nevis
/
adn-agov-iam-inventory
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

new configuration version

This commit is contained in:
haburger 2025-01-10 16:24:44 +00:00
parent d8aae2af99
commit c1722aa8e4
2 changed files with 4 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth/etc/nevis/k8s-nevisauth-7022472ae407577ae604bbb8.yaml
View File

@ -45,7 +45,7 @@ spec:
podDisruptionBudget: podDisruptionBudget:
maxUnavailable: "50%" maxUnavailable: "50%"
git: git:
tag: "r-6c62b8946330d7c4f2ed7d6bb4e18322c0a85ad9" tag: "r-c47f1e3863ed593d0e24a21d8b1aca887d66fef6"
dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth" dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth"
credentials: "git-credentials" credentials: "git-credentials"
keystores: keystores:

9
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth/var/opt/nevisauth/default/conf/recovery-processing.groovy
View File

@ -89,7 +89,6 @@ def userHasNewLoginFactor() {
String userExtId = session.get('ch.adnovum.nevisidm.user.extId') String userExtId = session.get('ch.adnovum.nevisidm.user.extId')
String baseEndPoint = "$baseUrl/api/core/v1/$clientExtId/users/$userExtId" String baseEndPoint = "$baseUrl/api/core/v1/$clientExtId/users/$userExtId"
def result = false
response.setSessionAttribute('agov.recovery.newLoginFactor', 'NONE') response.setSessionAttribute('agov.recovery.newLoginFactor', 'NONE')
try { try {
@ -97,27 +96,25 @@ def userHasNewLoginFactor() {
def accessApp = credInfoArray['items'].find( it -> it.stateName == "active") def accessApp = credInfoArray['items'].find( it -> it.stateName == "active")
if (accessApp) { if (accessApp) {
result = true;
response.setSessionAttribute('agov.recovery.accessapp', accessApp.properties.fidouaf_name) response.setSessionAttribute('agov.recovery.accessapp', accessApp.properties.fidouaf_name)
response.setSessionAttribute('agov.recovery.accessapp.dispatchTargetId', accessApp.identification.replaceAll('dispatch_target_', '')) response.setSessionAttribute('agov.recovery.accessapp.dispatchTargetId', accessApp.identification.replaceAll('dispatch_target_', ''))
response.setSessionAttribute('agov.recovery.newLoginFactor', 'ACCESS_APP') response.setSessionAttribute('agov.recovery.newLoginFactor', 'ACCESS_APP')
return return true
} }
credInfoArray = new JsonSlurper().parseText(idmRestClient.get("$baseEndPoint/fido2")) credInfoArray = new JsonSlurper().parseText(idmRestClient.get("$baseEndPoint/fido2"))
def fido2Key = credInfoArray['items'].find( it -> it.stateName == "active") def fido2Key = credInfoArray['items'].find( it -> it.stateName == "active")
if (fido2Key) { if (fido2Key) {
result = true;
response.setSessionAttribute('agov.recovery.securityKey', fido2Key.userFriendlyName) response.setSessionAttribute('agov.recovery.securityKey', fido2Key.userFriendlyName)
response.setSessionAttribute('agov.recovery.newLoginFactor', 'FIDO2') response.setSessionAttribute('agov.recovery.newLoginFactor', 'FIDO2')
return return true
} }
} catch(Exception e) { } catch(Exception e) {
LOG.error(e.toString()) LOG.error(e.toString())
} }
return result return false
} }