llvy.ltd/casdoor
1
0
Fork 0
mirror of https://github.com/casdoor/casdoor.git synced 2025-05-23 02:35:49 +08:00
Code Issues Packages Projects Releases Wiki Activity
casdoor/object/application.go

487 lines
13 KiB
Go
Raw Normal View History

Update license headers.
2022-02-13 23:39:27 +08:00
// Copyright 2021 The Casdoor Authors. All Rights Reserved.
Add application list and edit pages.
2020-12-20 23:24:09 +08:00
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
package object
import (
Fix app side bug in org renaming.
2021-12-23 01:01:23 +08:00
"fmt"
feat: add CORS filter to fix OPTION request failure (#826)
2022-06-26 01:28:33 +08:00
"net/url"
Support regex in CheckRedirectUriValid()
2022-09-10 13:12:36 +08:00
"regexp"
feat: add token logout endpoint (#526) Signed-off-by: Steve0x2a <stevesough@gmail.com>
2022-03-02 20:37:31 +08:00
"strings"
Fix app side bug in org renaming.
2021-12-23 01:01:23 +08:00
feat: support login by following wechat official account (#1284) * show QRcode when click WeChat Icon * update how to show qrcode * handle wechat scan qrcode * fix api problems * fix url problems * fix problems * modify get frequency * remove useless print * fix:fix PR problems * fix: fix PR problems * fix:fix PR problem * fix IMG load delay problems * fix:fix provider problems * fix test problems * use gofumpt to fmt code * fix:delete useless variables * feat:add button for follow official account * fix:fix review problems * use gofumpt to fmt code * fix:fix scantype problems * fix Response problem * use gofumpt to format code
2022-11-13 15:05:15 +08:00
"github.com/casdoor/casdoor/idp"
Update import path.
2022-01-20 14:11:46 +08:00
"github.com/casdoor/casdoor/util"
Add application list and edit pages.
2020-12-20 23:24:09 +08:00
"xorm.io/core"
)
Remove signup_item.go
2022-06-16 20:52:54 +08:00
type SignupItem struct {
Name string `json:"name"`
Visible bool `json:"visible"`
Required bool `json:"required"`
Prompted bool `json:"prompted"`
Rule string `json:"rule"`
}
Add application list and edit pages.
2020-12-20 23:24:09 +08:00
type Application struct {
Owner string `xorm:"varchar(100) notnull pk" json:"owner"`
Name string `xorm:"varchar(100) notnull pk" json:"name"`
CreatedTime string `xorm:"varchar(100)" json:"createdTime"`
Add EnableSigninSession to app.
2021-12-28 17:13:45 +08:00
DisplayName string `xorm:"varchar(100)" json:"displayName"`
Logo string `xorm:"varchar(100)" json:"logo"`
HomepageUrl string `xorm:"varchar(100)" json:"homepageUrl"`
Description string `xorm:"varchar(100)" json:"description"`
Organization string `xorm:"varchar(100)" json:"organization"`
Make cert work.
2021-12-31 09:36:48 +08:00
Cert string `xorm:"varchar(100)" json:"cert"`
Add EnableSigninSession to app.
2021-12-28 17:13:45 +08:00
EnablePassword bool `json:"enablePassword"`
EnableSignUp bool `json:"enableSignUp"`
EnableSigninSession bool `json:"enableSigninSession"`
Add enableAutoSignin to application
2022-09-27 20:06:46 +08:00
EnableAutoSignin bool `json:"enableAutoSignin"`
Add EnableSigninSession to app.
2021-12-28 17:13:45 +08:00
EnableCodeSignin bool `json:"enableCodeSignin"`
feat: support casdoor as saml idp to connect keycloak (#832) Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
2022-06-28 22:05:02 +08:00
EnableSamlCompress bool `json:"enableSamlCompress"`
feat: support webauthn (#407) * feat: support webauthn * Update init.go * Update user_webauthn.go * Update UserEditPage.js * Update WebauthnCredentialTable.js * Update LoginPage.js Co-authored-by: Gucheng <85475922+nomeguy@users.noreply.github.com>
2022-07-12 20:06:01 +08:00
EnableWebAuthn bool `json:"enableWebAuthn"`
feat: add post methed for saml response (#1399)
2022-12-13 22:32:45 +08:00
SamlReplyUrl string `xorm:"varchar(100)" json:"samlReplyUrl"`
Add EnableSigninSession to app.
