k-space/dex
Archived
10
0
Fork 0
Code Issues Pull Requests Packages Projects Activity

fix: check for no serviceAccountFilePath and no email (#2679)

Browse Source 
Signed-off-by: Bob Callaway <bcallaway@google.com>
This commit is contained in:
Bob Callaway 2022-09-28 13:59:28 -04:00 committed by GitHub
parent 45b6f49674
commit 49477729ce
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 21 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
connector/google/google.go
View File

@ -71,11 +71,14 @@ func (c *Config) Open(id string, logger log.Logger) (conn connector.Connector, e
scopes = append(scopes, "profile", "email") scopes = append(scopes, "profile", "email")
} }
srv, err := createDirectoryService(c.ServiceAccountFilePath, c.AdminEmail, logger) var srv *admin.Service
if len(c.Groups) > 0 {
srv, err = createDirectoryService(c.ServiceAccountFilePath, c.AdminEmail, logger)
if err != nil { if err != nil {
cancel() cancel()
return nil, fmt.Errorf("could not create directory service: %v", err) return nil, fmt.Errorf("could not create directory service: %v", err)
} }
}
clientID := c.ClientID clientID := c.ClientID
return &googleConnector{ return &googleConnector{

14
connector/google/google_test.go
View File

@ -72,12 +72,22 @@ func TestOpen(t *testing.T) {
assert.Nil(t, err) assert.Nil(t, err)
for name, reference := range map[string]testCase{ for name, reference := range map[string]testCase{
"not_requesting_groups": {
config: &Config{
ClientID: "testClient",
ClientSecret: "testSecret",
RedirectURI: ts.URL + "/callback",
Scopes: []string{"openid"},
},
expectedErr: "",
},
"missing_admin_email": { "missing_admin_email": {
config: &Config{ config: &Config{
ClientID: "testClient", ClientID: "testClient",
ClientSecret: "testSecret", ClientSecret: "testSecret",
RedirectURI: ts.URL + "/callback", RedirectURI: ts.URL + "/callback",
Scopes: []string{"openid", "groups"}, Scopes: []string{"openid", "groups"},
Groups: []string{"someGroup"},
}, },
expectedErr: "requires adminEmail", expectedErr: "requires adminEmail",
}, },
@ -89,6 +99,7 @@ func TestOpen(t *testing.T) {
Scopes: []string{"openid", "groups"}, Scopes: []string{"openid", "groups"},
AdminEmail: "foo@bar.com", AdminEmail: "foo@bar.com",
ServiceAccountFilePath: "not_found.json", ServiceAccountFilePath: "not_found.json",
Groups: []string{"someGroup"},
}, },
expectedErr: "error reading credentials", expectedErr: "error reading credentials",
}, },
@ -100,6 +111,7 @@ func TestOpen(t *testing.T) {
Scopes: []string{"openid", "groups"}, Scopes: []string{"openid", "groups"},
AdminEmail: "foo@bar.com", AdminEmail: "foo@bar.com",
ServiceAccountFilePath: serviceAccountFilePath, ServiceAccountFilePath: serviceAccountFilePath,
Groups: []string{"someGroup"},
}, },
expectedErr: "", expectedErr: "",
}, },
@ -110,6 +122,7 @@ func TestOpen(t *testing.T) {
RedirectURI: ts.URL + "/callback", RedirectURI: ts.URL + "/callback",
Scopes: []string{"openid", "groups"}, Scopes: []string{"openid", "groups"},
AdminEmail: "foo@bar.com", AdminEmail: "foo@bar.com",
Groups: []string{"someGroup"},
}, },
adc: serviceAccountFilePath, adc: serviceAccountFilePath,
expectedErr: "", expectedErr: "",
@ -122,6 +135,7 @@ func TestOpen(t *testing.T) {
Scopes: []string{"openid", "groups"}, Scopes: []string{"openid", "groups"},
AdminEmail: "foo@bar.com", AdminEmail: "foo@bar.com",
ServiceAccountFilePath: serviceAccountFilePath, ServiceAccountFilePath: serviceAccountFilePath,
Groups: []string{"someGroup"},
}, },
adc: "/dev/null", adc: "/dev/null",
expectedErr: "", expectedErr: "",