Issue 84: Add SSO Settings support (#86)

ZPascal · web-flow · commit 4569dce05d6f · 2024-05-30T22:41:17.000+02:00
* feat: Add the SSO settings feature
diff --git a/README.md b/README.md
@@ -347,6 +347,12 @@ In general, my focus on this project is to implement and deliver old and new fea
 - Update correlations
 - Delete correlations
 
+### SSO Settings
+- Get SSO settings
+- Get SSO settings by provider
+- Update SSO settings
+- Delete SSO settings
+
 ## Installation
 
 Please be aware to not install the `grafana-api` and `grafana-api-sdk` packages in parallel and the same environment. This result in name clashes, and it's not possible to use the Grafana API SDK.
diff --git a/docs/content/grafana_api/model.md b/docs/content/grafana_api/model.md
@@ -37,6 +37,7 @@
   * [CustomRole](#model.CustomRole)
   * [DatasourceCache](#model.DatasourceCache)
   * [PublicDashboard](#model.PublicDashboard)
+  * [SSOSetting](#model.SSOSetting)
 
 <a id="model"></a>
 
@@ -726,3 +727,22 @@ The class includes all necessary variables to generate a public dashboard object
 - `annotations_enabled` _bool_ - Specify the optional enablement of the annotations inside the public dashboard (default False)
 - `share` _str_ - Specify the optional share mode of the public dashboard (default public)
 
+<a id="model.SSOSetting"></a>
+
+## SSOSetting Objects
+
+```python
+@dataclass
+class SSOSetting()
+```
+
+The class includes all necessary variables to generate an SSO setting object
+
+**Arguments**:
+
+- `api_url` _str_ - Specify the SSO api url
+- `client_id` _str_ - Specify the SSO client id
+- `client_secret` _str_ - Specify the SSO client secret
+- `enabled` _bool_ - Specify if the SSO provider is enabled or not
+- `scopes` _str_ - Specify the SSO scopes
+
diff --git a/docs/content/index.md b/docs/content/index.md
@@ -40,6 +40,7 @@ The following list describes the currently supported features of the Grafana API
 - [x] [Playlist HTTP API](https://grafana.com/docs/grafana/latest/http_api/playlist/)
 - [x] [Reporting API](https://grafana.com/docs/grafana/latest/http_api/reporting/)
 - [x] [Short URL HTTP API](https://grafana.com/docs/grafana/latest/http_api/short_url/)
+- [x] [SSO Settings](https://grafana.com/docs/grafana/latest/developers/http_api/sso-settings/)
 - [x] [Team HTTP API](https://grafana.com/docs/grafana/latest/http_api/team/)
 - [x] [Team Sync](https://grafana.com/docs/grafana/latest/developers/http_api/team_sync/)
 - [x] [User HTTP API](https://grafana.com/docs/grafana/latest/http_api/user/)
diff --git a/docs/grafana_api_sdk.md b/docs/grafana_api_sdk.md
@@ -40,6 +40,7 @@ The following list describes the currently supported features of the Grafana API
 - [x] [Playlist HTTP API](https://grafana.com/docs/grafana/latest/http_api/playlist/)
 - [x] [Reporting API](https://grafana.com/docs/grafana/latest/http_api/reporting/)
 - [x] [Short URL HTTP API](https://grafana.com/docs/grafana/latest/http_api/short_url/)
+- [x] [SSO Settings](https://grafana.com/docs/grafana/latest/developers/http_api/sso-settings/)
 - [x] [Team HTTP API](https://grafana.com/docs/grafana/latest/http_api/team/)
 - [x] [Team Sync](https://grafana.com/docs/grafana/latest/developers/http_api/team_sync/)
 - [x] [User HTTP API](https://grafana.com/docs/grafana/latest/http_api/user/)
diff --git a/grafana_api/model.py b/grafana_api/model.py
@@ -24,8 +24,8 @@ class APIEndpoints(Enum):
     ALERTS_ALERTMANAGER: str = f"{api_prefix}/alertmanager"
     ALERTS_PROMETHEUS: str = f"{api_prefix}/prometheus"
     ALERTS_RULER: str = f"{api_prefix}/ruler"
-    ALERTS_TESTING: str = f"{api_prefix}/v1"
-    ALERTS_NGALERT: str = f"{api_prefix}/v1/ngalert"
+    ALERTS_TESTING: str = f"{api_prefix}/{version_1}"
+    ALERTS_NGALERT: str = f"{api_prefix}/{version_1}/ngalert"
     DATASOURCES: str = f"{api_prefix}/datasources"
     DATASOURCE_QUERY: str = f"{api_prefix}/tsdb/query"
     SHORT_URLS: str = f"{api_prefix}/short-urls"
@@ -52,6 +52,7 @@ class APIEndpoints(Enum):
     RBAC: str = f"{api_prefix}/access-control"
     LIBRARY: str = f"{api_prefix}/library-elements"
     ALERTING_PROVISIONING: str = f"{api_prefix}/{version_1}/provisioning"
+    SSO_SETTINGS: str = f"{api_prefix}/{version_1}/sso-settings"
 
