authentik/passbook/providers/app_gw/models.py

"""passbook app_gw models"""
import string
from random import SystemRandom
from typing import Optional

from django.db import models
from django.http import HttpRequest
from django.utils.translation import gettext as _
from oidc_provider.models import Client

from passbook import __version__
from passbook.core.models import Provider
from passbook.lib.utils.template import render_to_string


class ApplicationGatewayProvider(Provider):
    """Protect applications that don't support any of the other
    Protocols by using a Reverse-Proxy."""

    name = models.TextField()
    internal_host = models.TextField()
    external_host = models.TextField()

    client = models.ForeignKey(Client, on_delete=models.CASCADE)

    form = "passbook.providers.app_gw.forms.ApplicationGatewayProviderForm"

    def html_setup_urls(self, request: HttpRequest) -> Optional[str]:
        """return template and context modal with URLs for authorize, token, openid-config, etc"""
        cookie_secret = "".join(
            SystemRandom().choice(string.ascii_uppercase + string.digits)
            for _ in range(50)
        )
        return render_to_string(
            "app_gw/setup_modal.html",
            {"provider": self, "cookie_secret": cookie_secret, "version": __version__},
        )

    def __str__(self):
        return self.name

    class Meta:

        verbose_name = _("Application Gateway Provider")
        verbose_name_plural = _("Application Gateway Providers")
initial implementation of reverse proxy, using django-revproxy from within a middleware add new config entry "primary_domain" which is used to set the cookie domain 2019-03-20 21:42:47 +00:00			`"""passbook app_gw models"""`
providers/appgw(major): rewrite to use oauth2_proxy 2019-11-11 17:13:46 +00:00			`import string`
			`from random import SystemRandom`
providers/saml: fix 500 when SAML Provider not assigned to application 2020-02-21 19:54:00 +00:00			`from typing import Optional`
add compiled regex to RewriteRule 2019-03-21 15:21:51 +00:00
initial implementation of reverse proxy, using django-revproxy from within a middleware add new config entry "primary_domain" which is used to set the cookie domain 2019-03-20 21:42:47 +00:00			`from django.db import models`
providers/saml: fix 500 when SAML Provider not assigned to application 2020-02-21 19:54:00 +00:00			`from django.http import HttpRequest`
initial implementation of reverse proxy, using django-revproxy from within a middleware add new config entry "primary_domain" which is used to set the cookie domain 2019-03-20 21:42:47 +00:00			`from django.utils.translation import gettext as _`
providers/appgw(major): rewrite to use oauth2_proxy 2019-11-11 17:13:46 +00:00			`from oidc_provider.models import Client`
initial implementation of reverse proxy, using django-revproxy from within a middleware add new config entry "primary_domain" which is used to set the cookie domain 2019-03-20 21:42:47 +00:00
providers/appgw(major): rewrite to use oauth2_proxy 2019-11-11 17:13:46 +00:00			`from passbook import __version__`
			`from passbook.core.models import Provider`
providers/saml: fix 500 when SAML Provider not assigned to application 2020-02-21 19:54:00 +00:00			`from passbook.lib.utils.template import render_to_string`
initial implementation of reverse proxy, using django-revproxy from within a middleware add new config entry "primary_domain" which is used to set the cookie domain 2019-03-20 21:42:47 +00:00

