diff --git a/auth_saml_create_user/README.rst b/auth_saml_create_user/README.rst new file mode 100644 index 0000000000..e9a0dcf31e --- /dev/null +++ b/auth_saml_create_user/README.rst @@ -0,0 +1,105 @@ +===================== +Auth SAML Create User +===================== + +.. + !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! + !! This file is generated by oca-gen-addon-readme !! + !! changes will be overwritten. !! + !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! + !! source digest: sha256:56b50e53c8da439f4b9ffe0ba3860c479fa5ca82e655b4c46da70b16ad0e131d + !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! + +.. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png + :target: https://odoo-community.org/page/development-status + :alt: Beta +.. |badge2| image:: https://img.shields.io/badge/licence-AGPL--3-blue.png + :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html + :alt: License: AGPL-3 +.. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github + :target: https://github.com/OCA/server-auth/tree/16.0/auth_saml_create_user + :alt: OCA/server-auth +.. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png + :target: https://translation.odoo-community.org/projects/server-auth-16-0/server-auth-16-0-auth_saml_create_user + :alt: Translate me on Weblate +.. |badge5| image:: https://img.shields.io/badge/runboat-Try%20me-875A7B.png + :target: https://runboat.odoo-community.org/builds?repo=OCA/server-auth&target_branch=16.0 + :alt: Try me on Runboat + +|badge1| |badge2| |badge3| |badge4| |badge5| + +This module extends the functionality of Auth SAML to support the automatic creation of +SAML users when they don't exist in odoo. + +**Table of contents** + +.. contents:: + :local: + +Usage +===== + +To use this module, you need to: + +#. Check to true the create user option in the SAML Provider configuration + +Bug Tracker +=========== + +Bugs are tracked on `GitHub Issues `_. +In case of trouble, please check there if your issue has already been reported. +If you spotted it first, help us to smash it by providing a detailed and welcomed +`feedback `_. + +Do not contact contributors directly about support or help with technical issues. + +Credits +======= + +Authors +~~~~~~~ + +* Savoir-faire Linux + +Contributors +~~~~~~~~~~~~ + +* Luis Garcia(luis.garcia@savoirfairelinux.com) +* Jerome Oufella(jerome.oufella@savoirfairelinux.com) +* Rim Ben Dhaou +* Larbi Gharib +* Pierre Gault +* William Beverly + +Other credits +~~~~~~~~~~~~~ + +The development of this module has been financially supported by: + +* Savoir-faire Linux +* Odoo Community Association (OCA) + +Maintainers +~~~~~~~~~~~ + +This module is maintained by the OCA. + +.. image:: https://odoo-community.org/logo.png + :alt: Odoo Community Association + :target: https://odoo-community.org + +OCA, or the Odoo Community Association, is a nonprofit organization whose +mission is to support the collaborative development of Odoo features and +promote its widespread use. + +.. |maintainer-eilst| image:: https://github.com/eilst.png?size=40px + :target: https://github.com/eilst + :alt: eilst + +Current `maintainer `__: + +|maintainer-eilst| + +This module is part of the `OCA/server-auth `_ project on GitHub. + +You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute. diff --git a/auth_saml_create_user/__init__.py b/auth_saml_create_user/__init__.py new file mode 100644 index 0000000000..2041038ef5 --- /dev/null +++ b/auth_saml_create_user/__init__.py @@ -0,0 +1,4 @@ +# © 2019 Savoir-faire Linux +# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). + +from . import models diff --git a/auth_saml_create_user/__manifest__.py b/auth_saml_create_user/__manifest__.py new file mode 100644 index 0000000000..db5b8dfa4f --- /dev/null +++ b/auth_saml_create_user/__manifest__.py @@ -0,0 +1,21 @@ +# © 2019 Savoir-faire Linux +# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). + +{ + "name": "Auth SAML Create User", + "summary": """ + This module extends the functionality of Auth SAML to support + the automatic creation of SAML users when they don't exist in odoo.""", + "author": "Savoir-faire Linux, Odoo Community Association (OCA)", + "maintainers": ["eilst"], + "website": "https://github.com/OCA/server-auth", + "license": "AGPL-3", + "category": "Tools", + "version": "16.0.1.0.0", + "depends": ["auth_saml"], + "data": [ + # "data/auth_saml_create_user.xml", + "views/auth_saml.xml", + ], + "development_status": "Beta", +} diff --git a/auth_saml_create_user/data/auth_saml_create_user.xml b/auth_saml_create_user/data/auth_saml_create_user.xml new file mode 100644 index 0000000000..3d92335961 --- /dev/null +++ b/auth_saml_create_user/data/auth_saml_create_user.xml @@ -0,0 +1,125 @@ + + + + Local Authentic server + True + + + + + + + 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 + + + + + + + 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 + + + + + urn:oasis:names:tc:SAML:2.0:nameid-format:transient + + +]]> + + + + + + + + + + + + + + + + + + + + + + + + + + + zocial saml + Log in with Authentic + + SIG_RSA_SHA256 + + email + + diff --git a/auth_saml_create_user/i18n/auth_saml_create_user.pot b/auth_saml_create_user/i18n/auth_saml_create_user.pot new file mode 100644 index 0000000000..32d9ac1f69 --- /dev/null +++ b/auth_saml_create_user/i18n/auth_saml_create_user.pot @@ -0,0 +1,30 @@ +# Translation of Odoo Server. +# This file contains the translation of