HUE-9396 [core] Implement SAML groups check and redirect them to 403 page if not permitted.

Review Request #15276 — Created June 29, 2020 and submitted

ranade
hue
master
hue
johan, ranade, romain, subrata, yingc
commit 97579e15a6c23db920b7e263bca08185b878c1eb
Author: Prakash Ranade <ranade@cloudera.com>
Date:   Mon Jun 29 19:06:12 2020 -0700

    HUE-9396 [core] Implement SAML groups check and redirect them to 403 page if not permitted.
    
    Testing Done:
    - Tested on private setup

:100644 100644 579462f09b fa0342d273 M	desktop/core/src/desktop/auth/views.py
:100644 100644 afc0b5942a ebe6aed6d3 M	desktop/core/src/desktop/views.py
:100644 100644 a142108e2c 9e3079d416 M	desktop/libs/libsaml/src/libsaml/backend.py


  • 0
  • 0
  • 1
  • 1
  • 2
Description From Last Updated
johan
  1. Ship It!
  2. desktop/core/src/desktop/auth/views.py (Diff revision 1)
     
     

    If this still relies on the session attribute it's cleaner to put the samlgroup_check here.

    1. It must be in dt_login.

  3. desktop/core/src/desktop/views.py (Diff revision 1)
     
     

    Nit: "User %s not found in required SAML groups %s"...

  4. 
      
ranade
Review request changed

Status: Closed (submitted)

Loading...