Revision 40777cc8 aai/middleware.py
| b/aai/middleware.py | ||
|---|---|---|
| 12 | 12 |
auth_key = "X-Auth-Key" |
| 13 | 13 |
|
| 14 | 14 |
def process_request(self, request): |
| 15 |
if self.auth_token in request.META: |
|
| 15 |
token = request.META.get('HTTP_X_AUTH_TOKEN', None)
|
|
| 16 |
if token: |
|
| 16 | 17 |
user = None |
| 17 | 18 |
#Retrieve user from DB or other caching mechanism |
| 18 | 19 |
try: |
| 19 |
user = SynnefoUser.objects.get(auth_token = request.META[self.auth_token])
|
|
| 20 |
user = SynnefoUser.objects.get(auth_token=token)
|
|
| 20 | 21 |
except SynnefoUser.DoesNotExist: |
| 21 | 22 |
return HttpResponseRedirect(settings.APP_INSTALL_URL + settings.LOGIN_PATH) |
| 22 | 23 |
|
| 23 | 24 |
#Check user's auth token |
| 24 | 25 |
if (time.time() - |
| 25 |
time.mktime(user.auth_token_created.timetuple()) +
|
|
| 26 |
time.mktime(user.auth_token_created.timetuple()) -
|
|
| 26 | 27 |
settings.AUTH_TOKEN_DURATION * 3600) > 0: |
| 27 | 28 |
#The user's token has expired, re-login |
| 28 | 29 |
return HttpResponseRedirect(settings.APP_INSTALL_URL + settings.LOGIN_PATH) |
Also available in: Unified diff