Populate internal GitHub IDP Config from CRD

2026-05-01 21:36:00 +00:00 · 2024-04-02 21:53:03 -05:00
parent 349039ff5d
commit c9b61ef010
51 changed files with 3256 additions and 289 deletions
--- a/internal/upstreamgithub/upstreamgithub.go
+++ b/internal/upstreamgithub/upstreamgithub.go
@@ -1,21 +1,31 @@
 // Copyright 2020-2024 the Pinniped contributors. All Rights Reserved.
 // SPDX-License-Identifier: Apache-2.0

-// Package upstreamoidc implements an abstraction of upstream GitHub provider interactions.
+// Package upstreamgithub implements an abstraction of upstream GitHub provider interactions.
 package upstreamgithub

 import (
+	"net/http"
+
+	"golang.org/x/oauth2"
 	"k8s.io/apimachinery/pkg/types"

+	"go.pinniped.dev/generated/latest/apis/supervisor/idp/v1alpha1"
 	"go.pinniped.dev/internal/federationdomain/upstreamprovider"
 )

 // ProviderConfig holds the active configuration of an upstream GitHub provider.
 type ProviderConfig struct {
-	Name          string
-	ResourceUID   types.UID
-	UsernameClaim string
-	GroupsClaim   string
+	Name                    string
+	ResourceUID             types.UID
+	Host                    string
+	UsernameAttribute       v1alpha1.GitHubUsernameAttribute
+	GroupNameAttribute      v1alpha1.GitHubGroupNameAttribute
+	OAuth2Config            *oauth2.Config
+	AllowedOrganizations    []string
+	OrganizationLoginPolicy v1alpha1.GitHubAllowedAuthOrganizationsPolicy
+	AuthorizationURL        string
+	HttpClient              *http.Client
 }

 var _ upstreamprovider.UpstreamGithubIdentityProviderI = (*ProviderConfig)(nil)
@@ -27,3 +37,35 @@ func (p *ProviderConfig) GetResourceUID() types.UID {
 func (p *ProviderConfig) GetName() string {
 	return p.Name
 }
+
+func (p *ProviderConfig) GetClientID() string {
+	return p.OAuth2Config.ClientID
+}
+
+func (p *ProviderConfig) GetHost() string {
+	return p.Host
+}
+
+func (p *ProviderConfig) GetUsernameAttribute() v1alpha1.GitHubUsernameAttribute {
+	return p.UsernameAttribute
+}
+
+func (p *ProviderConfig) GetGroupNameAttribute() v1alpha1.GitHubGroupNameAttribute {
+	return p.GroupNameAttribute
+}
+
+func (p *ProviderConfig) GetAllowedOrganizations() []string {
+	return p.AllowedOrganizations
+}
+
+func (p *ProviderConfig) GetOrganizationLoginPolicy() v1alpha1.GitHubAllowedAuthOrganizationsPolicy {
+	return p.OrganizationLoginPolicy
+}
+
+func (p *ProviderConfig) GetAuthorizationURL() string {
+	return p.AuthorizationURL
+}
+
+func (p *ProviderConfig) GetHttpClient() *http.Client {
+	return p.HttpClient
+}