1*)if3ddlZddlZddlZddlZddlZddlZddlmZddl m Z ddl Tddl m Z ddlmZddlmZGdd ejjeZdS) N)abort)rollback_all_ds)*)normalize_email_address) ResponseMixin)copyc$eZdZdZdZdZdZejj dZ dZ ejj dZ ejj dZ ejj d Zejj d Zejj d Zd S) SigninViewz/signinctjd}|sAtjr5t jtj}|r|d}|S)N access_token)requestcookiesgetdataujsonloads)selfr json_ress ./modules/auth/views/signin.py_get_access_tokenzSigninView._get_access_tokensX**>::  <  <{7<00H <'||N;; cp|}|rtj|SdS)N)rmodelsCmfAuthrsa_verify_unpack_jwt)rr s r_jwt_from_requestzSigninView._jwt_from_requests>--//  F>77 EE E F Frc ddl}ddlm}tjdd}t j|}t |sd}| }|r |dd}|dd}t|dd}d }nE#tttt f$r%t"d d}d}d}d }YnwxYwd} |sd }|r&t&j|dg } | sd }|r | j|krd }|rt,jt,j|z j} | dkr7dtjvr(t5d |d|dtjdnLd| cxkrt6jkr5nn2t;t=|} || | StAd} tj!d} | r"t&j"#| \} } |dg}| r4|s2t;t=|} || | StI|D]}|dkr|%|tLj' }g}t&j()gdddgD]>}|*tW|j,|-|?t]|}|/dS)Nr)get_flashed_messagesnext_url/payloadloginscopeexpTzjwt value errorFr#fieldsz !!! Maybe Cycle Redirect: login=z, scope=z next_url= session_token auth_error)category_filteru)Требуется авторизация)disabledz==Frzplugin.*)filterr')name login_urlz signin.html)0htmlflaskrrvaluesrurllibparseunquotecmfutilis_safe_next_urlrint ValueError TypeErrorAttributeErrorKeyErrorlogging exceptionrrr$datetimenow fromtimestampdaysprintr prolong_days make_responseredirect_okrr CmfSession from_tokenrremoveconfigIS_BOX_VERSIONCmfAuthOpenIdPluginlistappenddictr-get_redirect_urllenrender)rr/rr jwtr#r$r%jwt_okauth expired_daysresponser(_sessionmessagesmsgshow_register_button sso_buttonspluginsso_buttons_counts rrzSigninView.get#s ......>%%j#66<''11''11 H$$&& +  Iw/Iw/#i./00 >8D   !!"3444  D  #~))wi)HH#"F #:&&"F 4 ( 1 5 5 7 7(:K:Y:YZ]:^:^ ^d !##!W^33c&+cc5:ccFMnU_F`ccddd,@@@@)@@@@@@,Xh-?-?@@H88Hd333    ++O<<  I#.99-HHND(''GGG  , ,$Xh%7%788H88Hd++ +>> % %CAAA$$$#)#88 055=V=V=V`ceo_p5qq d dF   t@W@WX`@a@abbb c c c c ,,{{=)))s>9B88?C:9C:c <tjjsdSd|}t t j|pd}|dkrdStj dd}d|}t j|}d tj tjd}t j|||s9t jd d d|d d d d||t'd|}|r||kr;t jd d d|dd d d||t'ddSdS)Nzauth:user_last_login_fail:rcaptchaauth:user_login_captcha:)k auth_failedrzRequire captcha)r#reasonfailoperatecmf_model_nameparent audit_data result_statussecurity_level parent_name parent_codeiz Bad captcha)gglobal_settingsauth_check_captchalowerr7APPREDIS_DBrrr1joinrandomchoicesstringdigitssetrCmfAudit audit_eventrdecode)rr#db_keylast_login_failra db_captcha new_captchas r_auth_check_captchazSigninView._auth_check_captchaps 3  F5e55;;==cl..v66;!<< a   F.$$Y553E3399;;\%%f-- ggfnV]a@@@AA  ---  O ' ' i/3%[l@m@m677~NND N  $ $ & & & )! 7:./gbkL+c<(((#'#<#<#>#> # ~))*=tDD~))*=tDD4O//8J[d7;RWHX>\?@eaf0hhh #JJJ""4...4=8td| t d| Std |j jD}|s>td | t d| St|d kr\td t|D]2}t d|r||3t|dkrtd|}t d|zt(jz}t(jr;t(j|rt dt(jz}| || Std| t d| S)uu Определить по куке куда отправить пользователя автоматически. u71. Нет куки - форма авторизации.z /auth/signinr$r#r&z"/auth/signout?next_url=auth/signinuO2.1. У пользователя нет scope - форма создания VM.z /auth/assign)rUcDg|]}|ddS):r)split).0r$s r z&SigninView.proceed..s)PPPeekk#&&q)PPPruO2.2. У пользователя нет scope - форма создания VM.rur3.2. У пользователя два scope, проверим, не системный ли один из нихz^acrm[0-9]{5,6}$r`uo3. У пользователя один единственный scope - на эту CRM и отправить.zhttps://uc4. У пользователя несколько scope - отправить на список CRM.r!)rrrUr<inforEemailvaluerrrr$is_nullrFr}rrQrematchdiscardpoprJAUTH_SESSION_COOKIE_DOMAINrK startswith)rr#rUscopesr$rWs rproceedzSigninView.proceeds`v - LLR S S SO,, , "~!!w6H!II CABB B :  B LLj k k k88H_55D8AA APPtz7G7M7M7O7OPPPQQ B LLj k k k88H_55D8AA A v;;!   LLN O O OV * *88/77*NN5))) v;;!   LLK L L LJJLLE U 2V5V VWWH$ T)J)U)UV[)\)\ T#J1R$RSS88H4800 0 z{{{xxTx222rcttjd}tjd}t5t j||}t jj |s3i}tj rtj d|d<td|dddn #1swxYwY| S)u> Ручка для авторизации r#passwordrrrN)rrr1r5rrrrrrrrrrrsa_sign_pack_jwt)rr#rrUrs rsignin_with_login_passwordz%SigninView.signin_with_login_passwords (w(?@@>*- " " ) )>77xHHD N  $ $ & & & )! 7:./gbkL+c<((( ) ) ) ) ) ) ) ) ) ) ) ) ) ) )%%'''s A9CCCN)__name__ __module__ __qualname____url__rCrrcmfviewsactionrrrrrrrrrrr r sGLFFF  YJ*J*J*XB Y444( Y3,3,3,j Y Y#3#3#3J Y(((((rr )r> urllib.parser2rryr{timer0rcmf.data_providers.baser cmf.includemodules.auth.models.emailrmodules.auth.views.responserrrrBaseViewr rrrrs 333333======555555I(I(I(I(I(#]I(I(I(I(I(r