PageRenderTime 54ms CodeModel.GetById 18ms RepoModel.GetById 0ms app.codeStats 0ms

/auth_systems/password.py

https://github.com/benadida/auth-django-app
Python | 116 lines | 88 code | 17 blank | 11 comment | 10 complexity | d748ecfe15be4c2b76397f6bf102e829 MD5 | raw file
    

  1. """
    2. 

  2. Username/Password Authentication
    3. 

  3. """
    4. 

    5. 

  5. from django.core.urlresolvers import reverse
    6. 

  6. from django import forms
    7. 

  7. from django.core.mail import send_mail
    8. 

  8. from django.conf import settings
    9. 

  9. from django.http import HttpResponseRedirect
    10. 

  10. 

  11. import logging
    12. 

  12. 

  13. # some parameters to indicate that status updating is possible
    14. 

  14. STATUS_UPDATES = False
    15. 

  15. 

  16. 

  17. def create_user(username, password, name = None):
    18. 

  18.   from auth.models import User
    19. 

  19.   
    20. 

  20.   user = User.get_by_type_and_id('password', username)
    21. 

  21.   if user:
    22. 

  22.     raise Exception('user exists')
    23. 

  23.   
    24. 

  24.   info = {'password' : password, 'name': name}
    25. 

  25.   user = User.update_or_create(user_type='password', user_id=username, info = info)
    26. 

  26.   user.save()
    27. 

  27. 

  28. class LoginForm(forms.Form):
    29. 

  29.   username = forms.CharField(max_length=50)
    30. 

  30.   password = forms.CharField(widget=forms.PasswordInput(), max_length=100)
    31. 

  31. 

  32. def password_check(user, password):
    33. 

  33.   return (user and user.info['password'] == password)
    34. 

  34.   
    35. 

  35. # the view for logging in
    36. 

  36. def password_login_view(request):
    37. 

  37.   from auth.view_utils import render_template
    38. 

  38.   from auth.views import after
    39. 

  39.   from auth.models import User
    40. 

  40. 

  41.   error = None
    42. 

  42.   
    43. 

  43.   if request.method == "GET":
    44. 

  44.     form = LoginForm()
    45. 

  45.   else:
    46. 

  46.     form = LoginForm(request.POST)
    47. 

  47. 

  48.     if form.is_valid():
    49. 

  49.       username = form.cleaned_data['username'].strip()
    50. 

  50.       password = form.cleaned_data['password'].strip()
    51. 

  51.       try:
    52. 

  52.         user = User.get_by_type_and_id('password', username)
    53. 

  53.         if password_check(user, password):
    54. 

  54.           # set this in case we came here from another location than 
    55. 

  55.           # the normal login process
    56. 

  56.           request.session['auth_system_name'] = 'password'
    57. 

  57.           if request.POST.has_key('return_url'):
    58. 

  58.             request.session['auth_return_url'] = request.POST.get('return_url')
    59. 

  59. 

  60.           request.session['user'] = user
    61. 

  61.           return HttpResponseRedirect(reverse(after))
    62. 

  62.       except User.DoesNotExist:
    63. 

  63.         pass
    64. 

  64.       error = 'Bad Username or Password'
    65. 

  65.   
    66. 

  66.   return render_template(request, 'password/login', {'form': form, 'error': error})
    67. 

  67.     
    68. 

  68. def password_forgotten_view(request):
    69. 

  69.   """
    70. 

  70.   forgotten password view and submit.
    71. 

  71.   includes return_url
    72. 

  72.   """
    73. 

  73.   from auth.view_utils import render_template
    74. 

  74.   from auth.models import User
    75. 

  75. 

  76.   if request.method == "GET":
    77. 

  77.     return render_template(request, 'password/forgot', {'return_url': request.GET.get('return_url', '')})
    78. 

  78.   else:
    79. 

  79.     username = request.POST['username']
    80. 

  80.     return_url = request.POST['return_url']
    81. 

  81.     
    82. 

  82.     user = User.get_by_type_and_id('password', username)
    83. 

  83.     
    84. 

  84.     body = """
    85. 

    86. 

  86. This is a password reminder:
    87. 

  87. 

  88. Your username: %s
    89. 

  89. Your password: %s
    90. 

  90. 

  91. --
    92. 

  92. %s
    93. 

  93. """ % (user.user_id, user.info['password'], settings.SITE_TITLE)
    94. 

    95. 

  95.     # FIXME: make this a task
    96. 

  96.     send_mail('password reminder', body, settings.SERVER_EMAIL, ["%s <%s>" % (user.info['name'], user.info['email'])], fail_silently=False)
    97. 

  97.     
    98. 

  98.     return HttpResponseRedirect(return_url)
    99. 

  99.   
    100. 

  100. def get_auth_url(request, redirect_url = None):
    101. 

  101.   return reverse(password_login_view)
    102. 

  102.     
    103. 

  103. def get_user_info_after_auth(request):
    104. 

  104.   user = request.session['user']
    105. 

  105.   user_info = user.info
    106. 

  106.   
    107. 

  107.   return {'type': 'password', 'user_id' : user.user_id, 'name': user.name, 'info': user.info, 'token': None}
    108. 

  108.     
    109. 

  109. def update_status(token, message):
    110. 

  110.   pass
    111. 

  111.   
    112. 

  112. def send_message(user_id, user_name, user_info, subject, body):
    113. 

  113.   if user_info.has_key('email'):
    114. 

  114.     email = user_info['email']
    115. 

  115.     name = user_info.get('name', email)
    116. 

  116.     send_mail(subject, body, settings.SERVER_EMAIL, ["%s <%s>" % (name, email)], fail_silently=False)    
    117. 

  117.