diff options
| author | Chris Duarte <csduarte@users.noreply.github.com> | 2018-07-18 14:56:38 -0700 |
|---|---|---|
| committer | Christopher Speller <crspeller@gmail.com> | 2018-07-18 14:56:38 -0700 |
| commit | 3fcecd521a5c6ccfdb52fb4c3fb1f8c6ea528a4e (patch) | |
| tree | cfb316b15d34d9242b5db41e76f1161e08813444 /app/extension.go | |
| parent | 6b27b74f0cbd39e5d1400cddbed6437a4df64856 (diff) | |
| download | chat-3fcecd521a5c6ccfdb52fb4c3fb1f8c6ea528a4e.tar.gz chat-3fcecd521a5c6ccfdb52fb4c3fb1f8c6ea528a4e.tar.bz2 chat-3fcecd521a5c6ccfdb52fb4c3fb1f8c6ea528a4e.zip | |
Support for Embeded chat (#9129)
* Add ucLive support
crazy testing
lovely logs
more cookie work arounds
Added Access-Control-Expose-Headers to user login
Add complete_saml_body template and revert loginWithSaml endpoint
Set Access-Control-Allow-Credentials to true in user login
Login via email instead of username
Clean up code
Add comment to give some context
Move faml logic into saml function
Communicate via chrome sendMessage api
Remove unused code
Add config to support multiple extensions
Clean up embedded complete_saml template
Fix indentation for templates
Added license header to extension.go
Add EnableExperimentalExtensions flag
Extension validated for email auth
Clean up api auth code
Remove complete_saml_body.html
* Add extension support in saml
* Clean up code
* Clean up extension validation
Diffstat (limited to 'app/extension.go')
| -rw-r--r-- | app/extension.go | 82 |
1 files changed, 82 insertions, 0 deletions
diff --git a/app/extension.go b/app/extension.go new file mode 100644 index 000000000..d0226bba5 --- /dev/null +++ b/app/extension.go @@ -0,0 +1,82 @@ +// Copyright (c) 2015-present Mattermost, Inc. All Rights Reserved. +// See License.txt for license information. + +package app + +import ( + "github.com/mattermost/mattermost-server/model" + "html/template" + "net/http" +) + +func (a *App) isExtensionSupportEnabled() bool { + return *a.Config().ExtensionSettings.EnableExperimentalExtensions +} + +func (a *App) isExtensionValid(extensionId string) bool { + extensionIsValid := false + extensionIDs := a.Config().ExtensionSettings.AllowedExtensionsIDs + + for _, id := range extensionIDs { + if extensionId == id { + extensionIsValid = true + } + } + + return extensionIsValid +} + +func (a *App) ValidateExtension(extensionId string) *model.AppError { + enabled := a.isExtensionSupportEnabled() + if !enabled { + return model.NewAppError("completeSaml", "api.user.saml.extension_unsupported", nil, "", http.StatusInternalServerError) + } + + valid := a.isExtensionValid(extensionId) + if !valid { + params := map[string]interface{}{"ExtensionId": extensionId} + return model.NewAppError("completeSaml", "api.user.saml.invalid_extension", params, "", http.StatusInternalServerError) + } + + return nil +} + +func (a *App) SendMessageToExtension(w http.ResponseWriter, extensionId string, token string) *model.AppError { + var err error + var t *template.Template + if len(extensionId) == 0 { + return model.NewAppError("completeSaml", "api.user.saml.extension_id.app_error", nil, "", http.StatusInternalServerError) + } + + t = template.New("complete_saml_extension_body") + t, err = t.ParseFiles("templates/complete_saml_extension_body.html") + + if err != nil { + return model.NewAppError("completeSaml", "api.user.saml.app_error", nil, "err="+err.Error(), http.StatusInternalServerError) + } + + w.Header().Set("Content-Type", "text/html") + w.WriteHeader(http.StatusOK) + + var errMessage string + if len(token) == 0 { + loginError := model.NewAppError("completeSaml", "api.user.saml.app_error", nil, "", http.StatusInternalServerError) + errMessage = loginError.Message + } + + data := struct { + ExtensionId string + Token string + Error string + }{ + extensionId, + token, + errMessage, + } + + if err := t.Execute(w, data); err != nil { + return model.NewAppError("completeSaml", "api.user.saml.app_error", nil, "err="+err.Error(), http.StatusInternalServerError) + } + + return nil +} |