feat: add ldap external idp to login api (#5938)

* fix: handling of ldap login through separate endpoint * fix: handling of ldap login through separate endpoint * fix: handling of ldap login through separate endpoint * fix: successful intent for ldap * fix: successful intent for ldap * fix: successful intent for ldap * fix: add changes from code review * fix: remove set intent credentials and handle ldap errors * fix: remove set intent credentials and handle ldap errors * refactor into separate methods and fix merge * remove mocks --------- Co-authored-by: Livio Spring <livio.a@gmail.com>
2025-08-12 00:27:31 +00:00 · 2023-08-16 13:29:57 +02:00
parent 1b923425cd
commit 52f68f8db8
27 changed files with 726 additions and 149 deletions
--- a/internal/command/idp_intent_model.go
+++ b/internal/command/idp_intent_model.go
@@ -12,15 +12,18 @@ import (
 type IDPIntentWriteModel struct {
 	eventstore.WriteModel

-	SuccessURL     *url.URL
-	FailureURL     *url.URL
-	IDPID          string
-	IDPUser        []byte
-	IDPUserID      string
-	IDPUserName    string
+	SuccessURL  *url.URL
+	FailureURL  *url.URL
+	IDPID       string
+	IDPUser     []byte
+	IDPUserID   string
+	IDPUserName string
+	UserID      string
+
 	IDPAccessToken *crypto.CryptoValue
 	IDPIDToken     string
-	UserID         string
+
+	IDPEntryAttributes map[string][]string

 	State     domain.IDPIntentState
 	aggregate *eventstore.Aggregate
@@ -42,7 +45,9 @@ func (wm *IDPIntentWriteModel) Reduce() error {
 		case *idpintent.StartedEvent:
 			wm.reduceStartedEvent(e)
 		case *idpintent.SucceededEvent:
-			wm.reduceSucceededEvent(e)
+			wm.reduceOAuthSucceededEvent(e)
+		case *idpintent.LDAPSucceededEvent:
+			wm.reduceLDAPSucceededEvent(e)
 		case *idpintent.FailedEvent:
 			wm.reduceFailedEvent(e)
 		}
@@ -59,6 +64,7 @@ func (wm *IDPIntentWriteModel) Query() *eventstore.SearchQueryBuilder {
 		EventTypes(
 			idpintent.StartedEventType,
 			idpintent.SucceededEventType,
+			idpintent.LDAPSucceededEventType,
 			idpintent.FailedEventType,
 		).
 		Builder()
@@ -71,7 +77,16 @@ func (wm *IDPIntentWriteModel) reduceStartedEvent(e *idpintent.StartedEvent) {
 	wm.State = domain.IDPIntentStateStarted
 }

-func (wm *IDPIntentWriteModel) reduceSucceededEvent(e *idpintent.SucceededEvent) {
+func (wm *IDPIntentWriteModel) reduceLDAPSucceededEvent(e *idpintent.LDAPSucceededEvent) {
+	wm.UserID = e.UserID
+	wm.IDPUser = e.IDPUser
+	wm.IDPUserID = e.IDPUserID
+	wm.IDPUserName = e.IDPUserName
+	wm.IDPEntryAttributes = e.EntryAttributes
+	wm.State = domain.IDPIntentStateSucceeded
+}
+
+func (wm *IDPIntentWriteModel) reduceOAuthSucceededEvent(e *idpintent.SucceededEvent) {
 	wm.UserID = e.UserID
 	wm.IDPUser = e.IDPUser
 	wm.IDPUserID = e.IDPUserID