-
Notifications
You must be signed in to change notification settings - Fork 0
/
admin.go
112 lines (85 loc) 路 2.86 KB
/
admin.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
package common_keycloak
import (
"context"
"log"
"github.com/Nerzal/gocloak/v7"
"github.com/dgrijalva/jwt-go/v4"
)
type AdminGuy struct {
Token string
Client gocloak.GoCloak
}
func NewAdmin(username string, password string, client gocloak.GoCloak) (*AdminGuy, error) {
token, err := client.LoginAdmin(context.Background(), username, password, "master")
if err != nil {
return nil, err
}
return &AdminGuy{Token: token.AccessToken, Client: client}, nil
}
func (adminGuy *AdminGuy) CreateUser(user gocloak.User) (string, error) {
ID, err := adminGuy.Client.CreateUser(context.Background(), adminGuy.Token, "OWLY", user)
return ID, err
}
func (adminGuy *AdminGuy) SetUserPassword(userId string, password string, tempo bool) error {
return adminGuy.Client.SetPassword(context.Background(), adminGuy.Token, userId, "OWLY", password, tempo)
}
func (adminGuy *AdminGuy) SearchUserByUsername(username string) ([]*gocloak.User, error) {
searchParams := gocloak.GetUsersParams{
Search: &username,
}
return adminGuy.Client.GetUsers(context.Background(), adminGuy.Token, "OWLY", searchParams)
}
func (adminGuy *AdminGuy) GetClientSecret(clientName string) (string, error) {
var cli_id string
res1, err := adminGuy.GetAllClients()
if err != nil {
return "", err
}
for _, cli := range res1 {
if clientID := cli.ClientID; *clientID == clientName {
cli_id = *cli.ID
}
}
res, err := adminGuy.Client.GetClientSecret(context.Background(), adminGuy.Token, "OWLY", cli_id)
if err != nil {
log.Printf("Error @ GetClientSecret: %v", err)
}
return *res.Value, err
}
func (adminGuy *AdminGuy) GetAllClients() ([]*gocloak.Client, error) {
bill := true
return adminGuy.Client.GetClients(context.Background(), adminGuy.Token, "OWLY", gocloak.GetClientsParams{ViewableOnly: &bill})
}
func (adminGuy *AdminGuy) GetClientId(clientName string) (string, error) {
var cli_id string
res1, err := adminGuy.GetAllClients()
if err != nil {
return "", err
}
for _, cli := range res1 {
if clientID := cli.ClientID; *clientID == clientName {
cli_id = *cli.ID
}
}
return cli_id, nil
}
func (adminGuy *AdminGuy) VerifyToken(token string) (bool, error) {
cli_secret, err := adminGuy.GetClientSecret("owlycli")
if err != nil {
return false, err
}
res, err := adminGuy.Client.RetrospectToken(context.Background(), token, "owlycli", cli_secret, "OWLY")
if err != nil {
log.Printf("Fails at adminGuy.VerifyToken %v", err)
return false, err
}
return *res.Active, nil
}
func (adminGuy *AdminGuy) ExtractUUIDfromToken(token string) string {
decoded, _, _ := adminGuy.Client.DecodeAccessToken(context.Background(), token, "OWLY", "")
claims := *decoded.Claims.(*jwt.MapClaims)
return claims["sub"].(string)
}
func (adminGuy *AdminGuy) GetUserByUUID(uuid string) (*gocloak.User, error) {
return adminGuy.Client.GetUserByID(context.Background(), adminGuy.Token, "OWLY", uuid)
}