2014-05-05 11:32:47 +02:00
|
|
|
// Copyright 2014 The Gogs Authors. All rights reserved.
|
|
|
|
|
// Use of this source code is governed by a MIT-style
|
|
|
|
|
// license that can be found in the LICENSE file.
|
|
|
|
|
|
2014-05-03 04:48:14 +02:00
|
|
|
package admin
|
|
|
|
|
|
|
|
|
|
import (
|
2014-07-26 06:24:27 +02:00
|
|
|
"github.com/Unknwon/com"
|
2014-05-11 12:10:37 +02:00
|
|
|
"github.com/go-xorm/core"
|
2014-05-11 16:37:31 +02:00
|
|
|
|
2014-05-03 04:48:14 +02:00
|
|
|
"github.com/gogits/gogs/models"
|
|
|
|
|
"github.com/gogits/gogs/modules/auth"
|
|
|
|
|
"github.com/gogits/gogs/modules/auth/ldap"
|
2014-05-05 10:40:25 +02:00
|
|
|
"github.com/gogits/gogs/modules/base"
|
2014-05-05 11:32:47 +02:00
|
|
|
"github.com/gogits/gogs/modules/log"
|
2014-05-03 04:48:14 +02:00
|
|
|
"github.com/gogits/gogs/modules/middleware"
|
2014-09-14 19:35:22 +02:00
|
|
|
"github.com/gogits/gogs/modules/setting"
|
2014-05-03 04:48:14 +02:00
|
|
|
)
|
|
|
|
|
|
2014-06-22 19:14:03 +02:00
|
|
|
const (
|
2014-08-29 14:50:43 +02:00
|
|
|
AUTHS base.TplName = "admin/auth/list"
|
2014-06-22 19:14:03 +02:00
|
|
|
AUTH_NEW base.TplName = "admin/auth/new"
|
|
|
|
|
AUTH_EDIT base.TplName = "admin/auth/edit"
|
|
|
|
|
)
|
|
|
|
|
|
2014-08-29 14:50:43 +02:00
|
|
|
func Authentications(ctx *middleware.Context) {
|
|
|
|
|
ctx.Data["Title"] = ctx.Tr("admin.authentication")
|
|
|
|
|
ctx.Data["PageIsAdmin"] = true
|
|
|
|
|
ctx.Data["PageIsAdminAuthentications"] = true
|
|
|
|
|
|
|
|
|
|
var err error
|
|
|
|
|
ctx.Data["Sources"], err = models.GetAuths()
|
|
|
|
|
if err != nil {
|
|
|
|
|
ctx.Handle(500, "GetAuths", err)
|
|
|
|
|
return
|
|
|
|
|
}
|
2015-09-10 21:45:03 +02:00
|
|
|
|
|
|
|
|
ctx.Data["Total"] = models.CountLoginSources()
|
2014-08-29 14:50:43 +02:00
|
|
|
ctx.HTML(200, AUTHS)
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-10 23:11:41 +02:00
|
|
|
type AuthSource struct {
|
|
|
|
|
Name string
|
|
|
|
|
Type models.LoginType
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var authSources = []AuthSource{
|
|
|
|
|
{models.LoginNames[models.LDAP], models.LDAP},
|
|
|
|
|
{models.LoginNames[models.DLDAP], models.DLDAP},
|
|
|
|
|
{models.LoginNames[models.SMTP], models.SMTP},
|
|
|
|
|
{models.LoginNames[models.PAM], models.PAM},
|
|
|
|
|
}
|
|
|
|
|
|
2014-05-03 04:48:14 +02:00
|
|
|
func NewAuthSource(ctx *middleware.Context) {
|
2014-08-29 14:50:43 +02:00
|
|
|
ctx.Data["Title"] = ctx.Tr("admin.auths.new")
|
|
|
|
|
ctx.Data["PageIsAdmin"] = true
|
|
|
|
|
ctx.Data["PageIsAdminAuthentications"] = true
|
2015-09-10 23:11:41 +02:00
|
|
|
|
|
|
|
|
ctx.Data["type"] = models.LDAP
|
|
|
|
|
ctx.Data["CurTypeName"] = models.LoginNames[models.LDAP]
|
|
|
|
|
ctx.Data["smtp_auth"] = "PLAIN"
|
|
|
|
|
ctx.Data["is_active"] = true
|
|
|
|
|
ctx.Data["AuthSources"] = authSources
|
2014-05-11 12:10:37 +02:00
|
|
|
ctx.Data["SMTPAuths"] = models.SMTPAuths
|
2014-06-22 19:14:03 +02:00
|
|
|
ctx.HTML(200, AUTH_NEW)
|
