U dI@sddlZddlZddlZddlZddlZddlmZddlmZddl Tddl m Z ddl m Z ddlmZGdd d ejje ZdS) N)abort)rollback_all_ds)*)normalize_email_address) ResponseMixin)urlparsec@speZdZdZejjddZddZddZ ejjdd Z ejjd d Z ejjd d Z ejjddZ dS) SigninViewz /auth/signincCstjj}|dS)Nz signin.html)gZglobal_settingsZservicedesk_allow_auth_guestsZrender)selfZshow_register_buttonr %./modules/servicedesk/views/signin.pygetszSigninView.getc Cstjs dStjd|s dStjjjd|tjdd}|jddt tjz | Wn"t k r}zW5d}~XYnXdS)Nauth:user_login_failed:zauth:user_login_failed_lock:)timeoutT)blocking) configAUTH_FREEZE_AFTER_LOGIN_FAILAPPREDIS_DBexistsZredislockacquiretimesleeprelease Exception)r loginrer r r _auth_freezes   zSigninView._auth_freezecCstjs dStjd|s dStjdd}d|}tj|}dt j t j dd}tj |||stjjddd|d d d d d td|}|r||krtjjddd|dd d d d tddS)Nrcaptchaauth:user_login_captcha:)kauthCmfAuthzRequire captcha)rreasonZfailTZoperateZcmf_model_nameparentZ audit_dataZ result_statusZ celery_skipiz Bad captcha)rAUTH_CHECK_CAPTCHArrrrequestvaluesr joinrandomchoicesstringdigitssetmodelsCmfAudit audit_eventrdecode)r rr Zdb_keyZ db_captchaZ new_captchar r r _auth_check_captcha)s4     zSigninView._auth_check_captchacCsxtjs dSttjd}tjd|s.dSddlm }ddl m }tj d| }|}||}||ddS)Nrr!r)Response) ImageCaptchaz image/png)Zmimetype)rr*rr+r,rrrflaskr8Z captcha.imager9r r6Zgenerate)r rr8r9r Zimagedatar r r captcha_imgFs   zSigninView.captcha_imgcCsDddl}|jtjd}d|kr*t|}tjd}||||tj ||}tj j |st jsrt jrtjjd|dddtd |jr0t|jkr0tjd d}tjd d}|r|stjjd d dd|idddtd||||jr d|_tjjd d dd|iddd|td}|||S)Nrr@challenge_respzservicedesk:user_login_failed:exiZnew_password_hashZnew_password_saltr%r&password_expires_must_changeTr(iZpassword_changedzSigned in successfully)urllibparseZunquoter+r,rrr7r3r&Zget_by_challenge_respZdpZcommitrrr*rrr2rrCrr r4r5Z set_pass_hashZsaveZ make_responseZ_ok)r rDrr>r%hashsaltZresponser r r postXsH        zSigninView.postcCs4ttjd}tjj|dddgd}|s,dS|S)NrZ token_lengthrGZ auth_options)rZfieldsr")rr+r,r3r&r Zgen_server_challenge)r rr%r r r get_server_challenges zSigninView.get_server_challengecCshttjd}tjd}||tj||}|s`tjs@tj rXt j j d|dddt d|S)u> Ручка для авторизации rpasswordrr?r@rAi)rr+r,rr3r&Zfrom_login_passwordrrr*rrr2rZrsa_sign_pack_jwt)r rrJr%r r r signin_with_login_passwords   z%SigninView.signin_with_login_passwordN)__name__ __module__ __qualname__Z__url__cmfviewsactionr rr7r<rHrIrKr r r r rs   + r)ZdatetimeZujsonr.r0rr:rZcmf.data_providers.baserZ cmf.includeZmodules.auth.models.emailrZmodules.auth.views.responserZ urllib.parserrOrPZBaseViewrr r r r s