debian-mirror-gitlab/lib/gitlab/auth/o_auth/auth_hash.rb

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

132 lines
3.5 KiB
Ruby
Raw Normal View History

2018-12-13 13:39:08 +05:30
# frozen_string_literal: true
2018-03-27 19:54:05 +05:30
# Class to parse and transform the info provided by omniauth
#
module Gitlab
module Auth
module OAuth
class AuthHash
attr_reader :auth_hash
2022-05-07 20:08:51 +05:30
2018-03-27 19:54:05 +05:30
def initialize(auth_hash)
@auth_hash = auth_hash
end
def uid
@uid ||= Gitlab::Utils.force_utf8(auth_hash.uid.to_s)
end
def provider
@provider ||= auth_hash.provider.to_s
end
def name
@name ||= get_info(:name) || "#{get_info(:first_name)} #{get_info(:last_name)}"
end
def username
@username ||= username_and_email[:username].to_s
end
def email
@email ||= username_and_email[:email].to_s
end
def password
2022-10-11 01:57:18 +05:30
@password ||= Gitlab::Utils.force_utf8(::User.random_password)
2018-03-27 19:54:05 +05:30
end
def location
location = get_info(:address)
if location.is_a?(Hash)
[location.locality.presence, location.country.presence].compact.join(', ')
else
location
end
end
def has_attribute?(attribute)
if attribute == :location
get_info(:address).present?
else
get_info(attribute).present?
end
end
private
def info
2019-09-04 21:01:54 +05:30
auth_hash['info']
2018-03-27 19:54:05 +05:30
end
2022-08-27 11:52:29 +05:30
def coerce_utf8(value)
2019-10-12 21:52:04 +05:30
value.is_a?(String) ? Gitlab::Utils.force_utf8(value) : value
2018-03-27 19:54:05 +05:30
end
2022-08-27 11:52:29 +05:30
def get_info(key)
coerce_utf8(info[key])
end
def provider_config
Gitlab::Auth::OAuth::Provider.config_for(@provider) || {}
end
def provider_args
@provider_args ||= provider_config['args'].presence || {}
end
def get_from_auth_hash_or_info(key)
2023-06-20 00:43:36 +05:30
if auth_hash.key?(key)
coerce_utf8(auth_hash[key])
elsif auth_hash.key?(:extra) && auth_hash.extra.key?(:raw_info) && !auth_hash.extra.raw_info[key].nil?
coerce_utf8(auth_hash.extra.raw_info[key])
else
get_info(key)
end
2022-08-27 11:52:29 +05:30
end
# Allow for configuring a custom username claim per provider from
# the auth hash or use the canonical username or nickname fields
def gitlab_username_claim
provider_args.dig('gitlab_username_claim')&.to_sym
end
def username_claims
[gitlab_username_claim, :username, :nickname].compact
end
def get_username
username_claims.map { |claim| get_from_auth_hash_or_info(claim) }.find { |name| name.presence }
end
2018-03-27 19:54:05 +05:30
def username_and_email
@username_and_email ||= begin
2022-08-27 11:52:29 +05:30
username = get_username
2018-03-27 19:54:05 +05:30
email = get_info(:email).presence
username ||= generate_username(email) if email
email ||= generate_temporarily_email(username) if username
{
username: username,
2022-10-11 01:57:18 +05:30
email: email
2018-03-27 19:54:05 +05:30
}
end
end
# Get the first part of the email address (before @)
2018-12-13 13:39:08 +05:30
# In addition in removes illegal characters
2018-03-27 19:54:05 +05:30
def generate_username(email)
2021-06-08 01:23:25 +05:30
email.match(/^[^@]*/)[0].mb_chars.unicode_normalize(:nfkd).gsub(/[^\x00-\x7F]/, '').to_s
2018-03-27 19:54:05 +05:30
end
def generate_temporarily_email(username)
"temp-email-for-oauth-#{username}@gitlab.localhost"
end
end
end
end
end
2020-05-24 23:13:21 +05:30
2021-06-08 01:23:25 +05:30
Gitlab::Auth::OAuth::AuthHash.prepend_mod_with('Gitlab::Auth::OAuth::AuthHash')