n8n/packages/cli/src/sso/ssoHelpers.ts

import config from '@/config';
import { SettingsRepository } from '@db/repositories/settings.repository';
import type { AuthProviderType } from '@db/entities/AuthIdentity';
import Container from 'typedi';

/**
 * Only one authentication method can be active at a time. This function sets the current authentication method
 * and saves it to the database.
 * SSO methods should only switch to email and then to another method. Email can switch to any method.
 * @param authenticationMethod
 */
export async function setCurrentAuthenticationMethod(
	authenticationMethod: AuthProviderType,
): Promise<void> {
	config.set('userManagement.authenticationMethod', authenticationMethod);
	await Container.get(SettingsRepository).save(
		{
			key: 'userManagement.authenticationMethod',
			value: authenticationMethod,
			loadOnStartup: true,
		},
		{ transaction: false },
	);
}

export function getCurrentAuthenticationMethod(): AuthProviderType {
	return config.getEnv('userManagement.authenticationMethod');
}

export function isSamlCurrentAuthenticationMethod(): boolean {
	return getCurrentAuthenticationMethod() === 'saml';
}

export function isLdapCurrentAuthenticationMethod(): boolean {
	return getCurrentAuthenticationMethod() === 'ldap';
}

export function isEmailCurrentAuthenticationMethod(): boolean {
	return getCurrentAuthenticationMethod() === 'email';
}

export function isSsoJustInTimeProvisioningEnabled(): boolean {
	return config.getEnv('sso.justInTimeProvisioning');
}

export function doRedirectUsersFromLoginToSsoFlow(): boolean {
	return config.getEnv('sso.redirectLoginToSso');
}
feat(core): Add SAML login setup (#5515) * initial commit with sample data * basic saml setup * cleanup console logs * limit saml endpoints through middleware * basic login and token issue * saml service and cleanup * refactor and create user * get/set saml prefs * fix authentication issue * redirect to user details * merge fix * add generated password to saml user * update user from attributes where possible * refactor and fix creating new user * rename saml prefs key * minor cleanup * Update packages/cli/src/config/schema.ts Co-authored-by: Omar Ajoue <krynble@gmail.com> * Update packages/cli/src/config/schema.ts Co-authored-by: Omar Ajoue <krynble@gmail.com> * Update packages/cli/src/controllers/auth.controller.ts Co-authored-by: Omar Ajoue <krynble@gmail.com> * code review changes * fix default saml enabled * remove console.log * fix isSamlLicensed --------- Co-authored-by: Omar Ajoue <krynble@gmail.com> 2023-02-24 11:37:19 -08:00			`import config from '@/config';`
ci(core): Reduce memory usage in tests (part-2) (no-changelog) (#7671) This also gets rid of `Db.collection`, which was another source of circular dependencies. 2023-11-10 06:04:26 -08:00			`import { SettingsRepository } from '@db/repositories/settings.repository';`
refactor(core): Use injectable classes for db repositories (part-1) (no-changelog) (#5953) Co-authored-by: ricardo <ricardoespinoza105@gmail.com> 2023-04-12 01:59:14 -07:00			`import type { AuthProviderType } from '@db/entities/AuthIdentity';`
ci(core): Reduce memory usage in tests (part-2) (no-changelog) (#7671) This also gets rid of `Db.collection`, which was another source of circular dependencies. 2023-11-10 06:04:26 -08:00			`import Container from 'typedi';`
feat(core): Add SAML login setup (#5515) * initial commit with sample data * basic saml setup * cleanup console logs * limit saml endpoints through middleware * basic login and token issue * saml service and cleanup * refactor and create user * get/set saml prefs * fix authentication issue * redirect to user details * merge fix * add generated password to saml user * update user from attributes where possible * refactor and fix creating new user * rename saml prefs key * minor cleanup * Update packages/cli/src/config/schema.ts Co-authored-by: Omar Ajoue <krynble@gmail.com> * Update packages/cli/src/config/schema.ts Co-authored-by: Omar Ajoue <krynble@gmail.com> * Update packages/cli/src/controllers/auth.controller.ts Co-authored-by: Omar Ajoue <krynble@gmail.com> * code review changes * fix default saml enabled * remove console.log * fix isSamlLicensed --------- Co-authored-by: Omar Ajoue <krynble@gmail.com> 2023-02-24 11:37:19 -08:00
feat(core): Improve ldap/saml toggle and tests (#5771) * improve ldap/saml toggle and tests * import cleanup * reject regular login users when saml is enabled * lint fix 2023-03-24 09:46:06 -07:00			`/**`
			`* Only one authentication method can be active at a time. This function sets the current authentication method`
			`* and saves it to the database.`
			`* SSO methods should only switch to email and then to another method. Email can switch to any method.`
			`* @param authenticationMethod`
			`*/`
			`export async function setCurrentAuthenticationMethod(`
			`authenticationMethod: AuthProviderType,`
			`): Promise<void> {`
			`config.set('userManagement.authenticationMethod', authenticationMethod);`
fix: Fix typeorm .save usage (no-changelog) (#8678) 2024-02-20 07:34:54 -08:00			`await Container.get(SettingsRepository).save(`
			`{`
			`key: 'userManagement.authenticationMethod',`
			`value: authenticationMethod,`
			`loadOnStartup: true,`
			`},`
			`{ transaction: false },`
			`);`
feat(core): Improve ldap/saml toggle and tests (#5771) * improve ldap/saml toggle and tests * import cleanup * reject regular login users when saml is enabled * lint fix 2023-03-24 09:46:06 -07:00			`}`

