This repository has been archived by the owner on Sep 13, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 2
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Import old recipe: Create users ldap (#72)
Co-authored-by: annikakrilov <[email protected]> Co-authored-by: Taylor Steinberg <[email protected]> Co-authored-by: tdstein <[email protected]>
- Loading branch information
4 people
authored
Jun 21, 2024
1 parent
4d97749
commit 4532089
Showing
2 changed files
with
176 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,175 @@ | ||
| --- | ||
| title: Create a Posit Connect account from LDAP or OAuth2 | ||
| --- | ||
|
|
||
| ## Description | ||
|
|
||
| The following recipe searches for a user in LDAP or OAuth2 and then creates a Posit Connect account for that user. | ||
|
|
||
| ## Output | ||
|
|
||
| There is no generated output from this recipe. | ||
| The purpose is to modify the state of the Connect server. | ||
|
|
||
| ## Workflow | ||
|
|
||
| This recipe requires the username or the first part of the username of the user to be added. | ||
|
|
||
| There are two steps: | ||
|
|
||
| 1. Search for the user on the auth provider | ||
| 2. Create an account for the user on Connect with information returned by the search | ||
|
|
||
| ## Recipe | ||
|
|
||
| :::{.panel-tabset group="language"} | ||
|
|
||
| ### Python | ||
|
|
||
| ```{.python} | ||
| import polars as pl | ||
| from posit import connect | ||
| client = connect.Client() | ||
| #### User-defined inputs #### | ||
| # 1. Specify the username or prefix of the username | ||
| user_prefix = "francis" | ||
| ########################### | ||
| response = client.get("v1/users/remote", params={"prefix": user_prefix}) | ||
| results_df = pl.DataFrame(response.json()['results']) | ||
| results_df | ||
| ``` | ||
|
|
||
| ##### Example output | ||
|
|
||
| ``` | ||
| shape: (1, 12) | ||
| βββββββββββββββββ¬βββββββββββ¬βββββββββββββ¬ββββββββββββ¬ββββ¬ββββββββββββ¬βββββββββ¬βββββββ¬βββββββββββββββ | ||
| β email β username β first_name β last_name β β¦ β confirmed β locked β guid β temp_ticket β | ||
| β --- β --- β --- β --- β β --- β --- β --- β --- β | ||
| β str β str β str β str β β bool β bool β null β str β | ||
| βββββββββββββββββͺβββββββββββͺβββββββββββββͺββββββββββββͺββββͺββββββββββββͺβββββββββͺβββββββͺβββββββββββββββ‘ | ||
| β FrancisM@positβ francism β Myra β Francis β β¦ β true β false β null β QNb7ST5XTnQ9 β | ||
| β -9.com β β β β β β β β /nX2pIy9xRNB β | ||
| β β β β β β β β β LeKafOβ¦ β | ||
| βββββββββββββββββ΄βββββββββββ΄βββββββββββββ΄ββββββββββββ΄ββββ΄ββββββββββββ΄βββββββββ΄βββββββ΄βββββββββββββββ | ||
| ``` | ||
|
|
||
| We have one user here, `Myra Francis`, username: `francism`. `francism` does not have a GUID, which means that they do not have a user account on Connect. | ||
|
|
||
| Included in the API response for each user is a `temp_ticket` value, which can be used to create the user in Connect. | ||
|
|
||
| ```{.python} | ||
| temp_ticket = results_df["temp_ticket"][0] | ||
| ``` | ||
|
|
||
| #### Creating the user | ||
|
|
||
| Using the `temp_ticket` value from the previous section, you can create | ||
| a Connect user with a **[`PUT /v1/user`](../../api/#put-/v1/user)** endpoint: | ||
|
|
||
| ```{.python} | ||
| # The 'temp_ticket' value comes from an earlier /users/remote search. | ||
| response = client.put("v1/users", json={"temp_ticket": temp_ticket}) | ||
| pl.DataFrame(response.json()) | ||
| ``` | ||
|
|
||
| ###### Example output | ||
|
|
||
| When the call succeeds, the response contains a non-`NULL` `guid` value, | ||
| which is a unique identifier for the user's account on Connect. | ||
