lywsvip/cloudpods
1
0
Fork 0
mirror of https://github.com/yunionio/cloudpods.git synced 2026-05-07 22:24:32 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
7cf461e8b771ac8e8fef7bf052d5bf68a64e4e26
cloudpods/pkg/keystone/models/sync.go
Jian Qiu 2b7586140a feature: do uniqueness check when create/update idp configs (#7584) 
Co-authored-by: Qiu Jian <qiujian@yunionyun.com>
2020-08-17 10:58:57 +08:00

75 lines
2.1 KiB
Go
Raw Blame History

// Copyright 2019 Yunion
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
package models
import (
"context"
"yunion.io/x/log"
api "yunion.io/x/onecloud/pkg/apis/identity"
"yunion.io/x/onecloud/pkg/keystone/driver"
"yunion.io/x/onecloud/pkg/mcclient"
)
func AutoSyncIdentityProviderTask(ctx context.Context, userCred mcclient.TokenCredential, isStart bool) {
idps, err := IdentityProviderManager.FetchEnabledProviders("")
if err != nil {
log.Errorf("FetchEnabledProviders fail %s", err)
return
}
if isStart {
for i := range idps {
idps[i].SetSyncStatus(ctx, userCred, api.IdentitySyncStatusIdle)
}
}
for i := range idps {
err = syncIdentityProvider(ctx, userCred, &idps[i])
if err != nil {
log.Errorf("Fail to sync identityprovider %s: %s", idps[i].Name, err)
}
}
}
func syncIdentityProvider(ctx context.Context, userCred mcclient.TokenCredential, idp *SIdentityProvider) error {
if idp.SyncStatus != api.IdentitySyncStatusIdle {
log.Debugf("IDP %s cannot sync in non-idle status", idp.Name)
return nil
}
if !idp.CanSync() {
log.Debugf("IDP %s cannot sync", idp.Name)
return nil
}
if !idp.NeedSync() {
// log.Debugf("IDP %s no need to sync", idp.Name)
return nil
}
drvCls := driver.GetDriverClass(idp.Driver)
if drvCls.SyncMethod() == api.IdentityProviderSyncLocal {
// skip, no need to sync
log.Debugf("IDP %s is local, no need to sync", idp.Name)
return nil
}
if drvCls.SyncMethod() == api.IdentityProviderSyncOnAuth {
log.Debugf("IDP %s sync on auth, no need to sync", idp.Name)
return nil
}
submitIdpSyncTask(ctx, userCred, idp)
return nil
}
Reference in New Issue View Git Blame Copy Permalink