			`export function getCurrentAuthenticationMethod(): AuthProviderType {`
			`return config.getEnv('userManagement.authenticationMethod');`
			`}`

feat(core): Add SAML login setup (#5515) * initial commit with sample data * basic saml setup * cleanup console logs * limit saml endpoints through middleware * basic login and token issue * saml service and cleanup * refactor and create user * get/set saml prefs * fix authentication issue * redirect to user details * merge fix * add generated password to saml user * update user from attributes where possible * refactor and fix creating new user * rename saml prefs key * minor cleanup * Update packages/cli/src/config/schema.ts Co-authored-by: Omar Ajoue <krynble@gmail.com> * Update packages/cli/src/config/schema.ts Co-authored-by: Omar Ajoue <krynble@gmail.com> * Update packages/cli/src/controllers/auth.controller.ts Co-authored-by: Omar Ajoue <krynble@gmail.com> * code review changes * fix default saml enabled * remove console.log * fix isSamlLicensed --------- Co-authored-by: Omar Ajoue <krynble@gmail.com> 2023-02-24 11:37:19 -08:00			`export function isSamlCurrentAuthenticationMethod(): boolean {`
feat(core): Improve ldap/saml toggle and tests (#5771) * improve ldap/saml toggle and tests * import cleanup * reject regular login users when saml is enabled * lint fix 2023-03-24 09:46:06 -07:00			`return getCurrentAuthenticationMethod() === 'saml';`
			`}`

			`export function isLdapCurrentAuthenticationMethod(): boolean {`
			`return getCurrentAuthenticationMethod() === 'ldap';`
feat(core): Add SAML login setup (#5515) * initial commit with sample data * basic saml setup * cleanup console logs * limit saml endpoints through middleware * basic login and token issue * saml service and cleanup * refactor and create user * get/set saml prefs * fix authentication issue * redirect to user details * merge fix * add generated password to saml user * update user from attributes where possible * refactor and fix creating new user * rename saml prefs key * minor cleanup * Update packages/cli/src/config/schema.ts Co-authored-by: Omar Ajoue <krynble@gmail.com> * Update packages/cli/src/config/schema.ts Co-authored-by: Omar Ajoue <krynble@gmail.com> * Update packages/cli/src/controllers/auth.controller.ts Co-authored-by: Omar Ajoue <krynble@gmail.com> * code review changes * fix default saml enabled * remove console.log * fix isSamlLicensed --------- Co-authored-by: Omar Ajoue <krynble@gmail.com> 2023-02-24 11:37:19 -08:00			`}`

feat(core): Convert saml controller to decorator style (#5653) (no-changelog) 2023-03-10 10:19:52 -08:00			`export function isEmailCurrentAuthenticationMethod(): boolean {`
feat(core): Improve ldap/saml toggle and tests (#5771) * improve ldap/saml toggle and tests * import cleanup * reject regular login users when saml is enabled * lint fix 2023-03-24 09:46:06 -07:00			`return getCurrentAuthenticationMethod() === 'email';`
feat(core): Convert saml controller to decorator style (#5653) (no-changelog) 2023-03-10 10:19:52 -08:00			`}`

feat(core): Add SAML login setup (#5515) * initial commit with sample data * basic saml setup * cleanup console logs * limit saml endpoints through middleware * basic login and token issue * saml service and cleanup * refactor and create user * get/set saml prefs * fix authentication issue * redirect to user details * merge fix * add generated password to saml user * update user from attributes where possible * refactor and fix creating new user * rename saml prefs key * minor cleanup * Update packages/cli/src/config/schema.ts Co-authored-by: Omar Ajoue <krynble@gmail.com> * Update packages/cli/src/config/schema.ts Co-authored-by: Omar Ajoue <krynble@gmail.com> * Update packages/cli/src/controllers/auth.controller.ts Co-authored-by: Omar Ajoue <krynble@gmail.com> * code review changes * fix default saml enabled * remove console.log * fix isSamlLicensed --------- Co-authored-by: Omar Ajoue <krynble@gmail.com> 2023-02-24 11:37:19 -08:00			`export function isSsoJustInTimeProvisioningEnabled(): boolean {`
			`return config.getEnv('sso.justInTimeProvisioning');`
			`}`

			`export function doRedirectUsersFromLoginToSsoFlow(): boolean {`
			`return config.getEnv('sso.redirectLoginToSso');`
			`}`