Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[backend] Implement SSO based on HTTP headers of the reverse proxy (#5107) #5251

Merged
merged 2 commits into from
Jan 3, 2024
Merged

[backend] Implement SSO based on HTTP headers of the reverse proxy (#5107) #5251

merged 2 commits into from
Jan 3, 2024

Conversation

richard-julien
Copy link
Member

@richard-julien richard-julien commented Dec 18, 2023
edited

See #5107.

  • Login: add a provider "header" with configuration to map headers
    If the config is available and at least header_email contains a valid email, the user is auto logged by the system
    "header": {
      "strategy": "HeaderStrategy",
      "config": {
        "disabled": false,
        "header_email": "auth_email_address",
        "header_name": "auth_name",
        "header_firstname": "auth_firstname",
        "header_lastname": "auth_lastname",
        "logout_uri": "https://www.filigran.io",
        "groups_management": {
          "groups_header": "auth_groups",
          "groups_splitter": ",",
          "groups_mapping": ["admin:admin", "root:root"]
        },
        "organizations_management": {
          "organizations_header": "auth_institution",
          "organizations_splitter": ",",
          "organizations_mapping": ["test:test"]
        }
      }
    }
  • Logout: thats still an open question. For now a logout will auto login back directly

@richard-julien richard-julien added the filigran team use to identify PR from the Filigran team label Dec 18, 2023
@richard-julien richard-julien self-assigned this Dec 18, 2023
@codecov Codecov
Copy link

codecov bot commented Dec 18, 2023
edited

Codecov Report

Attention: 87 lines in your changes are missing coverage. Please review.

Comparison is base (e1c36f0) 65.66% compared to head (6f5304d) 65.59%.
Report is 1 commits behind head on master.

Files Patch % Lines
...i-platform/opencti-graphql/src/config/providers.js 10.00% 54 Missing ⚠️
...-platform/opencti-graphql/src/http/httpPlatform.js 0.00% 23 Missing ⚠️
...pencti-platform/opencti-graphql/src/domain/user.js 9.09% 10 Missing ⚠️
Additional details and impacted files 
@@            Coverage Diff             @@
##           master    #5251      +/-   ##
==========================================
- Coverage   65.66%   65.59%   -0.08%     
==========================================
  Files         475      475              
  Lines       59277    59356      +79     
  Branches     4330     4332       +2     
==========================================
+ Hits        38926    38933       +7     
- Misses      20351    20423      +72

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@helene-nguyen helene-nguyen self-requested a review January 3, 2024 09:06
@SamuelHassine SamuelHassine merged commit 56c3530 into master Jan 3, 2024
8 checks passed
@SamuelHassine SamuelHassine deleted the issue/5107 branch January 3, 2024 15:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@helene-nguyen helene-nguyen Awaiting requested review from helene-nguyen

Assignees

@richard-julien richard-julien

Labels
filigran team use to identify PR from the Filigran team
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@richard-julien @SamuelHassine