deac/gitlabhq
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
gitlabhq/app/controllers/omniauth_callbacks_controller.rb

27 lines
824 B
Ruby
Raw Normal View History

LDAP done
2012-01-28 14:23:17 +01:00
class OmniauthCallbacksController < Devise::OmniauthCallbacksController
Improve handling of misconfigured LDAP accounts. Gitlab requires an email address for all user accounts as this is the default account id and is used for sending notifications. LDAP accounts may be missing email fields so handle this by showing a sensible error message before redirecting to the login screen again. Resolves github issue #899 Signed-off-by: Pat Thoyts <patthoyts@users.sourceforge.net>
2012-07-17 00:31:28 +02:00
# Extend the standard message generation to accept our custom exception
def failure_message
exception = env["omniauth.error"]
if exception.class == OmniAuth::Error
error = exception.message
else
error = exception.error_reason if exception.respond_to?(:error_reason)
error ||= exception.error if exception.respond_to?(:error)
error ||= env["omniauth.error.type"].to_s
end
error.to_s.humanize if error
end
LDAP done
2012-01-28 14:23:17 +01:00
def ldap
# We only find ourselves here if the authentication to LDAP was successful.
Use the omniauth-ldap info object instead of the raw ldap info in extra. This helps with compatibility with more LDAP providers as the implementation doesn't depend on the exact names of the LDAP fields. The LDAP strategy helps maps the attributes to the fields in the info object and we use the info object to get the email and name. This makes the LDAP auth compatible with most OpenLDAP servers as well.
2012-02-17 18:10:50 +01:00
info = request.env["omniauth.auth"]["info"]
@user = User.find_for_ldap_auth(info)
LDAP done
2012-01-28 14:23:17 +01:00
if @user.persisted?
@user.remember_me = true
end
sign_in_and_redirect @user
end
end
Reference in a new issue Copy permalink