anoopmb
/
frappe
1
0
Fork 0
Code Issues 0 Pull-Requests 0 Releases 0 Wiki Aktivität
Du kannst nicht mehr als 25 Themen auswählen Themen müssen entweder mit einem Buchstaben oder einer Ziffer beginnen. Sie können Bindestriche („-“) enthalten und bis zu 35 Zeichen lang sein.
4678 Commits
1 Branch
314 MiB
Struktur: 929ef59df9
Branches Tags
${ item.name }
Erstelle Branch ${ searchTerm }
von „929ef59df9“
${ noResults }
frappe/webnotes/auth.py

auth.py 8.0 KiB
Originalformat Normale Ansicht Verlauf

[copyright] added Contributors
vor 11 Jahren
[minor] [license] Standardizied license string in py an js code files
vor 12 Jahren
added license files
vor 13 Jahren
added unicode_literals import at start of each file
vor 13 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
conf migration part 1
vor 11 Jahren
rewrote session management:added copy in memcache that is looked up first before updating db
vor 12 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
[wsgi] [minor] fixed request host name
vor 12 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
integrated language in profile, request
vor 12 Jahren
[wsgi] [minor] replace os.environ by webnotes.get_request_header
vor 12 Jahren
integrated language in profile, request
vor 12 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
wsgi started
vor 12 Jahren
send all requests to server.py as POST, but use _type form parameter's POST or GET value to use commit or not
vor 12 Jahren
[wsgi] [minor] fixed request host name
vor 12 Jahren
request: remove _type from form
vor 12 Jahren
bugfix in session update and separated GET and POST queries
vor 12 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
fixes to sessions
vor 12 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
wsgi started
vor 12 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
dialog css
vor 13 Jahren
Fix in session stopped message display
vor 13 Jahren
messages and merge
vor 13 Jahren
setup profile before calling on login post session
vor 13 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
Rewrote hooks for scheduler, notifications, boot, session, login, webpage webnotes/wnframework#351
vor 11 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
integrated language in profile, request
vor 12 Jahren
[fix] [minor] languages and scriptmanager trigger's callback
vor 12 Jahren
Translations redesigned webnotes/wnframework#351
vor 11 Jahren
[autocomplete] Now prefetching using typeahead webnotes/erpnext#861
vor 11 Jahren
integrated language in profile, request
vor 12 Jahren
[fix] [minor] languages and scriptmanager trigger's callback
vor 12 Jahren
integrated language in profile, request
vor 12 Jahren
added spanish
vor 12 Jahren
fix local for lang
vor 12 Jahren
integrated language in profile, request
vor 12 Jahren
updated language and separated slickgrid files
vor 12 Jahren
fix local for lang
vor 12 Jahren
updated language and separated slickgrid files
vor 12 Jahren
[fix] [minor] languages and scriptmanager trigger's callback
vor 12 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
fix local for lang
vor 12 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
cleaned up db resolution logic
vor 13 Jahren
lib/py/webnotes/defs.py -> conf.py (see sample in lib/conf/conf.py)
vor 13 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
fixes to sessions
vor 12 Jahren
cleanup of login and removed un-necessary files
vor 13 Jahren
wsgi started
vor 12 Jahren
lib/py/webnotes/defs.py -> conf.py (see sample in lib/conf/conf.py)
vor 13 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
login and other fixes
vor 11 Jahren
added /api
vor 11 Jahren
login and other fixes
vor 11 Jahren
added /api
vor 11 Jahren
login and other fixes
vor 11 Jahren
[editable] [minor] commonified editable and made blog also editable
vor 11 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
Rewrote hooks for scheduler, notifications, boot, session, login, webpage webnotes/wnframework#351
vor 11 Jahren
feature to restrict ip, by hours, cleanup of profile doctype
vor 14 Jahren
login and other fixes
vor 11 Jahren
Website Group rendering (#421)
vor 11 Jahren
login and other fixes
vor 11 Jahren
added /api
vor 11 Jahren
login and other fixes
vor 11 Jahren
added /api
vor 11 Jahren
login and other fixes
vor 11 Jahren
Website Group rendering (#421)
vor 11 Jahren
login and other fixes
vor 11 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
profile cleanup start and new auth table for better security
vor 13 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
profile cleanup start and new auth table for better security
vor 13 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
profile cleanup start and new auth table for better security
vor 13 Jahren
null issue in login
vor 12 Jahren
profile cleanup start and new auth table for better security
vor 13 Jahren
null issue in login
vor 12 Jahren
profile cleanup start and new auth table for better security
vor 13 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
profile cleanup start and new auth table for better security
vor 13 Jahren
added /api
vor 11 Jahren
profile cleanup start and new auth table for better security
vor 13 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
Rewrote hooks for scheduler, notifications, boot, session, login, webpage webnotes/wnframework#351
vor 11 Jahren
[demo] New ERPNext Demo
vor 12 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
profile cleanup start and new auth table for better security
vor 13 Jahren
feature to restrict ip, by hours, cleanup of profile doctype
vor 14 Jahren
Removed invalid characters from code in auth.py
vor 13 Jahren
feature to restrict ip, by hours, cleanup of profile doctype
vor 14 Jahren
Removed invalid characters from code in auth.py
vor 13 Jahren
[minor] fix header name for forwareded for in auth
vor 11 Jahren
Fix: IP authentication
vor 13 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
fix in ip address error
vor 13 Jahren
feature to restrict ip, by hours, cleanup of profile doctype
vor 14 Jahren
profile cleanup start and new auth table for better security
vor 13 Jahren
feature to restrict ip, by hours, cleanup of profile doctype
vor 14 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
feature to restrict ip, by hours, cleanup of profile doctype
vor 14 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
profile cleanup start and new auth table for better security
vor 13 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
Fixed logout issue
vor 13 Jahren
fixes to sessions
vor 12 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
profile cleanup start and new auth table for better security
vor 13 Jahren
blog sequence
vor 13 Jahren
rewrote session management:added copy in memcache that is looked up first before updating db
vor 12 Jahren
blog sequence
vor 13 Jahren
fixes to sessions
vor 12 Jahren
[website] [minor]
vor 11 Jahren
[fix] [issue] #630 - if logout user is current session user, blankout sid cookie
vor 12 Jahren
[website] [minor]
vor 11 Jahren
added /api
vor 11 Jahren
[website] [minor]
vor 11 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
wsgi started
vor 12 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
[website] [minor]
vor 11 Jahren
login and other fixes
vor 11 Jahren
fixes for unicode
vor 13 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
fixes for unicode
vor 13 Jahren
wsgi started
vor 12 Jahren
added /api
vor 11 Jahren
wsgi started
vor 12 Jahren
added /api
vor 11 Jahren
[geo ip] determine country using geoip; added country info in session and cookies
vor 12 Jahren
Sourced WebNotes Framework from Google Code.
vor 14 Jahren
refactor unicode changes and merge with master with refactored email
vor 13 Jahren
fixes for unicode
vor 13 Jahren
added /api
vor 11 Jahren
started fresh install and added country_info
vor 12 Jahren
[password] reset via link, added update page for portal user
vor 12 Jahren
started fresh install and added country_info
vor 12 Jahren
[minor] update password
vor 11 Jahren
[minor] install fixes
vor 12 Jahren
conf migration part 1
vor 11 Jahren
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262 
  1. # Copyright (c) 2013, Web Notes Technologies Pvt. Ltd. and Contributors

