starred/stf-DeviceFarmer-1
1
0
Fork 0
mirror of https://github.com/DeviceFarmer/stf.git synced 2026-04-17 15:53:28 +02:00
Code Issues Packages Projects Releases Wiki Activity

add saml audience option and manage required options (#843)

Browse Source 
Signed-off-by: Denis barbaron <denis.barbaron@orange.com>
This commit is contained in:
Denis Barbaron
2025-03-03 16:46:01 +01:00
committed by GitHub
parent 29ce6e3bbb
commit 9de3828158
3 changed files with 13 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
doc/DEPLOYMENT.md
View File

@@ -327,6 +327,7 @@ ExecStart=/usr/bin/docker run --rm \
-e "SECRET=YOUR_SESSION_SECRET_HERE" \
-e "SAML_ID_PROVIDER_ENTRY_POINT_URL=YOUR_ID_PROVIDER_ENTRY_POINT" \
-e "SAML_ID_PROVIDER_ISSUER=YOUR_ID_PROVIDER_ISSUER" \
-e "SAML_ID_PROVIDER_CALLBACK_URL=YOUR_ID_PROVIDER_CALLBACK_URL" \
-e "SAML_ID_PROVIDER_CERT_PATH=/etc/id_provider.cert" \
-p %i:3000 \
devicefarmer/stf:latest \

8
lib/cli/auth-saml2/index.js
View File

@@ -34,16 +34,23 @@ module.exports.builder = function(yargs) {
, default: process.env.SAML_ID_PROVIDER_ISSUER
, demand: true
})
.option('saml-id-provider-audience', {
describe: 'SAML 2.0 identity provider audience.'
, type: 'string'
, default: process.env.SAML_ID_PROVIDER_AUDIENCE
})
.option('saml-id-provider-cert-path', {
describe: 'SAML 2.0 identity provider certificate file path.'
, type: 'string'
, default: process.env.SAML_ID_PROVIDER_CERT_PATH
, demand: true
})
.option('saml-id-provider-callback-url', {
describe: 'SAML 2.0 identity provider callback URL ' +
'in the form of scheme://host[:port]/auth/saml/callback.'
, type: 'string'
, default: process.env.SAML_ID_PROVIDER_CALLBACK_URL
, demand: true
})
.option('saml-id-provider-want-assertions-signed', {
describe: 'SAML 2.0 identity provider want assertions signed.'
@@ -91,6 +98,7 @@ module.exports.handler = function(argv) {
, callbackUrl: argv.samlIdProviderCallbackUrl
, wantAssertionsSigned: argv.samlIdProviderWantAssertionsSigned
, wantAuthnResponseSigned: argv.samlIdProviderWantAuthnResponseSigned
, audience: argv.samlIdProviderAudience
}
})
}

17
lib/units/auth/saml2.js
View File

@@ -52,22 +52,13 @@ module.exports = function(options) {
, issuer: options.saml.issuer
, wantAssertionsSigned: options.saml.wantAssertionsSigned
, wantAuthnResponseSigned: options.saml.wantAuthnResponseSigned
, callbackUrl: options.saml.callbackUrl
, idpCert: fs.readFileSync(options.saml.certPath).toString()
}
if (options.saml.certPath) {
if (options.saml.audience) {
samlConfig = _.merge(samlConfig, {
idpCert: fs.readFileSync(options.saml.certPath).toString()
})
}
if (options.saml.callbackUrl) {
samlConfig = _.merge(samlConfig, {
callbackUrl: options.saml.callbackUrl
})
}
else {
samlConfig = _.merge(samlConfig, {
path: '/auth/saml/callback'
audience: options.saml.audience
})
}