mirror of
https://github.com/nikdoof/test-auth.git
synced 2025-12-14 06:42:16 +00:00
321 lines
13 KiB
Python
321 lines
13 KiB
Python
import hashlib
|
|
import random
|
|
|
|
from django.http import HttpResponseRedirect
|
|
from django.shortcuts import render_to_response
|
|
from django.core.urlresolvers import reverse
|
|
from django.contrib.auth.models import User
|
|
from django.contrib.auth.decorators import login_required
|
|
from django.template import RequestContext
|
|
|
|
from eve_api.api_exceptions import APIAuthException, APINoUserIDException
|
|
from eve_api.api_puller.accounts import import_eve_account
|
|
from eve_api.models.api_player import EVEAccount, EVEPlayerCharacter
|
|
|
|
from sso.models import ServiceAccount, Service, SSOUser, ExistingUser, ServiceError
|
|
from sso.forms import EveAPIForm, UserServiceAccountForm, ServiceAccountResetForm, RedditAccountForm, UserLookupForm
|
|
|
|
from reddit.models import RedditAccount
|
|
|
|
import settings
|
|
|
|
def index(request):
|
|
if request.user:
|
|
return HttpResponseRedirect(reverse('sso.views.profile'))
|
|
else:
|
|
return render_to_response('sso/index.html', context_instance=RequestContext(request))
|
|
|
|
@login_required
|
|
def profile(request):
|
|
|
|
user = request.user
|
|
try:
|
|
profile = request.user.get_profile()
|
|
except SSOUser.DoesNotExist:
|
|
profile = SSOUser(user=request.user)
|
|
profile.save()
|
|
|
|
try:
|
|
srvaccounts = ServiceAccount.objects.filter(user=request.user).all()
|
|
except ServiceAccount.DoesNotExist:
|
|
srvaccounts = None
|
|
|
|
try:
|
|
redditaccounts = RedditAccount.objects.filter(user=request.user).all()
|
|
except ServiceAccount.DoesNotExist:
|
|
redditaccounts = None
|
|
|
|
try:
|
|
eveaccounts = EVEAccount.objects.filter(user=request.user).all()
|
|
except EVEAccount.DoesNotExist:
|
|
eveaccounts = None
|
|
|
|
return render_to_response('sso/profile.html', locals(), context_instance=RequestContext(request))
|
|
|
|
@login_required
|
|
def characters(request, charid=0):
|
|
|
|
if charid:
|
|
try:
|
|
character = EVEPlayerCharacter.objects.get(id=charid)
|
|
except EVEPlayerCharacter.DoesNotExist:
|
|
return HttpResponseRedirect(reverse('sso.views.profile'))
|
|
return render_to_response('sso/character.html', locals(), context_instance=RequestContext(request))
|
|
try:
|
|
eveaccounts = EVEAccount.objects.filter(user=request.user).all()
|
|
characters = []
|
|
for acc in eveaccounts:
|
|
chars = acc.characters.all()
|
|
for char in chars:
|
|
characters.append({'id': char.id, 'name': char.name, 'corp': char.corporation.name})
|
|
|
|
except EVEAccount.DoesNotExist:
|
|
characters = []
|
|
|
|
return render_to_response('sso/characterlist.html', locals(), context_instance=RequestContext(request))
|
|
|
|
@login_required
|
|
def eveapi_add(request):
|
|
if request.method == 'POST':
|
|
form = EveAPIForm(request.POST)
|
|
if form.is_valid():
|
|
try:
|
|
acc = import_eve_account(form.cleaned_data['api_key'], form.cleaned_data['user_id'])
|
|
except APIAuthException:
|
|
return HttpResponseRedirect(reverse('sso.views.profile'))
|
|
|
|
acc.user = request.user
|
|
acc.description = form.cleaned_data['description']
|
|
acc.save()
|
|
request.user.message_set.create(message="EVE API successfully added.")
|
|
if len(ServiceAccount.objects.filter(user=request.user, active=0)) > 0:
|
|
request.user.message_set.create(message="It can take up to 10 minutes for inactive accounts to be reenabled, please check back later.")
|
|
|
|
request.user.get_profile().update_access()
|
|
|
|
return HttpResponseRedirect(reverse('sso.views.profile')) # Redirect after POST
|
|
else:
|
|
form = EveAPIForm() # An unbound form
|
|
|
|
return render_to_response('sso/eveapi.html', locals(), context_instance=RequestContext(request))
|
|
|
|
@login_required
|
|
def eveapi_del(request, userid=0):
|
|
|
|
if userid > 0 :
|
|
|
|
try:
|
|
acc = EVEAccount.objects.get(id=userid)
|
|
except EVEAccount.DoesNotExist:
|
|
return HttpResponseRedirect(reverse('sso.views.profile'))
|
|
|
|
if acc.user == request.user:
|
|
acc.delete()
|
|
request.user.message_set.create(message="EVE API key successfully deleted.")