 
 class RequestsMethods(Enum):
@@ -757,3 +758,22 @@ class PublicDashboard:
     is_enabled: bool = False
     annotations_enabled: bool = False
     share: str = "public"
+
+
+@dataclass
+class SSOSetting:
+    """The class includes all necessary variables to generate an SSO setting object
+
+    Args:
+        api_url (str): Specify the SSO api url
+        client_id (str): Specify the SSO client id
+        client_secret (str): Specify the SSO client secret
+        enabled (bool): Specify if the SSO provider is enabled or not
+        scopes (str): Specify the SSO scopes
+    """
+
+    api_url: str
+    client_id: str
+    client_secret: str
+    enabled: bool
+    scopes: str
diff --git a/grafana_api/other_http.py b/grafana_api/other_http.py
@@ -60,7 +60,7 @@ def renew_login_session_based_on_remember_cookie(self):
             logging.error(f"Check the error: {api_call}.")
             raise Exception
         else:
-            logging.info("You successfully destroyed the dashboard snapshot.")
+            logging.info("You successfully renewed the login session based on the cookie.")
 
     def get_health_status(self) -> dict:
         """The method includes a functionality to get the health information
diff --git a/grafana_api/sso_settings.py b/grafana_api/sso_settings.py
@@ -0,0 +1,219 @@
+import json
+import logging
+from typing import Union
+
+from .model import (
+    APIModel,
+    APIEndpoints,
+    RequestsMethods,
+    SSOSetting,
+)
+from .api import Api
+
+
+class SSOSettings:
+    """The class includes all necessary methods to access the Grafana sso settings API endpoints
+
+    Args:
+        grafana_api_model (APIModel): Inject a Grafana API model object that includes all necessary values and information
+
+    Attributes:
+        grafana_api_model (APIModel): This is where we store the grafana_api_model
+    """
+
+    def __init__(self, grafana_api_model: APIModel):
+        self.grafana_api_model = grafana_api_model
+
+    def get_sso_settings(self) -> list:
+        """The method includes a functionality to get the SSO settings for all providers
+
+        Required Permissions:
+            Action: settings:read
+            Scope: settings:auth.{provider}:*
+
+        Raises:
+            Exception: Unspecified error by executing the API call
+
+        Returns:
+            api_call (list): Returns the all SSO settings
+        """
+
+        api_call: Union[list, dict] = Api(self.grafana_api_model).call_the_api(
+            f"{APIEndpoints.SSO_SETTINGS.value}",
+            response_status_code=True,
+        )
+
+        status_code: int = api_call[0].get("status") if isinstance(api_call, list) else api_call.get("status")
+
+        sso_settings_status_dict: dict = dict(
+            {
+                400: "Bad request.",
+                401: "Unauthorized.",
+                403: "Access Denied.",
+            }
+        )
+
+        if status_code == 200:
+            return api_call
+        elif 400 <= status_code <= 403:
+            logging.error(sso_settings_status_dict.get(status_code))
+            raise Exception
+        else:
+            logging.error(f"Check the error: {api_call}.")
+            raise Exception
+
+    def get_sso_settings_by_provider(self, provider: str) -> dict:
+        """The method includes a functionality to get the SSO settings for the specified provider
+
+        Args:
+            provider (str): Specify the provider
+
+        Required Permissions:
+            Action: settings:read
+            Scope: settings:auth.{provider}:*
+
+        Raises:
+            ValueError: Missed specifying a necessary value
+            Exception: Unspecified error by executing the API call
+
+        Returns:
+            api_call (dict): Returns the corresponding provider SSO settings
+        """
+
+        if len(provider) != 0:
+            api_call: dict = Api(self.grafana_api_model).call_the_api(
+                f"{APIEndpoints.SSO_SETTINGS.value}/{provider}",
+                response_status_code=True
+            )
+
+            status_code: int = api_call.get("status")
+
+            sso_settings_status_dict: dict = dict(
+                {
+                    400: "Bad request.",
+                    401: "Unauthorized.",
+                    403: "Access Denied.",
+                    404: "SSO Settings not found."
+                }
+            )
+
+            if status_code == 200:
+                return api_call
+            elif 400 <= status_code <= 404:
