Remove SAML authentication (#15568)

* remove saml * remove license file and management command * update requirements, add migrations * remove unused imports
2026-02-01 01:28:09 -03:30 · 2024-10-02 12:47:08 -04:00
parent bf09b95b61
commit 1ca034b0a7
35 changed files with 76 additions and 2439 deletions
--- a/tools/docker-compose/ansible/plumb_splunk.yml
+++ b/tools/docker-compose/ansible/plumb_splunk.yml
@@ -30,12 +30,6 @@
        existing_logging: "{{ lookup('awx.awx.controller_api', 'settings/logging', host=awx_host, verify_ssl=false) }}"
        new_logging: "{{ lookup('template', 'logging.json.j2') }}"

-    - name: Display existing Logging configuration
-      ansible.builtin.debug:
-        msg:
-          - "Here is your existing SAML configuration for reference:"
-          - "{{ existing_logging }}"
-
    - pause:
        ansible.builtin.prompt: "Continuing to run this will replace your existing logging settings (displayed above). They will all be captured except for your connection password. Be sure that is backed up before continuing"

--- a/tools/docker-compose/ansible/templates/saml_settings.json.j2
+++ b/tools/docker-compose/ansible/templates/saml_settings.json.j2
@@ -1,51 +0,0 @@
-{
-    "SAML_AUTO_CREATE_OBJECTS": true,
-    "SOCIAL_AUTH_SAML_SP_ENTITY_ID": "{{ container_reference }}:8043",
-    "SOCIAL_AUTH_SAML_SP_PUBLIC_CERT": "{{ public_key_content | regex_replace('\\n', '') }}",
-    "SOCIAL_AUTH_SAML_SP_PRIVATE_KEY": "{{ private_key_content | regex_replace('\\n', '') }}",
-    "SOCIAL_AUTH_SAML_ORG_INFO": {
-        "en-US": {
-            "url": "https://{{ container_reference }}:8443",
-            "name": "Keycloak",
-            "displayname": "Keycloak Solutions Engineering"
-        }
-    },
-    "SOCIAL_AUTH_SAML_TECHNICAL_CONTACT": {
-        "givenName": "Me Myself",
-        "emailAddress": "noone@nowhere.com"
-    },
-    "SOCIAL_AUTH_SAML_SUPPORT_CONTACT": {
-        "givenName": "Me Myself",
-        "emailAddress": "noone@nowhere.com"
-    },
-    "SOCIAL_AUTH_SAML_ENABLED_IDPS": {
-        "Keycloak": {
-            "attr_user_permanent_id": "name_id",
-            "entity_id": "https://{{ container_reference }}:8443/auth/realms/awx",
-            "attr_groups": "groups",
-            "url": "https://{{ container_reference }}:8443/auth/realms/awx/protocol/saml",
-            "attr_first_name": "first_name",
-            "x509cert": "{{ public_key_content | regex_replace('\\n', '') }}",
-            "attr_email": "email",
-            "attr_last_name": "last_name",
-            "attr_username": "username"
-        }
-    },
-    "SOCIAL_AUTH_SAML_SECURITY_CONFIG": {
-        "requestedAuthnContext": false
-    },
-    "SOCIAL_AUTH_SAML_SP_EXTRA": null,
-    "SOCIAL_AUTH_SAML_EXTRA_DATA": null,
-    "SOCIAL_AUTH_SAML_ORGANIZATION_MAP": {
-        "Default": {
-            "users": true
-        }
-    },
-    "SOCIAL_AUTH_SAML_TEAM_MAP": null,
-    "SOCIAL_AUTH_SAML_ORGANIZATION_ATTR": {},
-    "SOCIAL_AUTH_SAML_TEAM_ATTR": {},
-    "SOCIAL_AUTH_SAML_USER_FLAGS_BY_ATTR": {
-        "is_superuser_attr": "is_superuser",
-        "is_system_auditor_attr": "is_system_auditor"
-    }
-}