2021-12-28 17:13:45 +08:00
Providers []*ProviderItem `xorm:"mediumtext" json:"providers"`
SignupItems []*SignupItem `xorm:"varchar(1000)" json:"signupItems"`
feat: add two authentication flow types (#512) * feat: add two authentication flow types Signed-off-by: Steve0x2a <stevesough@gmail.com> * fix: delete implicit method Signed-off-by: Steve0x2a <stevesough@gmail.com> * fix: use a more appropriate name Signed-off-by: Steve0x2a <stevesough@gmail.com> * fix: apply suggestion Signed-off-by: Steve0x2a <stevesough@gmail.com> * fix: remove redundant code Signed-off-by: Steve0x2a <stevesough@gmail.com>
2022-02-27 14:05:07 +08:00
GrantTypes []string `xorm:"varchar(1000)" json:"grantTypes"`
Add EnableSigninSession to app.
2021-12-28 17:13:45 +08:00
OrganizationObj *Organization `xorm:"-" json:"organizationObj"`
Add clientId and clientSecret to app.
2021-03-06 16:39:17 +08:00
feat: add refresh token mechanism for server side (#336) * feat: add refresh token mechanism for server side Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com> * feat: add refresh token expire configuration UI Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
2021-12-18 18:49:38 +08:00
ClientId string `xorm:"varchar(100)" json:"clientId"`
ClientSecret string `xorm:"varchar(100)" json:"clientSecret"`
RedirectUris []string `xorm:"varchar(1000)" json:"redirectUris"`
TokenFormat string `xorm:"varchar(100)" json:"tokenFormat"`
ExpireInHours int `json:"expireInHours"`
RefreshExpireInHours int `json:"refreshExpireInHours"`
SignupUrl string `xorm:"varchar(200)" json:"signupUrl"`
SigninUrl string `xorm:"varchar(200)" json:"signinUrl"`
ForgetUrl string `xorm:"varchar(200)" json:"forgetUrl"`
AffiliationUrl string `xorm:"varchar(100)" json:"affiliationUrl"`
TermsOfUse string `xorm:"varchar(100)" json:"termsOfUse"`
SignupHtml string `xorm:"mediumtext" json:"signupHtml"`
SigninHtml string `xorm:"mediumtext" json:"signinHtml"`
feat: custom login form and background (#1107) * feat: custom login form and background Signed-off-by: magicwind <2814461814@qq.com> * feat: costom login form border * chore: update i18 * Update ApplicationEditPage.js * Update LoginPage.js * Update SignupPage.js * Update LoginPage.js * Update ApplicationEditPage.js Signed-off-by: magicwind <2814461814@qq.com> Co-authored-by: Gucheng <85475922+nomeguy@users.noreply.github.com>
2022-09-10 00:56:37 +08:00
FormCss string `xorm:"text" json:"formCss"`
FormOffset int `json:"formOffset"`
feat: add left-side image and improve login page (#1226)
2022-10-22 21:43:41 +08:00
FormSideHtml string `xorm:"mediumtext" json:"formSideHtml"`
feat: custom login form and background (#1107) * feat: custom login form and background Signed-off-by: magicwind <2814461814@qq.com> * feat: costom login form border * chore: update i18 * Update ApplicationEditPage.js * Update LoginPage.js * Update SignupPage.js * Update LoginPage.js * Update ApplicationEditPage.js Signed-off-by: magicwind <2814461814@qq.com> Co-authored-by: Gucheng <85475922+nomeguy@users.noreply.github.com>
2022-09-10 00:56:37 +08:00
FormBackgroundUrl string `xorm:"varchar(200)" json:"formBackgroundUrl"`
Add application list and edit pages.
