def setUp(self): self.user = get_user_model().objects.create_user( username='******', email='luke@...', password='******' ) self.factory = RequestFactory() self.adapter = get_adapter() now = timezone.now() self.authlink = AuthLink.objects.create( user = self.user, ipaddress = '177.139.233.133', created = now, expires = now + datetime.timedelta(seconds=settings.AUTHLINK_TTL_SECONDS), url = '/some/url' )
def setUp(self): self.user = get_user_model().objects.create_user(username="******", email="luke@...", password="******") self.factory = RequestFactory() self.adapter = get_adapter() now = timezone.now() self.authlink = AuthLink.objects.create( user=self.user, ipaddress="177.139.233.133", created=now, expires=now + datetime.timedelta(seconds=settings.AUTHLINK_TTL_SECONDS), url="/some/url", )
from authlink.adapter import get_adapter from django.contrib.auth import BACKEND_SESSION_KEY from django.core.exceptions import ImproperlyConfigured adapter = get_adapter() class AuthLinkWhitelistMiddleware(object): """ Only allow access to whitelisted URLs for sessions that are established using the authlink authentication mechanism. Note: if you want the user to be able to access everything then don't use this middleware! """ def __init__(self, get_response): self.get_response = get_response def __call__(self, request): if not hasattr(request, 'session'): raise ImproperlyConfigured( 'Please ensure you place AuthLinkWhitelistMiddleware ' \ 'middleware after your session middlware.' ) backend = request.session.get(BACKEND_SESSION_KEY) if backend and backend == 'authlink.auth_backends.AuthLinkBackend': if not adapter.in_url_whitelist(request.path): return adapter.get_whitelist_failure_response(request) return self.get_response(request)
def test_get_adapter_configurable(self): adapter = get_adapter() self.assertEqual(TestAdapter, adapter.__class__)
from django.contrib.auth import BACKEND_SESSION_KEY from django.core.exceptions import ImproperlyConfigured from authlink.adapter import get_adapter adapter = get_adapter() class AuthLinkWhitelistMiddleware(object): """ Only allow access to whitelisted URLs for sessions that are established using the authlink authentication mechanism. Note: if you want the user to be able to access everything then don't use this middleware! """ def __init__(self, get_response): self.get_response = get_response def __call__(self, request): if not hasattr(request, "session"): raise ImproperlyConfigured( "Please ensure you place AuthLinkWhitelistMiddleware " "middleware after your session middlware.") backend = request.session.get(BACKEND_SESSION_KEY) if backend and backend == "authlink.auth_backends.AuthLinkBackend": if not adapter.in_url_whitelist(request.path): return adapter.get_whitelist_failure_response(request) return self.get_response(request)