			`class ApplicationGatewayProvider(Provider):`
WIP Use Flows for Sources and Providers (#32) * core: start migrating to flows for authorisation * sources/oauth: start type-hinting * core: create default user * core: only show user delete button if an unenrollment flow exists * flows: Correctly check initial policies on flow with context * policies: add more verbosity to engine * sources/oauth: migrate to flows * sources/oauth: fix typing errors * flows: add more tests * sources/oauth: start implementing unittests * sources/ldap: add option to disable user sync, move connection init to model * sources/ldap: re-add default PropertyMappings * providers/saml: re-add default PropertyMappings * admin: fix missing stage count * stages/identification: fix sources not being shown * crypto: fix being unable to save with private key * crypto: re-add default self-signed keypair * policies: rewrite cache_key to prevent wrong cache * sources/saml: migrate to flows for auth and enrollment * stages/consent: add new stage * admin: fix PropertyMapping widget not rendering properly * core: provider.authorization_flow is mandatory * flows: add support for "autosubmit" attribute on form * flows: add InMemoryStage for dynamic stages * flows: optionally allow empty flows from FlowPlanner * providers/saml: update to authorization_flow * sources/: fix flow executor URL flows: fix pylint error * flows: wrap responses in JSON object to easily handle redirects * flow: dont cache plan's context * providers/oauth: rewrite OAuth2 Provider to use flows * providers/: update docstrings of models core: fix forms not passing help_text through safe * flows: fix HttpResponses not being converted to JSON * providers/oidc: rewrite to use flows * flows: fix linting 2020-06-07 14:35:08 +00:00			`"""Protect applications that don't support any of the other`
			`Protocols by using a Reverse-Proxy."""`
initial implementation of reverse proxy, using django-revproxy from within a middleware add new config entry "primary_domain" which is used to set the cookie domain 2019-03-20 21:42:47 +00:00
providers/appgw(major): rewrite to use oauth2_proxy 2019-11-11 17:13:46 +00:00			`name = models.TextField()`
providers/app_gw: separate host field into external_ and internal_ 2020-01-02 15:07:33 +00:00			`internal_host = models.TextField()`
			`external_host = models.TextField()`
initial implementation of reverse proxy, using django-revproxy from within a middleware add new config entry "primary_domain" which is used to set the cookie domain 2019-03-20 21:42:47 +00:00
providers/appgw(major): rewrite to use oauth2_proxy 2019-11-11 17:13:46 +00:00			`client = models.ForeignKey(Client, on_delete=models.CASCADE)`
initial implementation of reverse proxy, using django-revproxy from within a middleware add new config entry "primary_domain" which is used to set the cookie domain 2019-03-20 21:42:47 +00:00
all: implement black as code formatter 2019-12-31 11:51:16 +00:00			`form = "passbook.providers.app_gw.forms.ApplicationGatewayProviderForm"`
initial implementation of reverse proxy, using django-revproxy from within a middleware add new config entry "primary_domain" which is used to set the cookie domain 2019-03-20 21:42:47 +00:00
providers/saml: fix 500 when SAML Provider not assigned to application 2020-02-21 19:54:00 +00:00			`def html_setup_urls(self, request: HttpRequest) -> Optional[str]:`
providers/appgw(major): rewrite to use oauth2_proxy 2019-11-11 17:13:46 +00:00			`"""return template and context modal with URLs for authorize, token, openid-config, etc"""`
all: implement black as code formatter 2019-12-31 11:51:16 +00:00			`cookie_secret = "".join(`
			`SystemRandom().choice(string.ascii_uppercase + string.digits)`
			`for _ in range(50)`
			`)`
providers/saml: fix 500 when SAML Provider not assigned to application 2020-02-21 19:54:00 +00:00			`return render_to_string(`
all: implement black as code formatter 2019-12-31 11:51:16 +00:00			`"app_gw/setup_modal.html",`
			`{"provider": self, "cookie_secret": cookie_secret, "version": __version__},`
			`)`
initial implementation of reverse proxy, using django-revproxy from within a middleware add new config entry "primary_domain" which is used to set the cookie domain 2019-03-20 21:42:47 +00:00
			`def __str__(self):`
providers/* use name for __str__ 2020-07-05 21:00:40 +00:00			`return self.name`
initial implementation of reverse proxy, using django-revproxy from within a middleware add new config entry "primary_domain" which is used to set the cookie domain 2019-03-20 21:42:47 +00:00
			`class Meta:`

all: implement black as code formatter 2019-12-31 11:51:16 +00:00			`verbose_name = _("Application Gateway Provider")`
			`verbose_name_plural = _("Application Gateway Providers")`