2014-05-03 04:48:14 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func NewAuthSourcePost(ctx *middleware.Context, form auth.AuthenticationForm) {
|
2014-08-29 14:50:43 +02:00
|
|
|
ctx.Data["Title"] = ctx.Tr("admin.auths.new")
|
|
|
|
|
ctx.Data["PageIsAdmin"] = true
|
|
|
|
|
ctx.Data["PageIsAdminAuthentications"] = true
|
2015-09-10 23:11:41 +02:00
|
|
|
|
|
|
|
|
ctx.Data["CurTypeName"] = models.LoginNames[models.LoginType(form.Type)]
|
|
|
|
|
ctx.Data["AuthSources"] = authSources
|
2014-05-11 12:10:37 +02:00
|
|
|
ctx.Data["SMTPAuths"] = models.SMTPAuths
|
2014-05-03 04:48:14 +02:00
|
|
|
|
|
|
|
|
if ctx.HasError() {
|
2014-06-22 19:14:03 +02:00
|
|
|
ctx.HTML(200, AUTH_NEW)
|
2014-05-03 04:48:14 +02:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2014-05-11 12:10:37 +02:00
|
|
|
var u core.Conversion
|
2014-06-08 23:53:53 +02:00
|
|
|
switch models.LoginType(form.Type) {
|
2015-09-10 23:11:41 +02:00
|
|
|
case models.LDAP, models.DLDAP:
|
2014-05-11 12:10:37 +02:00
|
|
|
u = &models.LDAPConfig{
|
|
|
|
|
Ldapsource: ldap.Ldapsource{
|
2015-08-29 09:45:58 +02:00
|
|
|
Name: form.Name,
|
|
|
|
|
Host: form.Host,
|
|
|
|
|
Port: form.Port,
|
|
|
|
|
UseSSL: form.UseSSL,
|
|
|
|
|
BindDN: form.BindDN,
|
2015-09-05 05:39:23 +02:00
|
|
|
UserDN: form.UserDN,
|
2015-08-29 09:45:58 +02:00
|
|
|
BindPassword: form.BindPassword,
|
|
|
|
|
UserBase: form.UserBase,
|
|
|
|
|
AttributeName: form.AttributeName,
|
|
|
|
|
AttributeSurname: form.AttributeSurname,
|
|
|
|
|
AttributeMail: form.AttributeMail,
|
2015-09-05 05:39:23 +02:00
|
|
|
Filter: form.Filter,
|
|
|
|
|
AdminFilter: form.AdminFilter,
|
2015-08-29 09:45:58 +02:00
|
|
|
Enabled: true,
|
2014-05-11 12:10:37 +02:00
|
|
|
},
|
|
|
|
|
}
|
2014-06-08 23:53:53 +02:00
|
|
|
case models.SMTP:
|
2014-05-11 12:10:37 +02:00
|
|
|
u = &models.SMTPConfig{
|
2015-08-29 09:45:58 +02:00
|
|
|
Auth: form.SMTPAuth,
|
|
|
|
|
Host: form.SMTPHost,
|
|
|
|
|
Port: form.SMTPPort,
|
|
|
|
|
TLS: form.TLS,
|
|
|
|
|
SkipVerify: form.SkipVerify,
|
2014-05-11 12:10:37 +02:00
|
|
|
}
|
2015-04-23 13:58:57 +02:00
|
|
|
case models.PAM:
|
|
|
|
|
u = &models.PAMConfig{
|
|
|
|
|
ServiceName: form.PAMServiceName,
|
|
|
|
|
}
|
2014-05-11 13:43:57 +02:00
|
|
|
default:
|
|
|
|
|
ctx.Error(400)
|
|
|
|
|
return
|
2014-05-11 12:10:37 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var source = &models.LoginSource{
|
2014-06-08 23:53:53 +02:00
|
|
|
Type: models.LoginType(form.Type),
|
2015-03-25 00:04:16 +01:00
|
|
|
Name: form.Name,
|
2015-09-10 23:11:41 +02:00
|
|
|
IsActived: form.IsActive,
|
2014-05-11 14:18:57 +02:00
|
|
|
AllowAutoRegister: form.AllowAutoRegister,
|
2014-05-11 12:10:37 +02:00
|
|
|
Cfg: u,
|
2014-05-03 04:48:14 +02:00
|
|
|
}
|
|
|
|
|
|
2014-06-08 23:53:53 +02:00
|
|
|
if err := models.CreateSource(source); err != nil {
|
2014-08-29 14:50:43 +02:00
|
|
|
ctx.Handle(500, "CreateSource", err)
|
2014-05-03 04:48:14 +02:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2015-03-25 00:04:16 +01:00
|
|
|
