Added LDAP Entities API (#2700)

2023-03-10 09:16:29 -06:00
parent 5262c02a28
commit 4cceee8936
16 changed files with 1508 additions and 6 deletions
--- a/restapi/admin_idp.go
+++ b/restapi/admin_idp.go
@@ -20,6 +20,7 @@ package restapi
 import (
 	"context"
 	"fmt"
+	"time"

 	"github.com/go-openapi/runtime/middleware"
 	"github.com/minio/console/models"
@@ -66,6 +67,13 @@ func registerIDPHandlers(api *operations.ConsoleAPI) {
 		}
 		return idp.NewGetConfigurationOK().WithPayload(response)
 	})
+	api.IdpGetLDAPEntitiesHandler = idp.GetLDAPEntitiesHandlerFunc(func(params idp.GetLDAPEntitiesParams, session *models.Principal) middleware.Responder {
+		response, err := getLDAPEntitiesResponse(session, params)
+		if err != nil {
+			return idp.NewGetLDAPEntitiesDefault(int(err.Code)).WithPayload(err)
+		}
+		return idp.NewGetLDAPEntitiesOK().WithPayload(response)
+	})
 }

 func createIDPConfigurationResponse(session *models.Principal, params idp.CreateConfigurationParams) (*models.SetIDPResponse, *models.Error) {
@@ -208,3 +216,73 @@ func parseIDPConfigurationsInfo(infoList []madmin.IDPCfgInfo) (results []*models
 	}
 	return results
 }
+
+func getLDAPEntitiesResponse(session *models.Principal, params idp.GetLDAPEntitiesParams) (*models.LdapEntities, *models.Error) {
+	ctx, cancel := context.WithCancel(params.HTTPRequest.Context())
+	defer cancel()
+	mAdmin, err := NewMinioAdminClient(session)
+	if err != nil {
+		return nil, ErrorWithContext(ctx, err)
+	}
+
+	result, err := getEntitiesResult(ctx, AdminClient{Client: mAdmin}, params.Body.Users, params.Body.Groups, params.Body.Policies)
+	if err != nil {
+		return nil, ErrorWithContext(ctx, err)
+	}
+
+	return result, nil
+}
+
+func getEntitiesResult(ctx context.Context, client MinioAdmin, users, groups, policies []string) (*models.LdapEntities, error) {
+	entities, err := client.getLDAPPolicyEntities(ctx, madmin.PolicyEntitiesQuery{
+		Users:  users,
+		Groups: groups,
+		Policy: policies,
+	})
+	if err != nil {
+		return nil, err
+	}
+
+	var result models.LdapEntities
+	var usersEntity []*models.LdapUserPolicyEntity
+	var groupsEntity []*models.LdapGroupPolicyEntity
+	var policiesEntity []*models.LdapPolicyEntity
+
+	result.Timestamp = entities.Timestamp.Format(time.RFC3339)
+
+	for _, userMapping := range entities.UserMappings {
+		mapItem := models.LdapUserPolicyEntity{
+			User:     userMapping.User,
+			Policies: userMapping.Policies,
+		}
+
+		usersEntity = append(usersEntity, &mapItem)
+	}
+
+	result.Users = usersEntity
+
+	for _, groupsMapping := range entities.GroupMappings {
+		mapItem := models.LdapGroupPolicyEntity{
+			Group:    groupsMapping.Group,
+			Policies: groupsMapping.Policies,
+		}
+
+		groupsEntity = append(groupsEntity, &mapItem)
+	}
+
+	result.Groups = groupsEntity
+
+	for _, policyMapping := range entities.PolicyMappings {
+		mapItem := models.LdapPolicyEntity{
+			Policy: policyMapping.Policy,
+			Users:  policyMapping.Users,
+			Groups: policyMapping.Groups,
+		}
+
+		policiesEntity = append(policiesEntity, &mapItem)
+	}
+
+	result.Policies = policiesEntity
+
+	return &result, nil
+}