9591e1012c
* feat(ldap): move urls to url * feat(ldap): test a few connections * feat(ldap): update urls * feat(settings-auth): support array of ldap urls * feat(settings-auth): support list of urls * feat(auth): add explanation about server urls * feat(bolt): add url to urls only if needed * fix(settings): add nil guards * fix(settings): set inital value for ldap urls * feat(settings): prevent the deletion of the first url * feat(core/settings): minor UI update * feat(authentication): check that ldap settings are valid * feat(bolt): create migration for settings * fix(settings): add wrapping * feat(ldap): disable submit button only on ldap Co-authored-by: Anthony Lapenna <lapenna.anthony@gmail.com>
46 lines
1.4 KiB
Go
46 lines
1.4 KiB
Go
package settings
|
|
|
|
import (
|
|
"errors"
|
|
"net/http"
|
|
|
|
httperror "github.com/portainer/libhttp/error"
|
|
"github.com/portainer/libhttp/request"
|
|
"github.com/portainer/libhttp/response"
|
|
"github.com/portainer/portainer/api"
|
|
"github.com/portainer/portainer/api/filesystem"
|
|
)
|
|
|
|
type settingsLDAPCheckPayload struct {
|
|
LDAPSettings portainer.LDAPSettings
|
|
}
|
|
|
|
func (payload *settingsLDAPCheckPayload) Validate(r *http.Request) error {
|
|
if len(payload.LDAPSettings.URLs) == 0 {
|
|
return errors.New("Invalid LDAP URLs. At least one URL is required")
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// PUT request on /settings/ldap/check
|
|
func (handler *Handler) settingsLDAPCheck(w http.ResponseWriter, r *http.Request) *httperror.HandlerError {
|
|
var payload settingsLDAPCheckPayload
|
|
err := request.DecodeAndValidateJSONPayload(r, &payload)
|
|
if err != nil {
|
|
return &httperror.HandlerError{http.StatusBadRequest, "Invalid request payload", err}
|
|
}
|
|
|
|
if (payload.LDAPSettings.TLSConfig.TLS || payload.LDAPSettings.StartTLS) && !payload.LDAPSettings.TLSConfig.TLSSkipVerify {
|
|
caCertPath, _ := handler.FileService.GetPathForTLSFile(filesystem.LDAPStorePath, portainer.TLSFileCA)
|
|
payload.LDAPSettings.TLSConfig.TLSCACertPath = caCertPath
|
|
}
|
|
|
|
err = handler.LDAPService.TestConnectivity(&payload.LDAPSettings)
|
|
if err != nil {
|
|
return &httperror.HandlerError{http.StatusInternalServerError, "Unable to connect to LDAP server", err}
|
|
}
|
|
|
|
return response.Empty(w)
|
|
}
|