Merge pull request #2774 from jplana/aid_openid_roles_provider_integration

Don't fail if googleGroups is not found in user profile
2019-05-07 09:17:26 -07:00 · 2019-05-07 09:17:26 -07:00 · 65f594fc29
parent 06ccafeb24 ff583981b1
commit 65f594fc29
1 changed files with 10 additions and 7 deletions
--- a/lemur/auth/views.py
+++ b/lemur/auth/views.py
@ -132,13 +132,16 @@ def create_user_roles(profile):
    roles = []

    # update their google 'roles'
-    for group in profile['googleGroups']:
-        role = role_service.get_by_name(group)
-        if not role:
-            role = role_service.create(group, description='This is a google group based role created by Lemur', third_party=True)
-        if not role.third_party:
-            role = role_service.set_third_party(role.id, third_party_status=True)
-        roles.append(role)
+    if 'googleGroups' in profile:
+        for group in profile['googleGroups']:
+            role = role_service.get_by_name(group)
+            if not role:
+                role = role_service.create(group, description='This is a google group based role created by Lemur', third_party=True)
+            if not role.third_party:
+                role = role_service.set_third_party(role.id, third_party_status=True)
+            roles.append(role)
+    else:
+        current_app.logger.warning("'googleGroups' not sent by identity provider, no specific roles will assigned to the user.")

    role = role_service.get_by_name(profile['email'])