authentik/providers: Add saml metadata form to wizard

connor peshek · connor peshek · commit 844a50f91498 · 2025-10-27T14:39:42.000-05:00
diff --git a/web/src/admin/applications/wizard/steps/ProviderChoices.ts b/web/src/admin/applications/wizard/steps/ProviderChoices.ts
@@ -39,6 +39,11 @@ export const providerTypeRenderers: Record<
             html`<ak-application-wizard-authentication-by-saml-configuration></ak-application-wizard-authentication-by-saml-configuration>`,
         order: 80,
     },
+    samlproviderimportmodel: {
+        render: () =>
+            html`<ak-application-wizard-authentication-by-saml-metadata-configuration></ak-application-wizard-authentication-by-saml-metadata-configuration>`,
+        order: 100,
+    },
     radiusprovider: {
         render: () =>
             html`<ak-application-wizard-authentication-by-radius></ak-application-wizard-authentication-by-radius>`,
diff --git a/web/src/admin/applications/wizard/steps/ak-application-wizard-provider-step.ts b/web/src/admin/applications/wizard/steps/ak-application-wizard-provider-step.ts
@@ -4,6 +4,7 @@ import "./providers/ak-application-wizard-provider-for-proxy.js";
 import "./providers/ak-application-wizard-provider-for-rac.js";
 import "./providers/ak-application-wizard-provider-for-radius.js";
 import "./providers/ak-application-wizard-provider-for-saml.js";
+import "./providers/ak-application-wizard-provider-for-saml-metadata.js";
 import "./providers/ak-application-wizard-provider-for-scim.js";
 
 import { ApplicationWizardStep } from "../ApplicationWizardStep.js";
@@ -24,6 +25,7 @@ const providerToTag = new Map([
     ["racprovider", "ak-application-wizard-provider-for-rac"],
     ["radiusprovider", "ak-application-wizard-provider-for-radius"],
     ["samlprovider", "ak-application-wizard-provider-for-saml"],
+    ["samlproviderimportmodel", "ak-application-wizard-provider-for-saml-metadata"],
     ["scimprovider", "ak-application-wizard-provider-for-scim"],
 ]);
 
diff --git a/web/src/admin/applications/wizard/steps/providers/ak-application-wizard-provider-for-saml-metadata.ts b/web/src/admin/applications/wizard/steps/providers/ak-application-wizard-provider-for-saml-metadata.ts
@@ -0,0 +1,38 @@
+import "#admin/applications/wizard/ak-wizard-title";
+
+import { ApplicationWizardProviderForm } from "./ApplicationWizardProviderForm.js";
+
+import { renderForm } from "#admin/providers/saml/SAMLProviderImportFormForm";
+
+import type { ProvidersSamlImportMetadataCreateRequest } from "@goauthentik/api";
+
+import { msg } from "@lit/localize";
+import { customElement } from "@lit/reactive-element/decorators.js";
+import { html } from "lit";
+
+@customElement("ak-application-wizard-provider-for-saml-metadata")
+export class ApplicationWizardProviderSamlMetadataForm extends ApplicationWizardProviderForm<ProvidersSamlImportMetadataCreateRequest> {
+    label = msg("Configure SAML Provider from Metadata");
+
+    renderForm() {
+        return html`
+            <ak-wizard-title>${this.label}</ak-wizard-title>
+            <form id="providerform" class="pf-c-form pf-m-horizontal" slot="form">
+                ${renderForm()}
+            </form>
+        `;
+    }
+
+    render() {
+        if (!(this.wizard.provider && this.wizard.errors)) {
+            throw new Error("SAML Metadata Provider Step received uninitialized wizard context.");
+        }
+        return this.renderForm();
+    }
+}
+
+declare global {
+    interface HTMLElementTagNameMap {
+        "ak-application-wizard-provider-for-saml-metadata": ApplicationWizardProviderSamlMetadataForm;
+    }
+}
diff --git a/web/src/admin/providers/saml/SAMLProviderImportForm.ts b/web/src/admin/providers/saml/SAMLProviderImportForm.ts
@@ -1,16 +1,13 @@
-import "#admin/common/ak-flow-search/ak-flow-search-no-default";
-import "#elements/forms/HorizontalFormElement";
-import "#elements/forms/SearchSelect/index";
+import { renderForm } from "./SAMLProviderImportFormForm.js";
 
 import { DEFAULT_CONFIG } from "#common/api/config";
 import { SentryIgnoredError } from "#common/sentry/index";
 
 import { Form } from "#elements/forms/Form";
 
