anoopmb
/
frappe
1
0
Forkuj 0
Kod Zgłoszenia 0 Oczekujące zmiany 0 Wydania 0 Wiki Aktywność
Nie możesz wybrać więcej, niż 25 tematów Tematy muszą się zaczynać od litery lub cyfry, mogą zawierać myślniki ('-') i mogą mieć do 35 znaków.
3978 Commity
1 Gałąź
314 MiB
 
 
 
 
 
 
Drzewo: 29c507f7a9
Gałęzie Tagi
${ item.name }
Utwórz gałąź ${ searchTerm }
z '29c507f7a9'
${ noResults }
frappe/webnotes/auth.py

260 wiersze
7.6 KiB
Czysty Wina Historia 

  1. # Copyright (c) 2013, Web Notes Technologies Pvt. Ltd.

  2. # MIT License. See license.txt 

  3. 

  4. from __future__ import unicode_literals

  5. import webnotes

  6. import webnotes.db

  7. import webnotes.utils

  8. import webnotes.profile

  9. from webnotes import conf

  10. from webnotes.sessions import Session

  11. 

  12. 

  13. class HTTPRequest:

  14. 	def __init__(self):

  15. 		# Get Environment variables

  16. 		self.domain = webnotes.request.host

  17. 		if self.domain and self.domain.startswith('www.'):

  18. 			self.domain = self.domain[4:]

  19. 

  20. 		# language

  21. 		self.set_lang(webnotes.get_request_header('HTTP_ACCEPT_LANGUAGE'))

  22. 		

  23. 		# load cookies

  24. 		webnotes.local.cookie_manager = CookieManager()

  25. 		

  26. 		# override request method. All request to be of type POST, but if _type == "POST" then commit

  27. 		if webnotes.form_dict.get("_type"):

  28. 			webnotes.local.request_method = webnotes.form_dict.get("_type")

  29. 			del webnotes.form_dict["_type"]

  30. 

  31. 		# set db

  32. 		self.connect()

  33. 

  34. 		# login

  35. 		webnotes.local.login_manager = LoginManager()

  36. 

  37. 		# start session

  38. 		webnotes.local.session_obj = Session()

  39. 		webnotes.local.session = webnotes.local.session_obj.data

  40. 

  41. 		# check status

  42. 		if webnotes.conn.get_global("__session_status")=='stop':

  43. 			webnotes.msgprint(webnotes.conn.get_global("__session_status_message"))

  44. 			raise webnotes.SessionStopped('Session Stopped')

  45. 

  46. 		# load profile

  47. 		self.setup_profile()

  48. 

  49. 		# run login triggers

  50. 		if webnotes.form_dict.get('cmd')=='login':

  51. 			webnotes.local.login_manager.run_trigger('on_login_post_session')

  52. 

  53. 		# write out cookies

  54. 		webnotes.local.cookie_manager.set_cookies()

  55. 

  56. 	def set_lang(self, lang):

  57. 		import translate

  58. 		lang_list = translate.get_lang_dict()

  59. 		lang_list = lang_list and lang_list.values() or []

  60. 

  61. 		if not lang: 

  62. 			return

  63. 		if ";" in lang: # not considering weightage

  64. 			lang = lang.split(";")[0]

  65. 		if "," in lang:

  66. 			lang = lang.split(",")

  67. 		else:

  68. 			lang = [lang]

  69. 			

  70. 		for l in lang:

  71. 			code = l.strip()

  72. 			if code in lang_list:

  73. 				webnotes.local.lang = code

  74. 				return

  75. 				

  76. 			# check if parent language (pt) is setup, if variant (pt-BR)

  77. 			if "-" in code:

  78. 				code = code.split("-")[0]

  79. 				if code in lang_list:

  80. 					webnotes.local.lang = code

  81. 					return

  82. 					

  83. 	def setup_profile(self):

  84. 		webnotes.local.user = webnotes.profile.Profile()

  85. 

