Now authenicates access to services based on groups, not simple tags

2025-12-14 06:42:16 +00:00 · 2010-02-28 23:09:33 +00:00
parent 0f2c57cd5a
commit b53e662200
8 changed files with 39 additions and 26 deletions
--- a/sso/forms.py
+++ b/sso/forms.py
@@ -26,8 +26,18 @@ class ServiceUsernameField(forms.CharField):
        else:
            raise forms.ValidationError("That username is already taken")

-class ServiceAccountForm(forms.Form):
-    service = forms.ModelChoiceField(queryset=Service.objects.filter(active=1), empty_label="Select A Service... ")
-    username = ServiceUsernameField(min_length=4,max_length=50)
-    password = forms.CharField(label = u'Password',widget = forms.PasswordInput(render_value=False)) 
+def UserServiceAccountForm(user):
+    """ Generate a Service Account form based on the user's permissions """

+    services = Service.objects.filter(groups__in=user.groups.all())
+    choices = []
+
+    for service in services.all():
+        choices.append( ( service.name, service ) )
+
+    class ServiceAccountForm(forms.Form):
+        service = forms.ChoiceField(choices=choices)
+        username = ServiceUsernameField(min_length=4,max_length=50)
+        password = forms.CharField(label = u'Password',widget = forms.PasswordInput(render_value=False)) 
+
+    return ServiceAccountForm