Documentation ¶
Index ¶
- Variables
- type FederationDomainResolvedLDAPIdentityProvider
- func (p *FederationDomainResolvedLDAPIdentityProvider) ApplyIDPSpecificSessionDataToSession(session *psession.CustomSessionData, idpSpecificSessionData interface{})
- func (p *FederationDomainResolvedLDAPIdentityProvider) CloneIDPSpecificSessionDataFromSession(session *psession.CustomSessionData) interface{}
- func (p *FederationDomainResolvedLDAPIdentityProvider) GetDisplayName() string
- func (p *FederationDomainResolvedLDAPIdentityProvider) GetIDPDiscoveryFlows() []v1alpha1.IDPFlow
- func (p *FederationDomainResolvedLDAPIdentityProvider) GetIDPDiscoveryType() v1alpha1.IDPType
- func (p *FederationDomainResolvedLDAPIdentityProvider) GetProvider() upstreamprovider.UpstreamIdentityProviderI
- func (p *FederationDomainResolvedLDAPIdentityProvider) GetSessionProviderType() psession.ProviderType
- func (p *FederationDomainResolvedLDAPIdentityProvider) GetTransforms() *idtransform.TransformationPipeline
- func (p *FederationDomainResolvedLDAPIdentityProvider) Login(ctx context.Context, submittedUsername string, submittedPassword string) (*resolvedprovider.Identity, *resolvedprovider.IdentityLoginExtras, error)
- func (p *FederationDomainResolvedLDAPIdentityProvider) LoginFromCallback(_ctx context.Context, _authCode string, _pkce pkce.Code, _nonce nonce.Nonce, ...) (*resolvedprovider.Identity, *resolvedprovider.IdentityLoginExtras, error)
- func (p *FederationDomainResolvedLDAPIdentityProvider) UpstreamAuthorizeRedirectURL(state *resolvedprovider.UpstreamAuthorizeRequestState, ...) (string, error)
- func (p *FederationDomainResolvedLDAPIdentityProvider) UpstreamRefresh(ctx context.Context, identity *resolvedprovider.Identity) (refreshedIdentity *resolvedprovider.RefreshedIdentity, err error)
Constants ¶
This section is empty.
Variables ¶
View Source
var ( // ErrUnexpectedUpstreamLDAPError is returned by Login when there was an unexpected error during LDAP auth. // The error returned from Login() should be compared to this using errors.Is(). ErrUnexpectedUpstreamLDAPError = &fosite.RFC6749Error{ ErrorField: "error", DescriptionField: "Unexpected error during upstream LDAP authentication.", CodeField: http.StatusBadGateway, } // ErrAccessDeniedDueToUsernamePasswordNotAccepted is returned by Login when the LDAP auth failed due to a // bad username or password. Due to the way that fosite implements RFC6749Error.Is(), you must use "==" // to compare this error to an error returned from Login(). ErrAccessDeniedDueToUsernamePasswordNotAccepted = &fosite.RFC6749Error{ ErrorField: "access_denied", DescriptionField: "The resource owner or authorization server denied the request.", HintField: "Username/password not accepted by LDAP provider.", CodeField: http.StatusForbidden, } )
These are special errors that can be returned by Login for a FederationDomainResolvedLDAPIdentityProvider.
Functions ¶
This section is empty.
Types ¶
type FederationDomainResolvedLDAPIdentityProvider ¶
type FederationDomainResolvedLDAPIdentityProvider struct { DisplayName string Provider upstreamprovider.UpstreamLDAPIdentityProviderI SessionProviderType psession.ProviderType Transforms *idtransform.TransformationPipeline }
FederationDomainResolvedLDAPIdentityProvider represents a FederationDomainIdentityProvider which has been resolved dynamically based on the currently loaded IDP CRs to include the provider.UpstreamLDAPIdentityProviderI and other metadata about the provider.
func (*FederationDomainResolvedLDAPIdentityProvider) ApplyIDPSpecificSessionDataToSession ¶
func (p *FederationDomainResolvedLDAPIdentityProvider) ApplyIDPSpecificSessionDataToSession(session *psession.CustomSessionData, idpSpecificSessionData interface{})
func (*FederationDomainResolvedLDAPIdentityProvider) CloneIDPSpecificSessionDataFromSession ¶
func (p *FederationDomainResolvedLDAPIdentityProvider) CloneIDPSpecificSessionDataFromSession(session *psession.CustomSessionData) interface{}
func (*FederationDomainResolvedLDAPIdentityProvider) GetDisplayName ¶
func (p *FederationDomainResolvedLDAPIdentityProvider) GetDisplayName() string
func (*FederationDomainResolvedLDAPIdentityProvider) GetIDPDiscoveryFlows ¶
func (p *FederationDomainResolvedLDAPIdentityProvider) GetIDPDiscoveryFlows() []v1alpha1.IDPFlow
func (*FederationDomainResolvedLDAPIdentityProvider) GetIDPDiscoveryType ¶
func (p *FederationDomainResolvedLDAPIdentityProvider) GetIDPDiscoveryType() v1alpha1.IDPType
func (*FederationDomainResolvedLDAPIdentityProvider) GetProvider ¶
func (p *FederationDomainResolvedLDAPIdentityProvider) GetProvider() upstreamprovider.UpstreamIdentityProviderI
func (*FederationDomainResolvedLDAPIdentityProvider) GetSessionProviderType ¶
func (p *FederationDomainResolvedLDAPIdentityProvider) GetSessionProviderType() psession.ProviderType
func (*FederationDomainResolvedLDAPIdentityProvider) GetTransforms ¶
func (p *FederationDomainResolvedLDAPIdentityProvider) GetTransforms() *idtransform.TransformationPipeline
func (*FederationDomainResolvedLDAPIdentityProvider) Login ¶
func (p *FederationDomainResolvedLDAPIdentityProvider) Login( ctx context.Context, submittedUsername string, submittedPassword string, ) (*resolvedprovider.Identity, *resolvedprovider.IdentityLoginExtras, error)
func (*FederationDomainResolvedLDAPIdentityProvider) LoginFromCallback ¶
func (p *FederationDomainResolvedLDAPIdentityProvider) LoginFromCallback( _ctx context.Context, _authCode string, _pkce pkce.Code, _nonce nonce.Nonce, _redirectURI string, ) (*resolvedprovider.Identity, *resolvedprovider.IdentityLoginExtras, error)
func (*FederationDomainResolvedLDAPIdentityProvider) UpstreamAuthorizeRedirectURL ¶
func (p *FederationDomainResolvedLDAPIdentityProvider) UpstreamAuthorizeRedirectURL(state *resolvedprovider.UpstreamAuthorizeRequestState, downstreamIssuerURL string) (string, error)
func (*FederationDomainResolvedLDAPIdentityProvider) UpstreamRefresh ¶
func (p *FederationDomainResolvedLDAPIdentityProvider) UpstreamRefresh( ctx context.Context, identity *resolvedprovider.Identity, ) (refreshedIdentity *resolvedprovider.RefreshedIdentity, err error)
Click to show internal directories.
Click to hide internal directories.