Hide prefix from option names in API (#2034)

5 years ago · e0edd1449b
parent 369c08337c
commit e0edd1449b
4 changed files with 92 additions and 62 deletions
--- a/lemonldap-ng-manager/lib/Lemonldap/NG/Manager/Api/Common.pm
+++ b/lemonldap-ng-manager/lib/Lemonldap/NG/Manager/Api/Common.pm
@ -20,17 +20,16 @@ sub _isSimpleKeyValueHash {
    return 1;
 }

-sub _setDefaultValues {
-    my ( $self, $attrs, $rootNode ) = @_;
+sub _getDefaultValues {
+    my ( $self, $rootNode ) = @_;
    my @allAttrs     = $self->_listAttributes($rootNode);
    my $defaultAttrs = Lemonldap::NG::Manager::Build::Attributes::attributes();
+    my $attrs        = {};

    foreach $attr (@allAttrs) {
-        unless ( defined $attrs->{$attr} ) {
-            $attrs->{$attr} = $defaultAttrs->{$attr}->{default}
-              if ( defined $defaultAttrs->{$attr}
-                && defined $defaultAttrs->{$attr}->{default} );
-        }
+        $attrs->{$attr} = $defaultAttrs->{$attr}->{default}
+          if ( defined $defaultAttrs->{$attr}
+            && defined $defaultAttrs->{$attr}->{default} );
    }

    return $attrs;
@ -47,7 +46,7 @@ sub _hasAllowedAttributes {
                msg => "Invalid input: Attribute $attribute is not a string."
            };
        }
-        unless ( grep { /^$attribute$/ } @allowedAttributes ) {
+        unless ( grep { $_ eq $attribute } @allowedAttributes ) {
            return {
                res => "ko",
                msg => "Invalid input: Attribute $attribute does not exist."
@ -76,4 +75,20 @@ sub _listNodeAttributes {
    return @attributes;
 }

+sub _translateOptionApiToConf {
+    my ( $self, $optionName, $prefix ) = @_;
+    return $prefix . "MetaDataOptions" . ( ucfirst $optionName );
+}
+
+sub _translateOptionConfToApi {
+    my ( $self, $optionName ) = @_;
+    $optionName =~ s/^(\w+)MetaDataOptions//;
+
+    $optionName = lcfirst $optionName;
+
+    # iDToken looks ugly
+    $optionName =~ s/^iDToken/IDToken/;
+    return $optionName;
+}
+
 1;
--- a/lemonldap-ng-manager/lib/Lemonldap/NG/Manager/Api/Providers/OidcRp.pm
+++ b/lemonldap-ng-manager/lib/Lemonldap/NG/Manager/Api/Providers/OidcRp.pm
@ -116,7 +116,7 @@ sub addOidcRp {
    ) if ( defined $self->_getOidcRpByClientId( $conf, $add->{clientId} ) );

    $add->{options} = {} unless ( defined $add->{options} );
-    $add->{options}->{oidcRPMetaDataOptionsClientID} = $add->{clientId};
+    $add->{options}->{clientID} = $add->{clientId};

    my $res = $self->_pushOidcRp( $conf, $add->{confKey}, $add, 1 );

@ -251,7 +251,13 @@ sub _getOidcRpByConfKey {
    my $macros = $conf->{oidcRPMetaDataMacros}->{$confKey} || {};

    # Get options
-    my $options = $conf->{oidcRPMetaDataOptions}->{$confKey};
+    my $options = {};
+    for
+      my $configOption ( keys %{ $conf->{oidcRPMetaDataOptions}->{$confKey} } )
+    {
+        $options->{ $self->_translateOptionConfToApi($configOption) } =
+          $conf->{oidcRPMetaDataOptions}->{$confKey}->{$configOption};
+    }

    return {
        confKey      => $confKey,
@ -297,24 +303,31 @@ sub _isNewOidcRpClientIdUnique {
 sub _pushOidcRp {
    my ( $self, $conf, $confKey, $push, $replace ) = @_;

+    my $translatedOptions = {};
    if ($replace) {
        $conf->{oidcRPMetaDataOptions}->{$confKey}            = {};
        $conf->{oidcRPMetaDataExportedVars}->{$confKey}       = {};
        $conf->{oidcRPMetaDataOptionsExtraClaims}->{$confKey} = {};
        $conf->{oidcRPMetaDataMacros}->{$confKey}             = {};
-        $push->{options} =
-          $self->_setDefaultValues( $push->{options}, 'oidcRPMetaDataNode' );
+        $translatedOptions = $self->_getDefaultValues('oidcRPMetaDataNode');
    }

    if ( defined $push->{options} ) {
-        my $res = $self->_hasAllowedAttributes( $push->{options},
+
+        foreach ( keys %{ $push->{options} } ) {
+            $translatedOptions->{ $self->_translateOptionApiToConf( $_,
+                    'oidcRP' ) } = $push->{options}->{$_};
+        }
+
+        my $res = $self->_hasAllowedAttributes( $translatedOptions,
            'oidcRPMetaDataNode' );
        return $res unless ( $res->{res} eq 'ok' );

