diff --git a/plugin.py b/plugin.py index fe6028e..ec247a7 100644 --- a/plugin.py +++ b/plugin.py @@ -32,6 +32,7 @@ import re import requests import secrets import string +import json from supybot import utils, plugins, ircutils, callbacks, ircmsgs from supybot.commands import * from supybot.ircmsgs import nick @@ -150,21 +151,25 @@ class Keycloak(callbacks.Plugin): except: print("ERROR: Keycloak token could not be installed.") irc.error(usererr) - try: - url = server + '/auth/admin/realms/' + realm + '/users/' + uid + '/groups/' + gid - if option == 'true' or option == 'on' or option == '1': - option = 'enable' - response = requests.put( - url, - headers = {'Content-Type': 'application/json', 'Authorization': 'Bearer ' + token}) - if option == 'false' or option == 'off' or option == '0': - option == 'disable' - response = requests.delete( - url, - headers = {'Content-Type': 'application/json', 'Authorization': 'Bearer ' + token}) - if option != 'true' != 'on' != '1' != 'false' != 'off' != '0': - irc.error('Invalid argument.') - else: + url = server + '/auth/admin/realms/' + realm + '/users/' + uid + '/groups/' + gid + if option == 'true' or option == 'on' or option == '1': + choice = 'enable' + elif option == 'false' or option == 'off' or option == '0': + choice = 'disable' + elif option == 'query' or option == 'status': + choice = 'query' + else: + choice = 'faulty' + if choice == 'enable': + response = requests.put( + url, + headers = {'Content-Type': 'application/json', 'Authorization': 'Bearer ' + token}) + if choice == 'disable': + response = requests.delete( + url, + headers = {'Content-Type': 'application/json', 'Authorization': 'Bearer ' + token}) + if choice == 'enable' or choice == 'disable': + try: print("Keycloak: HTTP Status ", response.status_code) try: print("Keycloak: Response Text: ", response.text) @@ -176,14 +181,40 @@ class Keycloak(callbacks.Plugin): print("Keycloak: No or invalid response JSON. This it not an error.") status = response.status_code if status == 204: - print(" SSO user " + user + " is now authorized to authenticate IRC user " + user) - irc.queueMsg(msg=ircmsgs.IrcMsg(command='PRIVMSG', args=(msg.nick, f'{pw}'))) - irc.reply("OK, I sent you a private message.") + print(" SSO user " + user + " has been added to group, if it wasn't already.") + #irc.reply("SSO user " + user + " is now authorized to authenticate IRC user " + user) - we currently cannot actually tell + irc.reply("Success.") if status != 204: - print("ERROR: HTTP request did not succeed.") + print("ERROR: HTTP request did not succeed. I tried these values:") + print("URL: " + url) + print("Group: " + gid) + print("User: " + uid) irc.error(usererr) - except: - print('Operation failed.') + except: + print('Operation failed.') + # if choice == 'query': + # try: + # url = server + '/auth/admin/realms/' + realm + '/users/' + uid + '/groups' + # response = requests.get( + # url, + # headers = {'Content-Type': 'application/json', 'Authorization': 'Bearer ' + token}) + # test = "{}" + # print(url) + # userdata = response.json() + # print(userdata) + # print(response) + # userjson = json.loads(userdata) + # print(userjson) + # if userdetails != '[]' or '{}': + # if gid in userjson: + # irc.reply("Your IRC user is enabled for SSO authentication.") + # print(userdetails) + # else: + # irc.reply("Your IRC user is not enabled for SSO authentication.") + # except: + # print('Operation failed.') + else: + irc.error('Invalid argument.') ircprom = wrap(ircprom, ['anything'])