  86. 	def get_db_name(self):

  87. 		"""get database name from conf"""

  88. 		return conf.db_name

  89. 

  90. 	def connect(self, ac_name = None):

  91. 		"""connect to db, from ac_name or db_name"""

  92. 		webnotes.local.conn = webnotes.db.Database(user = self.get_db_name(), \

  93. 			password = getattr(conf,'db_password', ''))

  94. 

  95. class LoginManager:

  96. 	def __init__(self):

  97. 		if webnotes.form_dict.get('cmd')=='login':

  98. 			# clear cache

  99. 			webnotes.clear_cache(user = webnotes.form_dict.get('usr'))

  100. 

  101. 			self.authenticate()

  102. 			self.post_login()

  103. 			info = webnotes.conn.get_value("Profile", self.user, ["user_type", "first_name", "last_name"], as_dict=1)

  104. 			if info.user_type=="Website User":

  105. 				webnotes._response.set_cookie("system_user", "no")

  106. 				webnotes.response["message"] = "No App"

  107. 			else:

  108. 				webnotes._response.set_cookie("system_user", "yes")

  109. 				webnotes.response['message'] = 'Logged In'

  110. 

  111. 			full_name = " ".join(filter(None, [info.first_name, info.last_name]))

  112. 			webnotes.response["full_name"] = full_name

  113. 			webnotes._response.set_cookie("full_name", full_name)

  114. 			webnotes._response.set_cookie("user_id", self.user)

  115. 

  116. 	

  117. 	def post_login(self):

  118. 		self.run_trigger()

  119. 		self.validate_ip_address()

  120. 		self.validate_hour()

  121. 	

  122. 	def authenticate(self, user=None, pwd=None):

  123. 		if not (user and pwd):	

  124. 			user, pwd = webnotes.form_dict.get('usr'), webnotes.form_dict.get('pwd')

  125. 		if not (user and pwd):

  126. 			self.fail('Incomplete login details')

  127. 		

  128. 		self.check_if_enabled(user)

  129. 		self.user = self.check_password(user, pwd)

  130. 	

  131. 	def check_if_enabled(self, user):

  132. 		"""raise exception if user not enabled"""

  133. 		from webnotes.utils import cint

  134. 		if user=='Administrator': return

  135. 		if not cint(webnotes.conn.get_value('Profile', user, 'enabled')):

  136. 			self.fail('User disabled or missing')

  137. 

  138. 	def check_password(self, user, pwd):

  139. 		"""check password"""

  140. 		user = webnotes.conn.sql("""select `user` from __Auth where `user`=%s 

  141. 			and `password`=password(%s)""", (user, pwd))

  142. 		if not user:

  143. 			self.fail('Incorrect password')

  144. 		else:

  145. 			return user[0][0] # in correct case

  146. 	

  147. 	def fail(self, message):

  148. 		webnotes.response['message'] = message

  149. 		raise webnotes.AuthenticationError

  150. 		

  151. 	

  152. 	def run_trigger(self, method='on_login'):

  153. 		try:

  154. 			from startup import event_handlers

  155. 			if hasattr(event_handlers, method):

  156. 				getattr(event_handlers, method)(self)

  157. 		except ImportError, e:

  158. 			pass

  159. 			

  160. 		cp = webnotes.bean("Control Panel", "Control Panel")

  161. 		cp.run_method(method)

  162. 	

  163. 	def validate_ip_address(self):

  164. 		"""check if IP Address is valid"""

  165. 		ip_list = webnotes.conn.get_value('Profile', self.user, 'restrict_ip', ignore=True)

  166. 		

  167. 		if not ip_list:

  168. 			return

  169. 

  170. 		ip_list = ip_list.replace(",", "\n").split('\n')

  171. 		ip_list = [i.strip() for i in ip_list]

  172. 