|
|
|
|
return HttpResponseRedirect(reverse('sso.views.profile'))
|
|
|
|
def eveapi_refresh(request, userid=0):
|
|
if userid > 0 :
|
|
try:
|
|
acc = EVEAccount.objects.get(id=userid)
|
|
except EVEAccount.DoesNotExist:
|
|
pass
|
|
else:
|
|
import_eve_account(acc.api_key, acc.api_user_id)
|
|
request.user.get_profile().update_access()
|
|
request.user.message_set.create(message="Key %s has been refreshed from the EVE API." % acc.api_user_id)
|
|
|
|
return HttpResponseRedirect(reverse('sso.views.profile'))
|
|
|
|
@login_required
|
|
def service_add(request):
|
|
clsform = UserServiceAccountForm(request.user)
|
|
|
|
if request.method == 'POST':
|
|
form = clsform(request.POST)
|
|
if form.is_valid():
|
|
|
|
acc = ServiceAccount()
|
|
acc.user = request.user
|
|
acc.service = form.cleaned_data['service']
|
|
acc.character = form.cleaned_data['character']
|
|
if settings.GENERATE_SERVICE_PASSWORD:
|
|
acc.password = hashlib.sha1('%s%s%s' % (form.cleaned_data['character'].name, settings.SECRET_KEY, random.randint(0, 2147483647))).hexdigest()
|
|
else:
|
|
acc.password = form.cleaned_data['password']
|
|
|
|
try:
|
|
acc.save()
|
|
except ExistingUser:
|
|
error = "User by this name already exists, your account has not been created"
|
|
except ServiceError:
|
|
error = "A error occured while trying to create the Service Account, please try again later"
|
|
else:
|
|
error = None
|
|
|
|
return render_to_response('sso/serviceaccount/created.html', locals(), context_instance=RequestContext(request))
|
|
else:
|
|
availserv = Service.objects.filter(groups__in=request.user.groups.all()).exclude(id__in=ServiceAccount.objects.filter(user=request.user).values('service'))
|
|
if len(availserv) == 0:
|
|
return render_to_response('sso/serviceaccount/noneavailable.html', locals(), context_instance=RequestContext(request))
|
|
else:
|
|
form = clsform() # An unbound form
|
|
|
|
return render_to_response('sso/serviceaccount/index.html', locals())
|
|
|
|
@login_required
|
|
def service_del(request, serviceid=0):
|
|
if serviceid > 0 :
|
|
try:
|
|
acc = ServiceAccount.objects.get(id=serviceid)
|
|
except ServiceAccount.DoesNotExist:
|
|
return HttpResponseRedirect(reverse('sso.views.profile'))
|
|
|
|
if not acc.user == request.user:
|
|
return HttpResponseRedirect(reverse('sso.views.profile'))
|
|
|
|
if request.method == 'POST':
|
|
if 'confirm-delete' in request.POST:
|
|
try:
|
|
acc.delete()
|
|
except ServiceError:
|
|
request.user.message_set.create(message="Error deleting the service account, try again later.")
|
|
else:
|
|
request.user.message_set.create(message="Service account successfully deleted.")
|
|
else:
|
|
return render_to_response('sso/serviceaccount/deleteconfirm.html', locals(), context_instance=RequestContext(request))
|
|
|
|
return HttpResponseRedirect(reverse('sso.views.profile'))
|
|
|
|
@login_required
|
|
def service_reset(request, serviceid=0):
|
|
if serviceid > 0 :
|
|
try:
|
|
acc = ServiceAccount.objects.get(id=serviceid)
|
|
except ServiceAccount.DoesNotExist:
|
|
return HttpResponseRedirect(reverse('sso.views.profile'))
|
|
|
|
if not acc.active:
|
|
return HttpResponseRedirect(reverse('sso.views.profile'))
|
|
|
|
if acc.user == request.user:
|
|
if not request.method == 'POST':
|
|
form = ServiceAccountResetForm()
|
|
return render_to_response('sso/serviceaccount/reset.html', locals(), context_instance=RequestContext(request))
|
|
|
|
form = ServiceAccountResetForm(request.POST)
|
|
if form.is_valid():
|
|
if settings.GENERATE_SERVICE_PASSWORD:
|
|
passwd = hashlib.sha1('%s%s%s' % (acc.service_uid, settings.SECRET_KEY, random.randint(0, 2147483647))).hexdigest()
|
|
else:
|
|
passwd = form.cleaned_data['password']
|
|
|
|
api = acc.service.api_class
|
|
if not api.reset_password(acc.service_uid, passwd):
|
|
error = True
|
|
return render_to_response('sso/serviceaccount/resetcomplete.html', locals(), context_instance=RequestContext(request))
|
|
else:
|
|
return render_to_response('sso/serviceaccount/reset.html', locals(), context_instance=RequestContext(request))
