Skull-IT/ISO-27001-Risk-Management
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
ISO-27001-Risk-Management/config/auth_backends.py

33 lines
1 KiB
Python
Raw Normal View History

Add custom User model, OIDC backend, DB flexibility (SQLite/Postgres/MySQL), secured API endpoints, and initial Risk/Control models with enums, score calculation, and groups seeding.
2025-09-07 20:52:19 +02:00
from mozilla_django_oidc.auth import OIDCAuthenticationBackend
from django.contrib.auth.models import Group
class CustomOIDCBackend(OIDCAuthenticationBackend):
"""
Custom authentication backend for OIDC.
- Ensures users are created/updated from OIDC claims
- Maps 'groups' claim from IdP into Django Groups
"""
def create_user(self, claims):
user = super().create_user(claims)
user.email = claims.get("email", "")
user.is_sso_user = True
user.save()
self._update_groups(user, claims)
return user
def update_user(self, user, claims):
user.email = claims.get("email", user.email)
self._update_groups(user, claims)
user.save()
return user
def _update_groups(self, user, claims):
"""
Synchronize groups from IdP claims to Django Groups.
"""
groups = claims.get("groups", [])
for g in groups:
group, _ = Group.objects.get_or_create(name=g)
user.groups.add(group)
Reference in a new issue Copy permalink