Temporarily remove Dex login support

This will be added back in later in this PR as part of proper generic OIDC support
2017-01-19 14:51:12 -05:00 · 2017-01-19 14:51:12 -05:00 · bee2551dc2
commit bee2551dc2
parent c116ef2987
2 changed files with 0 additions and 96 deletions
--- a/endpoints/oauthlogin.py
+++ b/endpoints/oauthlogin.py
@ -292,80 +292,3 @@ def decode_user_jwt(token, oidc_provider):
                  audience=oidc_provider.client_id(),
                  issuer=oidc_provider.issuer)

-
-@oauthlogin.route('/dex/callback', methods=['GET', 'POST'])
-@route_show_if(features.DEX_LOGIN)
-@oauthlogin_csrf_protect
-def dex_oauth_callback():
-  error = request.values.get('error', None)
-  if error:
-    return render_ologin_error(dex_login.public_title, error)
-
-  code = request.values.get('code')
-  if not code:
-    return render_ologin_error(dex_login.public_title, 'Missing OAuth code')
-
-  token = dex_login.exchange_code_for_token(app.config, client, code, client_auth=True,
-                                            form_encode=True)
-  if token is None:
-    return render_ologin_error(dex_login.public_title)
-
-  try:
-    payload = decode_user_jwt(token, dex_login)
-  except InvalidTokenError:
-    logger.exception('Exception when decoding returned JWT')
-    return render_ologin_error(
-      dex_login.public_title,
-      'Could not decode response. Please contact your system administrator about this error.',
-    )
-
-  username = get_email_username(payload)
-  metadata = {}
-
-  dex_id = payload['sub']
-  email_address = payload['email']
-
-  if not payload.get('email_verified', False):
-    return render_ologin_error(
-      dex_login.public_title,
-      'A verified e-mail address is required for login. Please verify your ' +
-      'e-mail address in %s and try again.' % dex_login.public_title,
-    )
-
-
-  return conduct_oauth_login(dex_login, dex_id, username, email_address,
-                             metadata=metadata)
-
-
-@oauthlogin.route('/dex/callback/attach', methods=['GET', 'POST'])
-@route_show_if(features.DEX_LOGIN)
-@require_session_login
-@oauthlogin_csrf_protect
-def dex_oauth_attach():
-  code = request.args.get('code')
-  token = dex_login.exchange_code_for_token(app.config, client, code, redirect_suffix='/attach',
-                                            client_auth=True, form_encode=True)
-  if token is None:
-    return render_ologin_error(dex_login.public_title)
-
-  try:
-    payload = decode_user_jwt(token, dex_login)
-  except InvalidTokenError:
-    logger.exception('Exception when decoding returned JWT')
-    return render_ologin_error(
-      dex_login.public_title,
-      'Could not decode response. Please contact your system administrator about this error.',
-    )
-
-  user_obj = current_user.db_user()
-  dex_id = payload['sub']
-  metadata = {}
-
-  try:
-    model.user.attach_federated_login(user_obj, 'dex', dex_id, metadata=metadata)
-  except IntegrityError:
-    err = '%s account is already attached to a %s account' % (dex_login.public_title,
-                                                              app.config['REGISTRY_TITLE_SHORT'])
-    return render_ologin_error(dex_login.public_title, err)
-
-  return redirect(url_for('web.user_view', path=user_obj.username, tab='external'))