removing netflix specific code from auth flow

This commit is contained in:
kevgliss 2015-08-27 13:09:02 -07:00
parent bb51b59400
commit 70ccd137e1
1 changed files with 6 additions and 8 deletions

View File

@ -183,10 +183,6 @@ class Ping(Resource):
# update their google 'roles'
roles = []
# Legacy edge case - 'admin' has some special privileges associated with it
if 'secops@netflix.com' in profile['googleGroups']:
roles.append(role_service.get_by_name('admin'))
for group in profile['googleGroups']:
role = role_service.get_by_name(group)
if not role:
@ -196,8 +192,10 @@ class Ping(Resource):
# if we get an sso user create them an account
# we still pick a random password in case sso is down
if not user:
# every user is an operator (tied to the verisignCA)
v = role_service.get_by_name('verisign')
# every user is an operator (tied to a default role)
if current_app.config.get('LEMUR_DEFAULT_ROLE'):
v = role_service.get_by_name(current_app.config.get('LEMUR_DEFAULT_ROLE'))
if v:
roles.append(v)