forked from DGNum/gestioCOF
b42452080f
AccountBackend - Should now work if used in AUTHENTICATION_BACKENDS settings. - It does not retieve itself the password, as it should not be used this way. GenericBackend - Delete useless 'username' arg of its 'authenticate()' method. - Now delete the token in DB. TemporaryAuthMiddleware - New name of the middleware is more meaningful. - Is now responsible to retrieve the password from the request, instead of the AccountBackend. GenericTeamToken model - Add a manager' method to create token, avoiding possible error due to unicity constraint. GenericLoginView (authentication with the kfet generic user) - Replace obscure system with a 100% HTTP handling. - See comments for more information. Misc - More docstrings! - More tests! - Add some i18n. - Add kfet/confirm_form.html template: Ask user to confirm sth via a form (which will send a POST request). Context variables: * title: the page title * confirm_url: action attribute for <form> * text: displayed confirmation text - kfet.js : Add functions allowing to emit POST request from <a> tag. - Non-link nav items from kfet navbar also get a 'title'. - A utility has been found for the 'sunglasses' glyphicon!
43 lines
1.1 KiB
Python
43 lines
1.1 KiB
Python
# -*- coding: utf-8 -*-
|
|
from django.contrib.auth import get_user_model
|
|
from kfet.models import Account, GenericTeamToken
|
|
|
|
from .utils import get_kfet_generic_user
|
|
|
|
User = get_user_model()
|
|
|
|
|
|
class BaseKFetBackend:
|
|
def get_user(self, user_id):
|
|
"""
|
|
Add extra select related up to Account.
|
|
"""
|
|
try:
|
|
return (
|
|
User.objects
|
|
.select_related('profile__account_kfet')
|
|
.get(pk=user_id)
|
|
)
|
|
except User.DoesNotExist:
|
|
return None
|
|
|
|
|
|
class AccountBackend(BaseKFetBackend):
|
|
def authenticate(self, request, kfet_password=None):
|
|
try:
|
|
return Account.objects.get_by_password(kfet_password).user
|
|
except Account.DoesNotExist:
|
|
return None
|
|
|
|
|
|
class GenericBackend(BaseKFetBackend):
|
|
def authenticate(self, request, kfet_token=None):
|
|
try:
|
|
team_token = GenericTeamToken.objects.get(token=kfet_token)
|
|
except GenericTeamToken.DoesNotExist:
|
|
return
|
|
|
|
# No need to keep the token.
|
|
team_token.delete()
|
|
|
|
return get_kfet_generic_user()
|