the following modules: +# * auth_saml_create_user +# +msgid "" +msgstr "" +"Project-Id-Version: Odoo Server 11.0\n" +"Report-Msgid-Bugs-To: \n" +"Last-Translator: <>\n" +"Language-Team: \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: \n" +"Plural-Forms: \n" + +#. module: auth_saml_create_user +#: model:ir.model.fields,field_description:auth_saml_create_user.field_auth_saml_provider_create_user +msgid "Create User" +msgstr "" + +#. module: auth_saml_create_user +#: model:ir.model,name:auth_saml_create_user.model_auth_saml_provider +msgid "SAML2 provider" +msgstr "" + +#. module: auth_saml_create_user +#: model:ir.model,name:auth_saml_create_user.model_res_users +msgid "Users" +msgstr "" + diff --git a/auth_saml_create_user/models/__init__.py b/auth_saml_create_user/models/__init__.py new file mode 100644 index 0000000000..51103236b6 --- /dev/null +++ b/auth_saml_create_user/models/__init__.py @@ -0,0 +1,5 @@ +# © 2018 Savoir-faire Linux +# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). + +from . import auth_saml +from . import res_users diff --git a/auth_saml_create_user/models/auth_saml.py b/auth_saml_create_user/models/auth_saml.py new file mode 100644 index 0000000000..1a409ce476 --- /dev/null +++ b/auth_saml_create_user/models/auth_saml.py @@ -0,0 +1,12 @@ +# Copyright (C) 2010-2016 XCG Consulting +# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). + +from odoo import fields, models + + +class AuthSamlProvider(models.Model): + _inherit = "auth.saml.provider" + + create_user = fields.Boolean( + string="Create User", + ) diff --git a/auth_saml_create_user/models/res_users.py b/auth_saml_create_user/models/res_users.py new file mode 100644 index 0000000000..d8acbcb205 --- /dev/null +++ b/auth_saml_create_user/models/res_users.py @@ -0,0 +1,52 @@ +# © 2019 Savoir-faire Linux +# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). + +import logging +import random + +from odoo import models + +_logger = logging.getLogger(__name__) +s = "abcdefghijklmnopqrstuvwxyz034567890ABCDEFGHIJKLMNOPQRSTUVWXYZ!@#$%^&*()?" +passlen = 16 + + +class ResUsers(models.Model): + _inherit = "res.users" + + def _auth_saml_signin(self, provider: int, validation: dict, saml_response) -> str: + saml_uid = validation["user_id"] + user_ids = self.env["res.users.saml"].search( + [("saml_uid", "=", saml_uid), ("saml_provider_id", "=", provider)] + ) + if self.check_if_create_user(provider) and not user_ids: + self.create_user(saml_uid, provider) + return super()._auth_saml_signin(provider, validation, saml_response) + + def check_if_create_user(self, provider): + return self.env["auth.saml.provider"].browse(provider).create_user + + def create_user(self, saml_uid, provider): + _logger.debug('Creating new Odoo user "%s" from SAML' % saml_uid) + SudoUser = self.env["res.users"].sudo() + new_user = SudoUser.create( + { + "name": saml_uid, + "login": saml_uid, + "password": "".join(random.sample(s, passlen)), + "company_id": self.env["res.company"].sudo().browse(1).id, + } + ) + vals = { + "saml_provider_id": provider, + "saml_uid": saml_uid, + "user_id": new_user.id, + } + self.env["res.users.saml"].create(vals) + + # Note: we need to commit to database because otherwise in phase of the first login + # the user obtain: "You do not have access to this database. Please contact support." + # However the account was created successfully + self.env.cr.commit() + + return new_user diff --git a/auth_saml_create_user/readme/CONTRIBUTORS.rst b/auth_saml_create_user/readme/CONTRIBUTORS.rst new file mode 100644 index 0000000000..c9d627a072 --- /dev/null +++ b/auth_saml_create_user/readme/CONTRIBUTORS.rst @@ -0,0 +1,6 @@ +* Luis Garcia(luis.garcia@savoirfairelinux.com) +* Jerome Oufella(jerome.oufella@savoirfairelinux.com) +* Rim Ben Dhaou +* Larbi Gharib +* Pierre Gault +* William Beverly diff --git a/auth_saml_create_user/readme/CREDITS.rst b/auth_saml_create_user/readme/CREDITS.rst new file mode 100644 index 0000000000..4eec2ce80c --- /dev/null +++ b/auth_saml_create_user/readme/CREDITS.rst @@ -0,0 +1,4 @@ +The development of this module has been financially supported by: + +* Savoir-faire Linux +* Odoo Community Association (OCA) diff --git a/auth_saml_create_user/readme/DESCRIPTION.rst b/auth_saml_create_user/readme/DESCRIPTION.rst new file mode 100644 index 0000000000..564528b8df --- /dev/null +++ b/auth_saml_create_user/readme/DESCRIPTION.rst @@ -0,0 +1,2 @@ +This module extends the functionality of Auth SAML to support the automatic creation of +SAML users when they don't exist in odoo. diff --git a/auth_saml_create_user/readme/USAGE.rst b/auth_saml_create_user/readme/USAGE.rst new file mode 100644 index 0000000000..e568bc2e8c --- /dev/null +++ b/auth_saml_create_user/readme/USAGE.rst @@ -0,0 +1,3 @@ +To use this module, you need to: + +#. Check to true the create user option in the SAML Provider configuration diff --git a/auth_saml_create_user/static/description/icon.png b/auth_saml_create_user/static/description/icon.png new file mode 100644 index 0000000000..3a0328b516 Binary files /dev/null and b/auth_saml_create_user/static/description/icon.png differ diff --git a/auth_saml_create_user/static/description/index.html b/auth_saml_create_user/static/description/index.html new file mode 100644 index 0000000000..f68edf188e --- /dev/null +++ b/auth_saml_create_user/static/description/index.html @@ -0,0 +1,448 @@ + + + + + +Auth SAML Create User + + + +
+

