3pp-mirror/pomerium
1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-08-02 16:30:17 +02:00
Code Issues Projects Releases Packages Wiki Activity

Optimize identity provider lookup with new cache

Browse source
This commit is contained in:
Joe Kralicky 2024-11-04 15:20:31 -05:00
parent c8b6b8f1a9
commit 8df3028533
No known key found for this signature in database
GPG key ID: 75C4875F34A9FB79
12 changed files with 179 additions and 77 deletions
Download patch file Download diff file Expand all files Collapse all files

42
internal/authenticateflow/identity.go Normal file
View file

@ -0,0 +1,42 @@
package authenticateflow
import (
"github.com/pomerium/pomerium/config"
"github.com/pomerium/pomerium/internal/urlutil"
identitypb "github.com/pomerium/pomerium/pkg/grpc/identity"
"github.com/pomerium/pomerium/pkg/identity"
"github.com/pomerium/pomerium/pkg/identity/oauth"
)
func NewAuthenticator(options *config.Options, idp *identitypb.Provider) (identity.Authenticator, error) {
authenticateURL, err := options.GetAuthenticateURL()
if err != nil {
return nil, err
}
redirectURL, err := urlutil.DeepCopy(authenticateURL)
if err != nil {
return nil, err
}
redirectURL.Path = options.AuthenticateCallbackPath
return identity.NewAuthenticator(oauth.Options{
RedirectURL: redirectURL,
ProviderName: idp.GetType(),
ProviderURL: idp.GetUrl(),
ClientID: idp.GetClientId(),
ClientSecret: idp.GetClientSecret(),
Scopes: idp.GetScopes(),
AuthCodeOptions: idp.GetRequestParams(),
})
}
func IdentityProviderLookupFromCache(idpCache *config.IdentityProviderCache) func(*config.Options, string) (identity.Authenticator, error) {
return func(options *config.Options, idpID string) (identity.Authenticator, error) {
idp, err := idpCache.GetIdentityProviderByID(idpID)
if err != nil {
return nil, err
}
return NewAuthenticator(options, idp)
}
}