~azzar1/unity/add-show-desktop-key

Viewing changes to ivle/webapp/security/views.py

Committer: William Grant
Date: 2009-02-16 03:23:57 UTC
mto: (1092.1.27 setup-stuff) (1099.1.143 new-dispatch) (1100.1.8 new-ui)
mto: This revision was merged to the branch mainline in revision 1100.
Revision ID: grantw@unimelb.edu.au-20090216032357-r6b90e9qgb508b13

Move the login machinery to the new framework.

The login page is now redirected to by the XHTML Unauthorized page, and knows
to return to the right URL when authentication succeeds. It also means that we
no longer return a 200 with login page content for a totally unrelated page...

Some of the user stuff (disabling, Tos, etc.) is now broken, and /logout moved
to /+logout.

files added:
ivle/webapp/security/login.html

files modified:
ivle/dispatch/__init__.py

ivle/dispatch/login.py

ivle/webapp/base/ivle-headings.html

ivle/webapp/base/xhtml.py

ivle/webapp/security/__init__.py

ivle/webapp/security/views.py

www/media/common/tos.js

Show diffs side-by-side

added added

removed removed

ivle/webapp/security/views.py

# Author: Will Grant, Nick Chadwick

import urllib

import datetime

try:

import mod_python.Cookie

except ImportError:

# This needs to be importable from outside Apache.

pass

import ivle.util

from ivle.auth import authenticate, AuthError

from ivle.webapp.base.xhtml import XHTMLView

import ivle.util

from ivle.webapp.base.plugins import CookiePlugin

from ivle.dispatch.login import get_user_details

class LoginView(XHTMLView):

'''A view to allow a user to log in.'''

template = 'login.html'

def authorize(self, req):

return True

def populate(self, req, ctx):

fields = req.get_fieldstorage()

nexturl = fields.getfirst('url')

if nexturl is None:

nexturl = '/'

# We are already logged in. Don't bother logging in again.

if req.user is not None:

req.throw_redirect(nexturl)

ctx['path'] = ivle.util.make_path('+login') + \

'?' + urllib.urlencode([('url', nexturl)])

if req.method == "POST":

# While req.user is normally set to get_user_details, it won't set

# it if the account isn't valid. So we get it ourselves.

user = get_user_details(req)

badlogin = None

username = fields.getfirst('user')

password = fields.getfirst('pass')

if username is not None:

# From this point onwards, we will be showing an error message

# if unsuccessful.

# Authenticate

if password is None:

badlogin = "No password supplied."

else:

user = None

try:

user = authenticate.authenticate(req.store,

username.value, password.value)

except AuthError, msg:

badlogin = msg

if user is None:

# Must have got an error. Do not authenticate.

pass

elif user.password_expired:

badlogin = "Your password has expired."

elif user.account_expired:

badlogin = "Your account has expired."

else:

# Success - Set the session and redirect to the URL.

session = req.get_session()

session['login'] = user.login

session.save()

user.last_login = datetime.datetime.now()

req.store.commit()

# Create cookies for plugins that might request them.

for plugin in req.plugin_index[CookiePlugin]:

for cookie in plugin.cookies:

# The function can be None if they just need to be

# deleted at logout.

if plugin.cookies[cookie] is not None:

req.add_cookie(mod_python.Cookie.Cookie(cookie,

plugin.cookies[cookie](user), path='/'))

100

101

req.throw_redirect(nexturl)

102

103

# We didn't succeed.

104

# Render the login form with the error message.

105

ctx['error'] = badlogin

106

107

108

class LogoutView(XHTMLView):

109

'''A view to log the current session out.'''

116

if req.method == "POST":

117

req.logout()

118

else:

ctx['path'] = ivle.util.make_path('logout')

119

ctx['path'] = ivle.util.make_path('+logout')

Older »