U yd@snddlmZddlTddlmZddlmZmZmZmZmZddl m Z ddl Z ddl Z Gdd d ej Z dS) )fields)*) cmf_session)datedatetime timedeltatimezonetime)AESNc@seZdZiZeeje j ddgZ e ed<ej feZ edddZeedddZd d Zd d Zeed ddZdS) CmfSessioncmfZ templatesloader)returncCs|jjdd}t|S)N:)idvaluesplitcmfutilZcrypt)selfmessager./cmf/models/cmf_session.py get_tokenszCmfSession.get_tokencCszt|}WntdYdSXtjjd|ddgd}|rtt j }||j t |j jdkr|dg|j|}|rtjd d }|jj|_|jj|_|jj|_d|_d |_td |jd |jd |j||fSdS)NuDНе удалось расшифровать токен сессии)NNz CmfSession:Fr)rZexpiredr)Zsecondszplugin.plugin.*T)emptyzfrom_session_token: jwt is ok, z, z , is_local=)rdecryptgdebugmodelsr getrnowr ZutcZ reauth_daterZaccess_token_expires_inrZ load_fieldsZpluginZ refresh_tokenZCmfAuthZ user_loginZloginZ user_emailemailZ user_scopeZscopeZjwt_is_supportZjwt_is_match_org)clsZ session_tokenZdecrypted_tokensessionr!objrrr from_tokens*        "zCmfSession.from_tokencs0ddltjj|jddgd}|}|r,|jrN|j|jdkrNdSd fddt d D}|d ksz|d kr|j j r||_ |j|tj}||j j j|d nn|d ks|d kr,|j jr,||_ |j||jd}|j||d}tj}|j|j jj|dddS)Nr two_factor.*rrrc3s|]}tddVqdS)r N)strZrandint).0_randomrr 5sz+CmfSession.tfa_send_code..anyZsmsu& ваш проверочный код.r"z tfa_mail.html)tfa_codepersonuJКод безопасности для учетной записи EvaTeam)Zsubject)r0r CmfPersonr user_idget_two_factor_optZ sms_send_timer!Z total_secondsjoinrange two_factorZphonesms_codeset_nowsaveZCmfPluginSMSGateZget_local_smsgateZ send_messageZnumberr" _jinja_envZ get_templateZrenderZCmfPluginMailBoxZget_local_mailboxr)rr5Ztwo_factor_optr4Zsms_gatetemplateZ email_bodyZmail_boxrr/r tfa_send_code-s*     zCmfSession.tfa_send_codecCsddlm}|jrdStjj|jd}|rdtj i}||}t t j d|}tj dd|j d<d |j d <d |j d <|SdS) Nr) urlencode)rZnext_urlz/auth/two-factor?ZOriginrzAccess-Control-Allow-Origintruez Access-Control-Allow-CredentialszContent-Type, x-ijtzAccess-Control-Allow-Headers)Z urllib.parserBcheckedrr6r r7r8ZrequestZurlZredirectconfigZAUTH_SERVER_URLZheaders)rrBr5paramsZqsrrrrtfa_check_two_factorEs    zCmfSession.tfa_check_two_factor)codec Csddl}tjjd7_tjjtjj|kr:dtj_nXtj j tjj ddgd}|j j rt||j j }W5QRX||rdtj_tjtjjjS)NrrTr'rr()pyotprr$Z sms_try_countZ sms_try_timer=r<rDrr6r r7r;Z topt_secretrZ disable_aclZTOTPrZverifyr>r)rIrJr5Ztotprrrtfa_check_codeSs      zCmfSession.tfa_check_codeN)__name__ __module__ __qualname__Z_optionsZjinja2ZFileSystemLoaderospathr9rEZ PROJECT_DIRZ_loaderZ Environmentr?r,r classmethodr&rArH staticmethodrKrrrrr s r )r rZ cmf.includerrrrr r Z Crypto.Cipherr Zbinasciibase64r rrrrs