2020-12-20 23:24:09 +08:00
}
feat: add server-side search, filter and sorter for all pages (#388) Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com> Co-authored-by: Yang Luo <hsluoyz@qq.com>
2021-12-25 10:55:10 +08:00
func GetApplicationCount(owner, field, value string) int {
fix: fix the SQL injection vulnerability in field filter (#442) Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
2022-01-26 19:36:36 +08:00
session := GetSession(owner, -1, -1, field, value, "", "")
feat: add server-side search, filter and sorter for all pages (#388) Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com> Co-authored-by: Yang Luo <hsluoyz@qq.com>
2021-12-25 10:55:10 +08:00
count, err := session.Count(&Application{})
feat: add server-side pagination (#312) Signed-off-by: “seriouszyx” <seriouszyx@foxmail.com>
2021-11-06 11:32:22 +08:00
if err != nil {
panic(err)
}
return int(count)
}
feat: manager applications in organization scope (#1290) * feat: manager applications in organization scope(front end) * fix: application can use own organization and admin provider * fix: improve methed to get provider * fix: modify provider methods by convention
2022-11-21 01:17:55 +08:00
func GetOrganizationApplicationCount(owner, Organization, field, value string) int {
session := GetSession(owner, -1, -1, field, value, "", "")
count, err := session.Count(&Application{Organization: Organization})
if err != nil {
panic(err)
}
return int(count)
}
Add application list and edit pages.
2020-12-20 23:24:09 +08:00
func GetApplications(owner string) []*Application {
applications := []*Application{}
Move adapter.createTable() out, make engine public.
2021-05-02 10:30:12 +08:00
err := adapter.Engine.Desc("created_time").Find(&applications, &Application{Owner: owner})
Add application list and edit pages.
2020-12-20 23:24:09 +08:00
if err != nil {
panic(err)
}
return applications
}
feat: manager applications in organization scope (#1290) * feat: manager applications in organization scope(front end) * fix: application can use own organization and admin provider * fix: improve methed to get provider * fix: modify provider methods by convention
2022-11-21 01:17:55 +08:00
func GetOrganizationApplications(owner string, organization string) []*Application {
feat: add server-side pagination (#312) Signed-off-by: “seriouszyx” <seriouszyx@foxmail.com>
2021-11-06 11:32:22 +08:00
applications := []*Application{}
feat: manager applications in organization scope (#1290) * feat: manager applications in organization scope(front end) * fix: application can use own organization and admin provider * fix: improve methed to get provider * fix: modify provider methods by convention
2022-11-21 01:17:55 +08:00
err := adapter.Engine.Desc("created_time").Find(&applications, &Application{Owner: owner, Organization: organization})
if err != nil {
panic(err)
}
return applications
}
func GetPaginationApplications(owner string, offset, limit int, field, value, sortField, sortOrder string) []*Application {
var applications []*Application
feat: add server-side search, filter and sorter for all pages (#388) Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com> Co-authored-by: Yang Luo <hsluoyz@qq.com>
2021-12-25 10:55:10 +08:00
session := GetSession(owner, offset, limit, field, value, sortField, sortOrder)
err := session.Find(&applications)
feat: add server-side pagination (#312) Signed-off-by: “seriouszyx” <seriouszyx@foxmail.com>
2021-11-06 11:32:22 +08:00
if err != nil {
panic(err)
}
return applications
}
feat: manager applications in organization scope (#1290) * feat: manager applications in organization scope(front end) * fix: application can use own organization and admin provider * fix: improve methed to get provider * fix: modify provider methods by convention
2022-11-21 01:17:55 +08:00
func GetPaginationOrganizationApplications(owner, organization string, offset, limit int, field, value, sortField, sortOrder string) []*Application {
Fix app side bug in org renaming.
