mirror of
https://github.com/BookStackApp/BookStack.git
synced 2025-10-31 03:50:27 +03:00
41438adbd1
- Removed uneeded custom refresh or logout actions for OIDC. - Restructured how the services and guards are setup for external auth systems. SAML2 and OIDC now directly share a lot more logic. - Renamed any OpenId references to OIDC or OpenIdConnect - Removed non-required CSRF excemption for OIDC Not tested, Come to roadblock due to lack of PHP8 support in upstream dependancies. Certificate was deemed to be non-valid on every test attempt due to changes in PHP8.
64 lines
1.8 KiB
PHP
64 lines
1.8 KiB
PHP
<?php
|
|
|
|
namespace BookStack\Providers;
|
|
|
|
use BookStack\Api\ApiTokenGuard;
|
|
use BookStack\Auth\Access\ExternalBaseUserProvider;
|
|
use BookStack\Auth\Access\Guards\LdapSessionGuard;
|
|
use BookStack\Auth\Access\Guards\AsyncExternalBaseSessionGuard;
|
|
use BookStack\Auth\Access\LdapService;
|
|
use BookStack\Auth\Access\LoginService;
|
|
use BookStack\Auth\Access\RegistrationService;
|
|
use Illuminate\Support\Facades\Auth;
|
|
use Illuminate\Support\ServiceProvider;
|
|
|
|
class AuthServiceProvider extends ServiceProvider
|
|
{
|
|
/**
|
|
* Bootstrap the application services.
|
|
*
|
|
* @return void
|
|
*/
|
|
public function boot()
|
|
{
|
|
Auth::extend('api-token', function ($app, $name, array $config) {
|
|
return new ApiTokenGuard($app['request'], $app->make(LoginService::class));
|
|
});
|
|
|
|
Auth::extend('ldap-session', function ($app, $name, array $config) {
|
|
$provider = Auth::createUserProvider($config['provider']);
|
|
|
|
return new LdapSessionGuard(
|
|
$name,
|
|
$provider,
|
|
$app['session.store'],
|
|
$app[LdapService::class],
|
|
$app[RegistrationService::class]
|
|
);
|
|
});
|
|
|
|
Auth::extend('async-external-session', function ($app, $name, array $config) {
|
|
$provider = Auth::createUserProvider($config['provider']);
|
|
|
|
return new AsyncExternalBaseSessionGuard(
|
|
$name,
|
|
$provider,
|
|
$app['session.store'],
|
|
$app[RegistrationService::class]
|
|
);
|
|
});
|
|
}
|
|
|
|
/**
|
|
* Register the application services.
|
|
*
|
|
* @return void
|
|
*/
|
|
public function register()
|
|
{
|
|
Auth::provider('external-users', function ($app, array $config) {
|
|
return new ExternalBaseUserProvider($config['model']);
|
|
});
|
|
}
|
|
}
|