U h@s4ddlTddlmZddlZGdddejjZdS))*) BadRequestNc@s0eZdZdZejjddZejjddZdS)CmfAuthOpenIdViewz/openid-connectc Csnddlm}ddl}tjd}|rtjdd}tjjdddt |t |dd d d d d t d|d|t t d tdt tjdd}|stjjddddttjdd d d d t dtjt t d tdzt|}Wnhtjk rftjjdddd|dddd d d d t d|t t d tdYnXtjjddgdd|dgd}|tjd}||} t jjrtjj| jdgd } | jrtjjddd| jd!d"d d d d t t d tdtt|j|d#} tjj | | d$tjjd%ddt | jdd&d'd d | j| jd( t d)| jd*| S)+Nr)reject_responseerrorerror_descriptionZ auth_failedCmfAuthzopenid-connect)rrtypeZfailT)operatecmf_model_nameparent audit_data result_statuscurrent_transactionsecurity_levelz OIDC error: z; description: uQОшибка авторизации, повторите попытку позжеstateZ state_missing)reasonargsz%OIDC callback: missing 'state'; args=Zstate_bad_jsoni)rZ state_rawz(OIDC callback: bad JSON in state; state=rzplugin.*idz==)fieldsfiltercodefail_permanent_block)loginrzPermanent block)rrZnext_url)sessionZresponseZauth_successed)rr ok) r r rrrrr parent_nameZ parent_codeu%======OIDC: пользователь u* успешно авторизовался)!Zcmf.apprurllibZrequestrgetZmodelsZCmfAuditZ audit_eventstrgdebugZ cmf_committimesleeprdictZjsonloadsZJSONDecodeErrorZCmfAuthOpenIdPluginZ get_tokenZ get_sessionZglobal_settingsZauth_fail_permanent_blockr Z user_loginrZ make_responseZredirectparse unquote_plusZset_session_token) selfrrrZerr_descrZ state_paramsZopenidZjwtrZauthZrespr+/./cmf/modules/sso/views/cmf_auth_openid_view.pyr s                zCmfAuthOpenIdView.getcCsdS)Nr+)r*r+r+r,logouttszCmfAuthOpenIdView.logoutN) __name__ __module__ __qualname__Z__url__cmfviewsactionr r-r+r+r+r,rs  jr)Z cmf.includeZwerkzeug.exceptionsrr$r1r2ZBaseViewrr+r+r+r,s