  2. # MIT License. See license.txt 

  3. 

  4. from __future__ import unicode_literals

  5. import webnotes

  6. import webnotes.db

  7. import webnotes.utils

  8. import webnotes.profile

  9. from webnotes import conf

  10. from webnotes.sessions import Session

  11. 

  12. 

  13. class HTTPRequest:

  14. 	def __init__(self):

  15. 		# Get Environment variables

  16. 		self.domain = webnotes.request.host

  17. 		if self.domain and self.domain.startswith('www.'):

  18. 			self.domain = self.domain[4:]

  19. 

  20. 		# language

  21. 		self.set_lang(webnotes.get_request_header('HTTP_ACCEPT_LANGUAGE'))

  22. 		

  23. 		# load cookies

  24. 		webnotes.local.cookie_manager = CookieManager()

  25. 		

  26. 		# override request method. All request to be of type POST, but if _type == "POST" then commit

  27. 		if webnotes.form_dict.get("_type"):

  28. 			webnotes.local.request_method = webnotes.form_dict.get("_type")

  29. 			del webnotes.form_dict["_type"]

  30. 

  31. 		# set db

  32. 		self.connect()

  33. 

  34. 		# login

  35. 		webnotes.local.login_manager = LoginManager()

  36. 

  37. 		# check status

  38. 		if webnotes.conn.get_global("__session_status")=='stop':

  39. 			webnotes.msgprint(webnotes.conn.get_global("__session_status_message"))

  40. 			raise webnotes.SessionStopped('Session Stopped')

  41. 

  42. 		# load profile

  43. 		self.setup_profile()

  44. 

  45. 		# run login triggers

  46. 		if webnotes.form_dict.get('cmd')=='login':

  47. 			webnotes.local.login_manager.run_trigger('on_session_creation')

  48. 

