0
0
Fork 0
mirror of https://github.com/alerta/alerta.git synced 2025-01-25 01:39:40 +00:00
alerta_alerta/alerta/auth/__init__.py
Nick Satterly 3511ec0231
deps: update to Flask 2.0.1 (#1535)
* deps: update to Flask 2.0.1

* fix: remote_ip plugin getting wrong IP address
2021-05-23 10:43:26 +02:00

52 lines
1.8 KiB
Python

from flask import Blueprint, request
from alerta.exceptions import ApiError
class AuthBlueprint(Blueprint):
def register(self, app, options):
if app.config['AUTH_PROVIDER'] == 'ldap':
try:
import ldap # noqa
from . import basic_ldap # noqa
except ImportError:
raise RuntimeError('Must install python-ldap to use LDAP authentication module')
else:
from . import basic # noqa
if app.config['AUTH_PROVIDER'] == 'saml2':
try:
import saml2 # noqa
from . import saml # noqa
except ImportError:
raise RuntimeError('Must install pysaml2 to use SAML2 authentication module')
if app.config['AUTH_PROVIDER'] in ['openid', 'azure', 'cognito', 'gitlab', 'keycloak']:
try:
oidc_config, _ = oidc.get_oidc_configuration(app)
app.config['OIDC_AUTH_URL'] = oidc_config['authorization_endpoint']
app.config['OIDC_LOGOUT_URL'] = oidc_config.get('end_session_endpoint')
except Exception as e:
raise RuntimeError(e)
super().register(app, options)
auth = AuthBlueprint('auth', __name__)
from . import github, login, logout, oidc, userinfo # noqa isort:skip
@auth.before_request
def only_json():
# SAML2 Assertion Consumer Service expects POST request with 'Content-Type': 'application/x-www-form-urlencoded' from IdP
if request.method == 'POST' and request.path == '/auth/saml' and request.headers['Content-Type'] == 'application/x-www-form-urlencoded':
return
if request.path == '/auth/logout':
return
if request.method in ['POST', 'PUT'] and not request.is_json:
raise ApiError("POST and PUT requests must set 'Content-Type' to 'application/json'", 415)