/django/contrib/auth/__init__.py

https://github.com/rohanza/django · Python · 113 lines · 87 code · 8 blank · 18 comment · 17 complexity · 9b302ca0bbe2586fde7c1daf30b603c9 MD5 · raw file 

    

  1. import datetime
    2. 

  2. from warnings import warn
    3. 

  3. from django.core.exceptions import ImproperlyConfigured
    4. 

  4. from django.utils.importlib import import_module
    5. 

  5. from django.contrib.auth.signals import user_logged_in, user_logged_out
    6. 

  6. 

  7. SESSION_KEY = '_auth_user_id'
    8. 

  8. BACKEND_SESSION_KEY = '_auth_user_backend'
    9. 

  9. REDIRECT_FIELD_NAME = 'next'
    10. 

  10. 

  11. def load_backend(path):
    12. 

  12.     i = path.rfind('.')
    13. 

  13.     module, attr = path[:i], path[i+1:]
    14. 

  14.     try:
    15. 

  15.         mod = import_module(module)
    16. 

  16.     except ImportError, e:
    17. 

  17.         raise ImproperlyConfigured('Error importing authentication backend %s: "%s"' % (module, e))
    18. 

  18.     except ValueError, e:
    19. 

  19.         raise ImproperlyConfigured('Error importing authentication backends. Is AUTHENTICATION_BACKENDS a correctly defined list or tuple?')
    20. 

  20.     try:
    21. 

  21.         cls = getattr(mod, attr)
    22. 

  22.     except AttributeError:
    23. 

  23.         raise ImproperlyConfigured('Module "%s" does not define a "%s" authentication backend' % (module, attr))
    24. 

  24.     if not hasattr(cls, "supports_object_permissions"):
    25. 

  25.         warn("Authentication backends without a `supports_object_permissions` attribute are deprecated. Please define it in %s." % cls,
    26. 

  26.              DeprecationWarning)
    27. 

  27.         cls.supports_object_permissions = False
    28. 

  28. 

  29.     if not hasattr(cls, 'supports_anonymous_user'):
    30. 

  30.         warn("Authentication backends without a `supports_anonymous_user` attribute are deprecated. Please define it in %s." % cls,
    31. 

  31.              DeprecationWarning)
    32. 

  32.         cls.supports_anonymous_user = False
    33. 

  33. 

  34.     if not hasattr(cls, 'supports_inactive_user'):
    35. 

  35.         warn("Authentication backends without a `supports_inactive_user` attribute are deprecated. Please define it in %s." % cls,
    36. 

  36.              PendingDeprecationWarning)
    37. 

  37.         cls.supports_inactive_user = False
    38. 

  38.     return cls()
    39. 

  39. 

  40. def get_backends():
    41. 

  41.     from django.conf import settings
    42. 

  42.     backends = []
    43. 

  43.     for backend_path in settings.AUTHENTICATION_BACKENDS:
    44. 

  44.         backends.append(load_backend(backend_path))
    45. 

  45.     if not backends:
    46. 

  46.         raise ImproperlyConfigured('No authentication backends have been defined. Does AUTHENTICATION_BACKENDS contain anything?')
    47. 

  47.     return backends
    48. 

  48. 

  49. def authenticate(**credentials):
    50. 

  50.     """
    51. 

  51.     If the given credentials are valid, return a User object.
    52. 

  52.     """
    53. 

  53.     for backend in get_backends():
    54. 

  54.         try:
    55. 

  55.             user = backend.authenticate(**credentials)
    56. 

  56.         except TypeError:
    57. 

  57.             # This backend doesn't accept these credentials as arguments. Try the next one.
    58. 

  58.             continue
    59. 

  59.         if user is None:
    60. 

  60.             continue
    61. 

  61.         # Annotate the user object with the path of the backend.
    62. 

  62.         user.backend = "%s.%s" % (backend.__module__, backend.__class__.__name__)
    63. 

  63.         return user
    64. 

  64. 

  65. def login(request, user):
    66. 

  66.     """
    67. 

  67.     Persist a user id and a backend in the request. This way a user doesn't
    68. 

  68.     have to reauthenticate on every request.
    69. 

  69.     """
    70. 

  70.     if user is None:
    71. 

  71.         user = request.user
    72. 

  72.     # TODO: It would be nice to support different login methods, like signed cookies.
    73. 

  73.     if SESSION_KEY in request.session:
    74. 

  74.         if request.session[SESSION_KEY] != user.id:
    75. 

  75.             # To avoid reusing another user's session, create a new, empty
    76. 

  76.             # session if the existing session corresponds to a different
    77. 

  77.             # authenticated user.
    78. 

  78.             request.session.flush()
    79. 

  79.     else:
    80. 

  80.         request.session.cycle_key()
    81. 

  81.     request.session[SESSION_KEY] = user.id
    82. 

  82.     request.session[BACKEND_SESSION_KEY] = user.backend
    83. 

  83.     if hasattr(request, 'user'):
    84. 

  84.         request.user = user
    85. 

  85.     user_logged_in.send(sender=user.__class__, request=request, user=user)
    86. 

  86. 

  87. def logout(request):
    88. 

  88.     """
    89. 

  89.     Removes the authenticated user's ID from the request and flushes their
    90. 

  90.     session data.
    91. 

  91.     """
    92. 

  92.     # Dispatch the signal before the user is logged out so the receivers have a
    93. 

  93.     # chance to find out *who* logged out.
    94. 

  94.     user = getattr(request, 'user', None)
    95. 

  95.     if hasattr(user, 'is_authenticated') and not user.is_authenticated():
    96. 

  96.         user = None
    97. 

  97.     user_logged_out.send(sender=user.__class__, request=request, user=user)
    98. 

  98. 

  99.     request.session.flush()
    100. 

  100.     if hasattr(request, 'user'):
    101. 

  101.         from django.contrib.auth.models import AnonymousUser
    102. 

  102.         request.user = AnonymousUser()
    103. 

  103. 

  104. def get_user(request):
    105. 

  105.     from django.contrib.auth.models import AnonymousUser
    106. 

  106.     try:
    107. 

  107.         user_id = request.session[SESSION_KEY]
    108. 

  108.         backend_path = request.session[BACKEND_SESSION_KEY]
    109. 

  109.         backend = load_backend(backend_path)
    110. 

  110.         user = backend.get_user(user_id) or AnonymousUser()
    111. 

  111.     except KeyError:
    112. 

  112.         user = AnonymousUser()
    113. 

  113.     return user
    114.