-        foreach ( keys %{ $push->{options} } ) {
+        foreach ( keys %{$translatedOptions} ) {
            $conf->{oidcRPMetaDataOptions}->{$confKey}->{$_} =
-              $push->{options}->{$_};
+              $translatedOptions->{$_};
        }
+
    }

    $conf->{oidcRPMetaDataOptions}->{$confKey}->{oidcRPMetaDataOptionsClientID}
--- a/lemonldap-ng-manager/lib/Lemonldap/NG/Manager/Api/Providers/SamlSp.pm
+++ b/lemonldap-ng-manager/lib/Lemonldap/NG/Manager/Api/Providers/SamlSp.pm
@ -244,7 +244,12 @@ sub _getSamlSpByConfKey {
    my $metadata = $conf->{samlSPMetaDataXML}->{$confKey}->{samlSPMetaDataXML};

    # Get options
-    my $options = $conf->{samlSPMetaDataOptions}->{$confKey};
+    my $options = {};
+    for my $confOption ( keys %{ $conf->{samlSPMetaDataOptions}->{$confKey} } )
+    {
+        $options->{ $self->_translateOptionConfToApi($confOption) } =
+          $conf->{samlSPMetaDataOptions}->{$confKey}->{$confOption};
+    }

    # Get macros
    my $macros = $conf->{samlSPMetaDataMacros}->{$confKey} || {};
@ -349,27 +354,33 @@ sub _readSamlSpExportedAttributes {
 sub _pushSamlSp {
    my ( $self, $conf, $confKey, $push, $replace ) = @_;

+    my $translatedOptions = {};
    if ($replace) {
        $conf->{samlSPMetaDataXML}->{$confKey}                = {};
        $conf->{samlSPMetaDataOptions}->{$confKey}            = {};
        $conf->{samlSPMetaDataMacros}->{$confKey}             = {};
        $conf->{samlSPMetaDataExportedAttributes}->{$confKey} = {};
-        $push->{options} =
-          $self->_setDefaultValues( $push->{options}, 'samlSPMetaDataNode' );
+        $translatedOptions = $self->_getDefaultValues('samlSPMetaDataNode');
    }

    $conf->{samlSPMetaDataXML}->{$confKey}->{samlSPMetaDataXML} =
      $push->{metadata};

    if ( defined $push->{options} ) {
-        my $res = $self->_hasAllowedAttributes( $push->{options},
-            'samlSPMetaDataNode' );
-        return $res unless ( $res->{res} eq 'ok' );

        foreach ( keys %{ $push->{options} } ) {
+            $translatedOptions->{ $self->_translateOptionApiToConf( $_,
+                    'samlSP' ) } = $push->{options}->{$_};
+        }
+
+        my $res = $self->_hasAllowedAttributes( $translatedOptions,
+            'samlSPMetaDataNode' );
+        return $res unless ( $res->{res} eq 'ok' );
+        foreach ( keys %{$translatedOptions} ) {
            $conf->{samlSPMetaDataOptions}->{$confKey}->{$_} =
-              $push->{options}->{$_};
+              $translatedOptions->{$_};
        }
+
    }

    if ( defined $push->{macros} ) {
--- a/lemonldap-ng-manager/t/04-providers-api.t
+++ b/lemonldap-ng-manager/t/04-providers-api.t
@ -297,41 +297,35 @@ my $oidcRp = {
        email => 'mail',
    },
    options => {
-        oidcRPMetaDataOptionsClientSecret => 'secret',
-        oidcRPMetaDataOptionsIcon         => 'web.png'
+        clientSecret => 'secret',
+        icon         => 'web.png'
    }
 };

 $test = "OidcRp - Add should succeed";
 checkAdd( $test, 'oidc/rp', $oidcRp );
-checkGet( $test, 'oidc/rp', 'myOidcRp1', 'options/oidcRPMetaDataOptionsIcon',
-    'web.png' );
-checkGet( $test, 'oidc/rp', 'myOidcRp1',
-    'options/oidcRPMetaDataOptionsClientSecret', 'secret' );
+checkGet( $test, 'oidc/rp', 'myOidcRp1', 'options/icon',         'web.png' );
+checkGet( $test, 'oidc/rp', 'myOidcRp1', 'options/clientSecret', 'secret' );

