scinote-eln/scinote-web
1
1
Fork 0
mirror of https://github.com/scinote-eln/scinote-web.git synced 2024-09-20 23:16:15 +08:00
Code Issues Packages Projects Releases Wiki Activity
scinote-web/config/initializers/omniauth.rb

39 lines
1.6 KiB
Ruby
Raw Normal View History

Implement SSO with Azure AD [SCI-4142]
2019-12-11 00:24:53 +08:00
# frozen_string_literal: true
require 'omniauth/strategies/custom_azure_active_directory'
Add support of Okta SSO provider [SCI-6184]
2021-11-02 23:19:56 +08:00
AZURE_SETUP_PROC = lambda do |env|
Implement SSO with Azure AD [SCI-4142]
2019-12-11 00:24:53 +08:00
providers = Rails.configuration.x.azure_ad_apps.select { |_, v| v[:enable_sign_in] == true }
Replace empty? with blank? [SCI-5579]
2021-07-23 17:56:28 +08:00
raise StandardError, 'No Azure AD config available for sign in' if providers.blank?
Implement SSO with Azure AD [SCI-4142]
2019-12-11 00:24:53 +08:00
req = Rack::Request.new(env)
if providers.size > 1
if req.params['id_token'].present? # Callback phase
unverified_jwt_payload, = JWT.decode(req.params['id_token'], nil, false)
raise StandardError, 'No Azure AD config available for sign in' if providers[unverified_jwt_payload['aud']].blank?
provider_id = unverified_jwt_payload['aud']
else # Authorization phase
Improve connected accounts unlinking [SCI-4142]
2019-12-12 21:57:27 +08:00
raise ActionController::ParameterMissing, 'Provider name is missing' if req.params['provider'].blank?
Implement SSO with Azure AD [SCI-4142]
2019-12-11 00:24:53 +08:00
provider_id = providers.select { |_, v| v[:provider] == req.params['provider'] }.keys.first
raise StandardError, 'No Azure AD config available for sign in' if provider_id.blank?
end
end
provider_id ||= providers.keys.first
provider_conf = providers[provider_id]
Update Omniauth, Azure and Okta strategies [SCI-7284]
2022-10-26 21:18:31 +08:00
env['omniauth.strategy'].options[:client_id] = provider_id.to_s
env['omniauth.strategy'].options[:client_secret] = provider_conf[:client_secret]
env['omniauth.strategy'].options[:tenant_id] = provider_conf[:tenant_id]
Implement SSO with Azure AD [SCI-4142]
2019-12-11 00:24:53 +08:00
env['omniauth.strategy'].options[:sign_in_policy] = provider_conf[:sign_in_policy]
Update Omniauth, Azure and Okta strategies [SCI-7284]
2022-10-26 21:18:31 +08:00
env['omniauth.strategy'].options[:name] = 'customazureactivedirectory'
Implement SSO with Azure AD [SCI-4142]
2019-12-11 00:24:53 +08:00
end
Rails.application.config.middleware.use OmniAuth::Builder do
Add support of Okta SSO provider [SCI-6184]
2021-11-02 23:19:56 +08:00
provider OmniAuth::Strategies::CustomAzureActiveDirectory, setup: AZURE_SETUP_PROC
Implement SSO with Azure AD [SCI-4142]
2019-12-11 00:24:53 +08:00
end
OmniAuth.config.logger = Rails.logger
Reference in a new issue Copy permalink