2019-07-05 13:21:48 +00:00
|
|
|
"""oidc models"""
|
2020-02-21 19:54:00 +00:00
|
|
|
from typing import Optional
|
|
|
|
|
|
2019-07-05 13:21:48 +00:00
|
|
|
from django.db import models
|
2020-02-21 19:54:00 +00:00
|
|
|
from django.http import HttpRequest
|
2019-07-05 13:21:48 +00:00
|
|
|
from django.shortcuts import reverse
|
|
|
|
|
from django.utils.translation import gettext as _
|
|
|
|
|
from oidc_provider.models import Client
|
|
|
|
|
|
|
|
|
|
from passbook.core.models import Provider
|
2020-02-21 19:54:00 +00:00
|
|
|
from passbook.lib.utils.template import render_to_string
|
2019-07-05 13:21:48 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
class OpenIDProvider(Provider):
|
2020-06-07 14:35:08 +00:00
|
|
|
"""OpenID Connect Provider for applications that support OIDC."""
|
2019-12-31 11:51:16 +00:00
|
|
|
|
2019-07-05 13:21:48 +00:00
|
|
|
# Since oidc_provider doesn't currently support swappable models
|
|
|
|
|
# (https://github.com/juanifioren/django-oidc-provider/pull/305)
|
|
|
|
|
# we have a 1:1 relationship, and update oidc_client when the form is saved.
|
|
|
|
|
|
|
|
|
|
oidc_client = models.OneToOneField(Client, on_delete=models.CASCADE)
|
|
|
|
|
|
2019-12-31 11:51:16 +00:00
|
|
|
form = "passbook.providers.oidc.forms.OIDCProviderForm"
|
2019-07-05 13:21:48 +00:00
|
|
|
|
|
|
|
|
@property
|
|
|
|
|
def name(self):
|
|
|
|
|
"""Name property for UI"""
|
|
|
|
|
return self.oidc_client.name
|
|
|
|
|
|
|
|
|
|
def __str__(self):
|
2020-06-07 14:35:08 +00:00
|
|
|
return f"OpenID Connect Provider {self.oidc_client.__str__()}"
|
2019-07-05 13:21:48 +00:00
|
|
|
|
2020-02-21 19:54:00 +00:00
|
|
|
def html_setup_urls(self, request: HttpRequest) -> Optional[str]:
|
2019-07-05 13:21:48 +00:00
|
|
|
"""return template and context modal with URLs for authorize, token, openid-config, etc"""
|
2020-02-21 19:54:00 +00:00
|
|
|
return render_to_string(
|
2019-12-31 11:51:16 +00:00
|
|
|
"oidc_provider/setup_url_modal.html",
|
|
|
|
|
{
|
|
|
|
|
"provider": self,
|
|
|
|
|
"authorize": request.build_absolute_uri(
|
2020-06-07 14:35:08 +00:00
|
|
|
reverse("passbook_providers_oidc:authorize")
|
2019-12-31 11:51:16 +00:00
|
|
|
),
|
|
|
|
|
"token": request.build_absolute_uri(reverse("oidc_provider:token")),
|
|
|
|
|
"userinfo": request.build_absolute_uri(
|
|
|
|
|
reverse("oidc_provider:userinfo")
|
|
|
|
|
),
|
|
|
|
|
"provider_info": request.build_absolute_uri(
|
2020-06-07 14:35:08 +00:00
|
|
|
reverse("passbook_providers_oidc:provider-info")
|
2019-12-31 11:51:16 +00:00
|
|
|
),
|
|
|
|
|
},
|
|
|
|
|
)
|
2019-07-05 13:21:48 +00:00
|
|
|
|
|
|
|
|
class Meta:
|
|
|
|
|
|
2019-12-31 11:51:16 +00:00
|
|
|
verbose_name = _("OpenID Provider")
|
|
|
|
|
verbose_name_plural = _("OpenID Providers")
|
