace = namespace
|
2024-08-29 17:57:31 +01:00
|
|
|
l.m[namespace] = conf
|
2023-10-01 21:44:49 +01:00
|
|
|
}
|
|
|
|
return l, nil
|
|
|
|
}
|
|
|
|
|
2024-02-07 01:18:17 +00:00
|
|
|
func (m *Manager) CheckNamespace(namespace string) bool {
|
|
|
|
_, ok := m.m[namespace]
|
2023-10-01 21:44:49 +01:00
|
|
|
return ok
|
|
|
|
}
|
|
|
|
|
2024-02-07 01:18:17 +00:00
|
|
|
func (m *Manager) GetService(namespace string) *WellKnownOIDC {
|
|
|
|
return m.m[namespace]
|
|
|
|
}
|
|
|
|
|
|
|
|
func (m *Manager) FindServiceFromLogin(login string) *WellKnownOIDC {
|
2023-10-04 14:51:38 +01:00
|
|
|
// @ should have at least one byte before it
|
|
|
|
n := strings.IndexByte(login, '@')
|
|
|
|
if n < 1 {
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
// there should not be a second @
|
|
|
|
n2 := strings.IndexByte(login[n+1:], '@')
|
|
|
|
if n2 != -1 {
|
|
|
|
return nil
|
|
|
|
}
|
2024-02-07 01:18:17 +00:00
|
|
|
return m.GetService(login[n+1:])
|
2023-10-01 21:44:49 +01:00
|
|
|
}
|