5883ce95ef
The initializers including this were doing so at the top level, so every object loaded after them had a `current_application_settings` method. However, if someone had rack-attack enabled (which was loaded before these initializers), it would try to load the API, and fail, because `Gitlab::CurrentSettings` didn't have that method. To fix this: 1. Don't include `Gitlab::CurrentSettings` at the top level. We do not need `Object.new.current_application_settings` to work. 2. Make `Gitlab::CurrentSettings` explicitly `extend self`, as we already use it like that in several places. 3. Change the initializers to use that new form.
74 lines
1.7 KiB
Ruby
74 lines
1.7 KiB
Ruby
module AuthHelper
|
|
include Gitlab::CurrentSettings
|
|
|
|
PROVIDERS_WITH_ICONS = %w(twitter github gitlab bitbucket google_oauth2 facebook azure_oauth2 authentiq).freeze
|
|
FORM_BASED_PROVIDERS = [/\Aldap/, 'crowd'].freeze
|
|
|
|
def ldap_enabled?
|
|
Gitlab::LDAP::Config.enabled?
|
|
end
|
|
|
|
def omniauth_enabled?
|
|
Gitlab.config.omniauth.enabled
|
|
end
|
|
|
|
def provider_has_icon?(name)
|
|
PROVIDERS_WITH_ICONS.include?(name.to_s)
|
|
end
|
|
|
|
def auth_providers
|
|
Gitlab::OAuth::Provider.providers
|
|
end
|
|
|
|
def label_for_provider(name)
|
|
Gitlab::OAuth::Provider.label_for(name)
|
|
end
|
|
|
|
def form_based_provider?(name)
|
|
FORM_BASED_PROVIDERS.any? { |pattern| pattern === name.to_s }
|
|
end
|
|
|
|
def form_based_providers
|
|
auth_providers.select { |provider| form_based_provider?(provider) }
|
|
end
|
|
|
|
def crowd_enabled?
|
|
auth_providers.include? :crowd
|
|
end
|
|
|
|
def button_based_providers
|
|
auth_providers.reject { |provider| form_based_provider?(provider) }
|
|
end
|
|
|
|
def enabled_button_based_providers
|
|
disabled_providers = current_application_settings.disabled_oauth_sign_in_sources || []
|
|
|
|
button_based_providers.map(&:to_s) - disabled_providers
|
|
end
|
|
|
|
def button_based_providers_enabled?
|
|
enabled_button_based_providers.any?
|
|
end
|
|
|
|
def provider_image_tag(provider, size = 64)
|
|
label = label_for_provider(provider)
|
|
|
|
if provider_has_icon?(provider)
|
|
file_name = "#{provider.to_s.split('_').first}_#{size}.png"
|
|
|
|
image_tag("auth_buttons/#{file_name}", alt: label, title: "Sign in with #{label}")
|
|
else
|
|
label
|
|
end
|
|
end
|
|
|
|
def auth_active?(provider)
|
|
current_user.identities.exists?(provider: provider.to_s)
|
|
end
|
|
|
|
def unlink_allowed?(provider)
|
|
%w(saml cas3).exclude?(provider.to_s)
|
|
end
|
|
|
|
extend self
|
|
end
|