PageRenderTime 59ms CodeModel.GetById 18ms RepoModel.GetById 1ms app.codeStats 0ms

/webserver/website/core/loginhelper.py

https://github.com/hughperkins/springgrid
Python | 198 lines | 170 code | 6 blank | 22 comment | 2 complexity | ffa275bae539930b160e5ed72eb90b71 MD5 | raw file
Possible License(s): BSD-3-Clause, Apache-2.0 
    

  1. # Copyright Hugh Perkins 2004, 2009
    2. 

  2. # hughperkins@gmail.com http://manageddreams.com
    3. 

  3. #
    4. 

  4. # This program is free software; you can redistribute it and/or modify it
    5. 

  5. # under the terms of the GNU General Public License as published by the
    6. 

  6. # Free Software Foundation; either version 2 of the License, or
    7. 

  7. # (at your option) any later version.
    8. 

  8. #
    9. 

  9. # This program is distributed in the hope that it will be useful, but
    10. 

  10. # WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
    11. 

  11. # or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
    12. 

  12. #  more details.
    13. 

  13. #
    14. 

  14. # You should have received a copy of the GNU General Public License along
    15. 

  15. # with this program in the file licence.txt; if not, write to the
    16. 

  16. # Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-
    17. 

  17. # 1307 USA
    18. 

  18. # You can find the licence also on the web at:
    19. 

  19. # http://www.opensource.org/licenses/gpl-license.php
    20. 

  20. #
    21. 

  21. 

  22. # functions for login, cookies etc...
    23. 

  23. 

  24. import Cookie
    25. 

  25. import random
    26. 

  26. import cgi
    27. 

  27. import string
    28. 

  28. import os
    29. 

  29. import os.path
    30. 

  30. import md5
    31. 

  31. 

  32. from sqlalchemy.orm import join
    33. 

  33. 

  34. from utils import *
    35. 

  35. 

  36. import sqlalchemysetup
    37. 

  37. import tableclasses
    38. 

  38. # from tableclasses import *
    39. 

  39. 

  40. gusername = ""  # first call loginhelper.processCookie().  If the user
    41. 

  41.                 # is already logged in after that, then gusername will no
    42. 

  42.                 # longer be blank
    43. 

  43.                 # testing gusername != '' is sufficient to check if the user
    44. 

  44.                 # is logged in
    45. 

  45. loginhtml = ""
    46. 

  46. cookiereference = ''
    47. 

  47. cookie = Cookie.SimpleCookie()
    48. 

  48. 

  49. saltlength = 200
    50. 

  50. 

  51. def GenerateRef():
    52. 

  52.    return stringhelper.getRandomAlphaNumericString(40)
    53. 

  53. 

  54. def hasPassword():
    55. 

  55.    account = sqlalchemysetup.session.query(tableclasses.Account).filter( tableclasses.Account.username == gusername ).first()
    56. 

  56.    if account == None:
    57. 

  57.       return False
    58. 

  58.    if account.passwordinfo == None:
    59. 

  59.       return False
    60. 

  60.    return True
    61. 

  61.    
    62. 

  62. def isLoggedOn():
    63. 

  63.    global gusername
    64. 

  64.    return ( gusername != '')
    65. 

  65. 

  66. def getUsername():
    67. 

  67.    global gusername
    68. 

  68.    return gusername
    69. 

  69. 

  70. # returns a salt string
    71. 

  71. def createSalt():
    72. 

  72.    global saltlength
    73. 

  73.    return stringhelper.getRandomPrintableString(saltlength)
    74. 

  74. 

  75. # returns True if password correct, otherwise false
    76. 

  76. def validateUsernamePassword( username, password ):
    77. 

  77.    global authmethod
    78. 

  78. 

  79.    account = sqlalchemysetup.session.query(tableclasses.Account).filter( tableclasses.Account.username == username ).first()
    80. 

  80.    if account == None:
    81. 

  81.       return False
    82. 

  82.    if account.passwordinfo == None:
    83. 

  83.       return False
    84. 

  84.    result = account.passwordinfo.checkPassword( password )
    85. 

  85.    return result
    86. 

  86. 

  87. def logonUserWithAuthenticatedOpenID( openidurl ):
    88. 

  88.    global gusername
    89. 

  89.    global loginhtml
    90. 

  90.    global cookie
    91. 

  91.    global cookiereference
    92. 

  92.    global authmethod
    93. 

  93. 

  94.    cookiereference = GenerateRef()
    95. 

  95. 

  96.    cookie = Cookie.SimpleCookie()
    97. 

  97.    cookie["cookiereference"] = cookiereference
    98. 

  98. 

  99.    account = None
    100. 

  100.    # note: this could be optimized a little...
    101. 

  101.    for thisaccount in sqlalchemysetup.session.query(tableclasses.Account):
    102. 

  102.       for openid in thisaccount.openids:
    103. 

  103.          if openid.openid == openidurl:
    104. 

