-
Notifications
You must be signed in to change notification settings - Fork 153
/
views.py
300 lines (252 loc) · 10.2 KB
/
views.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
"""
Created on 22.09.2009
@author: alen
"""
import uuid
from oauth import oauth
from django.conf import settings
from django.template import RequestContext
from django.core.urlresolvers import reverse
from django.shortcuts import render_to_response
from django.utils.translation import gettext as _
from django.utils.hashcompat import md5_constructor
from django.http import HttpResponseRedirect, HttpResponse
from django.contrib.auth.models import User
from django.contrib.auth import login, authenticate, logout as auth_logout
from django.contrib.sites.models import Site
from socialregistration.forms import UserForm
from socialregistration.utils import (OAuthClient, OAuthTwitter, OAuthFriendFeed,
OpenID)
from socialregistration.models import FacebookProfile, TwitterProfile, OpenIDProfile
FB_ERROR = _('We couldn\'t validate your Facebook credentials')
def _get_next(request):
"""
Returns a url to redirect to after the login
"""
if 'next' in request.session:
next = request.session['next']
del request.session['next']
return next
elif 'next' in request.GET:
return request.GET.get('next')
elif 'next' in request.POST:
return request.POST.get('next')
else:
return getattr(settings, 'LOGIN_REDIRECT_URL', '/')
def setup(request, template='socialregistration/setup.html',
form_class=UserForm, extra_context=dict()):
"""
Setup view to create a username & set email address after authentication
"""
if not getattr(settings, 'SOCIAL_GENERATE_USERNAME', False):
# User can pick own username
if not request.method == "POST":
form = form_class(
request.session['socialregistration_user'],
request.session['socialregistration_profile'],
)
else:
form = form_class(
request.session['socialregistration_user'],
request.session['socialregistration_profile'],
request.POST
)
if form.is_valid():
form.save()
user = form.profile.authenticate()
login(request, user)
del request.session['socialregistration_user']
del request.session['socialregistration_profile']
return HttpResponseRedirect(_get_next(request))
extra_context.update(dict(form=form))
return render_to_response(
template,
extra_context,
context_instance=RequestContext(request)
)
else:
# Generate user and profile
user = request.session['socialregistration_user']
user.username = str(uuid.uuid4())[:30]
user.save()
profile = request.session['socialregistration_profile']
profile.user = user
profile.save()
# Authenticate and login
user = profile.authenticate()
login(request, user)
# Clear & Redirect
del request.session['socialregistration_user']
del request.session['socialregistration_profile']
return HttpResponseRedirect(_get_next(request))
def facebook_login(request, template='socialregistration/facebook.html',
extra_context=dict(), account_inactive_template='socialregistration/account_inactive.html'):
"""
View to handle the Facebook login
"""
if not request.facebook.check_session(request):
extra_context.update(
dict(error=FB_ERROR)
)
return render_to_response(
template, extra_context, context_instance=RequestContext(request)
)
user = authenticate(uid=request.facebook.uid)
if user is None:
request.session['socialregistration_user'] = User()
fb_profile = request.facebook.users.getInfo([request.facebook.uid], ['name', 'pic_square'])[0]
request.session['socialregistration_profile'] = FacebookProfile(
uid=request.facebook.uid,
)
request.session['next'] = _get_next(request)
return HttpResponseRedirect(reverse('socialregistration_setup'))
if not user.is_active:
return render_to_response(
account_inactive_template,
extra_context,
context_instance=RequestContext(request)
)
login(request, user)
return HttpResponseRedirect(_get_next(request))
def facebook_connect(request, template='socialregistration/facebook.html',
extra_context=dict()):
"""
View to handle connecting existing accounts with facebook
"""
if not request.facebook.check_session(request) \
or not request.user.is_authenticated():
extra_context.update(
dict(error=FB_ERROR)
)
return render_to_response(
template,
extra_context,
context_instance=RequestContext(request)
)
profile, created = FacebookProfile.objects.get_or_create(
user=request.user, uid=request.facebook.uid
)
return HttpResponseRedirect(_get_next(request))
def logout(request, redirect_url=None):
"""
Logs the user out of django. This is only a wrapper around
django.contrib.auth.logout. Logging users out of Facebook for instance
should be done like described in the developer wiki on facebook.
