blinkster: web/lib/django/contrib/auth/handlers/modpython.py@ebaad720f88b (annotated)

0 0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	1	from mod_python import apache
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	2	import os
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	3
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	4	def authenhandler(req, **kwargs):
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	5	"""
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	6	Authentication handler that checks against Django's auth database.
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	7	"""
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	8
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	9	# mod_python fakes the environ, and thus doesn't process SetEnv. This fixes
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	10	# that so that the following import works
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	11	os.environ.update(req.subprocess_env)
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	12
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	13	# apache 2.2 requires a call to req.get_basic_auth_pw() before
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	14	# req.user and friends are available.
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	15	req.get_basic_auth_pw()
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	16
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	17	# check for PythonOptions
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	18	_str_to_bool = lambda s: s.lower() in ('1', 'true', 'on', 'yes')
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	19
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	20	options = req.get_options()
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	21	permission_name = options.get('DjangoPermissionName', None)
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	22	staff_only = _str_to_bool(options.get('DjangoRequireStaffStatus', "on"))
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	23	superuser_only = _str_to_bool(options.get('DjangoRequireSuperuserStatus', "off"))
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	24	settings_module = options.get('DJANGO_SETTINGS_MODULE', None)
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	25	if settings_module:
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	26	os.environ['DJANGO_SETTINGS_MODULE'] = settings_module
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	27
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	28	from django.contrib.auth.models import User
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	29	from django import db
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	30	db.reset_queries()
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	31
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	32	# check that the username is valid
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	33	kwargs = {'username': req.user, 'is_active': True}
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	34	if staff_only:
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	35	kwargs['is_staff'] = True
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	36	if superuser_only:
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	37	kwargs['is_superuser'] = True
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	38	try:
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	39	try:
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	40	user = User.objects.get(**kwargs)
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	41	except User.DoesNotExist:
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	42	return apache.HTTP_UNAUTHORIZED
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	43
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	44	# check the password and any permission given
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	45	if user.check_password(req.get_basic_auth_pw()):
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	46	if permission_name:
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	47	if user.has_perm(permission_name):
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	48	return apache.OK
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	49	else:
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	50	return apache.HTTP_UNAUTHORIZED
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	51	else:
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	52	return apache.OK
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	53	else:
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	54	return apache.HTTP_UNAUTHORIZED
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	55	finally:
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	56	db.connection.close()

author	ymh <ymh.work@gmail.com>
	Wed, 20 Jan 2010 01:06:59 +0100
changeset 1	ebaad720f88b
parent 0	0d40e90630ef
permissions	-rw-r--r--