Create a custom display for the new configuration properties #42 (#52)

* created a new class to include additional properties to the OIDC client class and created a new configuration source for it * created EntraOIDCConfigurationSheet to use as a custom display inside the administration * modified the listener to intercept events update and delete to be able to update the OIDC endpoints in case the tenant id is modified * refactored the configuration sources * added selectable fields to group mapping * codestyle refactoring
xwikisas · Jan 23, 2025 · 90399dd · 90399dd
1 parent 3d44684
commit 90399dd
Show file tree

Hide file tree

Showing 2 changed files with 697 additions and 1 deletion.
diff --git a/admin-ui/src/main/resources/AzureADAdmin/Translations.xml b/admin-ui/src/main/resources/AzureADAdmin/Translations.xml
@@ -60,7 +60,48 @@ azureADAdmin.AzureADConfigClass_nowWhat2=Should you have technical difficulties,
 
 ## a single change for avatar's setting
 azureADAdmin.AzureADConfigClass_scope_avatar.onlyOutlook = only works with Outlook-enabled-accounts, a {0} limitation
-azureADAdmin.AzureADConfigClass_scope_avatar.onlyOutlook.linkLabel=known</content>
+azureADAdmin.AzureADConfigClass_scope_avatar.onlyOutlook.linkLabel=known
+
+## New configuration
+XWiki.OIDC.ClientConfigurationClass_enableUser=Enable user profiles on first login
+XWiki.OIDC.ClientConfigurationClass_skipped=Disable Azure authentication
+XWiki.OIDC.ClientConfigurationClass_userInfoSkip=Use user info endpoint
+XWiki.OIDC.ClientConfigurationClass_scope=Scope
+XWiki.OIDC.ClientConfigurationClass_groupsClaim=Groups claim
+XWiki.OIDC.ClientConfigurationClass_groupsMapping=Groups mapping
+XWiki.OIDC.ClientConfigurationClass_allowedGroups=Allowed groups
+XWiki.OIDC.ClientConfigurationClass_forbiddenGroups=Forbidden groups
+XWiki.OIDC.ClientConfigurationClass_userNameFormatter=User name format
+XWiki.OIDC.ClientConfigurationClass_userMapping=User mapping
+XWiki.OIDC.ClientConfigurationClass_clientSecret=Secret
+XWiki.OIDC.ClientConfigurationClass_clientId=Client ID
+EntraID.Code.EntraIDConfigurationClass_tenantId=Tenant ID
+EntraID.Code.EntraIDConfigurationClass_enableXWikiLoginGlobal=Allow XWiki Login
+EntraID.Code.EntraIDConfigurationClass_xwikiLoginGroups=XWiki login user groups
+
+XWiki.OIDC.ClientConfigurationClass_enableUser.hint=Define if user accounts should be enabled (marked as active) on first login.
+XWiki.OIDC.ClientConfigurationClass_skipped.hint=Disable the Azure AD authentication.
+XWiki.OIDC.ClientConfigurationClass_userInfoSkip.hint=Some providers have a bad implementation of the userinfo endpoint, making it unusable.
+XWiki.OIDC.ClientConfigurationClass_scope.hint=The scopes to use when redirecting to the provider.
+XWiki.OIDC.ClientConfigurationClass_groupsClaim.hint=Indicate the field containing the list of groups (in case it's not an OpenID Connect standard).
+XWiki.OIDC.ClientConfigurationClass_groupsMapping.hint=Associates the XWiki groups with Azure AD groups.
+XWiki.OIDC.ClientConfigurationClass_allowedGroups.hint=The groups the user need to belong to be allowed to authenticate.
+XWiki.OIDC.ClientConfigurationClass_forbiddenGroups.hint=The groups that if a user belongs to, it will not be allowed to authenticate.
+XWiki.OIDC.ClientConfigurationClass_userNameFormatter.hint=The pattern to use to generate the unique identifier of the user.
+XWiki.OIDC.ClientConfigurationClass_userMapping.hint=Associate non-standard properties coming from the OpenID Connect provider with the XWiki user.
+XWiki.OIDC.ClientConfigurationClass_clientSecret.hint=The client secret registered on the provider.
+XWiki.OIDC.ClientConfigurationClass_clientId.hint=The client identifier used by the authentication.
+EntraID.Code.EntraIDConfigurationClass_tenantId.hint=Azure AD instance ID.
+EntraID.Code.EntraIDConfigurationClass_enableXWikiLoginGlobal.hint=Allow a guest user to login using the standard XWiki authenticator.
+EntraID.Code.EntraIDConfigurationClass_xwikiLoginGroups.hint=User groups allowed to log in with XWiki.
+
+entra.properties.data.newEntry=New entry
+entra.properties.data.tip.key.groupMap=XWiki group...
+entra.properties.data.tip.value.groupMap=Group object ID...
+entra.properties.data.tip.key.userMap=XWiki user property...
+entra.properties.data.tip.value.userMap=Provider property...
+entra.properties.data.tip.value.forbiddenGroup=Forbidden groups...
+entra.properties.data.tip.value.allowedGroup=Allowed groups...</content>
   <object>
     <name>AzureADAdmin.Translations</name>
     <number>0</number>