Statistics
| Branch: | Tag: | Revision:

root / snf-astakos-app / astakos / im / target / redirect.py @ 3b258643

History | View | Annotate | Download (5.5 kB)

1
# Copyright 2011-2012 GRNET S.A. All rights reserved.
2
#
3
# Redistribution and use in source and binary forms, with or
4
# without modification, are permitted provided that the following
5
# conditions are met:
6
#
7
#   1. Redistributions of source code must retain the above
8
#      copyright notice, this list of conditions and the following
9
#      disclaimer.
10
#
11
#   2. Redistributions in binary form must reproduce the above
12
#      copyright notice, this list of conditions and the following
13
#      disclaimer in the documentation and/or other materials
14
#      provided with the distribution.
15
#
16
# THIS SOFTWARE IS PROVIDED BY GRNET S.A. ``AS IS'' AND ANY EXPRESS
17
# OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
18
# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
19
# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL GRNET S.A OR
20
# CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
21
# SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
22
# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
23
# USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
24
# AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25
# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
26
# ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
27
# POSSIBILITY OF SUCH DAMAGE.
28
#
29
# The views and conclusions contained in the software and
30
# documentation are those of the authors and should not be
31
# interpreted as representing official policies, either expressed
32
# or implied, of GRNET S.A.
33

    
34
from django.core.urlresolvers import reverse
35
from django.utils.translation import ugettext as _
36
from django.utils.http import urlencode
37
from django.contrib.auth import authenticate
38
from django.http import (
39
    HttpResponse, HttpResponseBadRequest, HttpResponseForbidden
40
)
41
from django.core.exceptions import ValidationError
42
from django.views.decorators.http import require_http_methods
43

    
44
from urlparse import urlunsplit, urlsplit, parse_qsl
45

    
46
from astakos.im.settings import COOKIE_DOMAIN
47
from astakos.im.util import restrict_next
48
from astakos.im.functions import login as auth_login, logout
49

    
50
import astakos.im.messages as astakos_messages
51

    
52
import logging
53

    
54
logger = logging.getLogger(__name__)
55

    
56

    
57
@require_http_methods(["GET", "POST"])
58
def login(request):
59
    """
60
    If there is no ``next`` request parameter redirects to astakos index page
61
    displaying an error message.
62
    If the request user is authenticated and has signed the approval terms,
63
    redirects to `next` request parameter. If not, redirects to approval terms
64
    in order to return back here after agreeing with the terms.
65
    Otherwise, redirects to login in order to return back here after successful login.
66
    """
67
    next = request.GET.get('next')
68
    if not next:
69
        return HttpResponseBadRequest(_(astakos_messages.MISSING_NEXT_PARAMETER))
70
    if not restrict_next(
71
        next, domain=COOKIE_DOMAIN, allowed_schemes=('pithos',)
72
    ):
73
        return HttpResponseForbidden(_(astakos_messages.NOT_ALLOWED_NEXT_PARAM))
74
    force = request.GET.get('force', None)
75
    response = HttpResponse()
76
    if force == '':
77
        logout(request)
78
    if request.user.is_authenticated():
79
        # if user has not signed the approval terms
80
        # redirect to approval terms with next the request path
81
        if not request.user.signed_terms:
82
            # first build next parameter
83
            parts = list(urlsplit(request.build_absolute_uri()))
84
            params = dict(parse_qsl(parts[3], keep_blank_values=True))
85
            # delete force parameter
86
            parts[3] = urlencode(params)
87
            next = urlunsplit(parts)
88

    
89
            # build url location
90
            parts[2] = reverse('latest_terms')
91
            params = {'next': next}
92
            parts[3] = urlencode(params)
93
            url = urlunsplit(parts)
94
            response['Location'] = url
95
            response.status_code = 302
96
            return response
97
        renew = request.GET.get('renew', None)
98
        if renew == '':
99
            request.user.renew_token(
100
                flush_sessions=True,
101
                current_key=request.session.session_key
102
            )
103
            try:
104
                request.user.save()
105
            except ValidationError, e:
106
                return HttpResponseBadRequest(e)
107
            # authenticate before login
108
            user = authenticate(email=request.user.email,
109
                                auth_token=request.user.auth_token
110
                                )
111
            auth_login(request, user)
112
            logger.info('Token reset for %s' % request.user.email)
113
        parts = list(urlsplit(next))
114
        parts[3] = urlencode({'user': request.user.email,
115
                              'token': request.user.auth_token
116
                              }
117
                             )
118
        url = urlunsplit(parts)
119
        response['Location'] = url
120
        response.status_code = 302
121
        return response
122
    else:
123
        # redirect to login with next the request path
124

    
125
        # first build next parameter
126
        parts = list(urlsplit(request.build_absolute_uri()))
127
        params = dict(parse_qsl(parts[3], keep_blank_values=True))
128
        # delete force parameter
129
        if 'force' in params:
130
            del params['force']
131
        parts[3] = urlencode(params)
132
        next = urlunsplit(parts)
133

    
134
        # build url location
135
        parts[2] = reverse('index')
136
        params = {'next': next}
137
        parts[3] = urlencode(params)
138
        url = urlunsplit(parts)
139
        response['Location'] = url
140
        response.status_code = 302
141
        return response