/djangobackends/shibauthBackend.py - Firewall on Demand - Greek Research and Technology Network's projects

root / djangobackends / shibauthBackend.py @ d4c9f39f

History | View | Annotate | Download (2.1 kB)

       # -*- coding: utf-8 -*- vim:encoding=utf-8:
       # vim: tabstop=4:shiftwidth=4:softtabstop=4:expandtab
       from django.contrib.auth.models import User, UserManager, Permission, Group
       from django.conf import settings
       from flowspy.peers.models import *
       from flowspy.accounts.models import *
       class shibauthBackend:
           def authenticate(self, **kwargs):
               username = kwargs.get('username')
               firstname = kwargs.get('firstname')
               lastname = kwargs.get('lastname')
               mail = kwargs.get('mail')
               affiliation = kwargs.get('affiliation')
               organization = kwargs.get('organization')
               try:
                   user = self._auth_user(username, firstname, lastname, mail, affiliation, organization)
               except:
                   return None
               if not user:
                   return None
               return user
           def _auth_user(self, username, firstname, lastname, mail, affiliation, organization):
               try:
                   user = User.objects.get(username__exact=username)
                   user.email = mail
                   user.first_name = firstname
                   user.last_name = lastname
       #            if organization == settings.SHIB_ADMIN_DOMAIN:
       #                user.is_staff = True
       #                user.is_superuser = True
       #            user.is_active = True
                   user.save()
               # The user did not exist. Create one with no privileges
               except:
                   user = User.objects.create_user(username, mail, None)
                   user.first_name = firstname
                   user.last_name = lastname
                   user.is_staff = False
                   user.is_superuser = False
       #            if organization == settings.SHIB_ADMIN_DOMAIN:
       #                user.is_staff = True
       #                user.is_superuser = True
                   user.is_active = False
                   user.save()
               try:
                   peer = Peer.objects.get(domain_name=organization)
                   up = UserProfile.objects.get_or_create(user=user,peer=peer)
               except:
                   return False
               return user
           def get_user(self, user_id):
               try:
                   return User.objects.get(pk=user_id)
               except User.DoesNotExist:
                   return None