X-Git-Url: https://git.mdrn.pl/django-cas-provider.git/blobdiff_plain/462661051d92c19e3b4a6bd60207cebf28cc50b8..6548c0a365b3e8f19e18e15e5051134361d254b3:/cas_provider/views.py diff --git a/cas_provider/views.py b/cas_provider/views.py index a692ba5..4121a11 100644 --- a/cas_provider/views.py +++ b/cas_provider/views.py @@ -19,7 +19,15 @@ from . import signals __all__ = ['login', 'validate', 'logout'] -def login(request, template_name='cas/login.html', success_redirect='/account/', merge=False): +def _build_service_url(service, ticket): + if service.find('?') == -1: + return service + '?ticket=' + ticket + else: + return service + '&ticket=' + ticket + + +def login(request, template_name='cas/login.html', success_redirect='/account/', **kwargs): + merge = kwargs.get('merge', False) logging.debug('CAS Provider Login view. Method is %s, merge is %s, template is %s.', request.method, merge, template_name) @@ -82,56 +90,39 @@ def login(request, template_name='cas/login.html', success_redirect='/account/', form = LoginForm(initial={'service': service}) if user is not None and user.is_authenticated(): + # We have an authenticated user. if not user.is_active: errors.append('This account is disabled.') else: + # Send the on_cas_login signal. If we get an HttpResponse, return that. + for receiver, response in signals.on_cas_login(sender=login, request=request, + kwargs=kwargs): + if isinstance(response, HttpResponse): + return response + + if service is None: + # Try and pull the service off the session + service = request.session.pop('service', service) + if service is None: # Normal internal success redirection. logging.debug('Redirecting to %s', success_redirect) return HttpResponseRedirect(success_redirect) else: - # Create a service ticket and redirect. + # Create a service ticket and redirect to the service. ticket = create_service_ticket(request.user, service) - if service.find('?') == -1: - url = service + '?ticket=' + ticket.ticket - logging.debug('Redirecting to %s', url) - return HttpResponseRedirect(url) - else: - url = service + '&ticket=' + ticket.ticket - logging.debug('Redirecting to %s', url) - return HttpResponseRedirect(url) + if 'service' in request.session: + # Don't need this any more. + del request.session['service'] + + url = _build_service_url(service, ticket.ticket) + logging.debug('Redirecting to %s', url) + return HttpResponseRedirect(url) logging.debug('Rendering response on %s, merge is %s', template_name, merge) return render_to_response(template_name, {'form': form, 'errors': errors}, context_instance=RequestContext(request)) -def socialauth_login(request, template_name='cas/login.html', success_redirect='/account/'): - """ Similiar to login but user has been authenticated already through social auth. - This step authenticates the login and generates a service ticket. - """ - user = request.user - user.backend = 'django.contrib.auth.backends.ModelBackend' - if request.session.has_key('service'): - service = request.session['service'] - del request.session['service'] - else: - service = '/' - errors = [] - if user is not None: - if user.is_active: - auth_login(request, user) - if service is not None: - ticket = create_service_ticket(user, service) - return HttpResponseRedirect(service + '?ticket=' + ticket.ticket) - else: - return HttpResponseRedirect(success_redirect) - else: - errors.append('This account is disabled.') - else: - errors.append('Incorrect username and/or password.') - return render_to_response(template_name, {'errors': errors}, context_instance=RequestContext(request)) - - def validate(request): service = request.GET.get('service', None) ticket_string = request.GET.get('ticket', None)