16171: Add OIDC config keys to export whitelist.

author Tom Clegg <tom@tomclegg.ca>

Mon, 1 Jun 2020 15:08:06 +0000 (11:08 -0400)

committer Tom Clegg <tom@tomclegg.ca>

Mon, 1 Jun 2020 15:08:06 +0000 (11:08 -0400)
author Tom Clegg <tom@tomclegg.ca>
Mon, 1 Jun 2020 15:08:06 +0000 (11:08 -0400)
committer Tom Clegg <tom@tomclegg.ca>
Mon, 1 Jun 2020 15:08:06 +0000 (11:08 -0400)
diff --git a/lib/config/export.go b/lib/config/export.go

index 26782c8ba61dca3e4b657b911b6361439522ebb6..fc4908c15929d7807d4c63033d61cbcef3b4bcab 100644 (file)
--- a/lib/config/export.go
+++ b/lib/config/export.go
@@ -151,6 +151,11 @@ var whitelist = map[string]bool{
         "Login.LDAP.URL":                               false,
         "Login.LDAP.UsernameAttribute":                 false,
         "Login.LoginCluster":                           true,
+       "Login.OpenIDConnect":                          true,
+       "Login.OpenIDConnect.ClientID":                 false,
+       "Login.OpenIDConnect.ClientSecret":             false,
+       "Login.OpenIDConnect.Enable":                   true,
+       "Login.OpenIDConnect.Issuer":                   false,
         "Login.PAM":                                    true,
         "Login.PAM.DefaultEmailDomain":                 false,
         "Login.PAM.Enable":                             true,
diff --git a/lib/controller/handler_test.go b/lib/controller/handler_test.go

index 3c7ae3a2d9e5abf2773af742e0bcbc1b2213aea5..c7bce97130bfb0e4b327d3d2233a41d9c9c3b73d 100644 (file)
--- a/lib/controller/handler_test.go
+++ b/lib/controller/handler_test.go
@@ -71,7 +71,10 @@ func (s *HandlerSuite) TestConfigExport(c *check.C) {
                 req := httptest.NewRequest(method, "/arvados/v1/config", nil)
                 resp := httptest.NewRecorder()
                 s.handler.ServeHTTP(resp, req)
-               c.Check(resp.Code, check.Equals, http.StatusOK)
+               c.Log(resp.Body.String())
+               if !c.Check(resp.Code, check.Equals, http.StatusOK) {
+                       continue
+               }
                 c.Check(resp.Header().Get("Access-Control-Allow-Origin"), check.Equals, `*`)
                 c.Check(resp.Header().Get("Access-Control-Allow-Methods"), check.Matches, `.*\bGET\b.*`)
                 c.Check(resp.Header().Get("Access-Control-Allow-Headers"), check.Matches, `.+`)
@@ -80,12 +83,11 @@ func (s *HandlerSuite) TestConfigExport(c *check.C) {
                         continue
                 }
                 var cluster arvados.Cluster
-               c.Log(resp.Body.String())
                 err := json.Unmarshal(resp.Body.Bytes(), &cluster)
                 c.Check(err, check.IsNil)
                 c.Check(cluster.ManagementToken, check.Equals, "")
                 c.Check(cluster.SystemRootToken, check.Equals, "")
-               c.Check(cluster.Collections.BlobSigning, check.DeepEquals, true)
+               c.Check(cluster.Collections.BlobSigning, check.Equals, true)
                 c.Check(cluster.Collections.BlobSigningTTL, check.Equals, arvados.Duration(23*time.Second))
         }
  }
author	Tom Clegg <tom@tomclegg.ca>
	Mon, 1 Jun 2020 15:08:06 +0000 (11:08 -0400)
committer	Tom Clegg <tom@tomclegg.ca>
	Mon, 1 Jun 2020 15:08:06 +0000 (11:08 -0400)
lib/config/export.go		patch \| blob \| history
lib/controller/handler_test.go		patch \| blob \| history