2021-12-23 01:01:23 +08:00
applications := []*Application{}
feat: manager applications in organization scope (#1290) * feat: manager applications in organization scope(front end) * fix: application can use own organization and admin provider * fix: improve methed to get provider * fix: modify provider methods by convention
2022-11-21 01:17:55 +08:00
session := GetSession(owner, offset, limit, field, value, sortField, sortOrder)
err := session.Find(&applications, &Application{Owner: owner, Organization: organization})
Fix app side bug in org renaming.
2021-12-23 01:01:23 +08:00
if err != nil {
panic(err)
}
return applications
}
Use new providerItem.
2021-06-14 21:35:19 +08:00
func getProviderMap(owner string) map[string]*Provider {
providers := GetProviders(owner)
Add frontend /login/oauth
2021-03-20 11:34:04 +08:00
m := map[string]*Provider{}
for _, provider := range providers {
feat: support login by following wechat official account (#1284) * show QRcode when click WeChat Icon * update how to show qrcode * handle wechat scan qrcode * fix api problems * fix url problems * fix problems * modify get frequency * remove useless print * fix:fix PR problems * fix: fix PR problems * fix:fix PR problem * fix IMG load delay problems * fix:fix provider problems * fix test problems * use gofumpt to fmt code * fix:delete useless variables * feat:add button for follow official account * fix:fix review problems * use gofumpt to fmt code * fix:fix scantype problems * fix Response problem * use gofumpt to format code
2022-11-13 15:05:15 +08:00
// Get QRCode only once
if provider.Type == "WeChat" && provider.DisableSsl == true && provider.Content == "" {
provider.Content, _ = idp.GetWechatOfficialAccountQRCode(provider.ClientId2, provider.ClientSecret2)
UpdateProvider(provider.Owner+"/"+provider.Name, provider)
}
Fix small issues.
2021-05-23 23:38:38 +08:00
Add GetMaskedProvider() and GetMaskedProviders().
2021-12-20 23:46:38 +08:00
m[provider.Name] = GetMaskedProvider(provider)
Add frontend /login/oauth
2021-03-20 11:34:04 +08:00
}
Use new providerItem.
2021-06-14 21:35:19 +08:00
return m
}
Add frontend /login/oauth
2021-03-20 11:34:04 +08:00
Use new providerItem.
2021-06-14 21:35:19 +08:00
func extendApplicationWithProviders(application *Application) {
feat: manager applications in organization scope (#1290) * feat: manager applications in organization scope(front end) * fix: application can use own organization and admin provider * fix: improve methed to get provider * fix: modify provider methods by convention
2022-11-21 01:17:55 +08:00
m := getProviderMap(application.Organization)
Add provider table.
2021-06-14 19:09:04 +08:00
for _, providerItem := range application.Providers {
if provider, ok := m[providerItem.Name]; ok {
Use new providerItem.
2021-06-14 21:35:19 +08:00
providerItem.Provider = provider
Add sms and email providers to app.
2021-05-24 01:02:38 +08:00
}
Add frontend /login/oauth
2021-03-20 11:34:04 +08:00
}
}
Use helmet on login, signup pages.
2021-04-29 21:28:24 +08:00
func extendApplicationWithOrg(application *Application) {
organization := getOrganization(application.Owner, application.Organization)
application.OrganizationObj = organization
}
Add application list and edit pages.
2020-12-20 23:24:09 +08:00
func getApplication(owner string, name string) *Application {
Fix get null object bug.
2021-06-21 01:01:16 +08:00
if owner == "" || name == "" {
return nil
}
Add application list and edit pages.
2020-12-20 23:24:09 +08:00
application := Application{Owner: owner, Name: name}
Move adapter.createTable() out, make engine public.
2021-05-02 10:30:12 +08:00
existed, err := adapter.Engine.Get(&application)
Add application list and edit pages.
2020-12-20 23:24:09 +08:00
if err != nil {
panic(err)
}
if existed {
Use helmet on login, signup pages.
2021-04-29 21:28:24 +08:00
extendApplicationWithProviders(&application)
extendApplicationWithOrg(&application)
Add application list and edit pages.
2020-12-20 23:24:09 +08:00
return &application
} else {
return nil
}
}
Add sms and email providers to app.