Auth SAML Create User

+ + +

Beta License: AGPL-3 OCA/server-auth Translate me on Weblate Try me on Runboat

+

This module extends the functionality of Auth SAML to support the automatic creation of +SAML users when they don’t exist in odoo.

+

Table of contents

+ +
+

Usage

+

To use this module, you need to:

+
    +
  1. Check to true the create user option in the SAML Provider configuration
    2. +
+
+
+

Bug Tracker

+

Bugs are tracked on GitHub Issues. +In case of trouble, please check there if your issue has already been reported. +If you spotted it first, help us to smash it by providing a detailed and welcomed +feedback.

+

Do not contact contributors directly about support or help with technical issues.

+
+
+

Credits

+
+

Authors

+
    +
  • Savoir-faire Linux
    • +
+
+ +
+

Other credits

+

The development of this module has been financially supported by:

+
    +
  • Savoir-faire Linux
    • +
  • Odoo Community Association (OCA)
    • +
+
+
+

Maintainers

+

This module is maintained by the OCA.

+ +Odoo Community Association + +

OCA, or the Odoo Community Association, is a nonprofit organization whose +mission is to support the collaborative development of Odoo features and +promote its widespread use.

+

Current maintainer:

+

eilst

+

This module is part of the OCA/server-auth project on GitHub.

+

You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.