  49. 	def set_lang(self, lang):

  50. 		import translate

  51. 		lang_list = translate.get_all_languages() or []

  52. 

  53. 		if not lang: 

  54. 			return

  55. 		if ";" in lang: # not considering weightage

  56. 			lang = lang.split(";")[0]

  57. 		if "," in lang:

  58. 			lang = lang.split(",")

  59. 		else:

  60. 			lang = [lang]

  61. 			

  62. 		for l in lang:

  63. 			code = l.strip()

  64. 			if code in lang_list:

  65. 				webnotes.local.lang = code

  66. 				return

  67. 				

  68. 			# check if parent language (pt) is setup, if variant (pt-BR)

  69. 			if "-" in code:

  70. 				code = code.split("-")[0]

  71. 				if code in lang_list:

  72. 					webnotes.local.lang = code

  73. 					return

  74. 					

  75. 	def setup_profile(self):

  76. 		webnotes.local.user = webnotes.profile.Profile()

  77. 

  78. 	def get_db_name(self):

  79. 		"""get database name from conf"""

  80. 		return conf.db_name

  81. 

  82. 	def connect(self, ac_name = None):

  83. 		"""connect to db, from ac_name or db_name"""

  84. 		webnotes.local.conn = webnotes.db.Database(user = self.get_db_name(), \

  85. 			password = getattr(conf,'db_password', ''))

  86. 

  87. class LoginManager:

  88. 	def __init__(self):

  89. 		self.user = None

  90. 		if webnotes.local.form_dict.get('cmd')=='login' or webnotes.local.request.path=="/api/method/login":

  91. 			self.login()

  92. 		else:

  93. 			self.make_session(resume=True)

  94. 

  95. 	def login(self):

  96. 		# clear cache

  97. 		webnotes.clear_cache(user = webnotes.form_dict.get('usr'))

  98. 		self.authenticate()

  99. 		self.post_login()

  100. 

  101. 	def post_login(self):

  102. 		self.run_trigger('on_login')

  103. 		self.validate_ip_address()

  104. 		self.validate_hour()

  105. 		self.make_session()

  106. 		self.set_user_info()

  107. 	

  108. 	def set_user_info(self):

  109. 		info = webnotes.conn.get_value("Profile", self.user, 

  110. 			["user_type", "first_name", "last_name", "user_image"], as_dict=1)

  111. 		if info.user_type=="Website User":

  112. 			webnotes.local._response.set_cookie("system_user", "no")

  113. 			webnotes.local.response["message"] = "No App"

  114. 		else:

  115. 			webnotes.local._response.set_cookie("system_user", "yes")

  116. 			webnotes.local.response['message'] = 'Logged In'

  117. 

  118. 		full_name = " ".join(filter(None, [info.first_name, info.last_name]))

  119. 		webnotes.response["full_name"] = full_name

  120. 		webnotes._response.set_cookie("full_name", full_name)

  121. 		webnotes._response.set_cookie("user_id", self.user)

  122. 		webnotes._response.set_cookie("user_image", info.user_image or "")

  123. 		

  124. 	def make_session(self, resume=False):

  125. 		# start session

  126. 		webnotes.local.session_obj = Session(user=self.user, resume=resume)

  127. 		

  128. 		# reset user if changed to Guest

  129. 		self.user = webnotes.local.session_obj.user

  130. 		webnotes.local.session = webnotes.local.session_obj.data

  131. 	

  132. 	def authenticate(self, user=None, pwd=None):

  133. 		if not (user and pwd):	

  134. 			user, pwd = webnotes.form_dict.get('usr'), webnotes.form_dict.get('pwd')

  135. 		if not (user and pwd):

  136. 			self.fail('Incomplete login details')

  137. 		

  138. 		self.check_if_enabled(user)

  139. 		self.user = self.check_password(user, pwd)

  140. 	

  141. 	def check_if_enabled(self, user):

  142. 		"""raise exception if user not enabled"""

  143. 		from webnotes.utils import cint

  144. 		if user=='Administrator': return

  145. 		if not cint(webnotes.conn.get_value('Profile', user, 'enabled')):

  146. 			self.fail('User disabled or missing')

  147. 

  148. 	def check_password(self, user, pwd):

  149. 		"""check password"""

  150. 		user = webnotes.conn.sql("""select `user` from __Auth where `user`=%s 

  151. 			and `password`=password(%s)""", (user, pwd))

  152. 		if not user:

  153. 			self.fail('Incorrect password')

  154. 		else:

  155. 			return user[0][0] # in correct case

  156. 	

  157. 	def fail(self, message):

  158. 		webnotes.local.response['message'] = message

  159. 		raise webnotes.AuthenticationError

  160. 		

  161. 	

