/
slo_configurer.go
66 lines (57 loc) · 1.94 KB
/
slo_configurer.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
// Copyright 2023 Cisco Systems, Inc. and its affiliates
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
//
// SPDX-License-Identifier: Apache-2.0
package samlidp
import (
"github.com/cisco-open/go-lanai/pkg/security"
"github.com/cisco-open/go-lanai/pkg/security/logout"
samlctx "github.com/cisco-open/go-lanai/pkg/security/saml"
"github.com/cisco-open/go-lanai/pkg/web/matcher"
"github.com/cisco-open/go-lanai/pkg/web/middleware"
"net/http"
)
type SamlLogoutEndpointConfigurer struct {
samlConfigurer
}
func newSamlLogoutEndpointConfigurer(properties samlctx.SamlProperties,
samlClientStore samlctx.SamlClientStore) *SamlLogoutEndpointConfigurer {
return &SamlLogoutEndpointConfigurer{
samlConfigurer: samlConfigurer{
properties: properties,
samlClientStore: samlClientStore,
},
}
}
func (c *SamlLogoutEndpointConfigurer) Apply(feature security.Feature, ws security.WebSecurity) (err error) {
f := feature.(*Feature)
if len(f.logoutUrl) == 0 {
// not enabled
return
}
metaMw := c.metadataMiddleware(f)
mw := NewSamlSingleLogoutMiddleware(metaMw)
ws.
Add(middleware.NewBuilder("Saml Service Provider Refresh").
ApplyTo(matcher.RouteWithPattern(f.logoutUrl, http.MethodGet, http.MethodPost)).
Order(security.MWOrderSAMLMetadataRefresh).
Use(mw.RefreshMetadataHandler(mw.SLOCondition())),
)
logout.Configure(ws).
AddLogoutHandler(mw).
AddSuccessHandler(mw).
AddErrorHandler(mw).
AddEntryPoint(mw)
return nil
}