def _inner(request, *args, **kwargs):
username, password = get_username_and_password_from_request(request)
if not username:
return fn(request, *args, **kwargs)
user = CouchUser.get_by_username(username)
if user and user.is_locked_out():
return json_response({"error": _("maximum password attempts exceeded")}, status_code=401)
else:
return fn(request, *args, **kwargs)
def _inner(request, *args, **kwargs):
username, password = get_username_and_password_from_request(request)
if not username:
return fn(request, *args, **kwargs)
user = CouchUser.get_by_username(username)
if user and user.is_locked_out() and user.supports_lockout():
return json_response({"error": _("maximum password attempts exceeded")}, status_code=401)
else:
return fn(request, *args, **kwargs)
def _inner(request, *args, **kwargs):
username, password = get_username_and_password_from_request(request)
if not username or username.endswith('.commcarehq.org'):
return fn(request, *args, **kwargs)
user = CouchUser.get_by_username(username)
if user and user.is_web_user() and user.is_locked_out():
return json_response({_("error"): _("maximum password attempts exceeded")}, status_code=401)
else:
return fn(request, *args, **kwargs)
def get(self, request, *args, **kwargs):
self.identifier = kwargs.get('identifier')
try:
hosted_ccz_link = self.hosted_ccz_link
except HostedCCZLink.DoesNotExist:
return HttpResponse(status=404)
username, password = get_username_and_password_from_request(request)
if username and password:
if username == hosted_ccz_link.username and verify_password(password, hosted_ccz_link.password):
return super(HostedCCZView, self).get(request, *args, **kwargs)
# User did not provide an authorization header or gave incorrect credentials.
response = HttpResponse(status=401)
response['WWW-Authenticate'] = 'Basic realm="%s"' % ''
return response
def _inner(request, domain, *args, **kwargs):
response = f(request, domain, *args, **kwargs)
if response.status_code == 401:
auth_type = determine_authtype_from_request(request)
if auth_type and auth_type == 'basic':
username, password = get_username_and_password_from_request(request)
if username:
valid, message, error_code = ensure_active_user_by_username(username)
if not valid:
return json_response({
"error": error_code,
"default_response": message
}, status_code=406)
return response
def _inner(request, domain, *args, **kwargs):
response = f(request, domain, *args, **kwargs)
if response.status_code == 401:
auth_type = determine_authtype_from_request(request)
if auth_type and auth_type == 'basic':
username, _ = get_username_and_password_from_request(request)
if username:
valid, message, error_code = ensure_active_user_by_username(username)
if not valid:
return json_response({
"error": error_code,
"default_response": message
}, status_code=406)
return response