+
+
+
+ + diff --git a/auth_saml_create_user/tests/__init__.py b/auth_saml_create_user/tests/__init__.py new file mode 100644 index 0000000000..2c8a1456b0 --- /dev/null +++ b/auth_saml_create_user/tests/__init__.py @@ -0,0 +1,5 @@ +# © 2019 Savoir-faire Linux +# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). + +from . import common +from . import test_auth_saml_create_users diff --git a/auth_saml_create_user/tests/arguments.py b/auth_saml_create_user/tests/arguments.py new file mode 100644 index 0000000000..71d2a7982d --- /dev/null +++ b/auth_saml_create_user/tests/arguments.py @@ -0,0 +1,138 @@ +provider = 2 +validation = {"user_id": "user2@example.com"} + +saml_response = "PHNhbWxwOlJlc3BvbnNlIHhtbG5zOnNhbWxwPSJ1cm46b2FzaXM6bmFtZXM6d\ + GM6U0FNTDoyLjA6cHJvdG9jb2wiIHhtbG5zOnNhbWw9InVybjpvYXNpczpuYW1lczp0YzpTQU1\ + MOjIuMDphc3NlcnRpb24iIElEPSJfNDVlYzVjYTcwZGViYmI2NGE5ZjBhZjU0OThkMzBjM\ + jgwMjc4YTc2YjJiIiBWZXJzaW9uPSIyLjAiIElzc3VlSW5zdGFudD0iMjAxOS0wOC0wNVQ\ + xNTo0NToyM1oiIERlc3RpbmF0aW9uPSJodHRwOi8vMTAuNS4wLjY6OTk5OS9hdXRoX3Nhb\ + Wwvc2lnbmluIiBJblJlc3BvbnNlVG89Il8wN0FFNTU1NDA0REFGODg5NDdDMjI4M0Y2Mjc\ + 2MTRFMCI+PHNhbWw6SXNzdWVyPmh0dHA6Ly9sb2NhbGhvc3Q6ODA4MC9zaW1wbGVzYW1sL\ + 3NhbWwyL2lkcC9tZXRhZGF0YS5waHA8L3NhbWw6SXNzdWVyPjxkczpTaWduYXR1cmUgeG1\ + sbnM6ZHM9Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvMDkveG1sZHNpZyMiPgogIDxkczpTa\ + WduZWRJbmZvPjxkczpDYW5vbmljYWxpemF0aW9uTWV0aG9kIEFsZ29yaXRobT0iaHR0cDo\ + vL3d3dy53My5vcmcvMjAwMS8xMC94bWwtZXhjLWMxNG4jIi8+CiAgICA8ZHM6U2lnbmF0d\ + XJlTWV0aG9kIEFsZ29yaXRobT0iaHR0cDovL3d3dy53My5vcmcvMjAwMC8wOS94bWxkc2l\ + nI3JzYS1zaGExIi8+CiAgPGRzOlJlZmVyZW5jZSBVUkk9IiNfNDVlYzVjYTcwZGViYmI2N\ + GE5ZjBhZjU0OThkMzBjMjgwMjc4YTc2YjJiIj48ZHM6VHJhbnNmb3Jtcz48ZHM6VHJhbnN\ + mb3JtIEFsZ29yaXRobT0iaHR0cDovL3d3dy53My5vcmcvMjAwMC8wOS94bWxkc2lnI2Vud\ + mVsb3BlZC1zaWduYXR1cmUiLz48ZHM6VHJhbnNmb3JtIEFsZ29yaXRobT0iaHR0cDovL3d\ + 3dy53My5vcmcvMjAwMS8xMC94bWwtZXhjLWMxNG4jIi8+PC9kczpUcmFuc2Zvcm1zPjxkc\ + zpEaWdlc3RNZXRob2QgQWxnb3JpdGhtPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwLzA5L3h\ + tbGRzaWcjc2hhMSIvPjxkczpEaWdlc3RWYWx1ZT41TWkyK0FtdnBKNzhTWGVLVlU0OUN0a\ + U1wc289PC9kczpEaWdlc3RWYWx1ZT48L2RzOlJlZmVyZW5jZT48L2RzOlNpZ25lZEluZm8\ + +PGRzOlNpZ25hdHVyZVZhbHVlPkpYVWp2SkFvWUJ6U2JmNTdCMXdpMkxJUXFjMVVibGVIQ\ + 1R2QnFuTm9zL09FYnFBZVkyeEVaUHo1bDhuR2gwQ1JTTncxQ3BaRGdZbjZ5bVgySXNERVR\ + OUk90dnJFbGIwWE1QU0dxdTBseFNuc1lwbzRrZnRoZmgwWERqcFFsZFNBR0RyY0JFQUxOQ\ + 2NTTmdrT3dYREpodzRuQ3VPZkVOOWljeTBwTW8rVWxKdHF2WVNGb1lUWk1jVktyRTB4ZGd\ + KaUVIekVrdGk0d1hxRXdzZHFJT3g3cU50NzBmSWxCMUVpN3Q3eWlrU3ZoUDFQMUFvZ1pjQ\ + jAxNjhVZDJCRTdQaTV2dldCRGN6azZUc2l4ck50SjMvVFlZOUNmWlhVclRZUDB6QU1sZmZ\ + qNWl3MHpFZlV1eGtDbUdYVjdpWjI0aHI2b0psbkExSC9jSkVGcHZtWmdWeEUrdz09PC9kc\ + zpTaWduYXR1cmVWYWx1ZT4KPGRzOktleUluZm8+PGRzOlg1MDlEYXRhPjxkczpYNTA5Q2V\ + ydGlmaWNhdGU+TUlJRFhUQ0NBa1dnQXdJQkFnSUpBTG1WVnVEV3U0TllNQTBHQ1NxR1NJY\ + jNEUUVCQ3dVQU1FVXhDekFKQmdOVkJBWVRBa0ZWTVJNd0VRWURWUVFJREFwVGIyMWxMVk4\ + wWVhSbE1TRXdId1lEVlFRS0RCaEpiblJsY201bGRDQlhhV1JuYVhSeklGQjBlU0JNZEdRd\ + 0hoY05NVFl4TWpNeE1UUXpORFEzV2hjTk5EZ3dOakkxTVRRek5EUTNXakJGTVFzd0NRWUR\ + WUVFHRXdKQlZURVRNQkVHQTFVRUNBd0tVMjl0WlMxVGRHRjBaVEVoTUI4R0ExVUVDZ3dZU\ + 1c1MFpYSnVaWFFnVjJsa1oybDBjeUJRZEhrZ1RIUmtNSUlCSWpBTkJna3Foa2lHOXcwQkF\ + RRUZBQU9DQVE4QU1JSUJDZ0tDQVFFQXpVQ0ZvemdOYjFoMU0wanpOUlNDamhPQm5SK3VWY\ + lZwYVdmWFlJUitBaFdEZEVlNXJ5WStDZ2F2T2c4YmZMeWJ5ekZkZWhsWWREUmdrZWRFQi9\ + Hakc4YUp3MDZsMHFGNGpET0F3MGtFeWdXQ3UybWNIN1hPeFJ0K1lBSDNUVkhhL0h1MVczV\ + 2p6a29icXFxTFE4Z2tLV1dNMjdmT2dBWjZHaWVhSkJONlZCU01NY1BleTNIV0xCbWMrVFl\ + KbXYxZGJhTzJqSGhLaDhwZkt3MFcxMlZNOFAxUElPOGd2NFBodS91dUpZaWVCV0tpeEJFe\ + XkwbEhqeWl4WUZDUjEyeGRoNENBNDdxOTU4WlJHbm5EVUdGVkUxUWhnUmFjSkNPWjliZDV\ + 0OW1yOEtMYVZCWVRDSm81RVJFOGp5bWFiNWRQcWU1cUtmSnNDWmlxV2dsYmpVbzl0d0lEQ\ + VFBQm8xQXdUakFkQmdOVkhRNEVGZ1FVeHB1d2NzL0NZUU95dWkrcjFHKzNLeEJOaHhrd0h\ + 3WURWUjBqQkJnd0ZvQVV4cHV3Y3MvQ1lRT3l1aStyMUcrM0t4Qk5oeGt3REFZRFZSMFRCQ\ + VV3QXdFQi96QU5CZ2txaGtpRzl3MEJBUXNGQUFPQ0FRRUFBaVdVS3MvMngvdmlOQ0tpM1k\ + 2YmxFdUN0QUdoek9PWjlFanJ2SjgrQ09IM1JhZzN0VkJXcmNCWjMvdWhoUHE1Z3k5bHF3N\ + E9rdkV3czk5LzVqRnNYMUZKNk1LQmdxZnV5N3loNXMxWWZNMEFOSFljek1tWXBaZUFjUWY\ + yQ0dBYVZmd1RUZlNsek5Mc0YybFcvbHk3eWFwRnpsWVNKTEdvVkUrT0hFdThnNVNsTkFDV\ + UVma1h3KzVFZ2hoK0t6bElON1I2UTdyMml4V05GQkMvaldmN05LVWZKeVg4cUlHNW1kMVl\ + VZVQ2R0JXOUJtMi8xL1JpTzI0SlRhWWxmTGRLSzlUWWI4c0c1QitPTGFiMkRJbUc5OUNKM\ + jVSa0FjU29iV05GNXpEME82bGdPbzNjRWRCL2tzQ3EzaG10bEMvRGxMWi9EOENKKzdWdVp\ + uUzFyUjJuYVE9PTwvZHM6WDUwOUNlcnRpZmljYXRlPjwvZHM6WDUwOURhdGE+PC9kczpLZ\ + XlJbmZvPjwvZHM6U2lnbmF0dXJlPjxzYW1scDpTdGF0dXM+PHNhbWxwOlN0YXR1c0NvZGU\ + gVmFsdWU9InVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDpzdGF0dXM6U3VjY2VzcyIvP\ + jwvc2FtbHA6U3RhdHVzPjxzYW1sOkFzc2VydGlvbiB4bWxuczp4c2k9Imh0dHA6Ly93d3c\ + udzMub3JnLzIwMDEvWE1MU2NoZW1hLWluc3RhbmNlIiB4bWxuczp4cz0iaHR0cDovL3d3d\ + y53My5vcmcvMjAwMS9YTUxTY2hlbWEiIElEPSJfYzNhOTVjMzFjNWJkMDViYjA3OWU1MjY\ + 0ZjE2NTQyNmMzYTY3NGMwMDYzIiBWZXJzaW9uPSIyLjAiIElzc3VlSW5zdGFudD0iMjAxO\ + S0wOC0wNVQxNTo0NToyM1oiPjxzYW1sOklzc3Vlcj5odHRwOi8vbG9jYWxob3N0OjgwODA\ + vc2ltcGxlc2FtbC9zYW1sMi9pZHAvbWV0YWRhdGEucGhwPC9zYW1sOklzc3Vlcj48ZHM6U\ + 2lnbmF0dXJlIHhtbG5zOmRzPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwLzA5L3htbGRzaWc\ + jIj4KICA8ZHM6U2lnbmVkSW5mbz48ZHM6Q2Fub25pY2FsaXphdGlvbk1ldGhvZCBBbGdvc\ + ml0aG09Imh0dHA6Ly93d3cudzMub3JnLzIwMDEvMTAveG1sLWV4Yy1jMTRuIyIvPgogICA\ + gPGRzOlNpZ25hdHVyZU1ldGhvZCBBbGdvcml0aG09Imh0dHA6Ly93d3cudzMub3JnLzIwM\ + DAvMDkveG1sZHNpZyNyc2Etc2hhMSIvPgogIDxkczpSZWZlcmVuY2UgVVJJPSIjX2MzYTk\ + 1YzMxYzViZDA1YmIwNzllNTI2NGYxNjU0MjZjM2E2NzRjMDA2MyI+PGRzOlRyYW5zZm9yb\ + XM+PGRzOlRyYW5zZm9ybSBBbGdvcml0aG09Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvMDk\ + veG1sZHNpZyNlbnZlbG9wZWQtc2lnbmF0dXJlIi8+PGRzOlRyYW5zZm9ybSBBbGdvcml0a\ + G09Imh0dHA6Ly93d3cudzMub3JnLzIwMDEvMTAveG1sLWV4Yy1jMTRuIyIvPjwvZHM6VHJ\ + hbnNmb3Jtcz48ZHM6RGlnZXN0TWV0aG9kIEFsZ29yaXRobT0iaHR0cDovL3d3dy53My5vc\ + mcvMjAwMC8wOS94bWxkc2lnI3NoYTEiLz48ZHM6RGlnZXN0VmFsdWU+aG1rVE54QjhQeEV\ + NMDVDMTNEUHEwZTFXWFhjPTwvZHM6RGlnZXN0VmFsdWU+PC9kczpSZWZlcmVuY2U+PC9kc\ + zpTaWduZWRJbmZvPjxkczpTaWduYXR1cmVWYWx1ZT5pNE0vM1grSmtxYzdwOE1FYkdBaGF\ + 5T0ZKdjcwNGE1ajVJakViQU96b0N4WmJ0N0ZCaVZZd2lLcG5LaXovYjlLOFQ3a2NYWUtMT\ + k5GSTBrQkhXakE4MmYrSnloNXJwekV5MUo5b0VqUER2ZjlMbDVBYnlaWjVnK1NScktkSDN\ + LQVR3ODB4OWZ2VlBlMENwQStEcHdmc3ozNk54Lytza01lUnlRak1JVTRBMGl1MXVUNWt0T\ + kdyMDd3RkdYL2ROK1ZsMFd0OHBqM0dXdG9LQkFOT1dKMHZMNm1zM0gzaTRHZmdUam00RGR\ + hSFBHYkpIdmNqRFNmdEdHQWVVbTBDUTBYdC9OeHpNQnJxdHhEOWpqQzQwcWpmb0ZEb2lNU\ + 3dmbTdwY0ZxamlNeEJkT3JQTFJBZGlFUStnWVFBMURTUmpMWVVUM2dlMG1CUXJDUHZXb3h\ + mY2cvUGc9PTwvZHM6U2lnbmF0dXJlVmFsdWU+CjxkczpLZXlJbmZvPjxkczpYNTA5RGF0Y\ + T48ZHM6WDUwOUNlcnRpZmljYXRlPk1JSURYVENDQWtXZ0F3SUJBZ0lKQUxtVlZ1RFd1NE5\ + ZTUEwR0NTcUdTSWIzRFFFQkN3VUFNRVV4Q3pBSkJnTlZCQVlUQWtGVk1STXdFUVlEVlFRS\ + URBcFRiMjFsTFZOMFlYUmxNU0V3SHdZRFZRUUtEQmhKYm5SbGNtNWxkQ0JYYVdSbmFYUnp\ + JRkIwZVNCTWRHUXdIaGNOTVRZeE1qTXhNVFF6TkRRM1doY05ORGd3TmpJMU1UUXpORFEzV\ + 2pCRk1Rc3dDUVlEVlFRR0V3SkJWVEVUTUJFR0ExVUVDQXdLVTI5dFpTMVRkR0YwWlRFaE1\ + COEdBMVVFQ2d3WVNXNTBaWEp1WlhRZ1YybGtaMmwwY3lCUWRIa2dUSFJrTUlJQklqQU5CZ\ + 2txaGtpRzl3MEJBUUVGQUFPQ0FROEFNSUlCQ2dLQ0FRRUF6VUNGb3pnTmIxaDFNMGp6TlJ\ + TQ2poT0JuUit1VmJWcGFXZlhZSVIrQWhXRGRFZTVyeVkrQ2dhdk9nOGJmTHlieXpGZGVob\ + FlkRFJna2VkRUIvR2pHOGFKdzA2bDBxRjRqRE9BdzBrRXlnV0N1Mm1jSDdYT3hSdCtZQUg\ + zVFZIYS9IdTFXM1dqemtvYnFxcUxROGdrS1dXTTI3Zk9nQVo2R2llYUpCTjZWQlNNTWNQZ\ + XkzSFdMQm1jK1RZSm12MWRiYU8yakhoS2g4cGZLdzBXMTJWTThQMVBJTzhndjRQaHUvdXV\ + KWWllQldLaXhCRXl5MGxIanlpeFlGQ1IxMnhkaDRDQTQ3cTk1OFpSR25uRFVHRlZFMVFoZ\ + 1JhY0pDT1o5YmQ1dDltcjhLTGFWQllUQ0pvNUVSRThqeW1hYjVkUHFlNXFLZkpzQ1ppcVd\ + nbGJqVW85dHdJREFRQUJvMUF3VGpBZEJnTlZIUTRFRmdRVXhwdXdjcy9DWVFPeXVpK3IxR\ + yszS3hCTmh4a3dId1lEVlIwakJCZ3dGb0FVeHB1d2NzL0NZUU95dWkrcjFHKzNLeEJOaHh\ + rd0RBWURWUjBUQkFVd0F3RUIvekFOQmdrcWhraUc5dzBCQVFzRkFBT0NBUUVBQWlXVUtzL\ + zJ4L3ZpTkNLaTNZNmJsRXVDdEFHaHpPT1o5RWpydko4K0NPSDNSYWczdFZCV3JjQlozL3V\ + oaFBxNWd5OWxxdzRPa3ZFd3M5OS81akZzWDFGSjZNS0JncWZ1eTd5aDVzMVlmTTBBTkhZY\ + 3pNbVlwWmVBY1FmMkNHQWFWZndUVGZTbHpOTHNGMmxXL2x5N3lhcEZ6bFlTSkxHb1ZFK09\ + IRXU4ZzVTbE5BQ1VFZmtYdys1RWdoaCtLemxJTjdSNlE3cjJpeFdORkJDL2pXZjdOS1VmS\ + nlYOHFJRzVtZDFZVWVUNkdCVzlCbTIvMS9SaU8yNEpUYVlsZkxkS0s5VFliOHNHNUIrT0x\ + hYjJESW1HOTlDSjI1UmtBY1NvYldORjV6RDBPNmxnT28zY0VkQi9rc0NxM2htdGxDL0RsT\ + FovRDhDSis3VnVablMxclIybmFRPT08L2RzOlg1MDlDZXJ0aWZpY2F0ZT48L2RzOlg1MDl\ + EYXRhPjwvZHM6S2V5SW5mbz48L2RzOlNpZ25hdHVyZT48c2FtbDpTdWJqZWN0PjxzYW1sO\ + k5hbWVJRCBTUE5hbWVRdWFsaWZpZXI9Imh0dHA6Ly8xMC41LjAuNjo5OTk5L21ldGFkYXR\ + hLyIgRm9ybWF0PSJ1cm46b2FzaXM6bmFtZXM6dGM6U0FNTDoyLjA6bmFtZWlkLWZvcm1hd\ + Dp0cmFuc2llbnQiPl9hNmYwZjBlZTgyNmQ0ZmY5ODcyNmY1ZWQ3MDkxZjhkOWRiY2M1YTM\ + 0YjU8L3NhbWw6TmFtZUlEPjxzYW1sOlN1YmplY3RDb25maXJtYXRpb24gTWV0aG9kPSJ1c\ + m46b2FzaXM6bmFtZXM6dGM6U0FNTDoyLjA6Y206YmVhcmVyIj48c2FtbDpTdWJqZWN0Q29\ + uZmlybWF0aW9uRGF0YSBOb3RPbk9yQWZ0ZXI9IjIwMTktMDgtMDVUMTU6NTA6MjNaIiBSZ\ + WNpcGllbnQ9Imh0dHA6Ly8xMC41LjAuNjo5OTk5L2F1dGhfc2FtbC9zaWduaW4iIEluUmV\ + zcG9uc2VUbz0iXzA3QUU1NTU0MDREQUY4ODk0N0MyMjgzRjYyNzYxNEUwIi8+PC9zYW1sO\ + lN1YmplY3RDb25maXJtYXRpb24+PC9zYW1sOlN1YmplY3Q+PHNhbWw6Q29uZGl0aW9ucyB\ + Ob3RCZWZvcmU9IjIwMTktMDgtMDVUMTU6NDQ6NTNaIiBOb3RPbk9yQWZ0ZXI9IjIwMTktM\ + DgtMDVUMTU6NTA6MjNaIj48c2FtbDpBdWRpZW5jZVJlc3RyaWN0aW9uPjxzYW1sOkF1ZGl\ + lbmNlPmh0dHA6Ly8xMC41LjAuNjo5OTk5L21ldGFkYXRhLzwvc2FtbDpBdWRpZW5jZT48L\ + 3NhbWw6QXVkaWVuY2VSZXN0cmljdGlvbj48L3NhbWw6Q29uZGl0aW9ucz48c2FtbDpBdXR\ + oblN0YXRlbWVudCBBdXRobkluc3RhbnQ9IjIwMTktMDgtMDVUMTU6NDU6MjNaIiBTZXNza\ + W9uTm90T25PckFmdGVyPSIyMDE5LTA4LTA1VDIzOjQ1OjIzWiIgU2Vzc2lvbkluZGV4PSJ\ + fMGQ3Mzk2OTA1NzkzOTVmYzEzOWQ1YzM4Y2M4MmI5MDU0MmUxYTRjNzRkIj48c2FtbDpBd\ + XRobkNvbnRleHQ+PHNhbWw6QXV0aG5Db250ZXh0Q2xhc3NSZWY+dXJuOm9hc2lzOm5hbWV\ + zOnRjOlNBTUw6Mi4wOmFjOmNsYXNzZXM6UGFzc3dvcmQ8L3NhbWw6QXV0aG5Db250ZXh0Q\ + 2xhc3NSZWY+PC9zYW1sOkF1dGhuQ29udGV4dD48L3NhbWw6QXV0aG5TdGF0ZW1lbnQ+PHN\ + hbWw6QXR0cmlidXRlU3RhdGVtZW50PjxzYW1sOkF0dHJpYnV0ZSBOYW1lPSJ1aWQiIE5hb\ + WVGb3JtYXQ9InVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDphdHRybmFtZS1mb3JtYXQ\ + 6YmFzaWMiPjxzYW1sOkF0dHJpYnV0ZVZhbHVlIHhzaTp0eXBlPSJ4czpzdHJpbmciPjI8L\ + 3NhbWw6QXR0cmlidXRlVmFsdWU+PC9zYW1sOkF0dHJpYnV0ZT48c2FtbDpBdHRyaWJ1dGU\ + gTmFtZT0iZWR1UGVyc29uQWZmaWxpYXRpb24iIE5hbWVGb3JtYXQ9InVybjpvYXNpczpuY\ + W1lczp0YzpTQU1MOjIuMDphdHRybmFtZS1mb3JtYXQ6YmFzaWMiPjxzYW1sOkF0dHJpYnV\ + 0ZVZhbHVlIHhzaTp0eXBlPSJ4czpzdHJpbmciPmdyb3VwMjwvc2FtbDpBdHRyaWJ1dGVWY\ + Wx1ZT48L3NhbWw6QXR0cmlidXRlPjxzYW1sOkF0dHJpYnV0ZSBOYW1lPSJlbWFpbCIgTmF\ + tZUZvcm1hdD0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOmF0dHJuYW1lLWZvcm1hd\ + DpiYXNpYyI+PHNhbWw6QXR0cmlidXRlVmFsdWUgeHNpOnR5cGU9InhzOnN0cmluZyI+dXN\ + lcjJAZXhhbXBsZS5jb208L3NhbWw6QXR0cmlidXRlVmFsdWU+PC9zYW1sOkF0dHJpYnV0Z\ + T48L3NhbWw6QXR0cmlidXRlU3RhdGVtZW50Pjwvc2FtbDpBc3NlcnRpb24+PC9zYW1scDp\ + SZXNwb25zZT4=" diff --git a/auth_saml_create_user/tests/common.py b/auth_saml_create_user/tests/common.py new file mode 100644 index 0000000000..1b24810f5a --- /dev/null +++ b/auth_saml_create_user/tests/common.py @@ -0,0 +1,18 @@ +# © 2019 Savoir-faire Linux +# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). + +from odoo.tests import common + + +class TestAuthSamlCreateUserCommon(common.TransactionCase): + def