DGNum/authens
17
0
Fork 0
Code Issues 2 Pull requests Projects Releases 2 Packages Wiki Activity

Store the connexion method in a session variable

Browse source
This commit is contained in:
Martin Pépin 2020-05-17 18:50:54 +02:00
parent ead851893a
commit 6a75f78541
No known key found for this signature in database
GPG key ID: E7520278B1774448
5 changed files with 12 additions and 36 deletions
Download patch file Download diff file Expand all files Collapse all files

7
authens/backends.py
View file

@ -60,10 +60,9 @@ class ENSCASBackend:
cas_login = self.clean_cas_login(cas_login) cas_login = self.clean_cas_login(cas_login)
year = get_entrance_year(attributes) year = get_entrance_year(attributes)
user = self._get_or_create(cas_login, year) if request:
user.cas_account.connected_to_cas = True request.session["CASCONNECTED"] = True
user.cas_account.save() return self._get_or_create(cas_login, year)
return user
def clean_cas_login(self, cas_login): def clean_cas_login(self, cas_login):
return cas_login.strip().lower() return cas_login.strip().lower()

18
authens/migrations/0002_casaccount_connected_to_cas.py
View file

@ -1,18 +0,0 @@
# Generated by Django 3.0.6 on 2020-05-17 12:23
from django.db import migrations, models
class Migration(migrations.Migration):
dependencies = [
("authens", "0001_initial"),
]
operations = [
migrations.AddField(
model_name="casaccount",
name="connected_to_cas",
field=models.BooleanField(default=False, editable=False),
),
]

5
authens/models.py
View file

@ -27,11 +27,6 @@ class CASAccount(models.Model):
verbose_name=_("année de création du compte CAS"), blank=False, null=False verbose_name=_("année de création du compte CAS"), blank=False, null=False
) )
# This is True if and only if the user is connected via CAS (and not e.g. by
# password). This is used to decide whether to redirect to user to the CAS logout
# page or not when the user disconnects.
connected_to_cas = models.BooleanField(default=False, editable=False)
class Meta: class Meta:
verbose_name = _("Compte CAS") verbose_name = _("Compte CAS")
verbose_name_plural = _("Comptes CAS") verbose_name_plural = _("Comptes CAS")

2
authens/tests/test_views.py
View file

@ -38,7 +38,7 @@ class TestLogoutView(TestCase):
# Log the user in via CAS # Log the user in via CAS
client = Client() client = Client()
client.login(ticket="dummy ticket") client.get("/authens/login/cas?ticket=dummy-ticket")
self.assertEqual(Session.objects.count(), 1) self.assertEqual(Session.objects.count(), 1)
response = client.get("/authens/logout") response = client.get("/authens/logout")

16
authens/views.py
View file

@ -6,7 +6,6 @@ from django.views.generic import TemplateView, View
from django.shortcuts import redirect from django.shortcuts import redirect
from django.utils.translation import gettext_lazy as _ from django.utils.translation import gettext_lazy as _
from authens.models import CASAccount
from authens.utils import get_cas_client from authens.utils import get_cas_client
@ -85,16 +84,17 @@ class LogoutView(auth_views.LogoutView):
logged in via CAS. logged in via CAS.
""" """
def setup(self, *args, **kwargs): def setup(self, request):
super().setup(*args, **kwargs) super().setup(request)
cas_account = CASAccount.objects.filter(user=self.request.user) if "CASCONNECTED" in request.session:
self.cas_account = cas_account.get() if cas_account.exists() else None del request.session["CASCONNECTED"]
self.cas_connected = True
else:
self.cas_connected = False
def get_next_page(self): def get_next_page(self):
if self.cas_account and self.cas_account.connected_to_cas: if self.cas_connected:
cas_client = get_cas_client(self.request) cas_client = get_cas_client(self.request)
self.cas_account.connected_to_cas = False
self.cas_account.save()
return cas_client.get_logout_url() return cas_client.get_logout_url()
else: else:
return super().get_next_page() return super().get_next_page()