authentik/passbook/core/views/authentication.py

"""passbook core authentication views"""
from django.contrib import messages
from django.contrib.auth import login, logout
from django.contrib.auth.mixins import LoginRequiredMixin
from django.http import HttpRequest, HttpResponse
from django.shortcuts import get_object_or_404, redirect, reverse
from django.utils.translation import ugettext as _
from django.views import View
from structlog import get_logger

from passbook.core.models import Nonce

LOGGER = get_logger()


class LogoutView(LoginRequiredMixin, View):
    """Log current user out"""

    def dispatch(self, request: HttpRequest) -> HttpResponse:
        """Log current user out"""
        logout(request)
        messages.success(request, _("You've successfully been logged out."))
        return redirect(reverse("passbook_core:auth-login"))


class PasswordResetView(View):
    """Temporarily authenticate User and allow them to reset their password"""

    def get(self, request: HttpRequest, nonce_uuid: str) -> HttpResponse:
        """Authenticate user with nonce and redirect to password change view"""
        # 3. (Optional) Trap user in password change view
        nonce = get_object_or_404(Nonce, uuid=nonce_uuid)
        # Workaround: hardcoded reference to ModelBackend, needs testing
        nonce.user.backend = "django.contrib.auth.backends.ModelBackend"
        login(request, nonce.user)
        nonce.delete()
        messages.success(
            request, _(("Temporarily authenticated, please change your password")),
        )
        return redirect("passbook_core:user-change-password")
implement password policy checking on signup and password change closes #8 2019-02-26 14:40:58 +00:00			`"""passbook core authentication views"""`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`from django.contrib import messages`
add Nonce (one-time links), add password reset function (missing e-mail verification), closes #7 2019-02-25 19:46:23 +00:00			`from django.contrib.auth import login, logout`
stages/prompt: add prompt stage: dynamically created forms based on database 2020-05-10 14:20:17 +00:00			`from django.contrib.auth.mixins import LoginRequiredMixin`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`from django.http import HttpRequest, HttpResponse`
add Nonce (one-time links), add password reset function (missing e-mail verification), closes #7 2019-02-25 19:46:23 +00:00			`from django.shortcuts import get_object_or_404, redirect, reverse`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`from django.utils.translation import ugettext as _`
add logout view 2018-11-23 08:44:30 +00:00			`from django.views import View`
*(minor): stdlib logging to structlog 2019-10-01 08:24:10 +00:00			`from structlog import get_logger`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00
stages/prompt: add prompt stage: dynamically created forms based on database 2020-05-10 14:20:17 +00:00			`from passbook.core.models import Nonce`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00
*(minor): remove __name__ param from get_logger 2019-10-04 08:08:53 +00:00			`LOGGER = get_logger()`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00
add E-Mail support via celery task, untested, closes #17 2019-02-26 13:07:47 +00:00
add logout view 2018-11-23 08:44:30 +00:00			`class LogoutView(LoginRequiredMixin, View):`
			`"""Log current user out"""`

stages/prompt: add prompt stage: dynamically created forms based on database 2020-05-10 14:20:17 +00:00			`def dispatch(self, request: HttpRequest) -> HttpResponse:`
add logout view 2018-11-23 08:44:30 +00:00			`"""Log current user out"""`
			`logout(request)`
			`messages.success(request, _("You've successfully been logged out."))`
all: implement black as code formatter 2019-12-31 11:51:16 +00:00			`return redirect(reverse("passbook_core:auth-login"))`
core: add placeholders for forms, add sign-up view 2018-12-10 12:51:38 +00:00

add Nonce (one-time links), add password reset function (missing e-mail verification), closes #7 2019-02-25 19:46:23 +00:00			`class PasswordResetView(View):`
			`"""Temporarily authenticate User and allow them to reset their password"""`

stages/prompt: add prompt stage: dynamically created forms based on database 2020-05-10 14:20:17 +00:00			`def get(self, request: HttpRequest, nonce_uuid: str) -> HttpResponse:`
add Nonce (one-time links), add password reset function (missing e-mail verification), closes #7 2019-02-25 19:46:23 +00:00			`"""Authenticate user with nonce and redirect to password change view"""`
			`# 3. (Optional) Trap user in password change view`
stages/prompt: add prompt stage: dynamically created forms based on database 2020-05-10 14:20:17 +00:00			`nonce = get_object_or_404(Nonce, uuid=nonce_uuid)`
add Nonce (one-time links), add password reset function (missing e-mail verification), closes #7 2019-02-25 19:46:23 +00:00			`# Workaround: hardcoded reference to ModelBackend, needs testing`
all: implement black as code formatter 2019-12-31 11:51:16 +00:00			`nonce.user.backend = "django.contrib.auth.backends.ModelBackend"`
add Nonce (one-time links), add password reset function (missing e-mail verification), closes #7 2019-02-25 19:46:23 +00:00			`login(request, nonce.user)`
			`nonce.delete()`
all: implement black as code formatter 2019-12-31 11:51:16 +00:00			`messages.success(`
providers/saml: fix users being able to authenticate without audit logs being created 2020-02-24 13:40:12 +00:00			`request, _(("Temporarily authenticated, please change your password")),`
all: implement black as code formatter 2019-12-31 11:51:16 +00:00			`)`
			`return redirect("passbook_core:user-change-password")`