ldapattrs = self._get_user_data(conn, dn)
userattrs, extras = self.mapper.map_attrs(ldapattrs)
groups = self._get_user_groups(conn, dn, ldapattrs)
- reply['userdata'] = userattrs
- reply['groups'] = groups
- reply['extras'] = {'ldap': extras}
+ reply = userattrs
+ reply['_groups'] = groups
+ reply['_extras'] = {'ldap': extras}
except Exception, e: # pylint: disable=broad-except
self.error(e)
try:
attrs, groups = self._get_user_data(user)
userattrs, extras = self.mapper.map_attrs(attrs)
- reply['userdata'] = userattrs
- reply['groups'] = groups
- reply['extras'] = {'sssd': extras}
+ reply = userattrs
+ reply['_groups'] = groups
+ reply['_extras'] = {'sssd': extras}
except KeyError:
pass
userattrs, extras = self.mapper.map_attrs(posix_user)
groups = self._get_posix_groups(posix_user['username'],
posix_user['gidNumber'])
- reply['userdata'] = userattrs
- reply['groups'] = groups
- reply['extras'] = {'posix': extras}
+ reply = userattrs
+ reply['_groups'] = groups
+ reply['_extras'] = {'posix': extras}
except KeyError:
pass
userdata, fas_extra = self.mapper.map_attrs(fas_data)
# compute and store groups and cla groups
- userdata['groups'] = []
- userdata['extras'] = {'fas': fas_extra, 'cla': []}
+ userdata['_groups'] = []
+ userdata['_extras'] = {'fas': fas_extra, 'cla': []}
for group in fas_data.get('approved_memberships', {}):
if 'name' not in group:
continue
if group.get('group_type') == 'cla':
if group['name'] in CLA_GROUPS:
- userdata['extras']['cla'].append(CLA_GROUPS[group['name']])
+ group_name = CLA_GROUPS[group['name']]
else:
- userdata['extras']['cla'].append(group['name'])
+ group_name = group['name']
+ userdata['_extras']['cla'].append(group_name)
else:
- userdata['groups'].append(group['name'])
+ userdata['_groups'].append(group['name'])
return userdata
if username and password:
try:
- userdata = self._authenticate(username, password)
- if userdata:
- userattrs = dict()
- for d, v in userdata.get('userdata', {}).items():
- userattrs[d] = v
- if 'groups' in userdata:
- userattrs['groups'] = userdata['groups']
- if 'extras' in userdata:
- userattrs['extras'] = userdata['extras']
+ userattrs = self._authenticate(username, password)
authed = True
except Exception, e: # pylint: disable=broad-except
errmsg = "Authentication failed"
def auth_successful(self, trans, username, auth_type=None, userdata=None):
session = UserSession()
+ # merge attributes from login plugin and info plugin
if self.info:
- userattrs = self.info.get_user_attrs(username)
- if userdata:
- userdata.update(userattrs.get('userdata', {}))
- else:
- userdata = userattrs.get('userdata', {})
+ infoattrs = self.info.get_user_attrs(username)
+ else:
+ infoattrs = dict()
+
+ if userdata is None:
+ userdata = dict()
+
+ if '_groups' in infoattrs:
+ userdata['_groups'] = list(set(userdata.get('_groups', []) +
+ infoattrs['_groups']))
+ del infoattrs['_groups']
- # merge groups and extras from login plugin and info plugin
- userdata['groups'] = list(set(userdata.get('groups', []) +
- userattrs.get('groups', [])))
+ if '_extras' in infoattrs:
+ userdata['_extras'] = userdata.get('_extras', {})
+ userdata['_extras'].update(infoattrs['_extras'])
+ del infoattrs['_extras']
- userdata['extras'] = userdata.get('extras', {})
- userdata['extras'].update(userattrs.get('extras', {}))
+ userdata.update(infoattrs)
- self.debug("User %s attributes: %s" % (username, repr(userdata)))
+ self.debug("User %s attributes: %s" % (username, repr(userdata)))
if auth_type:
if userdata:
- userdata.update({'auth_type': auth_type})
+ userdata.update({'_auth_type': auth_type})
else:
- userdata = {'auth_type': auth_type}
+ userdata = {'_auth_type': auth_type}
# create session login including all the userdata just gathered
session.login(username, userdata)
self.debug(req)
if req is None:
return {}
- data = userdata['extras'].get('cla', [])
+ data = userdata['_extras'].get('cla', [])
return cla.CLAResponse.extractResponse(req, data)
def _display(self, request, userdata):
if not attrstat.attribute:
attrstat.attribute = ()
- attributes = dict()
- userattrs = us.get_user_attrs()
- for key, value in userattrs.get('userdata', {}).iteritems():
- if type(value) is str:
- attributes[key] = value
- if 'groups' in userattrs:
- attributes['group'] = userattrs['groups']
- for _, info in userattrs.get('extras', {}).iteritems():
- for key, value in info.items():
- attributes[key] = value
+ attributes = us.get_user_attrs()
for key in attributes:
values = attributes[key]
- if type(values) is not list:
+ if isinstance(values, dict):
+ continue
+ if not isinstance(values, list):
values = [values]
for value in values:
attr = lasso.Saml2Attribute()
projects / cascardo / ipsilon.git / commitdiff