U /qc8@snddlZddlZddlmZddlmZddlTddlmZddl m Z ddl m Z Gdd d e jje ZdS) N)abort)rollback_all_ds)*)normalize_email_address) ResponseMixin)urlparsec@steZdZdZdZddZddZejj ddZ ejj d d Z ejj d d Z ejj d dZ ejj ddZdS) SigninViewz/signincCs4tjd}|s0tjr0ttj}|r0|d}|S)N access_token)requestZcookiesgetdataujsonloads)selfr Zjson_resr./modules/auth/views/signin.py_get_access_tokens     zSigninView._get_access_tokencCs|}|rtj|SdS)N)rmodelsCmfAuthZrsa_verify_unpack_jwt)rr rrr_jwt_from_requestszSigninView._jwt_from_requestc Csl|}|rZz0|dd}|dd}t|dd}d}Wn6ttttfk rttdd}d}d}d}YnXd}|sd}|rtj j |dgd }|sd}|r|j |krd}|rTt j t j |j}|dkrd tjkrTtd |d |d tjd nLd|kr"tjkrTnn.ttd tjkr@tjd nd}|||Sttj } |dS)NZpayloadloginscopeexpTzjwt value errorrFrZfieldsZnext_urlz !!! Maybe Cycle Redirect: login=z, scope=z next_url=/z signin.html)rint ValueError TypeErrorAttributeErrorKeyErrorloggingZ exceptionrrr rdatetimeZnowZ fromtimestampZdaysr valuesprintr prolong_days make_responseredirect_okrconfigIS_BOX_VERSIONZrender) rZjwtrrrZjwt_okauthZ expired_daysresponseZshow_register_buttonrrrr sL        zSigninView.getcCsFttjd}tjd}tj||}|s2tdtd}|||S)Nrchallenge_respizSigned in successfully) rr r#rrZget_by_challenge_resprr&r()rrr-r+r,rrrpostUs zSigninView.postcCsVttjd}tjj|dgd}dd|jjD}d|krRt |dkrR| SdS) Nrz***rcSsg|]\}}|r|qSrr).0keyvalrrr dsz3SigninView.get_server_challenge..Z allow_base) rr r#rrr Z auth_optionsvalueitemslenZgen_server_challenge)rrr+Zallowrrrget_server_challenge`s zSigninView.get_server_challengecCsTtjstdtdStjjj}tjj |d}|s.uO2.2. У пользователя нет scope - форма создания VM.ur3.2. У пользователя два scope, проверим, не системный ли один из нихz^acrm[0-9]{5,6}$r3uo3. У пользователя один единственный scope - на эту CRM и отправить.zhttps://uc4. У пользователя несколько scope - отправить на список CRM.r)gr+r!infor'Zemailr5rrr rZis_nullr(setr:r7rematchdiscardpopr)ZAUTH_SESSION_COOKIE_DOMAINr* startswith)rrr+Zscopesrr,rrrproceedis8           zSigninView.proceedcCs:ttjd}tjd}tj||}|s2td|S)u> Ручка для авторизации rpasswordi)rr r#rrZfrom_login_passwordrZrsa_sign_pack_jwt)rrrEr+rrrsignin_with_login_passwords  z%SigninView.signin_with_login_passwordN)__name__ __module__ __qualname__Z__url__r%rrcmfviewsactionr r.r8rDrFrrrrr s 5   %r)r"rZflaskrZcmf.data_providers.baserZ cmf.includeZmodules.auth.models.emailrZmodules.auth.views.responserZ urllib.parserrJrKZBaseViewrrrrrs