log.Trace("Authentication created by admin(%s): %s", ctx.User.Name, form.Name)
|
2014-09-20 02:11:34 +02:00
|
|
|
ctx.Redirect(setting.AppSubUrl + "/admin/auths")
|
2014-05-03 04:48:14 +02:00
|
|
|
}
|
|
|
|
|
|
2014-07-26 06:24:27 +02:00
|
|
|
func EditAuthSource(ctx *middleware.Context) {
|
2014-08-29 14:50:43 +02:00
|
|
|
ctx.Data["Title"] = ctx.Tr("admin.auths.edit")
|
|
|
|
|
ctx.Data["PageIsAdmin"] = true
|
|
|
|
|
ctx.Data["PageIsAdminAuthentications"] = true
|
2015-09-10 23:11:41 +02:00
|
|
|
// ctx.Data["LoginTypes"] = models.LoginTypes
|
2014-05-11 12:10:37 +02:00
|
|
|
ctx.Data["SMTPAuths"] = models.SMTPAuths
|
|
|
|
|
|
2014-08-29 14:50:43 +02:00
|
|
|
id := com.StrTo(ctx.Params(":authid")).MustInt64()
|
|
|
|
|
if id == 0 {
|
|
|
|
|
ctx.Handle(404, "EditAuthSource", nil)
|
2014-05-05 10:40:25 +02:00
|
|
|
return
|
|
|
|
|
}
|
2015-08-29 09:45:58 +02:00
|
|
|
u, err := models.GetLoginSourceByID(id)
|
2014-05-05 10:40:25 +02:00
|
|
|
if err != nil {
|
2014-08-29 14:50:43 +02:00
|
|
|
ctx.Handle(500, "GetLoginSourceById", err)
|
2014-05-05 10:40:25 +02:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
ctx.Data["Source"] = u
|
2014-06-22 19:14:03 +02:00
|
|
|
ctx.HTML(200, AUTH_EDIT)
|
2014-05-03 04:48:14 +02:00
|
|
|
}
|
|
|
|
|
|
2014-05-05 10:40:25 +02:00
|
|
|
func EditAuthSourcePost(ctx *middleware.Context, form auth.AuthenticationForm) {
|
2014-08-29 14:50:43 +02:00
|
|
|
ctx.Data["Title"] = ctx.Tr("admin.auths.edit")
|
|
|
|
|
ctx.Data["PageIsAdmin"] = true
|
|
|
|
|
ctx.Data["PageIsAdminAuthentications"] = true
|
2014-05-05 10:40:25 +02:00
|
|
|
ctx.Data["PageIsAuths"] = true
|
2015-09-10 23:11:41 +02:00
|
|
|
// ctx.Data["LoginTypes"] = models.LoginTypes
|
2014-05-11 12:10:37 +02:00
|
|
|
ctx.Data["SMTPAuths"] = models.SMTPAuths
|
2014-05-05 10:40:25 +02:00
|
|
|
|
|
|
|
|
if ctx.HasError() {
|
2014-06-22 19:14:03 +02:00
|
|
|
ctx.HTML(200, AUTH_EDIT)
|
2014-05-05 10:40:25 +02:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2014-05-11 12:10:37 +02:00
|
|
|
var config core.Conversion
|
2014-06-08 23:53:53 +02:00
|
|
|
switch models.LoginType(form.Type) {
|
|
|
|
|
case models.LDAP:
|
2015-09-10 21:45:03 +02:00
|
|
|
fallthrough
|
2015-09-05 05:39:23 +02:00
|
|
|
case models.DLDAP:
|
2014-05-11 12:10:37 +02:00
|
|
|
config = &models.LDAPConfig{
|
2014-05-05 10:40:25 +02:00
|
|
|
Ldapsource: ldap.Ldapsource{
|
2015-08-29 09:45:58 +02:00
|
|
|
Name: form.Name,
|
|
|
|
|
Host: form.Host,
|
|
|
|
|
Port: form.Port,
|
|
|
|
|
UseSSL: form.UseSSL,
|
|
|
|
|
BindDN: form.BindDN,
|
2015-09-05 05:39:23 +02:00
|
|
|
UserDN: form.UserDN,
|
2015-08-29 09:45:58 +02:00
|
|
|
BindPassword: form.BindPassword,
|
|
|
|
|
UserBase: form.UserBase,
|
|
|
|
|
AttributeName: form.AttributeName,
|
|
|
|
|
AttributeSurname: form.AttributeSurname,
|
|
|
|
|
AttributeMail: form.AttributeMail,
|
|
|
|
|
Filter: form.Filter,
|
|
|
|
|
AdminFilter: form.AdminFilter,
|
|
|
|
|
Enabled: true,
|
2014-05-05 10:40:25 +02:00
|
|
|
},
|
2014-05-11 12:10:37 +02:00