|
|
||
| ``` | ||
| shape: (1, 11) | ||
| ββββββββββββββ¬βββββββββββ¬βββββββββββββ¬ββββββββββββ¬ββββ¬βββββββββββββ¬ββββββββββββ¬βββββββββ¬ββββββββββββ | ||
| β email β username β first_name β last_name β β¦ β active_tim β confirmed β locked β guid β | ||
| β --- β --- β --- β --- β β e β --- β --- β --- β | ||
| β str β str β str β str β β --- β bool β bool β str β | ||
| β β β β β β null β β β β | ||
| ββββββββββββββͺβββββββββββͺβββββββββββββͺββββββββββββͺββββͺβββββββββββββͺββββββββββββͺβββββββββͺββββββββββββ‘ | ||
| β FrancisM@p β francism β Myra β Francis β β¦ β null β true β false β deb96ce5- β | ||
| β osit-9.com β β β β β β β β e865-4fce β | ||
| β β β β β β β β β -8b46-999 β | ||
| β β β β β β β β β be9β¦ β | ||
| ββββββββββββββ΄βββββββββββ΄βββββββββββββ΄ββββββββββββ΄ββββ΄βββββββββββββ΄ββββββββββββ΄βββββββββ΄ββββββββββββ | ||
| ``` | ||
|
|
||
| If the user already exists in Connect, the request errors: | ||
|
|
||
| ``` | ||
| ClientError: A user using the same Unique ID already exists | ||
| ``` | ||
|
|
||
| ### R | ||
|
|
||
| #### Find the user to add | ||
| ```{.r} | ||
| library(connectapi) | ||
| library(purrr) | ||
| library(tibble) | ||
| client <- connect() | ||
| #### User-defined inputs #### | ||
| # 1. The user you want to search for | ||
| user_prefix <- "francis" | ||
| ########################### | ||
| remote_users <- client$users_remote(user_prefix) | ||
| tibble( | ||
| username = map_chr(remote_users$results, ~.$username), | ||
| fist_name = map_chr(remote_users$results, ~.$first_name), | ||
| last_name = map_chr(remote_users$results, ~.$last_name), | ||
| guid = map_chr(remote_users$results, ~ifelse(is.null(.$guid), NA, .$guid)), | ||
| temp_ticket = map_chr(remote_users$results, ~.$temp_ticket) | ||
| ) | ||
| ``` | ||
|
|
||
| ##### Example output | ||
|
|
||
| ``` | ||
| # A tibble: 1 Γ 5 | ||
| username fist_name last_name guid temp_ticket | ||
| <chr> <chr> <chr> <chr> <chr> | ||
| 1 francism Myra Francis NA n7WrtxjvQwRqYmBHXZCIU8WFlkprDsgj8V21AjprLB/XRkYr/2+vxr1NE9N1pH+ftN2ArxiWZAkPa39UqkjhZohmDAeS+1PBOXT⦠| ||
| > | ||
| ``` | ||
|
|
||
| We have one user here, `Myra Francis`, username: `francism`. `francism` does not have a GUID, which means that they do not have a user account on Connect. | ||
|
|
||
| #### Creating the user | ||
|
|
||
| The `connectapi` SDK has a function to create users directly: | ||
|
|
||
| ```{.r} | ||
| users_create_remote(client, prefix = "francism") | ||
| ``` | ||
|
|
||
| ##### Example output | ||
|
|
||
| When the call succeeds, the response contains a non-`NULL` `guid` value, | ||
| which is a unique identifier for the user's account on Connect. | ||
|
|
||
| ``` | ||
| Creating remote user: francism | ||
| Done creating remote users | ||
| # A tibble: 1 Γ 11 | ||
| email username first_name last_name user_role created_time updated_time active_time confirmed locked guid | ||
| <chr> <chr> <chr> <chr> <chr> <dttm> <dttm> <dttm> <lgl> <lgl> <chr> | ||
| 1 [email protected]β¦ francism Myra Francis viewer 2024-06-07 19:35:30 2024-06-07 19:35:30 NA TRUE FALSE deb96ce5-e86β¦ | ||
| ``` | ||
|
|
||
| If the user already exists in Connect, the same call returns: | ||
|
|
||
| ``` | ||
| At least one user with username prefix 'francism' already exists | ||
| # A tibble: 1 Γ 11 | ||
| email username first_name last_name user_role created_time updated_time active_time confirmed locked guid | ||
| <chr> <chr> <chr> <chr> <chr> <dttm> <dttm> <dttm> <lgl> <lgl> <chr> | ||
| 1 [email protected]β¦ francism Myra Francis viewer 2024-06-07 19:35:30 2024-06-07 19:35:30 NA TRUE FALSE deb96ce5-e86β¦ | ||
| ``` | ||
|
|
||
| ::: | ||
|
|
||
|
|