local.py 3.29 KB
Newer Older
Antony Chazapis's avatar
Antony Chazapis committed
1
# Copyright 2011-2012 GRNET S.A. All rights reserved.
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
#
# Redistribution and use in source and binary forms, with or
# without modification, are permitted provided that the following
# conditions are met:
#
#   1. Redistributions of source code must retain the above
#      copyright notice, this list of conditions and the following
#      disclaimer.
#
#   2. Redistributions in binary form must reproduce the above
#      copyright notice, this list of conditions and the following
#      disclaimer in the documentation and/or other materials
#      provided with the distribution.
#
# THIS SOFTWARE IS PROVIDED BY GRNET S.A. ``AS IS'' AND ANY EXPRESS
# OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL GRNET S.A OR
# CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
# SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
# USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
# AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
# ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
# POSSIBILITY OF SUCH DAMAGE.
#
# The views and conclusions contained in the software and
# documentation are those of the authors and should not be
# interpreted as representing official policies, either expressed
# or implied, of GRNET S.A.

34
from django.http import HttpResponseBadRequest
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
35
36
37
from django.shortcuts import render_to_response
from django.template import RequestContext
from django.contrib.auth import authenticate
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
38
from django.contrib import messages
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
39
from django.utils.translation import ugettext as _
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
40
from django.views.decorators.csrf import csrf_exempt
41

42
from astakos.im.util import prepare_response, get_query
43
from astakos.im.views import requires_anonymous
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
44
from astakos.im.models import AstakosUser
45
from astakos.im.forms import LoginForm
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
46
47
48
49
50
51
from astakos.im.settings import RATELIMIT_RETRIES_ALLOWED

from ratelimit.decorators import ratelimit

retries = RATELIMIT_RETRIES_ALLOWED-1
rate = str(retries)+'/m'
52

Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
53
@csrf_exempt
54
@requires_anonymous
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
55
@ratelimit(field='username', method='POST', rate=rate)
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
56
def login(request, on_failure='im/login.html'):
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
57
    """
58
    on_failure: the template name to render on login failure
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
59
    """
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
60
61
    was_limited = getattr(request, 'limited', False)
    form = LoginForm(data=request.POST, was_limited=was_limited, request=request)
62
    next = get_query(request).get('next', '')
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
63
64
    if not form.is_valid():
        return render_to_response(on_failure,
65
                                  {'login_form':form,
66
                                   'next':next},
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
67
                                  context_instance=RequestContext(request))
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
68
69
    # get the user from the cash
    user = form.user_cache
70
    
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
71
    message = None
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
72
73
74
75
    if not user:
        message = _('Cannot authenticate account')
    elif not user.is_active:
        message = _('Inactive account')
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
76
    if message:
77
        messages.error(request, message)
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
78
        return render_to_response(on_failure,
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
79
                                  {'form':form},
Sofia Papagiannaki's avatar
Sofia Papagiannaki committed
80
                                  context_instance=RequestContext(request))
81
82
    
    return prepare_response(request, user, next)