studio/people
Archived
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

🧑‍💻(tilt) allow use of people as an IdP

Browse Source 
Few fixes to allow the keycloak dev stack to use people
as an Identity Provider.
This requires the update of the bitnami keycloak chart we
use.
This commit is contained in:
Quentin BEY
2025-02-04 12:51:47 +01:00
committed by BEY Quentin
parent fd8e0e08c3
commit cf4b435c63
4 changed files with 41 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

34
src/backend/people/settings.py
View File

@@ -686,6 +686,24 @@ class Base(Configuration):
# Ignore the logs added by the DockerflowMiddleware
ignore_logger("request.summary")
@classmethod
def generate_temporary_rsa_key(cls):
"""Generate a temporary RSA key for OIDC Provider."""
private_key = rsa.generate_private_key(
public_exponent=65537,
key_size=4096,
)
# - Serialize private key to PEM format
private_key_pem = private_key.private_bytes(
encoding=serialization.Encoding.PEM,
format=serialization.PrivateFormat.TraditionalOpenSSL,
encryption_algorithm=serialization.NoEncryption(),
)
return private_key_pem.decode("utf-8")
class Build(Base):
"""Settings used when the application is built.
@@ -732,6 +750,14 @@ class Development(Base):
# pylint: disable=invalid-name
self.INSTALLED_APPS += ["django_extensions"]
@property
def OAUTH2_PROVIDER(self):
"""OAuth2 Provider settings."""
OAUTH2_PROVIDER = super().OAUTH2_PROVIDER # pylint: disable=invalid-name
if not OAUTH2_PROVIDER["OIDC_RSA_PRIVATE_KEY"]:
OAUTH2_PROVIDER["OIDC_RSA_PRIVATE_KEY"] = Base.generate_temporary_rsa_key()
return OAUTH2_PROVIDER
class Test(Base):
"""Test environment settings"""
@@ -895,6 +921,14 @@ class Local(Production):
nota bene: it should inherit from the Production environment.
"""
@property
def OAUTH2_PROVIDER(self):
"""OAuth2 Provider settings."""
OAUTH2_PROVIDER = super().OAUTH2_PROVIDER # pylint: disable=invalid-name
if not OAUTH2_PROVIDER["OIDC_RSA_PRIVATE_KEY"]:
OAUTH2_PROVIDER["OIDC_RSA_PRIVATE_KEY"] = Base.generate_temporary_rsa_key()
return OAUTH2_PROVIDER
class Staging(Production):
"""