2021-05-24 01:02:38 +08:00
func GetApplicationByOrganizationName(organization string) *Application {
Refactor GetDefaultApplication().
2021-05-16 23:07:45 +08:00
application := Application{}
existed, err := adapter.Engine.Where("organization=?", organization).Get(&application)
Add Link API.
2021-04-19 01:14:41 +08:00
if err != nil {
panic(err)
}
if existed {
Use helmet on login, signup pages.
2021-04-29 21:28:24 +08:00
extendApplicationWithProviders(&application)
extendApplicationWithOrg(&application)
Add Link API.
2021-04-19 01:14:41 +08:00
return &application
} else {
return nil
}
}
Refactor GetDefaultApplication().
2021-05-16 23:07:45 +08:00
func GetApplicationByUser(user *User) *Application {
Use signup app for GetApplicationByUser().
2021-07-18 17:50:38 +08:00
if user.SignupApplication != "" {
return getApplication("admin", user.SignupApplication)
} else {
return GetApplicationByOrganizationName(user.Owner)
}
Refactor GetDefaultApplication().
2021-05-16 23:07:45 +08:00
}
Support server-side upload-resource call.
2021-09-05 01:03:29 +08:00
func GetApplicationByUserId(userId string) (*Application, *User) {
var application *Application
owner, name := util.GetOwnerAndNameFromId(userId)
if owner == "app" {
application = getApplication("admin", name)
return application, nil
}
user := GetUser(userId)
application = GetApplicationByUser(user)
return application, user
}
feat: authorize via clientId and clientSecret Signed-off-by: Kininaru <shiftregister233@outlook.com>
2021-06-06 17:27:03 +08:00
func GetApplicationByClientId(clientId string) *Application {
Add /api/oauth/code API.
2021-03-14 18:18:03 +08:00
application := Application{}
Move adapter.createTable() out, make engine public.
2021-05-02 10:30:12 +08:00
existed, err := adapter.Engine.Where("client_id=?", clientId).Get(&application)
Add /api/oauth/code API.
2021-03-14 18:18:03 +08:00
if err != nil {
panic(err)
}
if existed {
Use helmet on login, signup pages.
2021-04-29 21:28:24 +08:00
extendApplicationWithProviders(&application)
extendApplicationWithOrg(&application)
Add /api/oauth/code API.
2021-03-14 18:18:03 +08:00
return &application
} else {
return nil
}
}
Add GetMaskedApplication() and GetMaskedApplications().
2021-12-29 19:12:11 +08:00
func GetApplication(id string) *Application {
owner, name := util.GetOwnerAndNameFromId(id)
return getApplication(owner, name)
}
func GetMaskedApplication(application *Application, userId string) *Application {
if isUserIdGlobalAdmin(userId) {
return application
feat: expose email and sms APIs as services to SDK (#202) Signed-off-by: Kininaru <shiftregister233@outlook.com> invalid receivers
2021-07-30 14:15:10 +08:00
}
Add GetMaskedApplication() and GetMaskedApplications().
2021-12-29 19:12:11 +08:00
if application == nil {
feat: expose email and sms APIs as services to SDK (#202) Signed-off-by: Kininaru <shiftregister233@outlook.com> invalid receivers
2021-07-30 14:15:10 +08:00
return nil
}
Add GetMaskedApplication() and GetMaskedApplications().
2021-12-29 19:12:11 +08:00
if application.ClientSecret != "" {
application.ClientSecret = "***"
}
fix: password leakage vulnerability caused by pagination (#527) * fix: password leakage vulnerability caused by pagination Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com> * fix: unsafe get-app-login response fields Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
2022-03-02 20:58:16 +08:00
if application.OrganizationObj != nil {
if application.OrganizationObj.MasterPassword != "" {
application.OrganizationObj.MasterPassword = "***"
}
if application.OrganizationObj.PasswordType != "" {
application.OrganizationObj.PasswordType = "***"
}
if application.OrganizationObj.PasswordSalt != "" {
application.OrganizationObj.PasswordSalt = "***"
}
}
feat: support overriding configuration with env (#590)
2022-03-20 23:21:09 +08:00
return application
feat: expose email and sms APIs as services to SDK (#202) Signed-off-by: Kininaru <shiftregister233@outlook.com> invalid receivers
2021-07-30 14:15:10 +08:00
}
Add GetMaskedApplication() and GetMaskedApplications().
