jfinn
/
edan_f0
Следить 1
В избранное 0
Форкнуть 0
Код Задачи 0 Pull Request'ы 0 Релизы 0 Вики Активность
Вы не можете выбрать более 25 тем Темы должны начинаться с буквы или цифры, могут содержать дефисы(-) и должны содержать не более 35 символов.
5644 коммитов
1 ветка
Дерево: a20990611b
Ветки Теги
${ item.name }
Создать ветку ${ searchTerm }
из 'a20990611b'
${ noResults }
edan_f0/oscar/apps/customer/auth_backends.py

auth_backends.py 2.2KB
История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657 
  1. from django.contrib.auth.backends import ModelBackend

  2. from django.core.exceptions import ImproperlyConfigured

  3. from oscar.apps.customer.utils import normalise_email

  4. 

  5. from oscar.core.compat import get_user_model

  6. 

  7. User = get_user_model()

  8. 

  9. if hasattr(User, 'REQUIRED_FIELDS'):

  10.     if not (User.USERNAME_FIELD == 'email' or 'email' in User.REQUIRED_FIELDS):

  11.         raise ImproperlyConfigured(

  12.             "EmailBackend: Your User model must have an email"

  13.             " field with blank=False")

  14. 

  15. 

  16. class EmailBackend(ModelBackend):

  17.     """

  18.     Custom auth backend that uses an email address and password

  19. 

  20.     For this to work, the User model must have an 'email' field

  21.     """

  22. 

  23.     def authenticate(self, email=None, password=None, *args, **kwargs):

  24.         if email is None:

  25.             if 'username' not in kwargs or kwargs['username'] is None:

  26.                 return None

  27.             clean_email = normalise_email(kwargs['username'])

  28.         else:

  29.             clean_email = normalise_email(email)

  30. 

  31.         # Check if we're dealing with an email address

  32.         if '@' not in clean_email:

  33.             return None

  34. 

  35.         # Since Django doesn't enforce emails to be unique, we look for all

  36.         # matching users and try to authenticate them all. Note that we

  37.         # intentionally allow multiple users with the same email address

  38.         # (has been a requirement in larger system deployments),

  39.         # we just enforce that they don't share the same password.

  40.         # We make a case-insensitive match when looking for emails.

  41.         matching_users = User.objects.filter(email__iexact=clean_email)

  42.         authenticated_users = [

  43.             user for user in matching_users if user.check_password(password)]

  44.         if len(authenticated_users) == 1:

  45.             # Happy path

  46.             return authenticated_users[0]

  47.         elif len(authenticated_users) > 1:

  48.             # This is the problem scenario where we have multiple users with

  49.             # the same email address AND password. We can't safely authenticate

  50.             # either.

  51.             raise User.MultipleObjectsReturned(

  52.                 "There are multiple users with the given email address and "

  53.                 "password")

  54.         return None

  55. 

  56. # Deprecated in Oscar 0.8: Spelling

  57. Emailbackend = EmailBackend