2021-04-19 23:30:27 +01:00
|
|
|
package ldap
|
|
|
|
|
|
|
|
import (
|
2021-04-26 18:51:24 +01:00
|
|
|
"fmt"
|
2021-07-14 08:17:01 +01:00
|
|
|
"math/big"
|
2021-07-14 11:59:40 +01:00
|
|
|
"strconv"
|
|
|
|
"strings"
|
2021-04-26 18:51:24 +01:00
|
|
|
|
2021-06-29 15:21:00 +01:00
|
|
|
"goauthentik.io/api"
|
2021-04-19 23:30:27 +01:00
|
|
|
)
|
|
|
|
|
2021-05-16 20:07:01 +01:00
|
|
|
func (pi *ProviderInstance) GroupsForUser(user api.User) []string {
|
2021-04-26 18:51:24 +01:00
|
|
|
groups := make([]string, len(user.Groups))
|
2021-08-10 20:41:36 +01:00
|
|
|
for i, group := range user.GroupsObj {
|
2021-07-14 15:54:55 +01:00
|
|
|
groups[i] = pi.GetGroupDN(group.Name)
|
2021-04-26 18:51:24 +01:00
|
|
|
}
|
|
|
|
return groups
|
|
|
|
}
|
|
|
|
|
2021-07-13 17:24:18 +01:00
|
|
|
func (pi *ProviderInstance) UsersForGroup(group api.Group) []string {
|
|
|
|
users := make([]string, len(group.UsersObj))
|
|
|
|
for i, user := range group.UsersObj {
|
|
|
|
users[i] = pi.GetUserDN(user.Username)
|
|
|
|
}
|
|
|
|
return users
|
|
|
|
}
|
|
|
|
|
|
|
|
func (pi *ProviderInstance) GetUserDN(user string) string {
|
|
|
|
return fmt.Sprintf("cn=%s,%s", user, pi.UserDN)
|
|
|
|
}
|
|
|
|
|
2021-07-14 15:54:55 +01:00
|
|
|
func (pi *ProviderInstance) GetGroupDN(group string) string {
|
|
|
|
return fmt.Sprintf("cn=%s,%s", group, pi.GroupDN)
|
2021-04-26 18:51:24 +01:00
|
|
|
}
|
2021-07-14 08:17:01 +01:00
|
|
|
|
2021-08-21 16:53:09 +01:00
|
|
|
func (pi *ProviderInstance) GetVirtualGroupDN(group string) string {
|
|
|
|
return fmt.Sprintf("cn=%s,%s", group, pi.VirtualGroupDN)
|
|
|
|
}
|
|
|
|
|
2021-07-14 08:17:01 +01:00
|
|
|
func (pi *ProviderInstance) GetUidNumber(user api.User) string {
|
2021-10-10 22:43:36 +01:00
|
|
|
uidNumber, ok := user.GetAttributes()["uidNumber"].(string)
|
|
|
|
|
|
|
|
if ok {
|
|
|
|
return uidNumber
|
|
|
|
}
|
|
|
|
|
2021-07-14 19:37:27 +01:00
|
|
|
return strconv.FormatInt(int64(pi.uidStartNumber+user.Pk), 10)
|
2021-07-14 08:17:01 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
func (pi *ProviderInstance) GetGidNumber(group api.Group) string {
|
2021-10-10 22:43:36 +01:00
|
|
|
gidNumber, ok := group.GetAttributes()["gidNumber"].(string)
|
|
|
|
|
|
|
|
if ok {
|
|
|
|
return gidNumber
|
|
|
|
}
|
|
|
|
|
2021-07-14 19:37:27 +01:00
|
|
|
return strconv.FormatInt(int64(pi.gidStartNumber+pi.GetRIDForGroup(group.Pk)), 10)
|
2021-07-14 08:17:01 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
func (pi *ProviderInstance) GetRIDForGroup(uid string) int32 {
|
2021-07-14 11:59:40 +01:00
|
|
|
var i big.Int
|
|
|
|
i.SetString(strings.Replace(uid, "-", "", -1), 16)
|
2021-07-14 08:17:01 +01:00
|
|
|
intStr := i.String()
|
|
|
|
|
|
|
|
// Get the last 5 characters/digits of the int-version of the UUID
|
|
|
|
gid, err := strconv.Atoi(intStr[len(intStr)-5:])
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
panic(err)
|
|
|
|
}
|
|
|
|
|
|
|
|
return int32(gid)
|
2021-04-26 18:51:24 +01:00
|
|
|
}
|