setUp(self): + super(TestAuthSamlCreateUserCommon, self).setUp() + self.env.ref("auth_saml.allow_saml_uid_and_internal_password").write( + {"value": 1} + ) + + # Usefull models + self.SamlProvider = self.env["auth.saml.provider"] + self.ResUsers = self.env["res.users"] + + self.provider = self.env.ref("auth_saml_create_user.provider_local_create_user") diff --git a/auth_saml_create_user/tests/test_auth_saml_create_users.py b/auth_saml_create_user/tests/test_auth_saml_create_users.py new file mode 100644 index 0000000000..b53b10b438 --- /dev/null +++ b/auth_saml_create_user/tests/test_auth_saml_create_users.py @@ -0,0 +1,27 @@ +# © 2019 Savoir-faire Linux +# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). + +from .arguments import provider, saml_response, validation +from .common import TestAuthSamlCreateUserCommon + + +class TestAuthSamlCreateUser(TestAuthSamlCreateUserCommon): + def setUp(self): + super(TestAuthSamlCreateUser, self).setUp() + + def test_010_auth_saml_signin(self): + self.ResUsers._auth_saml_signin(provider, validation, saml_response) + + def test_020_check_if_should_create_user(self): + self.assertEqual( + self.provider.create_user, + self.ResUsers.check_if_create_user(self.provider.id), + ) + + def test_030_create_user(self): + saml_uid = "new_test_user12312az@test.com" + user_ids = self.ResUsers.search([("saml_uid", "=", saml_uid)]) + self.assertTrue(not user_ids) + self.ResUsers.create_user(saml_uid, provider) + user_ids = self.ResUsers.search([("saml_uid", "=", saml_uid)]) + self.assertTrue(user_ids) diff --git a/auth_saml_create_user/views/auth_saml.xml b/auth_saml_create_user/views/auth_saml.xml new file mode 100644 index 0000000000..176cb512da --- /dev/null +++ b/auth_saml_create_user/views/auth_saml.xml @@ -0,0 +1,19 @@ + + + + auth.saml.provider.form.inherit + auth.saml.provider + + + + + + + diff --git a/setup/auth_saml_create_user/odoo/addons/auth_saml_create_user b/setup/auth_saml_create_user/odoo/addons/auth_saml_create_user new file mode 120000 index 0000000000..9d8265e639 --- /dev/null +++ b/setup/auth_saml_create_user/odoo/addons/auth_saml_create_user @@ -0,0 +1 @@ +../../../../auth_saml_create_user \ No newline at end of file diff --git a/setup/auth_saml_create_user/setup.cfg b/setup/auth_saml_create_user/setup.cfg new file mode 100644 index 0000000000..3c6e79cf31 --- /dev/null +++ b/setup/auth_saml_create_user/setup.cfg @@ -0,0 +1,2 @@ +[bdist_wheel] +universal=1 diff --git a/setup/auth_saml_create_user/setup.py b/setup/auth_saml_create_user/setup.py new file mode 100644 index 0000000000..28c57bb640 --- /dev/null +++ b/setup/auth_saml_create_user/setup.py @@ -0,0 +1,6 @@ +import setuptools + +setuptools.setup( + setup_requires=['setuptools-odoo'], + odoo_addon=True, +)