1 # Copyright 2011-2012 GRNET S.A. All rights reserved.
3 # Redistribution and use in source and binary forms, with or
4 # without modification, are permitted provided that the following
7 # 1. Redistributions of source code must retain the above
8 # copyright notice, this list of conditions and the following
11 # 2. Redistributions in binary form must reproduce the above
12 # copyright notice, this list of conditions and the following
13 # disclaimer in the documentation and/or other materials
14 # provided with the distribution.
16 # THIS SOFTWARE IS PROVIDED BY GRNET S.A. ``AS IS'' AND ANY EXPRESS
17 # OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
18 # WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
19 # PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL GRNET S.A OR
20 # CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
21 # SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
22 # LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
23 # USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
24 # AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25 # LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
26 # ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
27 # POSSIBILITY OF SUCH DAMAGE.
29 # The views and conclusions contained in the software and
30 # documentation are those of the authors and should not be
31 # interpreted as representing official policies, either expressed
32 # or implied, of GRNET S.A.
37 from urllib import quote
38 from urlparse import urlsplit, urlunsplit
39 from functools import wraps
41 from datetime import tzinfo, timedelta
42 from django.http import HttpResponse, urlencode
43 from django.template import RequestContext
44 from django.contrib.sites.models import Site
45 from django.utils.translation import ugettext as _
46 from django.contrib.auth import login, authenticate
47 from django.core.urlresolvers import reverse
49 from astakos.im.models import AstakosUser, Invitation
50 from astakos.im.settings import INVITATIONS_PER_LEVEL, COOKIE_NAME, COOKIE_DOMAIN, COOKIE_SECURE, FORCE_PROFILE_UPDATE
52 logger = logging.getLogger(__name__)
55 def utcoffset(self, dt):
65 """Return an ISO8601 date string that includes a timezone."""
67 return d.replace(tzinfo=UTC()).isoformat()
69 def get_or_create_user(email, realname='', first_name='', last_name='', affiliation='', level=0, provider='local', password=''):
70 """Find or register a user into the internal database
71 and issue a token for subsequent requests.
73 user, created = AstakosUser.objects.get_or_create(email=email,
76 'affiliation':affiliation,
78 'invitations':INVITATIONS_PER_LEVEL[level],
81 'first_name':first_name,
87 logger.info('Created user %s', user)
91 def get_context(request, extra_context={}, **kwargs):
94 extra_context.update(kwargs)
95 return RequestContext(request, extra_context)
97 def get_invitation(request):
99 Returns the invitation identified by the ``code``.
101 Raises Invitation.DoesNotExist and Exception if the invitation is consumed
103 code = request.GET.get('code')
104 if request.method == 'POST':
105 code = request.POST.get('code')
107 if 'invitation_code' in request.session:
108 code = request.session.pop('invitation_code')
111 invitation = Invitation.objects.get(code = code)
112 if invitation.is_consumed:
113 raise ValueError(_('Invitation is used'))
115 AstakosUser.objects.get(email = invitation.username)
116 raise ValueError(_('Email: %s is reserved' % invitation.username))
117 except AstakosUser.DoesNotExist:
121 def prepare_response(request, user, next='', renew=False):
122 """Return the unique username and the token
123 as 'X-Auth-User' and 'X-Auth-Token' headers,
124 or redirect to the URL provided in 'next'
125 with the 'user' and 'token' as parameters.
127 Reissue the token even if it has not yet
128 expired, if the 'renew' parameter is present
129 or user has not a valid token.
132 renew = renew or (not user.auth_token)
133 renew = renew or (user.auth_token_expires and user.auth_token_expires < datetime.datetime.now())
138 if FORCE_PROFILE_UPDATE and not user.is_verified and not user.is_superuser:
141 params = '?' + urlencode({'next': next})
142 next = reverse('astakos.im.views.edit_profile') + params
144 response = HttpResponse()
146 # authenticate before login
147 user = authenticate(email=user.email, auth_token=user.auth_token)
149 set_cookie(response, user)
152 next = reverse('astakos.im.views.index')
154 response['Location'] = next
155 response.status_code = 302
158 def set_cookie(response, user):
159 expire_fmt = user.auth_token_expires.strftime('%a, %d-%b-%Y %H:%M:%S %Z')
160 cookie_value = quote(user.email + '|' + user.auth_token)
161 response.set_cookie(COOKIE_NAME, value=cookie_value,
162 expires=expire_fmt, path='/',
163 domain=COOKIE_DOMAIN, secure=COOKIE_SECURE)