/ckanext/ozwillo_pyoidc/oidc.py - Diff - Modules CKAN Ozwillo - Redmine Entr’ouvert

« Précédent | Suivant »

Révision 34457e9c

Ajouté par Serghei Mihai il y a environ 9 ans

ID 34457e9cc576a448d4d6fd925f70fdddca1852d5
Parent e5e6f14a
Enfant 84fe0501

sso attributes stored in session.

                 self.behaviour = behaviour
         def create_authn_request(self, acr_value=None):
             self.state = rndstr()
             state = rndstr()
             nonce = rndstr()
             request_args = {
                 "response_type": self.behaviour["response_type"],
                 "scope": self.behaviour["scope"],
                 "state": self.state,
                 "state": state,
                 "nonce": nonce,
                 "redirect_uri": self.registration_response["redirect_uris"][0]
+            }
-...
             logger.info("URL: %s" % url)
             logger.debug("ht_args: %s" % ht_args)
             return str(url), ht_args
             return str(url), ht_args, state
         def callback(self, response):
         def callback(self, state, response):
             """
             This is the method that should be called when an AuthN response has been
             received from the OP.
             :param response: The URL returned by the OP
             :return:
             """
             authresp = self.parse_response(AuthorizationResponse, response,
                                            sformat="dict", keyjar=self.keyjar)
             app_admin = False
             app_user = False
             try:
                 if self.state != authresp['state']:
                 if state != authresp['state']:
                     raise OIDCError("Invalid state %s." % authresp["state"])
             except AttributeError:
                 raise OIDCError("access denied")
             if isinstance(authresp, ErrorResponse):
                 return OIDCError("Access denied")
                 raise OIDCError("Access denied")
             try:
                 self.id_token[authresp["state"]] = authresp["id_token"]
-...
                         scope="openid", state=authresp["state"], request_args=args,
                         authn_method=self.registration_response["token_endpoint_auth_method"])
                     id_token = atresp['id_token']
                     self.app_admin = 'app_admin' in id_token and id_token['app_admin']
                     self.app_user = 'app_user' in id_token  and id_token['app_user']
                     app_admin = 'app_admin' in id_token and id_token['app_admin']
                     app_user = 'app_user' in id_token  and id_token['app_user']
                 except Exception as err:
                     logger.error("%s" % err)
                     raise
-...
             logger.debug("UserInfo: %s" % inforesp)
             return userinfo
             return userinfo, app_admin, app_user, self.access_token, self.id_token
     def create_client(**kwargs):
         """

Formats disponibles : Unified diff

Projet

Général

Profil

Ozwillo » Modules CKAN Ozwillo

Révision 34457e9c

Ajouté par Serghei Mihai il y a environ 9 ans