Statistics
| Branch: | Tag: | Revision:

root / snf-astakos-app / astakos / im / views / target / redirect.py @ f7c3c4c4

History | View | Annotate | Download (5.4 kB)

1
# Copyright 2011-2012 GRNET S.A. All rights reserved.
2
#
3
# Redistribution and use in source and binary forms, with or
4
# without modification, are permitted provided that the following
5
# conditions are met:
6
#
7
#   1. Redistributions of source code must retain the above
8
#      copyright notice, this list of conditions and the following
9
#      disclaimer.
10
#
11
#   2. Redistributions in binary form must reproduce the above
12
#      copyright notice, this list of conditions and the following
13
#      disclaimer in the documentation and/or other materials
14
#      provided with the distribution.
15
#
16
# THIS SOFTWARE IS PROVIDED BY GRNET S.A. ``AS IS'' AND ANY EXPRESS
17
# OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
18
# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
19
# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL GRNET S.A OR
20
# CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
21
# SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
22
# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
23
# USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
24
# AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25
# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
26
# ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
27
# POSSIBILITY OF SUCH DAMAGE.
28
#
29
# The views and conclusions contained in the software and
30
# documentation are those of the authors and should not be
31
# interpreted as representing official policies, either expressed
32
# or implied, of GRNET S.A.
33

    
34
from django.core.urlresolvers import reverse
35
from django.utils.translation import ugettext as _
36
from django.utils.http import urlencode
37
from django.contrib.auth import authenticate
38
from django.http import (
39
    HttpResponse, HttpResponseBadRequest, HttpResponseForbidden)
40
from django.core.exceptions import ValidationError
41
from django.views.decorators.http import require_http_methods
42

    
43
from urlparse import urlunsplit, urlsplit, parse_qsl
44

    
45
from astakos.im.util import restrict_next
46
from astakos.im.functions import login as auth_login, logout
47
from astakos.im.views.decorators import cookie_fix
48

    
49
import astakos.im.messages as astakos_messages
50
from astakos.im.settings import REDIRECT_ALLOWED_SCHEMES
51

    
52
import logging
53

    
54
logger = logging.getLogger(__name__)
55

    
56

    
57
@require_http_methods(["GET"])
58
@cookie_fix
59
def login(request):
60
    """
61
    If there is no ``next`` request parameter redirects to astakos index page
62
    displaying an error message.
63
    If the request user is authenticated and has signed the approval terms,
64
    redirects to `next` request parameter. If not, redirects to approval terms
65
    in order to return back here after agreeing with the terms.
66
    Otherwise, redirects to login in order to return back here after successful
67
    login.
68
    """
69
    next = request.GET.get('next')
70
    if not next:
71
        next = reverse('index')
72

    
73
    if not restrict_next(next, allowed_schemes=REDIRECT_ALLOWED_SCHEMES):
74
        return HttpResponseForbidden(_(
75
            astakos_messages.NOT_ALLOWED_NEXT_PARAM))
76
    force = request.GET.get('force', None)
77
    response = HttpResponse()
78
    if force == '' and request.user.is_authenticated():
79
        logout(request)
80

    
81
    if request.user.is_authenticated():
82
        # if user has not signed the approval terms
83
        # redirect to approval terms with next the request path
84
        if not request.user.signed_terms:
85
            # first build next parameter
86
            parts = list(urlsplit(request.build_absolute_uri()))
87
            params = dict(parse_qsl(parts[3], keep_blank_values=True))
88
            parts[3] = urlencode(params)
89
            next = urlunsplit(parts)
90

    
91
            # build url location
92
            parts[2] = reverse('latest_terms')
93
            params = {'next': next}
94
            parts[3] = urlencode(params)
95
            url = urlunsplit(parts)
96
            response['Location'] = url
97
            response.status_code = 302
98
            return response
99
        renew = request.GET.get('renew', None)
100
        if renew == '':
101
            request.user.renew_token(
102
                flush_sessions=True,
103
                current_key=request.session.session_key
104
            )
105
            try:
106
                request.user.save()
107
            except ValidationError, e:
108
                return HttpResponseBadRequest(e)
109
            # authenticate before login
110
            user = authenticate(
111
                username=request.user.username,
112
                auth_token=request.user.auth_token
113
            )
114
            auth_login(request, user)
115
            logger.info('Token reset for %s' % user.username)
116
        parts = list(urlsplit(next))
117
        parts[3] = urlencode({
118
            'uuid': request.user.uuid,
119
            'token': request.user.auth_token
120
        })
121
        url = urlunsplit(parts)
122
        response['Location'] = url
123
        response.status_code = 302
124
        return response
125
    else:
126
        # redirect to login with next the request path
127

    
128
        # first build next parameter
129
        parts = list(urlsplit(request.build_absolute_uri()))
130
        params = dict(parse_qsl(parts[3], keep_blank_values=True))
131
        # delete force parameter
132
        if 'force' in params:
133
            del params['force']
134
        parts[3] = urlencode(params)
135
        next = urlunsplit(parts)
136

    
137
        # build url location
138
        parts[2] = reverse('login')
139
        params = {'next': next}
140
        parts[3] = urlencode(params)
141
        url = urlunsplit(parts)
142
        response['Location'] = url
143
        response.status_code = 302
144
        return response