0001-saml2-set-user-roles-from-the-SAML-attribute-role-sl.patch

Benjamin Dauvergne, 19 mai 2015 15:51

Voir les différences: en ligne côte à côte

Subject: [PATCH] saml2: set user roles from the SAML attribute "role-slug"
 (#7281)

 wcs/qommon/saml2.py | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)

     from publisher import get_cfg, get_logger
     from qommon import template
     from template import error_page
     from wcs.roles import Role
     import errors
-...
                     user.form_data[field_id] = d[key]
                     logger.info('setting field %s of user %s to value %r', field_id, user.id, d[key])
                     save = True
             # update user roles from role-slug or wipe them if
             # idp-manage-user-attributes is True
             if 'role-slug' in m:
                 role_ids = []
                 roles = []
                 for slug in m['role-slug']:
                     role = Role.get_on_index(slug, 'slug', ignore_errors=True)
                     if not role:
                         continue
                     role_ids.append(str(role.id))
                     roles.append(role)
                 if set(user.roles) != set(role_ids):
                     user.roles = role_ids
                     role_list = ', '.join(role.name for role in roles)
                     logger.info('enroling user %s in %s', user.id, role_list)
                     save = True
             if save:
                 user.store()
+    -

Produits Entr'ouvert » w.c.s.