SpringConfig(Security security) { OAuth2 oauth2 = security.getAuthn().getOauth2(); if (oauth2.isEnabled()) { this.oauth2 = oauth2; } } }
SpringConfig(Security security) { OAuth2 oauth2 = security.getAuthn().getOauth2(); if (oauth2.isEnabled()) { this.oauth2 = oauth2; } } }
public boolean isEnabled() { return getOauth2().isEnabled() || getSaml().isEnabled() || getLdap().isEnabled() || getX509().isEnabled() || getIap().isEnabled(); }
public boolean isEnabled() { return getOauth2().isEnabled() || getSaml().isEnabled() || getLdap().isEnabled() || getX509().isEnabled() || getIap().isEnabled(); }
@Override public void validate(ConfigProblemSetBuilder p, OAuth2 n) { if (!n.isEnabled()) { return; } if (n.getClient().getClientId() == null) { p.addProblem(Problem.Severity.ERROR, "No OAuth2 client id was supplied"); } if (n.getClient().getClientSecret() == null) { p.addProblem(Problem.Severity.ERROR, "No OAuth2 client secret was supplied"); } if (n.getProvider() == OAuth2.Provider.GOOGLE && (n.getUserInfoRequirements() == null || !n.getUserInfoRequirements().containsKey("hd"))) { p.addProblem(Problem.Severity.WARNING, "Missing 'hd' field within " + "userInfoRequirements of Google OAuth provider. This could expose your Spinnaker " + "instance to anyone with a Gmail account.", "userInfoRequirements"); } } }
@Override public void validate(ConfigProblemSetBuilder p, OAuth2 n) { if (!n.isEnabled()) { return; } if (n.getClient().getClientId() == null) { p.addProblem(Problem.Severity.ERROR, "No OAuth2 client id was supplied"); } if (n.getClient().getClientSecret() == null) { p.addProblem(Problem.Severity.ERROR, "No OAuth2 client secret was supplied"); } if (n.getProvider() == OAuth2.Provider.GOOGLE && (n.getUserInfoRequirements() == null || !n.getUserInfoRequirements().containsKey("hd"))) { p.addProblem(Problem.Severity.WARNING, "Missing 'hd' field within " + "userInfoRequirements of Google OAuth provider. This could expose your Spinnaker " + "instance to anyone with a Gmail account.", "userInfoRequirements"); } } }
@Override protected GateConfig getGateConfig(ServiceSettings gate, Security security) { GateConfig config = new GateConfig(gate, security); if (security.getAuthn().getOauth2().isEnabled()) { config.spring = new SpringConfig(security); } else if (security.getAuthn().getSaml().isEnabled()) { config.saml = new SamlConfig(security); } else if (security.getAuthn().getLdap().isEnabled()) { config.ldap = new LdapConfig(security); } else if (security.getAuthn().getIap().isEnabled()) { config.google.iap = new IAPConfig(security); } if (security.getAuthn().getX509().isEnabled()) { config.x509 = new X509Config(security); } return config; } }
@Override protected GateConfig getGateConfig(ServiceSettings gate, Security security) { GateConfig config = new GateConfig(gate, security); if (security.getAuthn().getOauth2().isEnabled()) { config.security.oauth2 = security.getAuthn().getOauth2(); } else if (security.getAuthn().getSaml().isEnabled()) { config.saml = new SamlConfig(security); } else if (security.getAuthn().getLdap().isEnabled()) { config.ldap = new LdapConfig(security); } else if (security.getAuthn().getIap().isEnabled()) { config.google.iap = new IAPConfig(security); } if (security.getAuthn().getX509().isEnabled()) { config.x509 = new X509Config(security); } return config; } }
@Override protected GateConfig getGateConfig(ServiceSettings gate, Security security) { GateConfig config = new GateConfig(gate, security); if (security.getAuthn().getOauth2().isEnabled()) { config.spring = new SpringConfig(security); } else if (security.getAuthn().getSaml().isEnabled()) { config.saml = new SamlConfig(security); } else if (security.getAuthn().getLdap().isEnabled()) { config.ldap = new LdapConfig(security); } else if (security.getAuthn().getIap().isEnabled()) { config.google.iap = new IAPConfig(security); } if (security.getAuthn().getX509().isEnabled()) { config.x509 = new X509Config(security); } return config; } }
@Override protected GateConfig getGateConfig(ServiceSettings gate, Security security) { GateConfig config = new GateConfig(gate, security); if (security.getAuthn().getOauth2().isEnabled()) { config.security.oauth2 = security.getAuthn().getOauth2(); } else if (security.getAuthn().getSaml().isEnabled()) { config.saml = new SamlConfig(security); } else if (security.getAuthn().getLdap().isEnabled()) { config.ldap = new LdapConfig(security); } else if (security.getAuthn().getIap().isEnabled()) { config.google.iap = new IAPConfig(security); } if (security.getAuthn().getX509().isEnabled()) { config.x509 = new X509Config(security); } return config; } }