from django.http import HttpResponse, HttpResponseForbidden, HttpResponseRedirect
-from django.shortcuts import get_object_or_404, render_to_response, get_list_or_404
-from django.core.urlresolvers import reverse
-from django.core.exceptions import SuspiciousOperation
+from django.shortcuts import render_to_response
from django.template import RequestContext
from django.contrib.auth.models import User
from django.contrib.auth import authenticate
from django.contrib.auth import login as auth_login, logout as auth_logout
-from forms import LoginForm
-from models import ServiceTicket, LoginTicket
-from utils import create_service_ticket
+from cas_provider.forms import LoginForm
+from cas_provider.models import ServiceTicket, LoginTicket
+from cas_provider.utils import create_service_ticket
-__all__ = ['login', 'validate', 'logout']
+__all__ = ['login', 'validate', 'service_validate', 'logout']
def login(request, template_name='cas/login.html', success_redirect='/accounts/'):
service = request.GET.get('service', None)
ticket = ServiceTicket.objects.get(ticket=ticket_string)
username = ticket.user.username
ticket.delete()
- return HttpResponse("yes\n\r%s\n\r" % username)
+ return HttpResponse("yes\n%s\n" % username)
except:
pass
- return HttpResponse("no\n\r\n\r")
+ return HttpResponse("no\n\n")
+
+def service_validate(request):
+ service = request.GET.get('service', None)
+ ticket_string = request.GET.get('ticket', None)
+ if service is None or ticket_string is None:
+ return HttpResponse('''<cas:serviceResponse xmlns:cas="http://www.yale.edu/tp/cas">
+ <cas:authenticationFailure code="INVALID_REQUEST">
+ Not all required parameters were sent.
+ </cas:authenticationFailure>
+ </cas:serviceResponse>''', mimetype='text/xml')
+ try:
+ ticket = ServiceTicket.objects.get(ticket=ticket_string)
+ username = ticket.user.username
+ ticket.delete()
+ return HttpResponse('''<cas:serviceResponse xmlns:cas="http://www.yale.edu/tp/cas">
+ <cas:authenticationSuccess>
+ <cas:user>%(username)s</cas:user>
+ </cas:authenticationSuccess>
+ </cas:serviceResponse>''' % {'username': username}, mimetype='text/xml')
+ except ServiceTicket.DoesNotExist:
+ return HttpResponse(''''<cas:serviceResponse xmlns:cas="http://www.yale.edu/tp/cas">
+ <cas:authenticationFailure code="INVALID_TICKET">
+ The provided ticket is invalid.
+ </cas:authenticationFailure>
+ </cas:serviceResponse>''', mimetype='text/xml')
+
def logout(request, template_name='cas/logout.html'):
url = request.GET.get('url', None)
auth_logout(request)