123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233 |
- // Copyright 2014 The Gogs Authors. All rights reserved.
- // Use of this source code is governed by a MIT-style
- // license that can be found in the LICENSE file.
- package admin
- import (
- "github.com/Unknwon/com"
- "github.com/go-xorm/core"
- "github.com/gogits/gogs/models"
- "github.com/gogits/gogs/modules/auth"
- "github.com/gogits/gogs/modules/auth/ldap"
- "github.com/gogits/gogs/modules/base"
- "github.com/gogits/gogs/modules/log"
- "github.com/gogits/gogs/modules/middleware"
- "github.com/gogits/gogs/modules/setting"
- )
- const (
- AUTHS base.TplName = "admin/auth/list"
- AUTH_NEW base.TplName = "admin/auth/new"
- AUTH_EDIT base.TplName = "admin/auth/edit"
- )
- func Authentications(ctx *middleware.Context) {
- ctx.Data["Title"] = ctx.Tr("admin.authentication")
- ctx.Data["PageIsAdmin"] = true
- ctx.Data["PageIsAdminAuthentications"] = true
- var err error
- ctx.Data["Sources"], err = models.LoginSources()
- if err != nil {
- ctx.Handle(500, "LoginSources", err)
- return
- }
- ctx.Data["Total"] = models.CountLoginSources()
- ctx.HTML(200, AUTHS)
- }
- type AuthSource struct {
- Name string
- Type models.LoginType
- }
- var authSources = []AuthSource{
- {models.LoginNames[models.LOGIN_LDAP], models.LOGIN_LDAP},
- {models.LoginNames[models.LOGIN_DLDAP], models.LOGIN_DLDAP},
- {models.LoginNames[models.LOGIN_SMTP], models.LOGIN_SMTP},
- {models.LoginNames[models.LOGIN_PAM], models.LOGIN_PAM},
- }
- func NewAuthSource(ctx *middleware.Context) {
- ctx.Data["Title"] = ctx.Tr("admin.auths.new")
- ctx.Data["PageIsAdmin"] = true
- ctx.Data["PageIsAdminAuthentications"] = true
- ctx.Data["type"] = models.LOGIN_LDAP
- ctx.Data["CurTypeName"] = models.LoginNames[models.LOGIN_LDAP]
- ctx.Data["smtp_auth"] = "PLAIN"
- ctx.Data["is_active"] = true
- ctx.Data["AuthSources"] = authSources
- ctx.Data["SMTPAuths"] = models.SMTPAuths
- ctx.HTML(200, AUTH_NEW)
- }
- func parseLDAPConfig(form auth.AuthenticationForm) *models.LDAPConfig {
- return &models.LDAPConfig{
- Source: &ldap.Source{
- Name: form.Name,
- Host: form.Host,
- Port: form.Port,
- UseSSL: form.TLS,
- SkipVerify: form.SkipVerify,
- BindDN: form.BindDN,
- UserDN: form.UserDN,
- BindPassword: form.BindPassword,
- UserBase: form.UserBase,
- AttributeUsername: form.AttributeUsername,
- AttributeName: form.AttributeName,
- AttributeSurname: form.AttributeSurname,
- AttributeMail: form.AttributeMail,
- Filter: form.Filter,
- AdminFilter: form.AdminFilter,
- Enabled: true,
- },
- }
- }
- func parseSMTPConfig(form auth.AuthenticationForm) *models.SMTPConfig {
- return &models.SMTPConfig{
- Auth: form.SMTPAuth,
- Host: form.SMTPHost,
- Port: form.SMTPPort,
- AllowedDomains: form.AllowedDomains,
- TLS: form.TLS,
- SkipVerify: form.SkipVerify,
- }
- }
- func NewAuthSourcePost(ctx *middleware.Context, form auth.AuthenticationForm) {
- ctx.Data["Title"] = ctx.Tr("admin.auths.new")
- ctx.Data["PageIsAdmin"] = true
- ctx.Data["PageIsAdminAuthentications"] = true
- ctx.Data["CurTypeName"] = models.LoginNames[models.LoginType(form.Type)]
- ctx.Data["AuthSources"] = authSources
- ctx.Data["SMTPAuths"] = models.SMTPAuths
- if ctx.HasError() {
