Skip to content

Commit

Permalink
Prepare to remove go-oidc/oauth2 from config packages
Browse files Browse the repository at this point in the history
Adds a OAuthClientCredentials type directly into the servicecfg
package so that the dependency on go-oidc/oauth2 can be removed.
The PluginOAuthProviders.Slack field has been deprecated, but left
in place so as not to break teleport.e and a new
PluginOAuthProviders.SlackCredentials field has been added to use
the new type. Both fields are being populated with the same data
from the file config at the moment. Once teleport.e has been updated
to consume the credentials from PluginOAuthProviders.SlackCredentials
the original field will be removed.
  • Loading branch information
rosstimothy committed Nov 7, 2024
1 parent f0f417d commit c1cfb68
Show file tree
Hide file tree
Showing 3 changed files with 22 additions and 3 deletions.
4 changes: 4 additions & 0 deletions lib/config/configuration_test.go
Original file line number Diff line number Diff line change
Expand Up @@ -3673,6 +3673,10 @@ func TestAuthHostedPlugins(t *testing.T) {
require.NotNil(t, p.OAuthProviders.Slack)
require.Equal(t, "foo", p.OAuthProviders.Slack.ID)
require.Equal(t, "bar", p.OAuthProviders.Slack.Secret)

require.NotNil(t, p.OAuthProviders.SlackCredentials)
require.Equal(t, "foo", p.OAuthProviders.SlackCredentials.ID)
require.Equal(t, "bar", p.OAuthProviders.SlackCredentials.Secret)
},
},
}
Expand Down
10 changes: 7 additions & 3 deletions lib/config/fileconf.go
Original file line number Diff line number Diff line change
Expand Up @@ -1321,7 +1321,11 @@ func (p *PluginOAuthProviders) Parse() (servicecfg.PluginOAuthProviders, error)
if err != nil {
return out, trace.Wrap(err)
}
out.Slack = slack
out.Slack = &oauth2.ClientCredentials{
ID: slack.ID,
Secret: slack.Secret,
}
out.SlackCredentials = slack
}
return out, nil
}
Expand All @@ -1335,7 +1339,7 @@ type OAuthClientCredentials struct {
ClientSecret string `yaml:"client_secret"`
}

func (o *OAuthClientCredentials) Parse() (*oauth2.ClientCredentials, error) {
func (o *OAuthClientCredentials) Parse() (*servicecfg.OAuthClientCredentials, error) {
if o.ClientID == "" || o.ClientSecret == "" {
return nil, trace.BadParameter("both client_id and client_secret paths must be specified")
}
Expand All @@ -1354,7 +1358,7 @@ func (o *OAuthClientCredentials) Parse() (*oauth2.ClientCredentials, error) {
}
clientSecret = strings.TrimSpace(string(content))

return &oauth2.ClientCredentials{
return &servicecfg.OAuthClientCredentials{
ID: clientID,
Secret: clientSecret,
}, nil
Expand Down
11 changes: 11 additions & 0 deletions lib/service/servicecfg/auth.go
Original file line number Diff line number Diff line change
Expand Up @@ -178,7 +178,18 @@ type HostedPluginsConfig struct {
// PluginOAuthProviders holds application credentials for each
// 3rd party API provider
type PluginOAuthProviders struct {
// TODO(tross) delete once teleport.e has been converted.
// Deprecated: use SlackCredentials instead.
Slack *oauth2.ClientCredentials

SlackCredentials *OAuthClientCredentials
}

// OAuthClientCredentials stores the client_id and client_secret
// of an OAuth application.
type OAuthClientCredentials struct {
ID string
Secret string
}

// KeystoreConfig configures the auth keystore.
Expand Down

0 comments on commit c1cfb68

Please sign in to comment.