1 # Copyright 2011-2012 GRNET S.A. All rights reserved.
3 # Redistribution and use in source and binary forms, with or
4 # without modification, are permitted provided that the following
7 # 1. Redistributions of source code must retain the above
8 # copyright notice, this list of conditions and the following
11 # 2. Redistributions in binary form must reproduce the above
12 # copyright notice, this list of conditions and the following
13 # disclaimer in the documentation and/or other materials
14 # provided with the distribution.
16 # THIS SOFTWARE IS PROVIDED BY GRNET S.A. ``AS IS'' AND ANY EXPRESS
17 # OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
18 # WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
19 # PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL GRNET S.A OR
20 # CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
21 # SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
22 # LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
23 # USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
24 # AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25 # LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
26 # ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
27 # POSSIBILITY OF SUCH DAMAGE.
29 # The views and conclusions contained in the software and
30 # documentation are those of the authors and should not be
31 # interpreted as representing official policies, either expressed
32 # or implied, of GRNET S.A.
34 from django.core.urlresolvers import reverse
35 from django.utils.translation import ugettext as _
36 from django.utils.http import urlencode
37 from django.contrib.auth import authenticate
38 from django.http import HttpResponse, HttpResponseBadRequest
39 from django.core.exceptions import ValidationError
41 from urlparse import urlunsplit, urlsplit, parse_qsl
43 from astakos.im.settings import COOKIE_NAME, COOKIE_DOMAIN
44 from astakos.im.util import set_cookie
45 from astakos.im.functions import login as auth_login, logout
49 logger = logging.getLogger(__name__)
53 If there is no ``next`` request parameter redirects to astakos index page
54 displaying an error message.
55 If the request user is authenticated and has signed the approval terms,
56 redirects to `next` request parameter. If not, redirects to approval terms
57 in order to return back here after agreeing with the terms.
58 Otherwise, redirects to login in order to return back here after successful login.
60 next = request.GET.get('next')
62 return HttpResponseBadRequest(_('No next parameter'))
63 force = request.GET.get('force', None)
64 response = HttpResponse()
67 response.delete_cookie(COOKIE_NAME, path='/', domain=COOKIE_DOMAIN)
68 if request.user.is_authenticated():
69 # if user has not signed the approval terms
70 # redirect to approval terms with next the request path
71 if not request.user.signed_terms:
72 # first build next parameter
73 parts = list(urlsplit(request.build_absolute_uri()))
74 params = dict(parse_qsl(parts[3], keep_blank_values=True))
75 # delete force parameter
76 parts[3] = urlencode(params)
77 next = urlunsplit(parts)
80 parts[2] = reverse('latest_terms')
81 params = {'next':next}
82 parts[3] = urlencode(params)
83 url = urlunsplit(parts)
84 response['Location'] = url
85 response.status_code = 302
87 renew = request.GET.get('renew', None)
89 request.user.renew_token()
92 except ValidationError, e:
93 return HttpResponseBadRequest(e)
94 # authenticate before login
95 user = authenticate(email=request.user.email,
96 auth_token=request.user.auth_token
98 auth_login(request, user)
99 set_cookie(response, user)
100 logger.info('Token reset for %s' % request.user.email)
101 parts = list(urlsplit(next))
102 parts[3] = urlencode({'user': request.user.email,
103 'token': request.user.auth_token
106 url = urlunsplit(parts)
107 response['Location'] = url
108 response.status_code = 302
111 # redirect to login with next the request path
113 # first build next parameter
114 parts = list(urlsplit(request.build_absolute_uri()))
115 params = dict(parse_qsl(parts[3], keep_blank_values=True))
116 # delete force parameter
117 if 'force' in params:
119 parts[3] = urlencode(params)
120 next = urlunsplit(parts)
123 parts[2] = reverse('index')
124 params = {'next':next}
125 parts[3] = urlencode(params)
126 url = urlunsplit(parts)
127 response['Location'] = url
128 response.status_code = 302