forked from DGNum/gestioCOF
6ec42edd60
- Un utilisateur ayant la perm `kfet.is_team` peut se déconnecter et connecter à la place un utilisateur `kfet_genericteam` ne disposant que de la permission `kfet.is_team` - Backend et vue associée à cette connexion créés
36 lines
1.2 KiB
Python
36 lines
1.2 KiB
Python
import hashlib
|
|
|
|
from django.contrib.auth.models import User, Permission
|
|
from gestioncof.models import CofProfile
|
|
from kfet.models import Account, GenericTeamToken
|
|
|
|
class KFetBackend(object):
|
|
def authenticate(self, request):
|
|
password = request.META.get('HTTP_KFETPASSWORD')
|
|
if not password:
|
|
return None
|
|
|
|
try:
|
|
password_sha1 = hashlib.sha1(password.encode()).hexdigest()
|
|
account = Account.objects.get(password=password_sha1)
|
|
user = account.cofprofile.user
|
|
except Account.DoesNotExist:
|
|
return None
|
|
|
|
return user
|
|
|
|
class GenericTeamBackend(object):
|
|
def authenticate(self, username=None, token=None):
|
|
valid_token = GenericTeamToken.objects.get(token=token)
|
|
if username == 'kfet_genericteam' and valid_token:
|
|
user, created = User.objects.get_or_create(username='kfet_genericteam')
|
|
perm_is_team = Permission.objects.get(codename='is_team')
|
|
user.user_permissions.add(perm_is_team)
|
|
return user
|
|
return None
|
|
|
|
def get_user(self, user_id):
|
|
try:
|
|
return User.objects.get(pk=user_id)
|
|
except User.DoesNotExist:
|
|
return None
|