Brendon/gameyfin
1
0
Fork 0
mirror of https://github.com/BrenBroZAYT/gameyfin.git synced 2026-06-16 16:20:04 +00:00
Code Issues Packages Projects Releases Wiki Activity

WIP: SSO via Oauth2/OIDC

Browse Source
This commit is contained in:
grimsi
2024-09-15 23:36:04 +02:00
parent de3732aec1
commit a2870011e8
3 changed files with 101 additions and 37 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/main/kotlin/de/grimsi/gameyfin/config/ConfigProperties.kt
+97 -35
View File
@@ -11,37 +11,33 @@ sealed class ConfigProperties<T : Serializable>(
) { ) {
/** Libraries */ /** Libraries */
data object LibraryAllowPublicAccess : data object LibraryAllowPublicAccess : ConfigProperties<Boolean>(
ConfigProperties<Boolean>( Boolean::class,
Boolean::class, "library.allow-public-access",
"library.allow-public-access", "Allow access to game libraries without login",
"Allow access to game libraries without login", false
false )
)
data object LibraryEnableFilesystemWatcher : data object LibraryEnableFilesystemWatcher : ConfigProperties<Boolean>(
ConfigProperties<Boolean>( Boolean::class,
Boolean::class, "library.scan.enable-filesystem-watcher",
"library.scan.enable-filesystem-watcher", "Enable automatic library scanning using file system watchers",
"Enable automatic library scanning using file system watchers", true
true )
)
data object LibraryMetadataUpdateEnabled : data object LibraryMetadataUpdateEnabled : ConfigProperties<Boolean>(
ConfigProperties<Boolean>( Boolean::class,
Boolean::class, "library.metadata.update.enabled",
"library.metadata.update.enabled", "Enable periodic refresh of video game metadata",
"Enable periodic refresh of video game metadata", true
true )
)
data object LibraryMetadataUpdateSchedule : data object LibraryMetadataUpdateSchedule : ConfigProperties<String>(
ConfigProperties<String>( String::class,
String::class, "library.metadata.update.schedule",
"library.metadata.update.schedule", "Schedule for periodic metadata refresh in cron format",
"Schedule for periodic metadata refresh in cron format", "0 0 * * 0"
"0 0 * * 0" )
)
/** User management */ /** User management */
data object UsersAllowNewSignUps : ConfigProperties<Boolean>( data object UsersAllowNewSignUps : ConfigProperties<Boolean>(
@@ -51,13 +47,75 @@ sealed class ConfigProperties<T : Serializable>(
false false
) )
data object UsersConfirmNewSignUps : data object UsersConfirmNewSignUps : ConfigProperties<Boolean>(
ConfigProperties<Boolean>( Boolean::class,
Boolean::class, "users.sign-ups.confirm",
"users.sign-ups.confirm", "Admins need to confirm new users",
"Admins need to confirm new users", false
false )
)
/** Single Sign-On */
data object SsoEnabled : ConfigProperties<Boolean>(
Boolean::class,
"sso.oidc.enabled",
"Enable SSO via OIDC/OAuth2",
false
)
data object SsoClientId : ConfigProperties<String>(
String::class,
"sso.oidc.client-id",
"Client ID"
)
data object SsoClientSecret : ConfigProperties<String>(
String::class,
"sso.oidc.client-secret",
"Client secret"
)
data object SsoIssuerUrl : ConfigProperties<String>(
String::class,
"sso.oidc.issuer-url",
"Issuer URL"
)
data object SsoAuthorizeUrl : ConfigProperties<String>(
String::class,
"sso.oidc.authorize-url",
"Authorize URL"
)
data object SsoTokenUrl : ConfigProperties<String>(
String::class,
"sso.oidc.token-url",
"Token URL"
)
data object SsoUserInfoUrl : ConfigProperties<String>(
String::class,
"sso.oidc.userinfo-url",
"Userinfo URL"
)
data object SsoJwksUrl : ConfigProperties<String>(
String::class,
"sso.oidc.jwks-url",
"JWKS URL"
)
data object SsoMatchExistingUsersBy : ConfigProperties<MatchUsersBy>(
MatchUsersBy::class,
"sso.oidc.match-existing-users-by",
"Match existing users by",
MatchUsersBy.USERNAME
)
data object SsoAutoRegisterNewUsers : ConfigProperties<Boolean>(
Boolean::class,
"sso.oidc.auto-register-new-users",
"Automatically create new users after registration"
)
/** Notifications */ /** Notifications */
data object NotificationsEmailHost : data object NotificationsEmailHost :
@@ -72,3 +130,7 @@ sealed class ConfigProperties<T : Serializable>(
data object NotificationsEmailPassword : data object NotificationsEmailPassword :
ConfigProperties<String>(String::class, "notifications.email.password", "Password for the email account") ConfigProperties<String>(String::class, "notifications.email.password", "Password for the email account")
} }
enum class MatchUsersBy {
USERNAME, EMAIL
}
src/main/kotlin/de/grimsi/gameyfin/config/ConfigService.kt
+1
View File
@@ -163,6 +163,7 @@ class ConfigService(
Boolean::class -> value.toBoolean() as T Boolean::class -> value.toBoolean() as T
Int::class -> value.toFloat().toInt() as T Int::class -> value.toFloat().toInt() as T
Float::class -> value.toFloat() as T Float::class -> value.toFloat() as T
Enum::class -> value as T
else -> { else -> {
throw RuntimeException("Unknown config type ${configProperty.type}: '$value' for key ${configProperty.key}") throw RuntimeException("Unknown config type ${configProperty.type}: '$value' for key ${configProperty.key}")
} }
src/main/kotlin/de/grimsi/gameyfin/users/entities/User.kt
+3 -2
View File
@@ -16,8 +16,9 @@ class User(
@Column(unique = true) @Column(unique = true)
var username: String, var username: String,
@NotNull var password: String? = null,
var password: String,
var oidcProviderId: String? = null,
@Nullable @Nullable
@Column(unique = true) @Column(unique = true)