42 lines
1.2 KiB
Ruby
42 lines
1.2 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
module Gitlab
|
|
module Auth
|
|
module Otp
|
|
module Strategies
|
|
class FortiAuthenticator < Base
|
|
def validate(otp_code)
|
|
body = { username: user.username,
|
|
token_code: otp_code }
|
|
|
|
response = Gitlab::HTTP.post(
|
|
auth_url,
|
|
headers: { 'Content-Type': 'application/json' },
|
|
body: body.to_json,
|
|
basic_auth: api_credentials)
|
|
|
|
# Successful authentication results in HTTP 200: OK
|
|
# https://docs.fortinet.com/document/fortiauthenticator/6.2.0/rest-api-solution-guide/704555/authentication-auth
|
|
response.ok? ? success : error(message: response.message, http_status: response.code)
|
|
end
|
|
|
|
private
|
|
|
|
def auth_url
|
|
host = ::Gitlab.config.forti_authenticator.host
|
|
port = ::Gitlab.config.forti_authenticator.port
|
|
path = 'api/v1/auth/'
|
|
|
|
"https://#{host}:#{port}/#{path}"
|
|
end
|
|
|
|
def api_credentials
|
|
{ username: ::Gitlab.config.forti_authenticator.username,
|
|
password: ::Gitlab.config.forti_authenticator.token }
|
|
end
|
|
end
|
|
end
|
|
end
|
|
end
|
|
end
|