3 # Copyright (C) 2013 Simo Sorce <simo@redhat.com>
5 # see file 'COPYING' for use and warranty information
7 # This program is free software; you can redistribute it and/or modify
8 # it under the terms of the GNU General Public License as published by
9 # the Free Software Foundation, either version 3 of the License, or
10 # (at your option) any later version.
12 # This program is distributed in the hope that it will be useful,
13 # but WITHOUT ANY WARRANTY; without even the implied warranty of
14 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 # GNU General Public License for more details.
17 # You should have received a copy of the GNU General Public License
18 # along with this program. If not, see <http://www.gnu.org/licenses/>.
20 from ipsilon.util.log import Log
21 from ipsilon.util.page import Page
22 from ipsilon.util.user import UserSession
23 from ipsilon.util.plugin import PluginLoader, PluginObject
24 from ipsilon.util.plugin import PluginInstaller
28 class LoginManagerBase(PluginObject, Log):
31 super(LoginManagerBase, self).__init__()
33 self.next_login = None
35 def redirect_to_path(self, path):
36 base = cherrypy.config.get('base.mount', "")
37 raise cherrypy.HTTPRedirect('%s/login/%s' % (base, path))
39 def auth_successful(self, username, userdata=None):
40 # save ref before calling UserSession login() as it
41 # may regenerate the session
42 session = UserSession()
43 ref = session.get_data('login', 'Return')
45 ref = cherrypy.config.get('base.mount', "") + '/'
47 session.login(username, userdata)
49 raise cherrypy.HTTPRedirect(ref)
51 def auth_failed(self):
52 # try with next module
54 return self.redirect_to_path(self.next_login.path)
56 # return to the caller if any
57 session = UserSession()
58 ref = session.get_data('login', 'Return')
60 # otherwise destroy session and return error
63 raise cherrypy.HTTPError(401)
65 raise cherrypy.HTTPRedirect(ref)
67 def get_tree(self, site):
68 raise NotImplementedError
70 def enable(self, site):
71 plugins = site[FACILITY]
72 if self in plugins['enabled']:
76 if self.name in plugins['config']:
77 self.set_config(plugins['config'][self.name])
79 # and add self to the root
80 root = plugins['root']
81 root.add_subtree(self.name, self.get_tree(site))
83 # finally add self in login chain
85 for prev_obj in plugins['enabled']:
86 if prev_obj.next_login:
89 while prev_obj.next_login:
90 prev_obj = prev_obj.next_login
91 prev_obj.next_login = self
92 if not root.first_login:
93 root.first_login = self
95 plugins['enabled'].append(self)
96 self._debug('Login plugin enabled: %s' % self.name)
98 def disable(self, site):
99 plugins = site[FACILITY]
100 if self not in plugins['enabled']:
103 # remove self from chain
104 root = plugins['root']
105 if root.first_login == self:
106 root.first_login = self.next_login
107 elif root.first_login:
108 prev_obj = root.first_login
109 while prev_obj.next_login != self:
110 prev_obj = prev_obj.next_login
112 prev_obj.next_login = self.next_login
113 self.next_login = None
115 plugins['enabled'].remove(self)
116 self._debug('Login plugin disabled: %s' % self.name)
119 class LoginPageBase(Page):
121 def __init__(self, site, mgr):
122 super(LoginPageBase, self).__init__(site)
125 def root(self, *args, **kwargs):
126 raise cherrypy.HTTPError(500)
129 FACILITY = 'login_config'
134 def __init__(self, *args, **kwargs):
135 super(Login, self).__init__(*args, **kwargs)
136 self.first_login = None
138 loader = PluginLoader(Login, FACILITY, 'LoginManager')
139 self._site[FACILITY] = loader.get_plugin_data()
140 plugins = self._site[FACILITY]
142 available = plugins['available'].keys()
143 self._debug('Available login managers: %s' % str(available))
145 plugins['root'] = self
146 for item in plugins['whitelist']:
147 self._debug('Login plugin in whitelist: %s' % item)
148 if item not in plugins['available']:
150 plugins['available'][item].enable(self._site)
152 def add_subtree(self, name, page):
153 self.__dict__[name] = page
155 def root(self, *args, **kwargs):
157 raise cherrypy.HTTPRedirect('%s/login/%s' %
159 self.first_login.path))
160 return self._template('login/index.html', title='Login')
165 def root(self, *args, **kwargs):
166 UserSession().logout(self.user)
167 return self._template('logout.html', title='Logout')
170 class LoginMgrsInstall(object):
173 pi = PluginInstaller(LoginMgrsInstall)
174 self.plugins = pi.get_plugins()