mirrors
/
sonarqube
镜像来自 https://github.com/SonarSource/sonarqube.git
關註 1
收藏 0
複製 0
程式碼 問題管理 0 版本發佈 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
29002 Commit
59 分支
目錄樹: 69dd7210a6
分支列表 標籤列表
${ item.name }
Create branch ${ searchTerm }
from '69dd7210a6'
${ noResults }
sonarqube/server/sonar-auth-saml/src/main/java/org/sonar/auth/saml/SamlSettings.java

SamlSettings.java 6.7KB
原始文件 Blame 文件歷史

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2019 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.auth.saml;

  21. 

  22. import java.util.Arrays;

  23. import java.util.List;

  24. import java.util.Optional;

  25. import org.sonar.api.config.Configuration;

  26. import org.sonar.api.config.PropertyDefinition;

  27. import org.sonar.api.server.ServerSide;

  28. 

  29. import static java.lang.String.valueOf;

  30. import static org.sonar.api.PropertyType.BOOLEAN;

  31. 

  32. @ServerSide

  33. public class SamlSettings {

  34. 

  35.   private static final String ENABLED = "sonar.auth.saml.enabled";

  36.   private static final String PROVIDER_ID = "sonar.auth.saml.providerId";

  37.   private static final String PROVIDER_NAME = "sonar.auth.saml.providerName";

  38. 

  39.   private static final String APPLICATION_ID = "sonar.auth.saml.applicationId";

  40.   private static final String LOGIN_URL = "sonar.auth.saml.loginUrl";

  41.   private static final String CERTIFICATE = "sonar.auth.saml.certificate.secured";

  42. 

  43.   private static final String USER_LOGIN_ATTRIBUTE = "sonar.auth.saml.user.login";

  44.   private static final String USER_NAME_ATTRIBUTE = "sonar.auth.saml.user.name";

  45.   private static final String USER_EMAIL_ATTRIBUTE = "sonar.auth.saml.user.email";

  46.   private static final String GROUP_NAME_ATTRIBUTE = "sonar.auth.saml.group.name";

  47. 

  48.   private static final String CATEGORY = "security";

  49.   private static final String SUBCATEGORY = "saml";

  50. 

  51.   private final Configuration configuration;

  52. 

  53.   public SamlSettings(Configuration configuration) {

  54.     this.configuration = configuration;

  55.   }

  56. 

  57.   String getProviderId() {

  58.     return configuration.get(PROVIDER_ID).orElseThrow(() -> new IllegalArgumentException("Provider ID is missing"));

  59.   }

  60. 

  61.   String getProviderName() {

  62.     return configuration.get(PROVIDER_NAME).orElseThrow(() -> new IllegalArgumentException("Provider Name is missing"));

  63.   }

  64. 

  65.   String getApplicationId() {

  66.     return configuration.get(APPLICATION_ID).orElseThrow(() -> new IllegalArgumentException("Application ID is missing"));

  67.   }

  68. 

  69.   String getLoginUrl() {

  70.     return configuration.get(LOGIN_URL).orElseThrow(() -> new IllegalArgumentException("Login URL is missing"));

  71.   }

  72. 

  73.   String getCertificate() {

  74.     return configuration.get(CERTIFICATE).orElseThrow(() -> new IllegalArgumentException("Certificate is missing"));

  75.   }

  76. 

  77.   String getUserLogin() {

  78.     return configuration.get(USER_LOGIN_ATTRIBUTE).orElseThrow(() -> new IllegalArgumentException("User login attribute is missing"));

  79.   }

  80. 

  81.   String getUserName() {

  82.     return configuration.get(USER_NAME_ATTRIBUTE).orElseThrow(() -> new IllegalArgumentException("User name attribute is missing"));

  83.   }

  84. 

  85.   Optional<String> getUserEmail() {

  86.     return configuration.get(USER_EMAIL_ATTRIBUTE);

  87.   }

  88. 

  89.   Optional<String> getGroupName() {

  90.     return configuration.get(GROUP_NAME_ATTRIBUTE);

  91.   }

  92. 

