1 # Copyright 2011-2012 GRNET S.A. All rights reserved.
3 # Redistribution and use in source and binary forms, with or
4 # without modification, are permitted provided that the following
7 # 1. Redistributions of source code must retain the above
8 # copyright notice, this list of conditions and the following
11 # 2. Redistributions in binary form must reproduce the above
12 # copyright notice, this list of conditions and the following
13 # disclaimer in the documentation and/or other materials
14 # provided with the distribution.
16 # THIS SOFTWARE IS PROVIDED BY GRNET S.A. ``AS IS'' AND ANY EXPRESS
17 # OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
18 # WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
19 # PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL GRNET S.A OR
20 # CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
21 # SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
22 # LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
23 # USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
24 # AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25 # LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
26 # ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
27 # POSSIBILITY OF SUCH DAMAGE.
29 # The views and conclusions contained in the software and
30 # documentation are those of the authors and should not be
31 # interpreted as representing official policies, either expressed
32 # or implied, of GRNET S.A.
34 from django.core.urlresolvers import reverse
35 from django.shortcuts import redirect
36 from django.utils.translation import ugettext as _
37 from django.contrib import messages
38 from django.utils.http import urlencode
39 from django.contrib.auth import login as auth_login, authenticate, logout
40 from django.http import HttpResponse, HttpResponseBadRequest
41 from django.core.exceptions import ValidationError
43 from urllib import quote
44 from urlparse import urlunsplit, urlsplit, urlparse, parse_qsl
46 from astakos.im.settings import COOKIE_NAME, COOKIE_DOMAIN
47 from astakos.im.util import set_cookie
51 logger = logging.getLogger(__name__)
55 If there is no ``next`` request parameter redirects to astakos index page
56 displaying an error message.
57 If the request user is authenticated and has signed the approval terms,
58 redirects to `next` request parameter. If not, redirects to approval terms
59 in order to return back here after agreeing with the terms.
60 Otherwise, redirects to login in order to return back here after successful login.
62 next = request.GET.get('next')
64 return HttpResponseBadRequest(_('No next parameter'))
65 force = request.GET.get('force', None)
66 response = HttpResponse()
69 response.delete_cookie(COOKIE_NAME, path='/', domain=COOKIE_DOMAIN)
70 if request.user.is_authenticated():
71 # if user has not signed the approval terms
72 # redirect to approval terms with next the request path
73 if not request.user.signed_terms():
74 # first build next parameter
75 parts = list(urlsplit(request.build_absolute_uri()))
76 params = dict(parse_qsl(parts[3], keep_blank_values=True))
77 # delete force parameter
78 parts[3] = urlencode(params)
79 next = urlunsplit(parts)
82 parts[2] = reverse('latest_terms')
83 params = {'next':next}
84 parts[3] = urlencode(params)
85 url = urlunsplit(parts)
86 response['Location'] = url
87 response.status_code = 302
89 renew = request.GET.get('renew', None)
91 request.user.renew_token()
94 except ValidationError, e:
95 return HttpResponseBadRequest(e)
96 # authenticate before login
97 user = authenticate(email=request.user.email, auth_token=request.user.auth_token)
98 auth_login(request, user)
99 set_cookie(response, user)
100 logger.info('Token reset for %s' % request.user.email)
101 parts = list(urlsplit(next))
102 parts[3] = urlencode({'user': request.user.email, 'token': request.user.auth_token})
103 url = urlunsplit(parts)
104 response['Location'] = url
105 response.status_code = 302
108 # redirect to login with next the request path
110 # first build next parameter
111 parts = list(urlsplit(request.build_absolute_uri()))
112 params = dict(parse_qsl(parts[3], keep_blank_values=True))
113 # delete force parameter
114 if 'force' in params:
116 parts[3] = urlencode(params)
117 next = urlunsplit(parts)
120 parts[2] = reverse('astakos.im.views.index')
121 params = {'next':next}
122 parts[3] = urlencode(params)
123 url = urlunsplit(parts)
124 response['Location'] = url
125 response.status_code = 302