1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889 |
- // Copyright 2021 The Gitea Authors. All rights reserved.
- // SPDX-License-Identifier: MIT
-
- package setting
-
- import (
- "code.gitea.io/gitea/modules/log"
-
- "gopkg.in/ini.v1"
- )
-
- // OAuth2UsernameType is enum describing the way gitea 'name' should be generated from oauth2 data
- type OAuth2UsernameType string
-
- const (
- // OAuth2UsernameUserid oauth2 userid field will be used as gitea name
- OAuth2UsernameUserid OAuth2UsernameType = "userid"
- // OAuth2UsernameNickname oauth2 nickname field will be used as gitea name
- OAuth2UsernameNickname OAuth2UsernameType = "nickname"
- // OAuth2UsernameEmail username of oauth2 email filed will be used as gitea name
- OAuth2UsernameEmail OAuth2UsernameType = "email"
- )
-
- func (username OAuth2UsernameType) isValid() bool {
- switch username {
- case OAuth2UsernameUserid, OAuth2UsernameNickname, OAuth2UsernameEmail:
- return true
- }
- return false
- }
-
- // OAuth2AccountLinkingType is enum describing behaviour of linking with existing account
- type OAuth2AccountLinkingType string
-
- const (
- // OAuth2AccountLinkingDisabled error will be displayed if account exist
- OAuth2AccountLinkingDisabled OAuth2AccountLinkingType = "disabled"
- // OAuth2AccountLinkingLogin account linking login will be displayed if account exist
- OAuth2AccountLinkingLogin OAuth2AccountLinkingType = "login"
- // OAuth2AccountLinkingAuto account will be automatically linked if account exist
- OAuth2AccountLinkingAuto OAuth2AccountLinkingType = "auto"
- )
-
- func (accountLinking OAuth2AccountLinkingType) isValid() bool {
- switch accountLinking {
- case OAuth2AccountLinkingDisabled, OAuth2AccountLinkingLogin, OAuth2AccountLinkingAuto:
- return true
- }
- return false
- }
-
- // OAuth2Client settings
- var OAuth2Client struct {
- RegisterEmailConfirm bool
- OpenIDConnectScopes []string
- EnableAutoRegistration bool
- Username OAuth2UsernameType
- UpdateAvatar bool
- AccountLinking OAuth2AccountLinkingType
- }
-
- func newOAuth2Client() {
- sec := Cfg.Section("oauth2_client")
- OAuth2Client.RegisterEmailConfirm = sec.Key("REGISTER_EMAIL_CONFIRM").MustBool(Service.RegisterEmailConfirm)
- OAuth2Client.OpenIDConnectScopes = parseScopes(sec, "OPENID_CONNECT_SCOPES")
- OAuth2Client.EnableAutoRegistration = sec.Key("ENABLE_AUTO_REGISTRATION").MustBool()
- OAuth2Client.Username = OAuth2UsernameType(sec.Key("USERNAME").MustString(string(OAuth2UsernameNickname)))
- if !OAuth2Client.Username.isValid() {
- log.Warn("Username setting is not valid: '%s', will fallback to '%s'", OAuth2Client.Username, OAuth2UsernameNickname)
- OAuth2Client.Username = OAuth2UsernameNickname
- }
- OAuth2Client.UpdateAvatar = sec.Key("UPDATE_AVATAR").MustBool()
- OAuth2Client.AccountLinking = OAuth2AccountLinkingType(sec.Key("ACCOUNT_LINKING").MustString(string(OAuth2AccountLinkingLogin)))
- if !OAuth2Client.AccountLinking.isValid() {
- log.Warn("Account linking setting is not valid: '%s', will fallback to '%s'", OAuth2Client.AccountLinking, OAuth2AccountLinkingLogin)
- OAuth2Client.AccountLinking = OAuth2AccountLinkingLogin
- }
- }
-
- func parseScopes(sec *ini.Section, name string) []string {
- parts := sec.Key(name).Strings(" ")
- scopes := make([]string, 0, len(parts))
- for _, scope := range parts {
- if scope != "" {
- scopes = append(scopes, scope)
- }
- }
- return scopes
- }
|