  93.   boolean isEnabled() {

  94.     return configuration.getBoolean(ENABLED).orElse(false) &&

  95.       configuration.get(PROVIDER_ID).isPresent() &&

  96.       configuration.get(APPLICATION_ID).isPresent() &&

  97.       configuration.get(LOGIN_URL).isPresent() &&

  98.       configuration.get(CERTIFICATE).isPresent() &&

  99.       configuration.get(USER_LOGIN_ATTRIBUTE).isPresent() &&

  100.       configuration.get(USER_NAME_ATTRIBUTE).isPresent();

  101.   }

  102. 

  103.   static List<PropertyDefinition> definitions() {

  104.     return Arrays.asList(

  105.       PropertyDefinition.builder(ENABLED)

  106.         .name("Enabled")

  107.         .description("Enable SAML users to login. Value is ignored if provider ID, login url, certificate, login, name attributes are not defined.")

  108.         .category(CATEGORY)

  109.         .subCategory(SUBCATEGORY)

  110.         .type(BOOLEAN)

  111.         .defaultValue(valueOf(false))

  112.         .index(1)

  113.         .build(),

  114.       PropertyDefinition.builder(APPLICATION_ID)

  115.         .name("Application ID")

  116.         .description("Identifier of the application.")

  117.         .defaultValue("sonarqube")

  118.         .category(CATEGORY)

  119.         .subCategory(SUBCATEGORY)

  120.         .index(2)

  121.         .build(),

  122.       PropertyDefinition.builder(PROVIDER_NAME)

  123.         .name("Provider Name")

  124.         .description("Name displayed for the provider in the login page.")

  125.         .defaultValue("SAML")

  126.         .category(CATEGORY)

  127.         .subCategory(SUBCATEGORY)

  128.         .index(3)

  129.         .build(),

  130.       PropertyDefinition.builder(PROVIDER_ID)

  131.         .name("Provider ID")

  132.         .description("Identifier of the identity provider, the entity that provides SAML authentication.")

  133.         .category(CATEGORY)

  134.         .subCategory(SUBCATEGORY)

  135.         .index(4)

  136.         .build(),

  137.       PropertyDefinition.builder(LOGIN_URL)

  138.         .name("SAML login url")

  139.         .description("SAML login URL for the identity provider.")

  140.         .category(CATEGORY)

  141.         .subCategory(SUBCATEGORY)

  142.         .index(5)

  143.         .build(),

  144.       PropertyDefinition.builder(CERTIFICATE)

  145.         .name("Provider certificate")

  146.         .description("X.509 certificate for the identity provider.")

  147.         .category(CATEGORY)

  148.         .subCategory(SUBCATEGORY)

  149.         .index(6)

  150.         .build(),

  151.       PropertyDefinition.builder(USER_LOGIN_ATTRIBUTE)

  152.         .name("SAML user login attribute")

  153.         .description("Attribute defining the user login in SAML.")

  154.         .category(CATEGORY)

  155.         .subCategory(SUBCATEGORY)

  156.         .index(7)

  157.         .build(),

  158.       PropertyDefinition.builder(USER_NAME_ATTRIBUTE)

  159.         .name("SAML user name attribute")

  160.         .description("Attribute defining the user name in SAML.")

  161.         .category(CATEGORY)

  162.         .subCategory(SUBCATEGORY)

  163.         .index(8)

  164.         .build(),

  165.       PropertyDefinition.builder(USER_EMAIL_ATTRIBUTE)

  166.         .name("SAML user email attribute")

  167.         .description("Attribute defining the user email in SAML.")

  168.         .category(CATEGORY)

  169.         .subCategory(SUBCATEGORY)

  170.         .index(9)

  171.         .build(),

  172.       PropertyDefinition.builder(GROUP_NAME_ATTRIBUTE)

  173.         .name("SAML group attribute")

  174.         .description("Attribute defining the user groups in SAML. " +

  175.           "Users are associated to the default group only if no attribute is defined.")

  176.         .category(CATEGORY)

  177.         .subCategory(SUBCATEGORY)

  178.         .index(10)

  179.         .build());

  180.   }

  181. }