Statistics
| Branch: | Tag: | Revision:

root / snf-astakos-app / astakos / im / target / redirect.py @ dda2e499

History | View | Annotate | Download (5.2 kB)

1
# Copyright 2011-2012 GRNET S.A. All rights reserved.
2
#
3
# Redistribution and use in source and binary forms, with or
4
# without modification, are permitted provided that the following
5
# conditions are met:
6
#
7
#   1. Redistributions of source code must retain the above
8
#      copyright notice, this list of conditions and the following
9
#      disclaimer.
10
#
11
#   2. Redistributions in binary form must reproduce the above
12
#      copyright notice, this list of conditions and the following
13
#      disclaimer in the documentation and/or other materials
14
#      provided with the distribution.
15
#
16
# THIS SOFTWARE IS PROVIDED BY GRNET S.A. ``AS IS'' AND ANY EXPRESS
17
# OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
18
# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
19
# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL GRNET S.A OR
20
# CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
21
# SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
22
# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
23
# USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
24
# AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25
# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
26
# ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
27
# POSSIBILITY OF SUCH DAMAGE.
28
#
29
# The views and conclusions contained in the software and
30
# documentation are those of the authors and should not be
31
# interpreted as representing official policies, either expressed
32
# or implied, of GRNET S.A.
33

    
34
from django.core.urlresolvers import reverse
35
from django.shortcuts import redirect
36
from django.utils.translation import ugettext as _
37
from django.contrib import messages
38
from django.utils.http import urlencode
39
from django.contrib.auth import authenticate
40
from django.http import HttpResponse, HttpResponseBadRequest
41
from django.core.exceptions import ValidationError
42
from django.views.decorators.http import require_http_methods
43

    
44
from urllib import quote
45
from urlparse import urlunsplit, urlsplit, urlparse, parse_qsl
46

    
47
from astakos.im.settings import COOKIE_NAME, COOKIE_DOMAIN
48
from astakos.im.util import set_cookie
49
from astakos.im.functions import login as auth_login, logout
50

    
51
import logging
52

    
53
logger = logging.getLogger(__name__)
54

    
55
@require_http_methods(["GET", "POST"])
56
def login(request):
57
    """
58
    If there is no ``next`` request parameter redirects to astakos index page
59
    displaying an error message.
60
    If the request user is authenticated and has signed the approval terms,
61
    redirects to `next` request parameter. If not, redirects to approval terms
62
    in order to return back here after agreeing with the terms.
63
    Otherwise, redirects to login in order to return back here after successful login.
64
    """
65
    next = request.GET.get('next')
66
    if not next:
67
        return HttpResponseBadRequest(_('No next parameter'))
68
    force = request.GET.get('force', None)
69
    response = HttpResponse()
70
    if force == '':
71
        logout(request)
72
        response.delete_cookie(COOKIE_NAME, path='/', domain=COOKIE_DOMAIN)
73
    if request.user.is_authenticated():
74
        # if user has not signed the approval terms
75
        # redirect to approval terms with next the request path
76
        if not request.user.signed_terms():
77
            # first build next parameter
78
            parts = list(urlsplit(request.build_absolute_uri()))
79
            params = dict(parse_qsl(parts[3], keep_blank_values=True))
80
            # delete force parameter
81
            parts[3] = urlencode(params)
82
            next = urlunsplit(parts)
83
            
84
            # build url location
85
            parts[2] = reverse('latest_terms')
86
            params = {'next':next}
87
            parts[3] = urlencode(params)
88
            url = urlunsplit(parts)
89
            response['Location'] = url
90
            response.status_code = 302
91
            return response
92
        renew = request.GET.get('renew', None)
93
        if renew == '':
94
            request.user.renew_token()
95
            try:
96
                request.user.save()
97
            except ValidationError, e:
98
                return HttpResponseBadRequest(e)
99
            # authenticate before login
100
            user = authenticate(email=request.user.email, auth_token=request.user.auth_token)
101
            auth_login(request, user)
102
            set_cookie(response, user)
103
            logger.info('Token reset for %s' % request.user.email)
104
        parts = list(urlsplit(next))
105
        parts[3] = urlencode({'user': request.user.email, 'token': request.user.auth_token})
106
        url = urlunsplit(parts)
107
        response['Location'] = url
108
        response.status_code = 302
109
        return response
110
    else:
111
        # redirect to login with next the request path
112
        
113
        # first build next parameter
114
        parts = list(urlsplit(request.build_absolute_uri()))
115
        params = dict(parse_qsl(parts[3], keep_blank_values=True))
116
        # delete force parameter
117
        if 'force' in params:
118
            del params['force']
119
        parts[3] = urlencode(params)
120
        next = urlunsplit(parts)
121
        
122
        # build url location
123
        parts[2] = reverse('astakos.im.views.index')
124
        params = {'next':next}
125
        parts[3] = urlencode(params)
126
        url = urlunsplit(parts)
127
        response['Location'] = url
128
        response.status_code = 302
129
        return response