2020-08-19 09:32:44 +01:00
|
|
|
"""ProxyProvider API Views"""
|
2020-09-02 23:04:12 +01:00
|
|
|
from drf_yasg.utils import swagger_serializer_method
|
|
|
|
from rest_framework.fields import CharField, ListField, SerializerMethodField
|
|
|
|
from rest_framework.request import Request
|
|
|
|
from rest_framework.response import Response
|
|
|
|
from rest_framework.serializers import ModelSerializer, Serializer
|
2020-08-19 09:32:44 +01:00
|
|
|
from rest_framework.viewsets import ModelViewSet
|
|
|
|
|
2020-09-02 23:04:12 +01:00
|
|
|
from passbook.providers.oauth2.views.provider import ProviderInfoView
|
2020-08-19 09:32:44 +01:00
|
|
|
from passbook.providers.proxy.models import ProxyProvider
|
|
|
|
|
|
|
|
|
2020-09-02 23:04:12 +01:00
|
|
|
class OpenIDConnectConfigurationSerializer(Serializer):
|
|
|
|
"""rest_framework Serializer for OIDC Configuration"""
|
|
|
|
|
|
|
|
issuer = CharField()
|
|
|
|
authorization_endpoint = CharField()
|
|
|
|
token_endpoint = CharField()
|
|
|
|
userinfo_endpoint = CharField()
|
|
|
|
end_session_endpoint = CharField()
|
|
|
|
introspection_endpoint = CharField()
|
|
|
|
jwks_uri = CharField()
|
|
|
|
|
|
|
|
response_types_supported = ListField(child=CharField())
|
|
|
|
id_token_signing_alg_values_supported = ListField(child=CharField())
|
|
|
|
subject_types_supported = ListField(child=CharField())
|
|
|
|
token_endpoint_auth_methods_supported = ListField(child=CharField())
|
|
|
|
|
|
|
|
def create(self, request: Request) -> Response:
|
|
|
|
raise NotImplementedError
|
|
|
|
|
|
|
|
def update(self, request: Request) -> Response:
|
|
|
|
raise NotImplementedError
|
|
|
|
|
|
|
|
|
2020-08-19 09:32:44 +01:00
|
|
|
class ProxyProviderSerializer(ModelSerializer):
|
|
|
|
"""ProxyProvider Serializer"""
|
|
|
|
|
|
|
|
def create(self, validated_data):
|
|
|
|
instance: ProxyProvider = super().create(validated_data)
|
|
|
|
instance.set_oauth_defaults()
|
|
|
|
instance.save()
|
|
|
|
return instance
|
|
|
|
|
|
|
|
def update(self, instance: ProxyProvider, validated_data):
|
|
|
|
instance.set_oauth_defaults()
|
|
|
|
return super().update(instance, validated_data)
|
|
|
|
|
|
|
|
class Meta:
|
|
|
|
|
|
|
|
model = ProxyProvider
|
2020-09-02 23:04:12 +01:00
|
|
|
fields = [
|
|
|
|
"pk",
|
|
|
|
"name",
|
|
|
|
"internal_host",
|
|
|
|
"external_host",
|
2020-09-23 11:20:09 +01:00
|
|
|
"internal_host_ssl_validation",
|
2020-09-02 23:04:12 +01:00
|
|
|
"certificate",
|
2020-09-19 10:31:48 +01:00
|
|
|
"skip_path_regex",
|
2020-09-30 10:15:17 +01:00
|
|
|
"basic_auth_enabled",
|
|
|
|
"basic_auth_password_attribute",
|
|
|
|
"basic_auth_user_attribute",
|
2020-09-02 23:04:12 +01:00
|
|
|
]
|
2020-08-19 09:32:44 +01:00
|
|
|
|
|
|
|
|
|
|
|
class ProxyProviderViewSet(ModelViewSet):
|
|
|
|
"""ProxyProvider Viewset"""
|
|
|
|
|
|
|
|
queryset = ProxyProvider.objects.all()
|
|
|
|
serializer_class = ProxyProviderSerializer
|
2020-09-02 23:04:12 +01:00
|
|
|
|
|
|
|
|
|
|
|
class ProxyOutpostConfigSerializer(ModelSerializer):
|
|
|
|
"""ProxyProvider Serializer"""
|
|
|
|
|
|
|
|
oidc_configuration = SerializerMethodField()
|
|
|
|
|
|
|
|
def create(self, validated_data):
|
|
|
|
instance: ProxyProvider = super().create(validated_data)
|
|
|
|
instance.set_oauth_defaults()
|
|
|
|
instance.save()
|
|
|
|
return instance
|
|
|
|
|
|
|
|
def update(self, instance: ProxyProvider, validated_data):
|
|
|
|
instance.set_oauth_defaults()
|
|
|
|
return super().update(instance, validated_data)
|
|
|
|
|
|
|
|
class Meta:
|
|
|
|
|
|
|
|
model = ProxyProvider
|
|
|
|
fields = [
|
|
|
|
"pk",
|
|
|
|
"name",
|
|
|
|
"internal_host",
|
|
|
|
"external_host",
|
2020-09-23 11:20:09 +01:00
|
|
|
"internal_host_ssl_validation",
|
2020-09-02 23:04:12 +01:00
|
|
|
"client_id",
|
|
|
|
"client_secret",
|
|
|
|
"oidc_configuration",
|
|
|
|
"cookie_secret",
|
|
|
|
"certificate",
|
2020-09-19 10:31:48 +01:00
|
|
|
"skip_path_regex",
|
2020-09-30 10:15:17 +01:00
|
|
|
"basic_auth_enabled",
|
|
|
|
"basic_auth_password_attribute",
|
|
|
|
"basic_auth_user_attribute",
|
2020-09-02 23:04:12 +01:00
|
|
|
]
|
|
|
|
|
|
|
|
@swagger_serializer_method(serializer_or_field=OpenIDConnectConfigurationSerializer)
|
|
|
|
def get_oidc_configuration(self, obj: ProxyProvider):
|
|
|
|
"""Embed OpenID Connect provider information"""
|
|
|
|
# pylint: disable=protected-access
|
|
|
|
return ProviderInfoView(request=self.context["request"]._request).get_info(obj)
|
|
|
|
|
|
|
|
|
|
|
|
class OutpostConfigViewSet(ModelViewSet):
|
|
|
|
"""ProxyProvider Viewset"""
|
|
|
|
|
|
|
|
queryset = ProxyProvider.objects.filter(application__isnull=False)
|
|
|
|
serializer_class = ProxyOutpostConfigSerializer
|