0013-saml2-retrieve-and-store-user-phone-at-sso-time-6983.patch

Paul Marillonnet, 02 novembre 2022 10:45

Voir les différences: en ligne côte à côte

Subject: [PATCH 13/13] saml2: retrieve and store user phone at sso time
 (#69838)

 tests/test_saml_auth.py | 13 +++++++++++--
 wcs/qommon/saml2.py     |  9 +++++++++
 2 files changed, 20 insertions(+), 2 deletions(-)

             'saml2_base_url': 'http://example.net/saml',
             'saml2_providerid': 'http://example.net/saml/metadata',
+        }
         pub.cfg['users'] = {
             'field_phone': '_phone',
+        }
         MethodAdminDirectory().generate_rsa_keypair()
         setup_idps(pub)
         pub.user_class.wipe()
-...
         value = lasso.MiscTextNode.newWithString('john.doe@example.com')
         value.textChild = True
         login.assertion.addAttributeWithNode('email', lasso.SAML2_ATTRIBUTE_NAME_FORMAT_BASIC, value)
         value = lasso.MiscTextNode.newWithString('+33123456789')
         value.textChild = True
         login.assertion.addAttributeWithNode('phone', lasso.SAML2_ATTRIBUTE_NAME_FORMAT_BASIC, value)
         value = lasso.MiscTextNode.newWithString('2000-01-01')
         value.textChild = True
         login.assertion.addAttributeWithNode('birthdate', lasso.SAML2_ATTRIBUTE_NAME_FORMAT_BASIC, value)
         for a_name in ['first_name', 'last_name', 'email']:
         for a_name in ['first_name', 'last_name', 'email', 'phone']:
             value = lasso.MiscTextNode.newWithString(a_name)
             value.textChild = True
             login.assertion.addAttributeWithNode(
-...
         assert pub.user_class.count() == 1
         user = pub.user_class.select()[0]
         assert user.verified_fields
         assert len(user.verified_fields) == 3
         assert len(user.verified_fields) == 4
         assert user.form_data['_birthdate'].tm_year == 2000
         assert user.form_data['_phone'] == '+33123456789'
         assert user.email == 'john.doe@example.com'
         assert user.phone == '+33123456789'
         assert user.roles == [role.id]  # other uuid is ignored as unknown
         assert ('enrolling user %s in Foo' % user.id) in [x.message for x in caplog.records]

     from quixote.http_request import parse_header
     from . import _, errors, force_str, misc
     from .misc import try_e164_format
     from .publisher import get_cfg, get_logger
     from .template import QommonTemplateResponse, error_page, html_top
-...
             if user.form_data is None:
                 user.form_data = {}
             users_cfg = get_cfg('users', {})
             field_phone = users_cfg.get('field_phone', 'phone')
             for key, field_id in attribute_mapping.items():
                 if key not in d:
                     continue
-...
                     except ValueError as e:
                         get_publisher().record_error(exception=e, context='[SAML]', notify=True)
                         continue
                 # user phone
                 if key == field_phone:
                     field_value = try_e164_format(field_value)
                 if user.form_data.get(field_id) != field_value:
                     user.form_data[field_id] = field_value
                     logger.info('setting field %s of user %s to value %r', field_id, user.id, field_value)
+    -

Projet

Général

Profil

Produits Entr'ouvert » w.c.s.

0013-saml2-retrieve-and-store-user-phone-at-sso-time-6983.patch