nevis
/
adn-agov-work-ob-inventory
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

new configuration version

This commit is contained in:
haburger 2025-02-07 09:34:13 +00:00
parent 8cbedecac5
commit 649cef98e5
3 changed files with 8 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-auth/etc/nevis/k8s-ob-auth-d00b0dcbe241793d30daf91c.yaml
View File

@ -45,7 +45,7 @@ spec:
podDisruptionBudget:
maxUnavailable: "50%"
git:
tag: "r-606e2a54642c04bc9fe072c99a5140a462f628a6"
tag: "r-48ecba4dc24b65ae9719794f822a8e18ae620ca2"
dir: "DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-auth"
credentials: "git-credentials"
keystores:

2
DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-auth/var/opt/nevisauth/default/conf/esauth4.xml
View File

@ -107,6 +107,8 @@
<property name="script" value="file:///var/opt/nevisauth/default/conf/mock-me-processing.groovy"/>
<!-- source: pattern://be8f8436b2ec70e9d601fdd3 -->
<property name="parameter.idp-sso-url" value="https://auth.agov-w.azure.adnovum.net/SAML2/SSO/"/>
<!-- source: pattern://be8f8436b2ec70e9d601fdd3 -->
<property name="parameter.idp-recovery-url" value="https://auth.agov-w.azure.adnovum.net/AUTH/RECOVERY/"/>
</AuthState>
<AuthState name="ob-mock-me-realm_ob-mock-me-auth-processor_serviceProvider" class="ch.nevis.esauth.auth.states.saml.ServiceProviderState" final="false" resumeState="false">
<!-- source: pattern://be8f8436b2ec70e9d601fdd3 -->

6
DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-auth/var/opt/nevisauth/default/conf/mock-me-processing.groovy
View File

@ -10,7 +10,11 @@ if (inargs['SAMLResponse']) {
if (inargs['back'] && inargs['back'] == 'go') {
response.setStatus(AuthResponse.AUTH_ERROR)
response.setTransferDestination(parameters['idp-sso-url'])
if (session['saml.assertion.authnContextClassRef'] && session['saml.assertion.authnContextClassRef'] == 'urn:qa.agov.ch:names:tc:ac:classes:recovery') {
response.setTransferDestination(parameters['idp-recovery-url'])
} else {
response.setTransferDestination(parameters['idp-sso-url'])
}
response.setIsRedirectTransfer(true)
return
}