http://wiki.developers.facebook.com/index.php/Connect/Authorization_Websites#Logging_Out_Users
"""
auth_logout(request)
url = redirect_url or getattr(settings, 'LOGOUT_REDIRECT_URL', '/')
return HttpResponseRedirect(url)
def twitter(request, account_inactive_template='socialregistration/account_inactive.html',
extra_context=dict()):
"""
Actually setup/login an account relating to a twitter user after the oauth
process is finished successfully
"""
client = OAuthTwitter(
request, settings.TWITTER_CONSUMER_KEY,
settings.TWITTER_CONSUMER_SECRET_KEY,
settings.TWITTER_REQUEST_TOKEN_URL,
)
user_info = client.get_user_info()
if request.user.is_authenticated():
profile, created = TwitterProfile.objects.get_or_create(user=request.user, twitter_id=user_info['id'])
return HttpResponseRedirect(_get_next(request))
user = authenticate(twitter_id=user_info['id'])
if user is None:
profile = TwitterProfile(twitter_id=user_info['id'])
user = User()
request.session['socialregistration_profile'] = profile
request.session['socialregistration_user'] = user
request.session['next'] = _get_next(request)
return HttpResponseRedirect(reverse('socialregistration_setup'))
if not user.is_active:
return render_to_response(
account_inactive_template,
extra_context,
context_instance=RequestContext(request)
)
login(request, user)
return HttpResponseRedirect(_get_next(request))
def friendfeed(request):
"""
Actually setup an account relating to a friendfeed user after the oauth process
is finished successfully
"""
raise NotImplementedError()
def oauth_redirect(request, consumer_key=None, secret_key=None,
request_token_url=None, access_token_url=None, authorization_url=None,
callback_url=None, parameters=None):
"""
View to handle the OAuth based authentication redirect to the service provider
"""
request.session['next'] = _get_next(request)
client = OAuthClient(request, consumer_key, secret_key,
request_token_url, access_token_url, authorization_url, callback_url, parameters)
return client.get_redirect()
def oauth_callback(request, consumer_key=None, secret_key=None,
request_token_url=None, access_token_url=None, authorization_url=None,
callback_url=None, template='socialregistration/oauthcallback.html',
extra_context=dict(), parameters=None):
"""
View to handle final steps of OAuth based authentication where the user
gets redirected back to from the service provider
"""
client = OAuthClient(request, consumer_key, secret_key, request_token_url,
access_token_url, authorization_url, callback_url, parameters)
extra_context.update(dict(oauth_client=client))
if not client.is_valid():
return render_to_response(
template, extra_context, context_instance=RequestContext(request)
)
# We're redirecting to the setup view for this oauth service
return HttpResponseRedirect(reverse(client.callback_url))
def openid_redirect(request):
"""
Redirect the user to the openid provider
"""
request.session['next'] = _get_next(request)
request.session['openid_provider'] = request.GET.get('openid_provider')
client = OpenID(
request,
'http://%s%s' % (
Site.objects.get_current().domain,
reverse('openid_callback')
),
request.GET.get('openid_provider')
)
return client.get_redirect()
def openid_callback(request, template='socialregistration/openid.html',
extra_context=dict(), account_inactive_template='socialregistration/account_inactive.html'):
"""
Catches the user when he's redirected back from the provider to our site
"""
client = OpenID(
request,
'http://%s%s' % (
Site.objects.get_current().domain,
reverse('openid_callback')
),
request.session.get('openid_provider')
)
if client.is_valid():
user = authenticate(identity=request.GET.get('openid.claimed_id'))
if user is None:
request.session['socialregistration_user'] = User()
request.session['socialregistration_profile'] = OpenIDProfile(
identity=request.GET.get('openid.claimed_id')
)
return HttpResponseRedirect(reverse('socialregistration_setup'))
if not user.is_active:
return render_to_response(
account_inactive_template,
extra_context,
context_instance=RequestContext(request)
)
login(request, user)
return HttpResponseRedirect(_get_next(request))
return render_to_response(
template,
dict(),
context_instance=RequestContext(request)
)