2021-12-29 19:12:11 +08:00
func GetMaskedApplications(applications []*Application, userId string) []*Application {
if isUserIdGlobalAdmin(userId) {
return applications
}
for _, application := range applications {
application = GetMaskedApplication(application, userId)
}
return applications
Add application list and edit pages.
2020-12-20 23:24:09 +08:00
}
func UpdateApplication(id string, application *Application) bool {
owner, name := util.GetOwnerAndNameFromId(id)
if getApplication(owner, name) == nil {
return false
}
Add restriction to built-in org and app modification.
2021-12-23 00:40:07 +08:00
if name == "app-built-in" {
application.Name = name
}
feat: change all occurrences when a object name is changed (#1252)
2022-11-02 00:17:38 +08:00
if name != application.Name {
err := applicationChangeTrigger(name, application.Name)
if err != nil {
return false
}
}
Use new providerItem.
2021-06-14 21:35:19 +08:00
for _, providerItem := range application.Providers {
providerItem.Provider = nil
}
fix: unchanged masked client_secret/password updated to `***` (#749)
2022-05-10 17:37:12 +08:00
session := adapter.Engine.ID(core.PK{owner, name}).AllCols()
if application.ClientSecret == "***" {
session.Omit("client_secret")
}
affected, err := session.Update(application)
Add application list and edit pages.
2020-12-20 23:24:09 +08:00
if err != nil {
panic(err)
}
Improve API error handling.
2021-03-28 00:48:34 +08:00
return affected != 0
Add application list and edit pages.
2020-12-20 23:24:09 +08:00
}
func AddApplication(application *Application) bool {
fix: support user-defined clientId&Secret (#862)
2022-07-06 19:27:59 +08:00
if application.ClientId == "" {
application.ClientId = util.GenerateClientId()
}
if application.ClientSecret == "" {
application.ClientSecret = util.GenerateClientSecret()
}
Use new providerItem.
2021-06-14 21:35:19 +08:00
for _, providerItem := range application.Providers {
providerItem.Provider = nil
}
Add clientId and clientSecret to app.
2021-03-06 16:39:17 +08:00
Move adapter.createTable() out, make engine public.
2021-05-02 10:30:12 +08:00
affected, err := adapter.Engine.Insert(application)
Add application list and edit pages.
2020-12-20 23:24:09 +08:00
if err != nil {
panic(err)
}
return affected != 0
}
func DeleteApplication(application *Application) bool {
Add restriction to built-in org and app modification.
2021-12-23 00:40:07 +08:00
if application.Name == "app-built-in" {
return false
}
Move adapter.createTable() out, make engine public.
2021-05-02 10:30:12 +08:00
affected, err := adapter.Engine.ID(core.PK{application.Owner, application.Name}).Delete(&Application{})
Add application list and edit pages.
2020-12-20 23:24:09 +08:00
if err != nil {
panic(err)
}
return affected != 0
}
Fix app side bug in org renaming.
