mirror
/
dex
mirror of https://github.com/dexidp/dex.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Add email suffix support 

Signed-off-by: Vincent van Dam <vincentd@erg.verweg.com>
pull/3844/head
Vincent van Dam 1 year ago
parent
b211f55383
commit
3f304955cb
2 changed files with 13 additions and 3 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 12
      connector/openshift/openshift.go
  2. 4
      connector/openshift/openshift_test.go

12
connector/openshift/openshift.go
Unescape View File

@ -31,6 +31,9 @@ type Config struct {
Groups []string `json:"groups"`
InsecureCA bool `json:"insecureCA"`
RootCA string `json:"rootCA"`
// If this is set, the email claim will have this domain appended.
// This should not include the @ character.
EmailSuffix string `json:"emailSuffix"`
}
var (
@ -50,6 +53,7 @@ type openshiftConnector struct {
insecureCA bool
rootCA string
groups []string
emailSuffix string
}
type user struct {
@ -101,6 +105,7 @@ func (c *Config) OpenWithHTTPClient(id string, logger *slog.Logger,
rootCA: c.RootCA,
groups: c.Groups,
httpClient: httpClient,
emailSuffix: c.EmailSuffix,
}
var metadata struct {
@ -211,11 +216,16 @@ func (c *openshiftConnector) identity(ctx context.Context, s connector.Scopes,
}
}
email := user.Name
if c.emailSuffix != "" {
email = email + "@" + c.emailSuffix
}
identity = connector.Identity{
UserID: user.UID,
Username: user.Name,
PreferredUsername: user.Name,
Email: user.Name,
Email: email,
Groups: user.Groups,
}

4
connector/openshift/openshift_test.go
Unescape View File

@ -170,7 +170,7 @@ func TestCallbackIdentity(t *testing.T) {
expectNil(t, err)
oc := openshiftConnector{apiURL: s.URL, httpClient: h, oauth2Config: &oauth2.Config{
oc := openshiftConnector{apiURL: s.URL, httpClient: h, emailSuffix: "test.example.com", oauth2Config: &oauth2.Config{
Endpoint: oauth2.Endpoint{
AuthURL: fmt.Sprintf("%s/oauth/authorize", s.URL),
TokenURL: fmt.Sprintf("%s/oauth/token", s.URL),
@ -182,7 +182,7 @@ func TestCallbackIdentity(t *testing.T) {
expectEquals(t, identity.UserID, "12345")
expectEquals(t, identity.Username, "jdoe")
expectEquals(t, identity.PreferredUsername, "jdoe")
expectEquals(t, identity.Email, "jdoe")
expectEquals(t, identity.Email, "jdoe@test.example.com")
expectEquals(t, len(identity.Groups), 1)
expectEquals(t, identity.Groups[0], "users")
}

Write Preview
Loading…
Cancel
Save