  104.             account = thisaccount
    105. 

  105.    if account == None:
    106. 

  106.       # create new account
    107. 

  107.       account = tableclasses.Account(openidurl, openidurl )
    108. 

  108.       account.openids.append( tableclasses.OpenID( openidurl ) )
    109. 

  109.       sqlalchemysetup.session.add( account )
    110. 

  110. 

  111.    cookierow = tableclasses.Cookie( cookiereference, account )
    112. 

  112.    sqlalchemysetup.session.add(cookierow)
    113. 

  113.    sqlalchemysetup.session.commit()
    114. 

  114. 

  115.    gusername = account.username
    116. 

  116.    loginhtml = "<p>Logged in as: " + gusername + "</p>"
    117. 

  117. 

  118. def logonUserWithPassword(username, password):
    119. 

  119.    global gusername
    120. 

  120.    global loginhtml
    121. 

  121.    global cookie
    122. 

  122.    global cookiereference
    123. 

  123. 

  124.    gusername = ""
    125. 

  125.    if not validateUsernamePassword( username, password ):
    126. 

  126.       loginhtml =  "<h4>Logon error: Please check your username and password.</h4>"
    127. 

  127.       return
    128. 

  128. 

  129.    cookiereference = GenerateRef()
    130. 

  130. 

  131.    cookie = Cookie.SimpleCookie()
    132. 

  132.    cookie["cookiereference"] = cookiereference
    133. 

  133. 

  134.    accountrow = sqlalchemysetup.session.query(tableclasses.Account).filter(tableclasses.Account.username == username ).first()
    135. 

  135.    if accountrow == None:
    136. 

  136.       loginhtml =  "<h4>Logon error: Please check your username and password.</h4>"
    137. 

  137.       return 
    138. 

  138. 

  139.    cookierow = tableclasses.Cookie( cookiereference, accountrow )
    140. 

  140.    sqlalchemysetup.session.add(cookierow)
    141. 

  141.    sqlalchemysetup.session.commit()
    142. 

  142. 

  143.    gusername = username
    144. 

  144.    loginhtml = "<p>Logged in as: " + gusername + "</p>"
    145. 

  145. 

  146. def changePassword( username, password ):
    147. 

  147.    account = sqlalchemysetup.session.query(tableclasses.Account).filter( tableclasses.Account.username == username ).first()
    148. 

  148.    account.passwordinfo.changePassword( password )
    149. 

  149.    sqlalchemysetup.session.commit()
    150. 

  150.    return True
    151. 

  151. 

  152. # can use commandline arguments to login, or just use querystring
    153. 

  153. # if there is a cookie, uses that
    154. 

  154. def processCookie():
    155. 

  155.    global cookie, cookiereference, gusername, loginhtml
    156. 

  156. 

  157.    gusername = ''
    158. 

  158.    cookie = Cookie.SimpleCookie( os.environ.get("HTTP_COOKIE"))
    159. 

  159.    c = cookie.output( "Cookie: " )
    160. 

  160.    if(not c):
    161. 

  161.       # check query string, and if username and password are ok, set gusername from that
    162. 

  162.       if formhelper.getValue('username') != '' and formhelper.getValue('password') != '':
    163. 

  163.          if validateUsernamePassword( formhelper.getValue('username'), formhelper.getValue('password') ):
    164. 

  164.             gusername = formhelper.getValue('username')
    165. 

  165.       return    
    166. 

  166. 

  167.    if not cookie.has_key( "cookiereference" ):
    168. 

  168.       return
    169. 

  169. 

  170.    cookiereference = str( cookie["cookiereference"].value )
    171. 

  171. 

  172.    cookierow = sqlalchemysetup.session.query(tableclasses.Cookie).filter(tableclasses.Cookie.cookiereference == cookiereference ).first()
    173. 

  173.    if cookierow == None:
    174. 

  174.       return
    175. 

  175. 

  176.    # Note: could consider migrating from username string to account object
    177. 

  177.    gusername = cookierow.account.username
    178. 

  178. 

  179.    if gusername == '':
    180. 

  180.       return
    181. 

  181. 

  182.    loginhtml = "<p>Logged in as: " + gusername + "</p>"
    183. 

  183. 

  184. def logoutUser():
    185. 

  185.    global cookie, cookiereference, gusername, loginhtml
    186. 

  186.    
    187. 

  187.    cookierow = sqlalchemysetup.session.query(tableclasses.Cookie).filter(tableclasses.Cookie.cookiereference == cookiereference ).first()
    188. 

  188.    if cookierow != None:
    189. 

  189.       sqlalchemysetup.session.delete(cookierow)
    190. 

  190.       sqlalchemysetup.session.commit()
    191. 

  191.    
    192. 

  192.    cookiereference = '0'
    193. 

  193.    cookie = Cookie.SimpleCookie()
    194. 

  194.    gusername = ""
    195. 

  195.    loginhtml = ""
    196. 

  196. 

  197. 

  198. 

  199.