 $test = "OidcRp - Check attribute default value was set after add";
-checkGet( $test, 'oidc/rp', 'myOidcRp1',
-    'options/oidcRPMetaDataOptionsIDTokenSignAlg', 'HS512' );
+checkGet( $test, 'oidc/rp', 'myOidcRp1', 'options/IDTokenSignAlg', 'HS512' );

 $test = "OidcRp - Add Should fail on duplicate confKey";
 checkAddFailsIfExists( $test, 'oidc/rp', $oidcRp );

 $test = "OidcRp - Update should succeed and keep existing values";
-$oidcRp->{options}->{oidcRPMetaDataOptionsClientSecret}   = 'secret2';
-$oidcRp->{options}->{oidcRPMetaDataOptionsIDTokenSignAlg} = 'RS512';
-delete $oidcRp->{options}->{oidcRPMetaDataOptionsIcon};
+$oidcRp->{options}->{clientSecret}   = 'secret2';
+$oidcRp->{options}->{IDTokenSignAlg} = 'RS512';
+delete $oidcRp->{options}->{icon};
 delete $oidcRp->{extraClaims};
 delete $oidcRp->{exportedVars};
 $oidcRp->{macros}->{given_name} = '$givenName';
-$oidcRp->{exportedVars}->{cn} = 'cn';
+$oidcRp->{exportedVars}->{cn}   = 'cn';
 checkUpdate( $test, 'oidc/rp', 'myOidcRp1', $oidcRp );
-checkGet( $test, 'oidc/rp', 'myOidcRp1',
-    'options/oidcRPMetaDataOptionsClientSecret', 'secret2' );
-checkGet( $test, 'oidc/rp', 'myOidcRp1',
-    'options/oidcRPMetaDataOptionsIDTokenSignAlg', 'RS512' );
-checkGet( $test, 'oidc/rp', 'myOidcRp1', 'options/oidcRPMetaDataOptionsIcon',
-    'web.png' );
-checkGet( $test, 'oidc/rp', 'myOidcRp1', 'exportedVars/cn',          'cn' );
+checkGet( $test, 'oidc/rp', 'myOidcRp1', 'options/clientSecret',   'secret2' );
+checkGet( $test, 'oidc/rp', 'myOidcRp1', 'options/IDTokenSignAlg', 'RS512' );
+checkGet( $test, 'oidc/rp', 'myOidcRp1', 'options/icon',           'web.png' );
+checkGet( $test, 'oidc/rp', 'myOidcRp1', 'exportedVars/cn',        'cn' );
 checkGet( $test, 'oidc/rp', 'myOidcRp1', 'exportedVars/family_name', 'sn' );
 checkGet( $test, 'oidc/rp', 'myOidcRp1', 'macros/given_name', '$givenName' );
 checkGet( $test, 'oidc/rp', 'myOidcRp1', 'extraClaims/phone',
@ -367,13 +361,12 @@ checkUpdateNotFound( $test, 'oidc/rp', 'myOidcRp3', $oidcRp );
 $test               = "OidcRp - Replace should succeed";
 $oidcRp->{confKey}  = 'myOidcRp2';
 $oidcRp->{clientId} = 'myOidcClient2';
-delete $oidcRp->{options}->{oidcRPMetaDataOptionsIcon};
-delete $oidcRp->{options}->{oidcRPMetaDataOptionsIDTokenSignAlg};
+delete $oidcRp->{options}->{icon};
+delete $oidcRp->{options}->{IDTokenSignAlg};
 checkReplace( $test, 'oidc/rp', 'myOidcRp2', $oidcRp );

 $test = "OidcRp - Check attribute default value was set after replace";
-checkGet( $test, 'oidc/rp', 'myOidcRp2',
-    'options/oidcRPMetaDataOptionsIDTokenSignAlg', 'HS512' );
+checkGet( $test, 'oidc/rp', 'myOidcRp2', 'options/IDTokenSignAlg', 'HS512' );

 $test = "OidcRp - Replace should fail on non existing options";
 $oidcRp->{options}->{playingPossum} = 'elephant';
@ -449,40 +442,39 @@ my $samlSp = {
        given_name => '$givenName',
    },
    options => {
-        samlSPMetaDataOptionsCheckSLOMessageSignature   => 0,
-        samlSPMetaDataOptionsEncryptionMode             => "assertion",
-        samlSPMetaDataOptionsSessionNotOnOrAfterTimeout => 36000
+        checkSLOMessageSignature   => 0,
+        encryptionMode             => "assertion",
+        sessionNotOnOrAfterTimeout => 36000
    }
 };