  173. 		for ip in ip_list:

  174. 			if webnotes.get_request_header('REMOTE_ADDR', '').startswith(ip):

  175. 				return

  176. 			

  177. 		webnotes.msgprint('Not allowed from this IP Address')

  178. 		raise webnotes.AuthenticationError

  179. 

  180. 	def validate_hour(self):

  181. 		"""check if user is logging in during restricted hours"""

  182. 		login_before = int(webnotes.conn.get_value('Profile', self.user, 'login_before', ignore=True) or 0)

  183. 		login_after = int(webnotes.conn.get_value('Profile', self.user, 'login_after', ignore=True) or 0)

  184. 		

  185. 		if not (login_before or login_after):

  186. 			return

  187. 			

  188. 		from webnotes.utils import now_datetime

  189. 		current_hour = int(now_datetime().strftime('%H'))

  190. 				

  191. 		if login_before and current_hour > login_before:

  192. 			webnotes.msgprint('Not allowed to login after restricted hour', raise_exception=1)

  193. 

  194. 		if login_after and current_hour < login_after:

  195. 			webnotes.msgprint('Not allowed to login before restricted hour', raise_exception=1)

  196. 	

  197. 	def login_as_guest(self):

  198. 		"""login as guest"""

  199. 		self.user = 'Guest'

  200. 		self.post_login()

  201. 

  202. 	def logout(self, arg='', user=None):

  203. 		if not user: user = webnotes.session.user

  204. 		self.run_trigger('on_logout')

  205. 		if user in ['demo@erpnext.com', 'Administrator']:

  206. 			webnotes.conn.sql('delete from tabSessions where sid=%s', webnotes.session.get('sid'))

  207. 			webnotes.cache().delete_value("session:" + webnotes.session.get("sid"))

  208. 		else:

  209. 			from webnotes.sessions import clear_sessions

  210. 			clear_sessions(user)

  211. 

  212. 		if user == webnotes.session.user:

  213. 			webnotes.session.sid = ""

  214. 			webnotes._response.delete_cookie("full_name")

  215. 			webnotes._response.delete_cookie("user_id")

  216. 			webnotes._response.delete_cookie("sid")

  217. 			webnotes._response.set_cookie("full_name", "")

  218. 			webnotes._response.set_cookie("user_id", "")

  219. 			webnotes._response.set_cookie("sid", "")

  220. 

  221. class CookieManager:

  222. 	def __init__(self):

  223. 		pass

  224. 		

  225. 	def set_cookies(self):

  226. 		if not webnotes.session.get('sid'): return		

  227. 		import datetime

  228. 

  229. 		# sid expires in 3 days

  230. 		expires = datetime.datetime.now() + datetime.timedelta(days=3)

  231. 		if webnotes.session.sid:

  232. 			webnotes._response.set_cookie("sid", webnotes.session.sid, expires = expires)

  233. 		if webnotes.session.session_country:

  234. 			webnotes._response.set_cookie('country', webnotes.session.get("session_country"))

  235. 		

  236. 	def set_remember_me(self):

  237. 		from webnotes.utils import cint

  238. 		

  239. 		if not cint(webnotes.form_dict.get('remember_me')): return

  240. 		

  241. 		remember_days = webnotes.conn.get_value('Control Panel', None,

  242. 			'remember_for_days') or 7

  243. 			

  244. 		import datetime

  245. 		expires = datetime.datetime.now() + \

  246. 					datetime.timedelta(days=remember_days)

  247. 

  248. 		webnotes._response.set_cookie["remember_me"] = 1

  249. 

  250. 

  251. def _update_password(user, password):

  252. 	webnotes.conn.sql("""insert into __Auth (user, `password`) 

  253. 		values (%s, password(%s)) 

  254. 		on duplicate key update `password`=password(%s)""", (user, 

  255. 		password, password))

  256. 	

  257. @webnotes.whitelist()

  258. def get_logged_user():

  259. 	return webnotes.session.user