Skip to content
This repository was archived by the owner on Jul 1, 2022. It is now read-only.

Added support for multiple domains #22

Open
roelandpinch wants to merge 2 commits into
base: master
Choose a base branch
from
Open

Added support for multiple domains #22

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
2625885
Added support for multiple domains
Jun 4, 2019
d8c2726
Bumped version number
Jun 4, 2019
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion pom.xml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@

<groupId>org.sonarqube.auth.google</groupId>
<artifactId>sonar-auth-googleoauth-plugin</artifactId>
<version>1.6.3-SNAPSHOT</version>
<version>1.7.0</version>
<packaging>sonar-plugin</packaging>
<name>Google Authentication for SonarQube</name>
<inceptionYear>2016</inceptionYear>
Expand Down
23 changes: 22 additions & 1 deletion src/main/java/org/sonarqube/auth/googleoauth/GoogleIdentityProvider.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -124,7 +124,8 @@ public void callback(CallbackContext context) {

GsonUser gsonUser = requestUser(scribe, accessToken);
String redirectTo;
if (settings.oauthDomain()==null || (settings.oauthDomain()!=null && gsonUser.getEmail().endsWith("@"+settings.oauthDomain()))) {

if (domainIsAllowed(gsonUser.getEmail()) ) {
redirectTo = settings.getSonarBaseURL();
String referer_url = request.getHeader("referer");
try {
Expand Down Expand Up @@ -156,6 +157,26 @@ public void callback(CallbackContext context) {
}
}

private Boolean domainIsAllowed(String email) {

if (settings.oauthDomain()==null) {
return true;
}

Boolean domainWhitelisted = true;

if (settings.oauthDomain()!=null) {
domainWhitelisted = false;

for ( String allowedDomain : settings.oauthDomain().split(",")) {
if (email.endsWith("@"+allowedDomain.replaceAll(" ", ""))) {
domainWhitelisted = true;
}
}
}
return domainWhitelisted;
}

private GsonUser requestUser(OAuthService scribe, Token accessToken) {
OAuthRequest userRequest = new OAuthRequest(Verb.GET, settings.apiURL() + "oauth2/v1/userinfo", scribe);
scribe.signRequest(accessToken, userRequest);
Expand Down
4 changes: 2 additions & 2 deletions src/main/java/org/sonarqube/auth/googleoauth/GoogleSettings.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -182,8 +182,8 @@ public static List<PropertyDefinition> definitions() {
.index(index++)
.build(),
PropertyDefinition.builder(LIMIT_DOMAIN)
.name("Allowed Domain")
.description("When set, this will only allow users from the specified GApps domain to authenticate")
.name("Allowed Domain(s)")
.description("When set, this will only allow users from the specified GApps domain(s) to authenticate (comma-separated)")
.category(CATEGORY)
.subCategory(SUBCATEGORY)
.index(index++)
Expand Down