SAML improvements for Docker (#929)

* Fix typo in managing user account membership with SAML assertion * Support more config options from Docker env. * Improve support for SAML key and cert from Docker secrets Co-authored-by: Ian Bobbitt <ibobbitt@globalnoc.iu.edu>
2025-06-14 12:06:06 +00:00 · 2021-05-07 17:36:55 -04:00
parent b66b37ecfd
commit 39cddd3b34
3 changed files with 12 additions and 4 deletions
--- a/powerdnsadmin/routes/index.py
+++ b/powerdnsadmin/routes/index.py
@ -943,7 +943,7 @@ def saml_authorized():
        else:
            user_groups = []
        if admin_attribute_name or group_attribute_name:
-            user_accounts = set(user.get_account())
+            user_accounts = set(user.get_accounts())
            saml_accounts = []
            for group_mapping in group_to_account_mapping:
                mapping = group_mapping.split('=')
--- a/powerdnsadmin/services/saml.py
+++ b/powerdnsadmin/services/saml.py
@ -104,10 +104,10 @@ class SAML(object):
        settings['sp']['entityId'] = current_app.config['SAML_SP_ENTITY_ID']


-        if ('SAML_CERT_FILE' in current_app.config) and ('SAML_KEY_FILE' in current_app.config):
+        if ('SAML_CERT' in current_app.config) and ('SAML_KEY' in current_app.config):

-             saml_cert_file = current_app.config['SAML_CERT_FILE']
-             saml_key_file = current_app.config['SAML_KEY_FILE']
+             saml_cert_file = current_app.config['SAML_CERT']
+             saml_key_file = current_app.config['SAML_KEY']

             if os.path.isfile(saml_cert_file):
                 cert = open(saml_cert_file, "r").readlines()