Add option to enable binding external account to local account in admin page

lib/form/admin/securityGeneral.js

@@ -11,6 +11,7 @@ module.exports = form(
   field('settingForm[security:basicSecret]'),
   field('settingForm[security:restrictGuestMode]').required(),
   field('settingForm[security:registrationMode]').required(),
-  field('settingForm[security:registrationWhiteList]').custom(normalizeCRLF).custom(stringToArray)
+  field('settingForm[security:registrationWhiteList]').custom(normalizeCRLF).custom(stringToArray),
+  field('settingForm[security:externalAsLocal]'),
 );
 

lib/locales/en-US/translation.json

@@ -275,7 +275,9 @@
     "for_instance":" For instance, if you use growi within a company, you can write ",
     "only_those":" Only those whose e-mail address including the company address can register.",
     "insert_single":"Please insert single e-mail address per line.",
-    "Authentication mechanism settings":"Authentication mechanism settings"
+    "Authentication mechanism settings":"Authentication mechanism settings",
+    "external_as_local": "Bind the external account with the same username as the local one to the local one automatically",
+    "external_as_local_help": "Enabling this option may be helpful if you want to authenticate users with external accounts, that are originally created as local accounts."
   },
 
   "markdown_setting": {

lib/locales/ja/translation.json

@@ -295,7 +295,9 @@
     "for_instance":"例えば、会社で使う場合 などと記載すると、",
     "only_those":"その会社のメールアドレスを持っている人のみ登録可能になります。",
     "insert_single":"1行に1メールアドレス入力してください。",
-    "Authentication mechanism settings":"認証機構設定"
+    "Authentication mechanism settings":"認証機構設定",
+    "external_as_local": "外部アカウントをそれと同じユーザー名を持ったローカルアカウントに自動的にリンクする",
+    "external_as_local_help": "ローカルアカウントとして作成されたユーザーを外部アカウントで認証したい場合に役に立つかもしれません。"
   },
   "markdown_setting": {
     "markdown_rendering": "Markdownレンダリングの設定を変更できます。",

lib/models/config.js

@@ -53,6 +53,7 @@ module.exports = function(crowi) {
       'security:registrationWhiteList' : [],
 
       'security:isEnabledPassport' : false,
+      'security:externalAsLocal': false,
       'security:passport-ldap:isEnabled' : false,
       'security:passport-ldap:serverUrl' : undefined,
       'security:passport-ldap:isUserBind' : undefined,
@@ -277,6 +278,12 @@ module.exports = function(crowi) {
     return getValueForCrowiNS(config, key);
   };
 
+  configSchema.statics.shouldTreatExternalAccountAsLocal = function(config)
+  {
+    const key = 'security:externalAsLocal';
+    return getValueForCrowiNS(config, key);
+  };
+
   configSchema.statics.isUploadable = function(config)
   {
     var method = crowi.env.FILE_UPLOAD || 'aws';

lib/models/external-account.js

@@ -78,7 +78,9 @@ class ExternalAccount {
     }
 
     const User = ExternalAccount.crowi.model('User');
-    const treatExternalUserAsLocalUser = false; // TODO: fetch from config model
+    const Config = ExternalAccount.crowi.model('Config');
+
+    const treatExternalUserAsLocalUser = Config.shouldTreatExternalAccountAsLocal(ExternalAccount.crowi.getConfig());
 
     const users = await User.find({username: usernameToBeRegistered})
 

lib/routes/admin.js

@@ -95,8 +95,8 @@ module.exports = function(crowi, app) {
   // app.get('/admin/security'                  , admin.security.index);
   actions.security = {};
   actions.security.index = function(req, res) {
-    var settingForm;
-    settingForm = Config.setupCofigFormData('crowi', req.config);
+    const settingForm = Config.setupCofigFormData('crowi', req.config);
+    debug(req.config)
     return res.render('admin/security', { settingForm });
   };
 
@@ -862,7 +862,7 @@ module.exports = function(crowi, app) {
   };
 
   actions.api.securitySetting = function(req, res) {
-    var form = req.form.settingForm;
+    const form = req.form.settingForm;
 
     if (req.form.isValid) {
       debug('form content', form);

lib/views/admin/security.html

@@ -90,6 +90,25 @@
             </div>
           </div>
 
+          <div class="form-group">
+            <div class="col-xs-offset-3 col-xs-6">
+              <div class="checkbox checkbox-info">
+                <input type="checkbox" id="externalAsLocal" name="settingForm[security:externalAsLocal]"
+                                                                                                                 {% if settingForm['security:externalAsLocal'] %}
+                checked
+                {% endif %}
+                />
+                <label for="externalAsLocal">
+                  {{ t("security_setting.external_as_local") }}
+                </label>
+              </div>
+  
+              <p class="help-block">
+                {{ t("security_setting.external_as_local_help") }}
+              </p>
+            </div>
+          </div>
+
           <div class="form-group">
             <div class="col-xs-offset-3 col-xs-6">
               <input type="hidden" name="_csrf" value="{{ csrf() }}">