U 7h@sddlZddlZddlZddlZddlZddlmZddlmZddl Tddl m Z ddl m Z ddlmZGdd d ejje ZdS) N)abort)rollback_all_ds)*)normalize_email_address) ResponseMixin)urlparsec@sxeZdZdZejjddZddZejjddZ ejjdd Z ejjd d Z ejjd d Z ejjddZ dS) SigninViewz /auth/signinc Csddl}ddlm}tjj}d}tjd}d}dtj krDtj d}| |}|rbt j |\}}|dgd}|r|sttdtj krtj dnd} || |Sg} t jjdd d gd d d ggd dgdD]} | t| j| |dqt| } |dS)Nr)get_flashed_messages session_token/next_urlZ auth_error)Zcategory_filterZservicedesk_supportz==TZdisabledFrzplugin.*)filterfields)nameZ login_urlz signin.html)htmlflaskr gglobal_settingsZservicedesk_allow_auth_guestsrequestZcookiesgetvaluesescapemodelsZ CmfSessionZ from_token make_responseredirect_okZCmfAuthOpenIdPluginlistappenddictrZget_redirect_urllenZrender) selfrr Zshow_register_buttonauthr r Z_sessionmessagesresponseZ sso_buttonsZpluginZsso_buttons_countr$%./modules/servicedesk/views/signin.pyrs4        zSigninView.getc Cstjjs dStjdd}d|}tj|}dt j t j dd}tj |||stjjddd|dd d d d ||d td|}|r||krtjjddd|dd dd d ||d tddS)Ncaptchaauth:user_login_captcha:)kZ auth_failedCmfAuthzRequire captcha)loginreasonZfailT ZoperateZcmf_model_nameparentZ audit_dataZ result_statusZcurrent_transactionZsecurity_level parent_nameZ parent_codeir!z Bad captcha)rrauth_check_captcharrrAPPREDIS_DBjoinrandomchoicesstringdigitssetrCmfAudit audit_eventrdecode)r r,r&Zdb_keyZ db_captchaZ new_captchar$r$r%_auth_check_captcha.s<     zSigninView._auth_check_captchacCsztjjs dSttjd}tjd|s0dSddl m }ddl m }tj d|}|}||}||ddS)Nr,r'r)Response) ImageCaptchaz image/png)Zmimetype)rrr2rrrr3r4existsrr?Z captcha.imager@rr=Zgenerate)r r,r?r@r&Zimagedatar$r$r% captcha_imgJs   zSigninView.captcha_imgc Cs^ddl}|jtjd}d|kr*t|}tjd}||t t j ||}t j j |si}tjrtjd|d<td||jr4t|jkr4tjdd}tjd d}|r|st jjd d dd|id d d||d td||||jr d|_t jjdd dd|idd d||d |td}|||W5QRSQRXdS)Nrr,@challenge_respmessageZnew_password_hashZnew_password_saltZpassword_expiredr+password_expires_must_changeTr.r/iZpassword_changedzSigned in successfully)urllibparseunquoterrrr>ZcmfutilZ disable_aclrr+get_by_challenge_respdpcommitralertrrItimerr;r<Z set_pass_hashZsaverr) r rKr,rEr! abort_kwargshashsaltr#r$r$r%post\sV        zSigninView.postcCs4ttjd}tjj|dddgd}|s,dS|S)Nr,Z token_lengthrUZ auth_options)r,rr()rrrrr+rZgen_server_challenger r,r!r$r$r%get_server_challenges zSigninView.get_server_challengecCs`ttjd}tjd}tj||}tjj|sXi}tj rNtj d|d<t d|| S)u> Ручка для авторизации r,passwordrFrGrH) rrrrr+rNrOrPrrQrZrsa_sign_pack_jwt)r r,rYr!rSr$r$r%signin_with_login_passwords   z%SigninView.signin_with_login_passwordcCsDtjstdtdStjjj}tjj |d}|srCrVrXrZr]r$r$r$r%rs   .  r)ZdatetimeZujsonr6r8rRrrZcmf.data_providers.baserZ cmf.includeZmodules.auth.models.emailrZmodules.auth.views.responser urllib.parserrarbZBaseViewrr$r$r$r%s