 $test = "SamlSp -  Add should succeed";
 checkAdd( $test, 'saml/sp', $samlSp );
 checkGet( $test, 'saml/sp', 'mySamlSp1',
-    'options/samlSPMetaDataOptionsEncryptionMode', 'assertion' );
+    'options/encryptionMode', 'assertion' );
 checkGet( $test, 'saml/sp', 'mySamlSp1',
-    'options/samlSPMetaDataOptionsSessionNotOnOrAfterTimeout', 36000 );
+    'options/sessionNotOnOrAfterTimeout', 36000 );

 $test = "SamlSp -  Check attribute default value was set after add";
-checkGet( $test, 'saml/sp', 'mySamlSp1',
-    'options/samlSPMetaDataOptionsNotOnOrAfterTimeout', 72000 );
+checkGet( $test, 'saml/sp', 'mySamlSp1', 'options/notOnOrAfterTimeout', 72000 );

 $test = "SamlSp -  Add Should fail on duplicate confKey";
 checkAddFailsIfExists( $test, 'saml/sp', $samlSp );

 $test = "SamlSp -  Update should succeed and keep existing values";
-$samlSp->{options}->{samlSPMetaDataOptionsCheckSLOMessageSignature} = 1;
-$samlSp->{options}->{samlSPMetaDataOptionsEncryptionMode}           = 'nameid';
-delete $samlSp->{options}->{samlSPMetaDataOptionsSessionNotOnOrAfterTimeout};
+$samlSp->{options}->{checkSLOMessageSignature} = 1;
+$samlSp->{options}->{encryptionMode}           = 'nameid';
+delete $samlSp->{options}->{sessionNotOnOrAfterTimeout};
 delete $samlSp->{exportedAttributes};
 $samlSp->{macros}->{family_name}                      = '$sn',
-$samlSp->{exportedAttributes}->{cn}->{name}           = "cn",
+  $samlSp->{exportedAttributes}->{cn}->{name}         = "cn",
  $samlSp->{exportedAttributes}->{cn}->{friendlyName} = "common_name",
  $samlSp->{exportedAttributes}->{cn}->{mandatory}    = "false",
  checkUpdate( $test, 'saml/sp', 'mySamlSp1', $samlSp );
 checkGet( $test, 'saml/sp', 'mySamlSp1',
-    'options/samlSPMetaDataOptionsCheckSLOMessageSignature', 1 );
+    'options/checkSLOMessageSignature', 1 );
 checkGet( $test, 'saml/sp', 'mySamlSp1',
-    'options/samlSPMetaDataOptionsSessionNotOnOrAfterTimeout', 36000 );
+    'options/sessionNotOnOrAfterTimeout', 36000 );
 checkGet( $test, 'saml/sp', 'mySamlSp1', 'exportedAttributes/cn/friendlyName',
    'common_name' );
 checkGet( $test, 'saml/sp', 'mySamlSp1', 'exportedAttributes/cn/mandatory',
@ -493,7 +485,7 @@ checkGet( $test, 'saml/sp', 'mySamlSp1', 'exportedAttributes/cn/name', 'uid' );
 checkGet( $test, 'saml/sp', 'mySamlSp1', 'exportedAttributes/given_name/name',
    'givenName' );
 checkGet( $test, 'saml/sp', 'mySamlSp1', 'macros/family_name', '$sn' );
-checkGet( $test, 'saml/sp', 'mySamlSp1', 'macros/given_name', '$givenName' );
+checkGet( $test, 'saml/sp', 'mySamlSp1', 'macros/given_name',  '$givenName' );

 $test = "SamlSp -  Update should fail on non existing options";
 $samlSp->{options}->{playingPossum} = 'elephant';
@ -525,12 +517,11 @@ checkUpdateNotFound( $test, 'saml/sp', 'mySamlSp3', $samlSp );
 $test               = "SamlSp -  Replace should succeed";
 $samlSp->{confKey}  = 'mySamlSp2';
 $samlSp->{metadata} = $metadata2;
-delete $samlSp->{options}->{samlSPMetaDataOptionsEncryptionMode};
+delete $samlSp->{options}->{encryptionMode};
 checkReplace( $test, 'saml/sp', 'mySamlSp2', $samlSp );

 $test = "SamlSp -  Check attribute default value was set after replace";
-checkGet( $test, 'saml/sp', 'mySamlSp2',
-    'options/samlSPMetaDataOptionsEncryptionMode', 'none' );
+checkGet( $test, 'saml/sp', 'mySamlSp2', 'options/encryptionMode', 'none' );

 $test = "SamlSp -  Replace should fail on non existing options";
 $samlSp->{options}->{playingPossum} = 'elephant';