|
|
|
|
return HttpResponseRedirect(reverse('sso.views.profile'))
|
|
|
|
@login_required
|
|
def reddit_add(request):
|
|
if request.method == 'POST':
|
|
form = RedditAccountForm(request.POST)
|
|
if form.is_valid():
|
|
acc = RedditAccount()
|
|
acc.user = request.user
|
|
acc.username = form.cleaned_data['username']
|
|
try:
|
|
acc.api_update()
|
|
except RedditAccount.DoesNotExist:
|
|
request.user.message_set.create(message="Error, user %s does not exist on Reddit" % acc.username )
|
|
return render_to_response('sso/redditaccount.html', locals(), context_instance=RequestContext(request))
|
|
acc.save()
|
|
|
|
request.user.message_set.create(message="Reddit account %s successfully added." % acc.username)
|
|
return HttpResponseRedirect(reverse('sso.views.profile')) # Redirect after POST
|
|
else:
|
|
defaults = { 'username': request.user.username, }
|
|
form = RedditAccountForm(defaults) # An unbound form
|
|
|
|
return render_to_response('sso/redditaccount.html', locals(), context_instance=RequestContext(request))
|
|
|
|
@login_required
|
|
def reddit_del(request, redditid=0):
|
|
if redditid > 0 :
|
|
try:
|
|
acc = RedditAccount.objects.get(id=redditid)
|
|
except RedditAccount.DoesNotExist:
|
|
return HttpResponseRedirect(reverse('sso.views.profile'))
|
|
|
|
if acc.user == request.user:
|
|
acc.delete()
|
|
request.user.message_set.create(message="Reddit account successfully deleted.")
|
|
|
|
return HttpResponseRedirect(reverse('sso.views.profile'))
|
|
|
|
@login_required
|
|
def user_view(request, username=None):
|
|
if username:
|
|
user = User.objects.get(username=username)
|
|
else:
|
|
return HttpResponseRedirect(reverse('sso.views.user_lookup'))
|
|
|
|
profile = user.get_profile()
|
|
is_admin = request.user.is_staff
|
|
if is_admin:
|
|
try:
|
|
services = ServiceAccount.objects.filter(user=user).all()
|
|
except ServiceAccount.DoesNotExist:
|
|
services = None
|
|
try:
|
|
reddits = RedditAccount.objects.filter(user=user).all()
|
|
except ServiceAccount.DoesNotExist:
|
|
reddits = None
|
|
try:
|
|
eveaccounts = EVEAccount.objects.filter(user=user).all()
|
|
characters = []
|
|
for acc in eveaccounts:
|
|
chars = acc.characters.all()
|
|
for char in chars:
|
|
characters.append({'id': char.id, 'name': char.name, 'corp': char.corporation.name})
|
|
except EVEAccount.DoesNotExist:
|
|
eveaccounts = None
|
|
|
|
return render_to_response('sso/lookup/user.html', locals(), context_instance=RequestContext(request))
|
|
|
|
def user_lookup(request):
|
|
form = UserLookupForm()
|
|
|
|
if request.method == 'POST':
|
|
form = UserLookupForm(request.POST)
|
|
if form.is_valid():
|
|
users = None
|
|
uids = []
|
|
if form.cleaned_data['type'] == '1':
|
|
users = User.objects.filter(username__icontains=form.cleaned_data['username'])
|
|
elif form.cleaned_data['type'] == '2':
|
|
uid = EVEAccount.objects.filter(characters__name__icontains=form.cleaned_data['username']).values('user')
|
|
for u in uid: uids.append(u['user'])
|
|
users = User.objects.filter(id__in=uids)
|
|
elif form.cleaned_data['type'] == '3':
|
|
uid = RedditAccount.objects.filter(username__icontains=form.cleaned_data['username']).values('user')
|
|
for u in uid: uids.append(u['user'])
|
|
users = User.objects.filter(id__in=uids)
|
|
else:
|
|
request.user.message_set.create(message="Error parsing form, Type: %s, Value: %s" % (form.cleaned_data['type'], form.cleaned_data['username']))
|
|
return HttpResponseRedirect(reverse('sso.views.user_lookup'))
|
|
|
|
if users and len(users) == 1:
|
|
return HttpResponseRedirect(reverse(user_view, args=[users[0].username]}))
|
|
elif users and len(users) > 1:
|
|
render_to_response('sso/lookup/lookuplist.html', locals(), context_instance=RequestContext(request))
|
|
else:
|
|
request.user.message_set.create(message="No results found")
|
|
return HttpResponseRedirect(reverse('sso.views.user_lookup'))
|
|
|
|
return render_to_response('sso/lookup/userlookup.html', locals(), context_instance=RequestContext(request))
|