Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow only OpenRosa endpoints with not-validated passwords #887

Merged
merged 19 commits into from Aug 30, 2023
Merged

Allow only OpenRosa endpoints with not-validated passwords #887

merged 19 commits into from Aug 30, 2023

Conversation

noliveleger
Copy link
Contributor

@noliveleger noliveleger commented Jul 17, 2023
edited

Description

Superusers can flag accounts as not-validated password (i.e. password which don't respect password security rules).
These users can still collect data only until they reset their password and comply to password rules.

Related issues

Related to kobotoolbox/kpi#4475 and kobotoolbox/kpi#4473
Blocked by #886
Closes #881

@noliveleger noliveleger requested a review from jnm July 17, 2023 15:04
@noliveleger noliveleger mentioned this pull request Jul 18, 2023
Merged
7 tasks
@noliveleger noliveleger closed this Aug 8, 2023
@noliveleger noliveleger deleted the kobotoolbox/kpi#4475-validate-password-flag branch August 8, 2023 14:37
@noliveleger noliveleger restored the kobotoolbox/kpi#4475-validate-password-flag branch August 8, 2023 14:38
@noliveleger noliveleger reopened this Aug 8, 2023
@magicznyleszek magicznyleszek assigned noliveleger and unassigned jnm Aug 8, 2023
@noliveleger noliveleger force-pushed the kobotoolbox/kpi#4475-validate-password-flag branch from 99ac7c5 to c0b2afd Compare August 8, 2023 18:30
@noliveleger noliveleger force-pushed the kobotoolbox/kpi#4475-validate-password-flag branch from a14a6b3 to 8224fd2 Compare August 8, 2023 19:21
@noliveleger noliveleger mentioned this pull request Aug 8, 2023
Merged
jnm
jnm reviewed Aug 29, 2023
View reviewed changes
onadata/koboform/redirect_middleware.py
@@ -41,4 +41,4 @@ def process_view(self, request, view, args, kwargs):
if not is_logged_in and (view_name in REDIRECT_IF_NOT_LOGGED_IN):
return HttpResponseRedirect(login_url)

pass
return
Copy link
Member

@jnm jnm Aug 29, 2023
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@noliveleger not that it's a blocker or anything, but is this explicitly needed for some reason?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

TBH, I really don't remember what I did that 😅 .
No it is absolutely not needed. Python does it for us behind the scene.

onadata/libs/utils/middleware.py
Comment on lines +153 to +157
content_type, *_ = response.accepted_media_type.split(';')
except AttributeError:
pass
else:
*_, format_ = content_type.split('/')
Copy link
Member

@jnm jnm Aug 29, 2023
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I learned something new! 🎓
I think this way of considering only the first accepted_media_type isn't totally kosher, but it's fine for this purpose 👌

Base automatically changed from kobotoolbox/kpi#4475-use-default-storage to kobotoolbox/kpi#4475-shrink-kobocat August 30, 2023 01:57
@jnm jnm merged commit e9078e6 into kobotoolbox/kpi#4475-shrink-kobocat Aug 30, 2023
1 check passed
@jnm jnm deleted the kobotoolbox/kpi#4475-validate-password-flag branch August 30, 2023 01:58
@jnm jnm removed the blocked label Jan 15, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jnm jnm jnm left review comments

@JacquelineMorrissette JacquelineMorrissette JacquelineMorrissette requested changes

Assignees

@noliveleger noliveleger

Labels
api backend
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@noliveleger @jnm @JacquelineMorrissette