- ctx.HTML(200, AUTH_NEW)
- return
- }
- var config core.Conversion
- switch models.LoginType(form.Type) {
- case models.LOGIN_LDAP, models.LOGIN_DLDAP:
- config = parseLDAPConfig(form)
- case models.LOGIN_SMTP:
- config = parseSMTPConfig(form)
- case models.LOGIN_PAM:
- config = &models.PAMConfig{
- ServiceName: form.PAMServiceName,
- }
- default:
- ctx.Error(400)
- return
- }
- if err := models.CreateSource(&models.LoginSource{
- Type: models.LoginType(form.Type),
- Name: form.Name,
- IsActived: form.IsActive,
- Cfg: config,
- }); err != nil {
- ctx.Handle(500, "CreateSource", err)
- return
- }
- log.Trace("Authentication created by admin(%s): %s", ctx.User.Name, form.Name)
- ctx.Flash.Success(ctx.Tr("admin.auths.new_success", form.Name))
- ctx.Redirect(setting.AppSubUrl + "/admin/auths")
- }
- func EditAuthSource(ctx *middleware.Context) {
- ctx.Data["Title"] = ctx.Tr("admin.auths.edit")
- ctx.Data["PageIsAdmin"] = true
- ctx.Data["PageIsAdminAuthentications"] = true
- ctx.Data["SMTPAuths"] = models.SMTPAuths
- source, err := models.GetLoginSourceByID(ctx.ParamsInt64(":authid"))
- if err != nil {
- ctx.Handle(500, "GetLoginSourceByID", err)
- return
- }
- ctx.Data["Source"] = source
- ctx.HTML(200, AUTH_EDIT)
- }
- func EditAuthSourcePost(ctx *middleware.Context, form auth.AuthenticationForm) {
- ctx.Data["Title"] = ctx.Tr("admin.auths.edit")
- ctx.Data["PageIsAdmin"] = true
- ctx.Data["PageIsAdminAuthentications"] = true
- ctx.Data["SMTPAuths"] = models.SMTPAuths
- source, err := models.GetLoginSourceByID(ctx.ParamsInt64(":authid"))
- if err != nil {
- ctx.Handle(500, "GetLoginSourceByID", err)
- return
- }
- ctx.Data["Source"] = source
- if ctx.HasError() {
- ctx.HTML(200, AUTH_EDIT)
- return
- }
- var config core.Conversion
- switch models.LoginType(form.Type) {
- case models.LOGIN_LDAP, models.LOGIN_DLDAP:
- config = parseLDAPConfig(form)
- case models.LOGIN_SMTP:
- config = parseSMTPConfig(form)
- case models.LOGIN_PAM:
- config = &models.PAMConfig{
- ServiceName: form.PAMServiceName,
- }
- default:
- ctx.Error(400)
- return
- }
- source.Name = form.Name
- source.IsActived = form.IsActive
- source.Cfg = config
- if err := models.UpdateSource(source); err != nil {
- ctx.Handle(500, "UpdateSource", err)
- return
- }
- log.Trace("Authentication changed by admin(%s): %s", ctx.User.Name, source.ID)
- ctx.Flash.Success(ctx.Tr("admin.auths.update_success"))
- ctx.Redirect(setting.AppSubUrl + "/admin/auths/" + com.ToStr(form.ID))
- }
- func DeleteAuthSource(ctx *middleware.Context) {
- source, err := models.GetLoginSourceByID(ctx.ParamsInt64(":authid"))
- if err != nil {
- ctx.Handle(500, "GetLoginSourceByID", err)
- return
- }
- if err = models.DeleteSource(source); err != nil {
- switch err {
- case models.ErrAuthenticationUserUsed:
- ctx.Flash.Error("form.still_own_user")
- ctx.Redirect(setting.AppSubUrl + "/admin/auths/" + ctx.Params(":authid"))
- default:
- ctx.Handle(500, "DeleteSource", err)
- }
- return
- }
- log.Trace("Authentication deleted by admin(%s): %d", ctx.User.Name, source.ID)
- ctx.Flash.Success(ctx.Tr("admin.auths.deletion_success"))
- ctx.JSON(200, map[string]interface{}{
- "redirect": setting.AppSubUrl + "/admin/auths",
- })
- }
|