def _inner(request, *args, **kwargs): username, password = get_username_and_password_from_request(request) if not username: return fn(request, *args, **kwargs) user = CouchUser.get_by_username(username) if user and user.is_locked_out(): return json_response({"error": _("maximum password attempts exceeded")}, status_code=401) else: return fn(request, *args, **kwargs)
def _inner(request, *args, **kwargs): username, password = get_username_and_password_from_request(request) if not username: return fn(request, *args, **kwargs) user = CouchUser.get_by_username(username) if user and user.is_locked_out() and user.supports_lockout(): return json_response({"error": _("maximum password attempts exceeded")}, status_code=401) else: return fn(request, *args, **kwargs)
def _inner(request, *args, **kwargs): username, password = get_username_and_password_from_request(request) if not username or username.endswith('.commcarehq.org'): return fn(request, *args, **kwargs) user = CouchUser.get_by_username(username) if user and user.is_web_user() and user.is_locked_out(): return json_response({_("error"): _("maximum password attempts exceeded")}, status_code=401) else: return fn(request, *args, **kwargs)
def get(self, request, *args, **kwargs): self.identifier = kwargs.get('identifier') try: hosted_ccz_link = self.hosted_ccz_link except HostedCCZLink.DoesNotExist: return HttpResponse(status=404) username, password = get_username_and_password_from_request(request) if username and password: if username == hosted_ccz_link.username and verify_password(password, hosted_ccz_link.password): return super(HostedCCZView, self).get(request, *args, **kwargs) # User did not provide an authorization header or gave incorrect credentials. response = HttpResponse(status=401) response['WWW-Authenticate'] = 'Basic realm="%s"' % '' return response
def _inner(request, domain, *args, **kwargs): response = f(request, domain, *args, **kwargs) if response.status_code == 401: auth_type = determine_authtype_from_request(request) if auth_type and auth_type == 'basic': username, password = get_username_and_password_from_request(request) if username: valid, message, error_code = ensure_active_user_by_username(username) if not valid: return json_response({ "error": error_code, "default_response": message }, status_code=406) return response
def _inner(request, domain, *args, **kwargs): response = f(request, domain, *args, **kwargs) if response.status_code == 401: auth_type = determine_authtype_from_request(request) if auth_type and auth_type == 'basic': username, _ = get_username_and_password_from_request(request) if username: valid, message, error_code = ensure_active_user_by_username(username) if not valid: return json_response({ "error": error_code, "default_response": message }, status_code=406) return response