Replace site setting with a payload attribute
This commit is contained in:
Paul Kaplan
parent
b8a43e153c
commit
1c34341f31
|
|
@ -57,7 +57,7 @@ class DiscourseSingleSignOn < SingleSignOn
|
|||
change_external_attributes_and_override(sso_record, user)
|
||||
end
|
||||
|
||||
if sso_record && (user = sso_record.user) && !user.active && SiteSetting.sso_trusts_email
|
||||
if sso_record && (user = sso_record.user) && !user.active && !require_activation
|
||||
user.active = true
|
||||
user.save!
|
||||
user.enqueue_welcome_message('welcome_user') unless suppress_welcome_message
|
||||
|
|
|
|||
|
|
@ -885,7 +885,6 @@ en:
|
|||
enable_sso_provider: "Implement Discourse SSO provider protocol at the /session/sso_provider endpoint, requires sso_secret to be set"
|
||||
sso_url: "URL of single sign on endpoint"
|
||||
sso_secret: "Secret string used to cryptographically authenticate SSO information, be sure it is 10 characters or longer"
|
||||
sso_trusts_email: "Allow SSO accounts to skip email verification"
|
||||
sso_overrides_email: "Overrides local email with external site email from SSO payload (WARNING: discrepancies can occur due to normalization of local emails)"
|
||||
sso_overrides_username: "Overrides local username with external site username from SSO payload (WARNING: discrepancies can occur due to differences in username length/requirements)"
|
||||
sso_overrides_name: "Overrides local full name with external site full name from SSO payload"
|
||||
|
|
|
|||
|
|
@ -234,7 +234,6 @@ login:
|
|||
enable_sso_provider: false
|
||||
sso_url: ''
|
||||
sso_secret: ''
|
||||
sso_trusts_email: true
|
||||
sso_overrides_email: false
|
||||
sso_overrides_username: false
|
||||
sso_overrides_name: false
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
class SingleSignOn
|
||||
ACCESSORS = [:nonce, :name, :username, :email, :avatar_url, :avatar_force_update,
|
||||
ACCESSORS = [:nonce, :name, :username, :email, :avatar_url, :avatar_force_update, :require_activation,
|
||||
:about_me, :external_id, :return_sso_url, :admin, :moderator, :suppress_welcome_message]
|
||||
FIXNUMS = []
|
||||
BOOLS = [:avatar_force_update, :admin, :moderator, :suppress_welcome_message]
|
||||
|
|
|
|||
|
|
@ -194,10 +194,6 @@ describe SessionController do
|
|||
end
|
||||
|
||||
context 'when sso emails are not trusted' do
|
||||
before do
|
||||
SiteSetting.sso_trusts_email = false
|
||||
end
|
||||
|
||||
context 'if you have not activated your account' do
|
||||
it 'does not log you in' do
|
||||
sso = get_sso('/a/')
|
||||
|
|
@ -205,6 +201,7 @@ describe SessionController do
|
|||
sso.email = 'bob@bob.com'
|
||||
sso.name = 'Sam Saffron'
|
||||
sso.username = 'sam'
|
||||
sso.require_activation = true
|
||||
|
||||
get :sso_login, Rack::Utils.parse_query(sso.payload)
|
||||
|
||||
|
|
@ -219,6 +216,8 @@ describe SessionController do
|
|||
sso.email = 'bob@bob.com'
|
||||
sso.name = 'Sam Saffron'
|
||||
sso.username = 'sam'
|
||||
sso.require_activation = true
|
||||
|
||||
get :sso_login, Rack::Utils.parse_query(sso.payload)
|
||||
end
|
||||
end
|
||||
|
|
@ -228,6 +227,7 @@ describe SessionController do
|
|||
sso = get_sso('/hello/world')
|
||||
sso.external_id = '997'
|
||||
sso.sso_url = "http://somewhere.over.com/sso_login"
|
||||
sso.require_activation = true
|
||||
|
||||
user = Fabricate(:user)
|
||||
user.create_single_sign_on_record(external_id: '997', last_payload: '')
|
||||
|
|
|
|||
|
|
@ -155,8 +155,8 @@ describe DiscourseSingleSignOn do
|
|||
expect(user.active).to eq(true)
|
||||
end
|
||||
|
||||
it 'does not activate user when asked to' do
|
||||
SiteSetting.sso_trusts_email = false
|
||||
it 'does not activate user when asked not to' do
|
||||
sso.require_activation = true
|
||||
user = sso.lookup_or_create_user(ip_address)
|
||||
expect(user.active).to eq(false)
|
||||
end
|
||||
|
|
|
|||
Loading…
Reference in New Issue