-import { FlowsInstancesListDesignationEnum, ProvidersApi, SAMLProvider } from "@goauthentik/api";
+import { ProvidersApi, SAMLProvider } from "@goauthentik/api";
 
 import { msg } from "@lit/localize";
-import { html, TemplateResult } from "lit";
 import { customElement } from "lit/decorators.js";
 
 @customElement("ak-provider-saml-import-form")
@@ -32,41 +29,8 @@ export class SAMLProviderImportForm extends Form<SAMLProvider> {
         });
     }
 
-    renderForm(): TemplateResult {
-        return html`<ak-form-element-horizontal label=${msg("Name")} required name="name">
-                <input type="text" class="pf-c-form-control" required />
-            </ak-form-element-horizontal>
-            <ak-form-element-horizontal
-                label=${msg("Authorization flow")}
-                required
-                name="authorizationFlow"
-            >
-                <ak-flow-search-no-default
-                    flowType=${FlowsInstancesListDesignationEnum.Authorization}
-                    required
-                ></ak-flow-search-no-default>
-                <p class="pf-c-form__helper-text">
-                    ${msg("Flow used when authorizing this provider.")}
-                </p>
-            </ak-form-element-horizontal>
-            <ak-form-element-horizontal
-                label=${msg("Invalidation flow")}
-                required
-                name="invalidationFlow"
-            >
-                <ak-flow-search-no-default
-                    flowType=${FlowsInstancesListDesignationEnum.Invalidation}
-                    defaultFlowSlug="default-provider-invalidation-flow"
-                    required
-                ></ak-flow-search-no-default>
-                <p class="pf-c-form__helper-text">
-                    ${msg("Flow used when logging out of this provider.")}
-                </p>
-            </ak-form-element-horizontal>
-
-            <ak-form-element-horizontal label=${msg("Metadata")} name="metadata">
-                <input type="file" value="" class="pf-c-form-control" />
-            </ak-form-element-horizontal>`;
+    renderForm() {
+        return renderForm();
     }
 }
 
diff --git a/web/src/admin/providers/saml/SAMLProviderImportFormForm.ts b/web/src/admin/providers/saml/SAMLProviderImportFormForm.ts
@@ -0,0 +1,49 @@
+import "#admin/common/ak-flow-search/ak-flow-search-no-default";
+import "#components/ak-text-input";
+import "#elements/forms/HorizontalFormElement";
+
+import { FlowsInstancesListDesignationEnum } from "@goauthentik/api";
+
+import { msg } from "@lit/localize";
+import { html } from "lit";
+
+export function renderForm() {
+    return html`
+        <ak-text-input name="name" label=${msg("Name")} required></ak-text-input>
+
+        <ak-form-element-horizontal
+            label=${msg("Authorization flow")}
+            required
+            name="authorizationFlow"
+        >
+            <ak-flow-search-no-default
+                flowType=${FlowsInstancesListDesignationEnum.Authorization}
+                required
+            ></ak-flow-search-no-default>
+            <p class="pf-c-form__helper-text">
+                ${msg("Flow used when authorizing this provider.")}
+            </p>
+        </ak-form-element-horizontal>
+
+        <ak-form-element-horizontal
+            label=${msg("Invalidation flow")}
+            required
+            name="invalidationFlow"
+        >
+            <ak-flow-search-no-default
+                flowType=${FlowsInstancesListDesignationEnum.Invalidation}
+                required
+            ></ak-flow-search-no-default>
+            <p class="pf-c-form__helper-text">
+                ${msg("Flow used when logging out of this provider.")}
+            </p>
+        </ak-form-element-horizontal>
+
+        <ak-form-element-horizontal label=${msg("Metadata")} name="file" required>
+            <input type="file" value="" class="pf-c-form-control" required accept=".xml" />
+            <p class="pf-c-form__helper-text">
+                ${msg("SAML metadata XML file to import provider settings from.")}
+            </p>
+        </ak-form-element-horizontal>
+    `;
+}