|
|
|
}
|
2014-06-08 23:53:53 +02:00
|
|
|
case models.SMTP:
|
2014-05-11 12:10:37 +02:00
|
|
|
config = &models.SMTPConfig{
|
2015-08-29 09:45:58 +02:00
|
|
|
Auth: form.SMTPAuth,
|
|
|
|
|
Host: form.SMTPHost,
|
|
|
|
|
Port: form.SMTPPort,
|
|
|
|
|
TLS: form.TLS,
|
|
|
|
|
SkipVerify: form.SkipVerify,
|
2014-05-11 12:10:37 +02:00
|
|
|
}
|
2015-04-23 13:58:57 +02:00
|
|
|
case models.PAM:
|
|
|
|
|
config = &models.PAMConfig{
|
|
|
|
|
ServiceName: form.PAMServiceName,
|
|
|
|
|
}
|
2014-05-11 16:37:31 +02:00
|
|
|
default:
|
|
|
|
|
ctx.Error(400)
|
|
|
|
|
return
|
2014-05-11 12:10:37 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
u := models.LoginSource{
|
2015-08-29 09:45:58 +02:00
|
|
|
ID: form.ID,
|
2015-03-25 00:04:16 +01:00
|
|
|
Name: form.Name,
|
2015-09-10 23:11:41 +02:00
|
|
|
IsActived: form.IsActive,
|
2014-06-08 23:53:53 +02:00
|
|
|
Type: models.LoginType(form.Type),
|
2014-05-11 14:18:57 +02:00
|
|
|
AllowAutoRegister: form.AllowAutoRegister,
|
2014-05-11 12:10:37 +02:00
|
|
|
Cfg: config,
|
2014-05-05 10:40:25 +02:00
|
|
|
}
|
|
|
|
|
|
2014-05-11 12:10:37 +02:00
|
|
|
if err := models.UpdateSource(&u); err != nil {
|
2014-08-29 14:50:43 +02:00
|
|
|
ctx.Handle(500, "UpdateSource", err)
|
2014-05-05 10:40:25 +02:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2015-03-25 00:04:16 +01:00
|
|
|
log.Trace("Authentication changed by admin(%s): %s", ctx.User.Name, form.Name)
|
2014-08-29 14:50:43 +02:00
|
|
|
ctx.Flash.Success(ctx.Tr("admin.auths.update_success"))
|
2014-09-20 02:11:34 +02:00
|
|
|
ctx.Redirect(setting.AppSubUrl + "/admin/auths/" + ctx.Params(":authid"))
|
2014-05-03 04:48:14 +02:00
|
|
|
}
|
|
|
|
|
|
2014-07-26 06:24:27 +02:00
|
|
|
func DeleteAuthSource(ctx *middleware.Context) {
|
2014-08-29 14:50:43 +02:00
|
|
|
id := com.StrTo(ctx.Params(":authid")).MustInt64()
|
|
|
|
|
if id == 0 {
|
|
|
|
|
ctx.Handle(404, "DeleteAuthSource", nil)
|
2014-05-05 10:40:25 +02:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2015-08-29 09:45:58 +02:00
|
|
|
a, err := models.GetLoginSourceByID(id)
|
2014-05-05 10:40:25 +02:00
|
|
|
if err != nil {
|
2014-08-29 14:50:43 +02:00
|
|
|
ctx.Handle(500, "GetLoginSourceById", err)
|
2014-05-05 10:40:25 +02:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if err = models.DelLoginSource(a); err != nil {
|
|
|
|
|
switch err {
|
|
|
|
|
case models.ErrAuthenticationUserUsed:
|
2014-08-29 14:50:43 +02:00
|
|
|
ctx.Flash.Error("form.still_own_user")
|
2014-09-20 02:11:34 +02:00
|
|
|
ctx.Redirect(setting.AppSubUrl + "/admin/auths/" + ctx.Params(":authid"))
|
2014-05-05 10:40:25 +02:00
|
|
|
default:
|
2014-08-29 14:50:43 +02:00
|
|
|
ctx.Handle(500, "DelLoginSource", err)
|
2014-05-05 10:40:25 +02:00
|
|
|
}
|
|
|
|
|
return
|
|
|
|
|
}
|
2014-08-29 14:50:43 +02:00
|
|
|
log.Trace("Authentication deleted by admin(%s): %s", ctx.User.Name, a.Name)
|
2014-09-20 02:11:34 +02:00
|
|
|
ctx.Redirect(setting.AppSubUrl + "/admin/auths")
|
2014-05-03 04:48:14 +02:00
|
|
|
}
|
