Skip to content

Enable ServiceProviderConfig GET request #7

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jan 12, 2023
Merged

Enable ServiceProviderConfig GET request #7

merged 1 commit into from
Jan 12, 2023

Conversation

f-trivino
Copy link
Collaborator

This commit enables the /ServiceProviderConfig endpoint for GET requests to view additional information about the ipa-tuura supported features.

The endpoint is read only.

@f-trivino f-trivino force-pushed the ServiceProviderConfig branch 2 times, most recently from f854774 to e981be7 Compare October 19, 2022 10:15
@f-trivino
Copy link
Collaborator Author

I'm missing a requirement from the spec:

"To enable seamless discovery of configurations, the service provider should, with the appropriate security considerations, make the authenticationSchemes attribute publicly accessible without prior authentication."

The current implementation requires authentication, the code should make usage of the GET_IS_AUTHENTICATED_PREDICATE from django_scim app or custom csrf_exempt.

flo-renaud
flo-renaud reviewed Nov 17, 2022
View reviewed changes
Copy link
Collaborator

@flo-renaud flo-renaud left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@f-trivino thanks for the PR. Please find my inline comments

@flo-renaud flo-renaud self-assigned this Nov 17, 2022
@f-trivino f-trivino force-pushed the ServiceProviderConfig branch 2 times, most recently from 4213674 to de6a7c8 Compare November 18, 2022 09:08
@f-trivino f-trivino force-pushed the ServiceProviderConfig branch 2 times, most recently from 1a14c7a to c9df679 Compare November 30, 2022 18:25
flo-renaud
flo-renaud reviewed Dec 16, 2022
View reviewed changes
Copy link
Collaborator

@flo-renaud flo-renaud left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hi @f-trivino
can you add a note in the README.me, just before If connecting from another system, update the ALLOWED_HOSTS:
Edit root/settings.py and update the 'NETLOC':'localhost' line with the name of the machine where the django server is running. This will appear as "location": "https://NETLOC/scim/v2/ServiceProviderConfig" in the output returned by a GET operation on /scim/v2/ServiceProviderConfig

@f-trivino f-trivino force-pushed the ServiceProviderConfig branch from c9df679 to 97a60cf Compare January 11, 2023 16:22
@f-trivino
Enable ServiceProviderConfig GET request
f40ec1f 
This commit enables the /ServiceProviderConfig endpoint for GET requests
to view additional information about the ipa-tuura supported features.

The endpoint is read only.
@f-trivino f-trivino force-pushed the ServiceProviderConfig branch from 97a60cf to f40ec1f Compare January 12, 2023 16:41
@f-trivino
Copy link
Collaborator Author

@flo-renaud thanks for the review, I addressed all your comments, I think the PR is ready now.

@flo-renaud
Copy link
Collaborator

@f-trivino thanks, ACK.

@flo-renaud flo-renaud added the ack Pull Request approved, can be merged label Jan 12, 2023
@f-trivino f-trivino merged commit 0b77a30 into freeipa:main Jan 12, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@flo-renaud flo-renaud flo-renaud left review comments

Assignees

@flo-renaud flo-renaud

Labels
ack Pull Request approved, can be merged
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@f-trivino @flo-renaud