2021-12-23 01:01:23 +08:00
func (application *Application) GetId() string {
return fmt.Sprintf("%s/%s", application.Owner, application.Name)
}
feat: add token logout endpoint (#526) Signed-off-by: Steve0x2a <stevesough@gmail.com>
2022-03-02 20:37:31 +08:00
func CheckRedirectUriValid(application *Application, redirectUri string) bool {
chore(style): use `gofumpt` to fmt go code (#967)
2022-08-07 12:26:14 +08:00
validUri := false
feat: add token logout endpoint (#526) Signed-off-by: Steve0x2a <stevesough@gmail.com>
2022-03-02 20:37:31 +08:00
for _, tmpUri := range application.RedirectUris {
Support regex in CheckRedirectUriValid()
2022-09-10 13:12:36 +08:00
tmpUriRegex := regexp.MustCompile(tmpUri)
if tmpUriRegex.MatchString(redirectUri) || strings.Contains(redirectUri, tmpUri) {
feat: add token logout endpoint (#526) Signed-off-by: Steve0x2a <stevesough@gmail.com>
2022-03-02 20:37:31 +08:00
validUri = true
break
}
}
return validUri
}
feat: add CORS filter to fix OPTION request failure (#826)
2022-06-26 01:28:33 +08:00
func IsAllowOrigin(origin string) bool {
allowOrigin := false
originUrl, err := url.Parse(origin)
if err != nil {
return false
}
rows, err := adapter.Engine.Cols("redirect_uris").Rows(&Application{})
if err != nil {
panic(err)
}
application := Application{}
for rows.Next() {
err := rows.Scan(&application)
if err != nil {
panic(err)
}
for _, tmpRedirectUri := range application.RedirectUris {
u1, err := url.Parse(tmpRedirectUri)
if err != nil {
continue
}
if u1.Scheme == originUrl.Scheme && u1.Host == originUrl.Host {
allowOrigin = true
break
}
}
if allowOrigin {
break
}
}
return allowOrigin
}
feat: extend managed accounts for get-account api (#1068) * feat: add get-extend-account api * feat: extend managed accounts for get-account api * fix go-linter err * Use GetApplicationsByOrganizationName
2022-08-30 00:57:27 +08:00
func getApplicationMap(organization string) map[string]*Application {
feat: manager applications in organization scope (#1290) * feat: manager applications in organization scope(front end) * fix: application can use own organization and admin provider * fix: improve methed to get provider * fix: modify provider methods by convention
2022-11-21 01:17:55 +08:00
applications := GetOrganizationApplications("admin", organization)
feat: extend managed accounts for get-account api (#1068) * feat: add get-extend-account api * feat: extend managed accounts for get-account api * fix go-linter err * Use GetApplicationsByOrganizationName
2022-08-30 00:57:27 +08:00
applicationMap := make(map[string]*Application)
for _, application := range applications {
applicationMap[application.Name] = application
}
return applicationMap
}
func ExtendManagedAccountsWithUser(user *User) *User {
if user.ManagedAccounts == nil || len(user.ManagedAccounts) == 0 {
return user
}
applicationMap := getApplicationMap(user.Owner)
var managedAccounts []ManagedAccount
for _, managedAccount := range user.ManagedAccounts {
application := applicationMap[managedAccount.Application]
if application != nil {
managedAccount.SigninUrl = application.SigninUrl
managedAccounts = append(managedAccounts, managedAccount)
}
}
user.ManagedAccounts = managedAccounts
return user
}
feat: change all occurrences when a object name is changed (#1252)
2022-11-02 00:17:38 +08:00
func applicationChangeTrigger(oldName string, newName string) error {
session := adapter.Engine.NewSession()
defer session.Close()
err := session.Begin()
if err != nil {
return err
}
organization := new(Organization)
organization.DefaultApplication = newName
_, err = session.Where("default_application=?", oldName).Update(organization)
if err != nil {
return err
}
user := new(User)
user.SignupApplication = newName
_, err = session.Where("signup_application=?", oldName).Update(user)
if err != nil {
return err
}
resource := new(Resource)
resource.Application = newName
_, err = session.Where("application=?", oldName).Update(resource)
if err != nil {
return err
}
var permissions []*Permission
err = adapter.Engine.Find(&permissions)
if err != nil {
return err
}
for i := 0; i < len(permissions); i++ {
permissionResoureces := permissions[i].Resources
for j := 0; j < len(permissionResoureces); j++ {
if permissionResoureces[j] == oldName {
permissionResoureces[j] = newName
}
}
permissions[i].Resources = permissionResoureces
_, err = session.Where("name=?", permissions[i].Name).Update(permissions[i])
if err != nil {
return err
}
}
return session.Commit()
}
Reference in New Issue Copy Permalink