36 lines
905 B
Go
36 lines
905 B
Go
package handlers
|
|
|
|
import (
|
|
"net/http"
|
|
|
|
"github.com/cortezaproject/corteza-server/auth/external"
|
|
"go.uber.org/zap"
|
|
)
|
|
|
|
func (h AuthHandlers) samlInit(w http.ResponseWriter, r *http.Request) {
|
|
r = copyProviderToContext(r)
|
|
h.Log.Info("starting SAML authentication flow")
|
|
|
|
if h.SamlSPService == nil || h.SamlSPService.Handler() == nil {
|
|
h.Log.Error("SAML service not initialized")
|
|
w.WriteHeader(http.StatusServiceUnavailable)
|
|
return
|
|
}
|
|
|
|
if !h.SamlSPService.Enabled {
|
|
h.Log.Warn("failed to start SAML authentication flow: disabled")
|
|
w.WriteHeader(http.StatusServiceUnavailable)
|
|
return
|
|
}
|
|
|
|
ex := external.NewSamlExternalHandler(h.SamlSPService)
|
|
beginUserAuth(w, r, ex)
|
|
|
|
if user, err := completeUserAuth(w, r, ex); err != nil {
|
|
h.Log.Error("failed to complete user auth", zap.Error(err))
|
|
h.handleFailedExternalAuth(w, r, err)
|
|
} else {
|
|
h.handleSuccessfulExternalAuth(w, r, *user)
|
|
}
|
|
}
|