U `e-@sddlZddlZddlZddlZddlZddlmZddlmZddl Tddl m Z ddl m Z ddlmZGdd d ejje ZdS) N)abort)rollback_all_ds)*)normalize_email_address) ResponseMixin)urlparsec@seZdZdZejjddZddZddZ ejjdd Z ejjd d Z ejjd d Z ejjddZ ejjddZdS) SigninViewz /auth/signincCstjj}|dS)Nz signin.html)gZglobal_settingsZservicedesk_allow_auth_guestsZrender)selfZshow_register_buttonr %./modules/servicedesk/views/signin.pygetszSigninView.getc Cstjs dStjd|s dStjjjd|tjdd}|jddt tjz | Wn"t k r}zW5d}~XYnXdS)Nauth:user_login_failed:zauth:user_login_failed_lock:)timeoutT)blocking) configAUTH_FREEZE_AFTER_LOGIN_FAILAPPREDIS_DBexistsZredislockacquiretimesleeprelease Exception)r loginrer r r _auth_freezes   zSigninView._auth_freezec Cstjs dStjd|s dStjdd}d|}tj|}dt j t j dd}tj |||stjjddd|d d d d d ||d td|}|r||krtjjddd|dd dd d ||d tddS)Nrcaptchaauth:user_login_captcha:)kZ auth_failedCmfAuthzRequire captcha)rreasonZfailT ZoperateZcmf_model_nameparentZ audit_dataZ result_statusZcurrent_transactionZsecurity_level parent_nameZ parent_codeiauthz Bad captcha)rAUTH_CHECK_CAPTCHArrrrequestvaluesr joinrandomchoicesstringdigitssetmodelsCmfAudit audit_eventrdecode)r rr Zdb_keyZ db_captchaZ new_captchar r r _auth_check_captcha)s@     zSigninView._auth_check_captchacCsxtjs dSttjd}tjd|s.dSddlm }ddl m }tj d| }|}||}||ddS)Nrr!r)Response) ImageCaptchaz image/png)Zmimetype)rr,rr-r.rrrflaskr:Z captcha.imager;r r8Zgenerate)r rr:r;r Zimagedatar r r captcha_imgHs   zSigninView.captcha_imgc Cstddl}|jtjd}d|kr*t|}tjd}||||t t j ||}t j j |stjs~tjrtjjd|dddtd |jrJt|jkrJtjd d}tjd d}|r|st jjd d dd|iddd||d td||||jr d|_t jjdd dd|iddd||d |td}|||W5QRSQRXdS)Nrr@challenge_respzservicedesk:user_login_failed:r'exiZnew_password_hashZnew_password_saltZpassword_expiredr%password_expires_must_changeTr(iZpassword_changedrzSigned in successfully)urllibparseZunquoter-r.rrr9ZcmfutilZ disable_aclr5r%Zget_by_challenge_respZdpZcommitrrr,rrr4rrDrr r6r7Z set_pass_hashZsaveZ make_responseZ_ok)r rErr@r+hashsaltZresponser r r postZsV          zSigninView.postcCs4ttjd}tjj|dddgd}|s,dS|S)NrZ token_lengthrHZ auth_options)rZfieldsr")rr-r.r5r%r Zgen_server_challenger rr+r r r get_server_challenges zSigninView.get_server_challengecCshttjd}tjd}||tj||}|s`tjs@tj rXt j j d|dddt d|S)u> Ручка для авторизации rpasswordrr'rArBi)rr-r.rr5r%Zfrom_login_passwordrrr,rrr4rZrsa_sign_pack_jwt)r rrLr+r r r signin_with_login_passwords   z%SigninView.signin_with_login_passwordcCsDtjstdtdStjjj}tjj |d}|srIrKrMrPr r r r rs   .  r)ZdatetimeZujsonr0r2rr<rZcmf.data_providers.baserZ cmf.includeZmodules.auth.models.emailrZmodules.auth.views.responserZ urllib.parserrTrUZBaseViewrr r r r s