Remove pesky middleware
This commit is contained in:
parent
dd5fe36ee1
commit
be5218f7e1
2 changed files with 0 additions and 38 deletions
|
@ -111,7 +111,6 @@ MIDDLEWARE = [
|
||||||
"django.middleware.common.CommonMiddleware",
|
"django.middleware.common.CommonMiddleware",
|
||||||
"django.middleware.csrf.CsrfViewMiddleware",
|
"django.middleware.csrf.CsrfViewMiddleware",
|
||||||
"django.contrib.auth.middleware.AuthenticationMiddleware",
|
"django.contrib.auth.middleware.AuthenticationMiddleware",
|
||||||
"kfet.auth.middleware.TemporaryAuthMiddleware",
|
|
||||||
"django.contrib.messages.middleware.MessageMiddleware",
|
"django.contrib.messages.middleware.MessageMiddleware",
|
||||||
"django.middleware.clickjacking.XFrameOptionsMiddleware",
|
"django.middleware.clickjacking.XFrameOptionsMiddleware",
|
||||||
"django.middleware.security.SecurityMiddleware",
|
"django.middleware.security.SecurityMiddleware",
|
||||||
|
|
|
@ -1,37 +0,0 @@
|
||||||
from django.contrib.auth import get_user_model
|
|
||||||
|
|
||||||
from .backends import AccountBackend
|
|
||||||
|
|
||||||
User = get_user_model()
|
|
||||||
|
|
||||||
|
|
||||||
class TemporaryAuthMiddleware:
|
|
||||||
"""Authenticate another user for this request if AccountBackend succeeds.
|
|
||||||
|
|
||||||
By the way, if a user is authenticated, we refresh its from db to add
|
|
||||||
values from CofProfile and Account of this user.
|
|
||||||
|
|
||||||
"""
|
|
||||||
|
|
||||||
def __init__(self, get_response):
|
|
||||||
self.get_response = get_response
|
|
||||||
|
|
||||||
def __call__(self, request):
|
|
||||||
if request.user.is_authenticated:
|
|
||||||
# avoid multiple db accesses in views and templates
|
|
||||||
request.user = User.objects.select_related("profile__account_kfet").get(
|
|
||||||
pk=request.user.pk
|
|
||||||
)
|
|
||||||
|
|
||||||
temp_request_user = AccountBackend().authenticate(
|
|
||||||
request, kfet_password=self.get_kfet_password(request)
|
|
||||||
)
|
|
||||||
|
|
||||||
if temp_request_user:
|
|
||||||
request.real_user = request.user
|
|
||||||
request.user = temp_request_user
|
|
||||||
|
|
||||||
return self.get_response(request)
|
|
||||||
|
|
||||||
def get_kfet_password(self, request):
|
|
||||||
return request.META.get("HTTP_KFETPASSWORD") or request.POST.get("KFETPASSWORD")
|
|
Loading…
Reference in a new issue