mirror of
https://github.com/portainer/portainer.git
synced 2025-07-20 22:09:41 +02:00
b02749f877
* feat(auth): introduce new timeout constant * feat(auth): pass timeout from handler * feat(auth): add timeout selector to auth settings view * feat(settings): add user session timeout property * feat(auth): load user session timeout from settings * fix(settings): use correct time format * feat(auth): remove no-auth flag * refactor(auth): move timeout mgmt to jwt service * refactor(client): remove no-auth checks from client * refactor(cli): remove defaultNoAuth * feat(settings): create settings with default user timeout value * refactor(db): save user session timeout always * refactor(jwt): return error * feat(auth): set session timeout in jwt service on update * feat(auth): add description and time settings * feat(auth): parse duration * feat(settings): validate user timeout format * refactor(settings): remove unneccesary import
43 lines
1.4 KiB
Go
43 lines
1.4 KiB
Go
package settings
|
|
|
|
import (
|
|
"net/http"
|
|
|
|
"github.com/gorilla/mux"
|
|
httperror "github.com/portainer/libhttp/error"
|
|
"github.com/portainer/portainer/api"
|
|
"github.com/portainer/portainer/api/http/security"
|
|
)
|
|
|
|
func hideFields(settings *portainer.Settings) {
|
|
settings.LDAPSettings.Password = ""
|
|
settings.OAuthSettings.ClientSecret = ""
|
|
}
|
|
|
|
// Handler is the HTTP handler used to handle settings operations.
|
|
type Handler struct {
|
|
*mux.Router
|
|
AuthorizationService *portainer.AuthorizationService
|
|
DataStore portainer.DataStore
|
|
FileService portainer.FileService
|
|
JobScheduler portainer.JobScheduler
|
|
JWTService portainer.JWTService
|
|
LDAPService portainer.LDAPService
|
|
}
|
|
|
|
// NewHandler creates a handler to manage settings operations.
|
|
func NewHandler(bouncer *security.RequestBouncer) *Handler {
|
|
h := &Handler{
|
|
Router: mux.NewRouter(),
|
|
}
|
|
h.Handle("/settings",
|
|
bouncer.AdminAccess(httperror.LoggerHandler(h.settingsInspect))).Methods(http.MethodGet)
|
|
h.Handle("/settings",
|
|
bouncer.AdminAccess(httperror.LoggerHandler(h.settingsUpdate))).Methods(http.MethodPut)
|
|
h.Handle("/settings/public",
|
|
bouncer.PublicAccess(httperror.LoggerHandler(h.settingsPublic))).Methods(http.MethodGet)
|
|
h.Handle("/settings/authentication/checkLDAP",
|
|
bouncer.AdminAccess(httperror.LoggerHandler(h.settingsLDAPCheck))).Methods(http.MethodPut)
|
|
|
|
return h
|
|
}
|