  162. 	def run_trigger(self, method='on_login'):

  163. 		for method in webnotes.get_hooks().get("method", []):

  164. 			webnotes.get_attr(method)(self)

  165. 	

  166. 	def validate_ip_address(self):

  167. 		"""check if IP Address is valid"""

  168. 		ip_list = webnotes.conn.get_value('Profile', self.user, 'restrict_ip', ignore=True)

  169. 		

  170. 		if not ip_list:

  171. 			return

  172. 

  173. 		ip_list = ip_list.replace(",", "\n").split('\n')

  174. 		ip_list = [i.strip() for i in ip_list]

  175. 

  176. 		for ip in ip_list:

  177. 			if webnotes.get_request_header('REMOTE_ADDR', '').startswith(ip) or webnotes.get_request_header('X-Forwarded-For', '').startswith(ip):

  178. 				return

  179. 			

  180. 		webnotes.msgprint('Not allowed from this IP Address')

  181. 		raise webnotes.AuthenticationError

  182. 

  183. 	def validate_hour(self):

  184. 		"""check if user is logging in during restricted hours"""

  185. 		login_before = int(webnotes.conn.get_value('Profile', self.user, 'login_before', ignore=True) or 0)

  186. 		login_after = int(webnotes.conn.get_value('Profile', self.user, 'login_after', ignore=True) or 0)

  187. 		

  188. 		if not (login_before or login_after):

  189. 			return

  190. 			

  191. 		from webnotes.utils import now_datetime

  192. 		current_hour = int(now_datetime().strftime('%H'))

  193. 				

  194. 		if login_before and current_hour > login_before:

  195. 			webnotes.msgprint('Not allowed to login after restricted hour', raise_exception=1)

  196. 

  197. 		if login_after and current_hour < login_after:

  198. 			webnotes.msgprint('Not allowed to login before restricted hour', raise_exception=1)

  199. 	

  200. 	def login_as_guest(self):

  201. 		"""login as guest"""

  202. 		self.user = 'Guest'

  203. 		self.post_login()

  204. 

  205. 	def logout(self, arg='', user=None):

  206. 		if not user: user = webnotes.session.user

  207. 		self.run_trigger('on_logout')

  208. 		if user in ['demo@erpnext.com', 'Administrator']:

  209. 			webnotes.conn.sql('delete from tabSessions where sid=%s', webnotes.session.get('sid'))

  210. 			webnotes.cache().delete_value("session:" + webnotes.session.get("sid"))

  211. 		else:

  212. 			from webnotes.sessions import clear_sessions

  213. 			clear_sessions(user)

  214. 

  215. 		if user == webnotes.session.user:

  216. 			webnotes.session.sid = ""

  217. 			webnotes.local._response.delete_cookie("full_name")

  218. 			webnotes.local._response.delete_cookie("user_id")

  219. 			webnotes.local._response.delete_cookie("sid")

  220. 			webnotes.local._response.set_cookie("full_name", "")

  221. 			webnotes.local._response.set_cookie("user_id", "")

  222. 			webnotes.local._response.set_cookie("sid", "")

  223. 

  224. class CookieManager:

  225. 	def __init__(self):

  226. 		pass

  227. 		

  228. 	def set_cookies(self):

  229. 		if not webnotes.local.session.get('sid'): return		

  230. 		import datetime

  231. 

  232. 		# sid expires in 3 days

  233. 		expires = datetime.datetime.now() + datetime.timedelta(days=3)

  234. 		if webnotes.session.sid:

  235. 			webnotes.local._response.set_cookie("sid", webnotes.session.sid, expires = expires)

  236. 		if webnotes.session.session_country:

  237. 			webnotes.local._response.set_cookie('country', webnotes.session.get("session_country"))

  238. 		

  239. 	def set_remember_me(self):

  240. 		from webnotes.utils import cint

  241. 		

  242. 		if not cint(webnotes.form_dict.get('remember_me')): return

  243. 		

  244. 		remember_days = webnotes.conn.get_value('Control Panel', None,

  245. 			'remember_for_days') or 7

  246. 			

  247. 		import datetime

  248. 		expires = datetime.datetime.now() + \

  249. 					datetime.timedelta(days=remember_days)

  250. 

  251. 		webnotes.local._response.set_cookie["remember_me"] = 1

  252. 

  253. 

  254. def _update_password(user, password):

  255. 	webnotes.conn.sql("""insert into __Auth (user, `password`) 

  256. 		values (%s, password(%s)) 

  257. 		on duplicate key update `password`=password(%s)""", (user, 

  258. 		password, password))

  259. 	

  260. @webnotes.whitelist()

  261. def get_logged_user():

  262. 	return webnotes.session.user