+                logging.error(sso_settings_status_dict.get(status_code))
+                raise Exception
+            else:
+                logging.error(f"Check the error: {api_call}.")
+                raise Exception
+        else:
+            logging.error("There is no provider defined.")
+            raise ValueError
+
+    def update_sso_settings(self, provider: str, sso_setting: SSOSetting):
+        """The method includes a functionality to update the SSO settings specified by the provider
+
+         Args:
+            provider (str): Specify the provider
+            sso_setting (SSOSetting): Specify the SSO setting
+
+        Required Permissions:
+            Action: settings:write
+            Scope: settings:auth.{provider}:*
+
+        Raises:
+            ValueError: Missed specifying a necessary value
+            Exception: Unspecified error by executing the API call
+
+        Returns:
+            None
+        """
+
+        if len(provider) != 0 and sso_setting is not None and len(sso_setting.api_url) != 0 and len(sso_setting.client_id) != 0 and len(sso_setting.client_secret) != 0 and sso_setting.enabled is not None and len(sso_setting.scopes) != 0:
+            api_call: dict = Api(self.grafana_api_model).call_the_api(
+                f"{APIEndpoints.SSO_SETTINGS.value}/{provider}",
+                RequestsMethods.PUT,
+                json.dumps(
+                    dict(
+                        {
+                            "settings": {
+                                "apiUrl": sso_setting.api_url,
+                                "clientId": sso_setting.client_id,
+                                "clientSecret": sso_setting.client_secret,
+                                "enabled": sso_setting.enabled,
+                                "scopes": sso_setting.scopes,
+                            }
+                        }
+                    )
+                ),
+                response_status_code=True,
+            )
+
+            status_code: int = api_call.get("status")
+
+            sso_settings_status_dict: dict = dict(
+                {
+                    400: "Bad request.",
+                    401: "Unauthorized.",
+                    403: "Access Denied.",
+                }
+            )
+
+            if status_code == 204:
+                logging.info("You successfully updated the corresponding provider SSO setting.")
+            elif 400 <= status_code <= 403:
+                logging.error(sso_settings_status_dict.get(status_code))
+                raise Exception
+            else:
+                logging.error(f"Check the error: {api_call}.")
+                raise Exception
+        else:
+            logging.error("There is no provider or sso_settings object defined.")
+            raise ValueError
+
+    def delete_sso_settings(self, provider: str):
+        """The method includes a functionality to delete the SSO settings specified by the provider
+
+         Args:
+            provider (str): Specify the provider
+
+        Required Permissions:
+            Action: settings:write
+            Scope: settings:auth.{provider}:*
+
+        Raises:
+            ValueError: Missed specifying a necessary value
+            Exception: Unspecified error by executing the API call
+
+        Returns:
+            None
+        """
+
+        if len(provider) != 0:
+            api_call: dict = Api(self.grafana_api_model).call_the_api(
+                f"{APIEndpoints.SSO_SETTINGS.value}/{provider}",
+                RequestsMethods.DELETE,
+                response_status_code=True,
+            )
+
+            status_code: int = api_call.get("status")
+
+            sso_settings_status_dict: dict = dict(
+                {
+                    400: "Bad request.",
+                    401: "Unauthorized.",
+                    403: "Access Denied.",
+                    404: "SSO Settings not found.",
+                }
+            )
+
+            if status_code == 204:
+                logging.info("You successfully deleted the corresponding provider SSO settings.")
+            elif 400 <= status_code <= 404:
+                logging.error(sso_settings_status_dict.get(status_code))
+                raise Exception
+            else:
+                logging.error(f"Check the error: {api_call}.")
+                raise Exception
+        else:
+            logging.error("There is no provider defined.")
+            raise ValueError
diff --git a/tests/unittests/test_sso_settings.py b/tests/unittests/test_sso_settings.py
