##############################################################################
#
# Copyright (c) 2001 Zope Corporation and Contributors. All Rights
# Reserved.
#
# This software is subject to the provisions of the Zope Public License,
# Version 2.1 (ZPL). A copy of the ZPL should accompany this
# distribution.
# THIS SOFTWARE IS PROVIDED "AS IS" AND ANY AND ALL EXPRESS OR IMPLIED
# WARRANTIES ARE DISCLAIMED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
# WARRANTIES OF TITLE, MERCHANTABILITY, AGAINST INFRINGEMENT, AND FITNESS
# FOR A PARTICULAR PURPOSE.
#
##############################################################################
""" Class: CookieAuthHelper
$Id: InlineAuthHelper.py 40169 2005-11-16 20:09:11Z tseaver $
"""
from base64 import encodestring, decodestring
from urllib import quote
from AccessControl.SecurityInfo import ClassSecurityInfo
from OFS.Folder import Folder
from App.class_init import default__class_init__ as InitializeClass
from Products.PageTemplates.PageTemplateFile import PageTemplateFile
from Products.PageTemplates.ZopePageTemplate import manage_addPageTemplate
from Products.PluggableAuthService.interfaces.plugins import \
ILoginPasswordHostExtractionPlugin
from Products.PluggableAuthService.interfaces.plugins import \
IChallengePlugin
from Products.PluggableAuthService.interfaces.plugins import \
ICredentialsUpdatePlugin
from Products.PluggableAuthService.interfaces.plugins import \
ICredentialsResetPlugin
from Products.PluggableAuthService.plugins.BasePlugin import BasePlugin
from Products.PluggableAuthService.utils import classImplements
from Products.PluggableAuthService.utils import Interface
class IInlineAuthHelper(Interface):
""" Marker interface.
"""
manage_addInlineAuthHelperForm = PageTemplateFile(
'www/iaAdd', globals(), __name__='manage_addInlineAuthHelperForm')
def addInlineAuthHelper( dispatcher
, id
, title=None
, REQUEST=None
):
""" Add an Inline Auth Helper to a Pluggable Auth Service. """
iah = InlineAuthHelper(id, title)
dispatcher._setObject(iah.getId(), iah)
if REQUEST is not None:
REQUEST['RESPONSE'].redirect( '%s/manage_workspace'
'?manage_tabs_message='
'InlineAuthHelper+added.'
% dispatcher.absolute_url() )
class InlineAuthHelper(Folder, BasePlugin):
""" Multi-plugin for managing details of Inline Authentication. """
meta_type = 'Inline Auth Helper'
security = ClassSecurityInfo()
_properties = ( { 'id' : 'title'
, 'label' : 'Title'
, 'type' : 'string'
, 'mode' : 'w'
},
)
manage_options = ( BasePlugin.manage_options[:1]
+ Folder.manage_options[:1]
+ Folder.manage_options[2:]
)
def __init__(self, id, title=None):
self.id = self._id = id
self.title = title
self.body = BASIC_LOGIN_FORM
security.declarePrivate('extractCredentials')
def extractCredentials(self, request):
""" Extract credentials from cookie or 'request'. """
creds = {}
# Look in the request for the names coming from the login form
login = request.get('__ac_name', '')
password = request.get('__ac_password', '')
if login:
creds['login'] = login
creds['password'] = password
if creds:
creds['remote_host'] = request.get('REMOTE_HOST', '')
try:
creds['remote_address'] = request.getClientAddr()
except AttributeError:
creds['remote_address'] = request.get('REMOTE_ADDR', '')
return creds
security.declarePrivate('challenge')
def challenge(self, request, response, **kw):
""" Challenge the user for credentials. """
response.setStatus('200')
response.setBody(self.body)
# Keep HTTPResponse.exception() from further writing on the
# response body, without using HTTPResponse.write()
response._locked_status = True
response.setBody = self._setBody # Keep response.exception
return True
# Methods to override on response
def _setBody(self, body, *args, **kw):
pass
classImplements( InlineAuthHelper
, IInlineAuthHelper
, ILoginPasswordHostExtractionPlugin
, IChallengePlugin
)
InitializeClass(InlineAuthHelper)
BASIC_LOGIN_FORM = """
Login Form
Please log in
"""