safebox/guacamole-client
4
0
Fork 0
mirror of https://github.com/gyurix1968/guacamole-client.git synced 2025-09-06 05:07:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

GUACAMOLE-1322: Add Docker environment variables for configuring SAML.

Browse Source
This commit is contained in:
Markus Petzsch
2021-05-31 11:09:56 +02:00
committed by Jean-Benoit Paux
parent 01503bc76e
commit d8765a8f3c
1 changed files with 46 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

46
guacamole-docker/bin/start.sh
View File

@@ -744,6 +744,46 @@ END
} }
## Adds properties to guacamole.properties which select the SAML
## authentication provider, and configure it to connect to the specified SAML
## provider.
##
associate_saml() {
# Verify required parameters are present
if [ -z "$SAML_IDP_METADATA_URL" ]
then
cat <<END
FATAL: Missing required environment variables
-------------------------------------------------------------------------------
If using an openid authentication, you must provide each of the following
environment variables:
SAML_IDP_METADATA_URL The URI of the XML metadata file that from the SAML Identity
Provider
END
exit 1;
fi
# Update config file
set_property "saml-idp-metadata-url" "$SAML_IDP_METADATA_URL"
set_optional_property "saml-idp-url" "$SAML_IDP_URL"
set_optional_property "saml-entity-id" "$SAML_ENTITY_ID"
set_optional_property "saml-callback-url" "$SAML_CALLBACK_URL"
set_optional_property "saml-strict" "$SAML_STRICT"
set_optional_property "saml-debug" "$SAML_DEBUG"
set_optional_property "saml-compress-request" "$SAML_COMPRESS_REQUEST"
set_optional_property "saml-compress-response" "$SAML_COMPRESS_RESPONSE"
set_optional_property "saml-group-attribute" "SAML_GROUP_ATTRIBUTE"
# Add required .jar files to GUACAMOLE_EXT
# "1-{}" make it sorted as a first provider (only authentication)
# so it can work together with the database providers (authorization)
find /opt/guacamole/saml/ -name "*.jar" | awk -F/ '{print $NF}' | \
xargs -I '{}' ln -s "/opt/guacamole/saml/{}" "${GUACAMOLE_EXT}/1-{}"
}
## ##
## Adds properties to guacamole.properties which configure the TOTP two-factor ## Adds properties to guacamole.properties which configure the TOTP two-factor
## authentication mechanism. ## authentication mechanism.
@@ -993,6 +1033,12 @@ if [ -n "$OPENID_AUTHORIZATION_ENDPOINT" ]; then
INSTALLED_AUTH="$INSTALLED_AUTH openid" INSTALLED_AUTH="$INSTALLED_AUTH openid"
fi fi
# Use SAML if specified
if [ -n "$SAML_IDP_METADATA_URL" ]; then
associate_saml
INSTALLED_AUTH="$INSTALLED_AUTH saml"
fi
# #
# Validate that at least one authentication backend is installed # Validate that at least one authentication backend is installed
# #