local.py 3.41 KB
Newer Older
Antony Chazapis's avatar
Antony Chazapis committed
1
# Copyright 2011-2012 GRNET S.A. All rights reserved.
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
#
# Redistribution and use in source and binary forms, with or
# without modification, are permitted provided that the following
# conditions are met:
#
#   1. Redistributions of source code must retain the above
#      copyright notice, this list of conditions and the following
#      disclaimer.
#
#   2. Redistributions in binary form must reproduce the above
#      copyright notice, this list of conditions and the following
#      disclaimer in the documentation and/or other materials
#      provided with the distribution.
#
# THIS SOFTWARE IS PROVIDED BY GRNET S.A. ``AS IS'' AND ANY EXPRESS
# OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL GRNET S.A OR
# CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
# SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
# USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
# AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
# ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
# POSSIBILITY OF SUCH DAMAGE.
#
# The views and conclusions contained in the software and
# documentation are those of the authors and should not be
# interpreted as representing official policies, either expressed
# or implied, of GRNET S.A.

34
from django.http import HttpResponseBadRequest
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
35
36
37
from django.shortcuts import render_to_response
from django.template import RequestContext
from django.contrib.auth import authenticate
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
38
from django.contrib import messages
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
39
from django.utils.translation import ugettext as _
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
40
from django.views.decorators.csrf import csrf_exempt
41
from django.views.decorators.http import require_http_methods
42

43
from astakos.im.util import prepare_response, get_query
44
from astakos.im.views import requires_anonymous
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
45
from astakos.im.models import AstakosUser
46
from astakos.im.forms import LoginForm
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
47
48
49
50
51
52
from astakos.im.settings import RATELIMIT_RETRIES_ALLOWED

from ratelimit.decorators import ratelimit

retries = RATELIMIT_RETRIES_ALLOWED-1
rate = str(retries)+'/m'
53

54
@require_http_methods(["GET", "POST"])
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
55
@csrf_exempt
56
@requires_anonymous
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
57
@ratelimit(field='username', method='POST', rate=rate)
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
58
def login(request, on_failure='im/login.html'):
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
59
    """
60
    on_failure: the template name to render on login failure
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
61
    """
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
62
63
    was_limited = getattr(request, 'limited', False)
    form = LoginForm(data=request.POST, was_limited=was_limited, request=request)
64
    next = get_query(request).get('next', '')
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
65
66
    if not form.is_valid():
        return render_to_response(on_failure,
67
                                  {'login_form':form,
68
                                   'next':next},
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
69
                                  context_instance=RequestContext(request))
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
70
71
    # get the user from the cash
    user = form.user_cache
72
    
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
73
    message = None
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
74
75
76
77
    if not user:
        message = _('Cannot authenticate account')
    elif not user.is_active:
        message = _('Inactive account')
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
78
    if message:
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
79
        messages.add_message(request, messages.ERROR, message)
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
80
        return render_to_response(on_failure,
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
81
                                  {'form':form},
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
82
                                  context_instance=RequestContext(request))
83
84
    
    return prepare_response(request, user, next)