blueprints: allow setting user's passwords from blueprints (#5797)

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
2023-05-29 21:28:44 +02:00
parent d09bee7bf9
commit f0619814f9
7 changed files with 80 additions and 15 deletions
--- a/authentik/blueprints/tests/fixtures/conditional_fields.yaml
+++ b/authentik/blueprints/tests/fixtures/conditional_fields.yaml
@ -11,31 +11,37 @@ metadata:
 entries:
  - model: authentik_core.token
    identifiers:
-      identifier: %(uid)s-token
+      identifier: "%(uid)s-token"
    attrs:
-      key: %(uid)s
-      user: %(user)s
+      key: "%(uid)s"
+      user: "%(user)s"
      intent: api
  - model: authentik_core.application
    identifiers:
-      slug: %(uid)s-app
+      slug: "%(uid)s-app"
    attrs:
-      name: %(uid)s-app
+      name: "%(uid)s-app"
      icon: https://goauthentik.io/img/icon.png
  - model: authentik_sources_oauth.oauthsource
    identifiers:
-      slug: %(uid)s-source
+      slug: "%(uid)s-source"
    attrs:
-      name: %(uid)s-source
+      name: "%(uid)s-source"
      provider_type: azuread
-      consumer_key: %(uid)s
-      consumer_secret: %(uid)s
+      consumer_key: "%(uid)s"
+      consumer_secret: "%(uid)s"
      icon: https://goauthentik.io/img/icon.png
  - model: authentik_flows.flow
    identifiers:
-      slug: %(uid)s-flow
+      slug: "%(uid)s-flow"
    attrs:
-      name: %(uid)s-flow
-      title: %(uid)s-flow
+      name: "%(uid)s-flow"
+      title: "%(uid)s-flow"
      designation: authentication
      background: https://goauthentik.io/img/icon.png
+  - model: authentik_core.user
+    identifiers:
+      username: "%(uid)s"
+    attrs:
+      name: "%(uid)s"
+      password: "%(uid)s"
--- a/authentik/blueprints/tests/test_v1_conditional_fields.py
+++ b/authentik/blueprints/tests/test_v1_conditional_fields.py
@ -2,7 +2,7 @@
 from django.test import TransactionTestCase

 from authentik.blueprints.v1.importer import Importer
-from authentik.core.models import Application, Token
+from authentik.core.models import Application, Token, User
 from authentik.core.tests.utils import create_test_admin_user
 from authentik.flows.models import Flow
 from authentik.lib.generators import generate_id
@ -45,3 +45,9 @@ class TestBlueprintsV1ConditionalFields(TransactionTestCase):
        flow = Flow.objects.filter(slug=f"{self.uid}-flow").first()
        self.assertIsNotNone(flow)
        self.assertEqual(flow.background, "https://goauthentik.io/img/icon.png")
+
+    def test_user(self):
+        """Test user"""
+        user: User = User.objects.filter(username=self.uid).first()
+        self.assertIsNotNone(user)
+        self.assertTrue(user.check_password(self.uid))
--- a/authentik/blueprints/v1/tasks.py
+++ b/authentik/blueprints/v1/tasks.py
@ -184,9 +184,9 @@ def apply_blueprint(self: MonitoredTask, instance_pk: str):
    instance: Optional[BlueprintInstance] = None
    try:
        instance: BlueprintInstance = BlueprintInstance.objects.filter(pk=instance_pk).first()
-        self.set_uid(slugify(instance.name))
        if not instance or not instance.enabled:
            return
+        self.set_uid(slugify(instance.name))
        blueprint_content = instance.retrieve()
        file_hash = sha512(blueprint_content.encode()).hexdigest()
        importer = Importer(blueprint_content, instance.context)