0001-saml2-set-user-roles-from-the-SAML-attribute-role-sl.patch

Benjamin Dauvergne, 19 mai 2015 15:34

Voir les différences: en ligne côte à côte

Subject: [PATCH] saml2: set user roles from the SAML attribute "role-slug"
 (#7281)

 wcs/qommon/saml2.py | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)

     from publisher import get_cfg, get_logger
     from qommon import template
     from template import error_page
     from wcs.roles import Role
     import errors
-...
                     user.form_data[field_id] = d[key]
                     logger.info('setting field %s of user %s to value %r', field_id, user.id, d[key])
                     save = True
             # update user roles from role-slug or wipe them if
             # idp-manage-user-attributes is True
             if 'role-slug' in m:
                 role_ids = []
                 for slug in m['role-slug']:
                     role = Role.get_on_index(slug, 'slug', ignore_errors=True)
                     if not role:
                         continue
                     role_ids.append(role.id)
                 if set(user.roles) != set(role_ids):
                     user.roles = role_ids
                     save = True
             else:
                 sp_cfg = get_cfg('sp', {})
                 if sp_cfg.get('idp-manage-user-attributes') and user.roles:
                     user.roles = []
                     save = True
             if save:
                 user.store()
+    -

Produits Entr'ouvert » w.c.s.