def index(self, came_from='/'):
'''
Redirect user on tequila page in order to log him
'''
if tg.config.get('authentication.disable').lower() in ['t', 'true']:
print constants.admin_user_email()
environ = request.environ
authentication_plugins = environ['repoze.who.plugins']
identifier = authentication_plugins['ticket']
secret = identifier.secret
cookiename = identifier.cookie_name
remote_addr = environ['REMOTE_ADDR']
user = DBSession.query(User).filter(
User.email == constants.admin_user_email()).first()
admins = tg.config.get('admin.mails')
group_admins = DBSession.query(Group).filter(
Group.id == constants.group_admins_id).first()
if user.email in admins:
user not in group_admins.users and group_admins.users.append(
user)
else:
user in group_admins.users and group_admins.users.remove(user)
DBSession.flush()
userdata = "%s|%s" % (user.id, user in group_admins.users)
ticket = auth_tkt.AuthTicket(secret,
user.email,
remote_addr,
tokens=token,
user_data=userdata,
time=None,
cookie_name=cookiename,
secure=True)
val = ticket.cookie_value()
# set it in the cookies
response.set_cookie(cookiename,
value=val,
max_age=None,
path='/',
domain=None,
secure=False,
httponly=False,
comment=None,
expires=None,
overwrite=False)
raise redirect(came_from)
u = resolve_relative_url(url(), request.environ)
res = tequila.create_request(u + '/login/auth', 'tequila.epfl.ch')
raise redirect(
'https://tequila.epfl.ch/cgi-bin/tequila/requestauth?request' +
res)
def index(self, came_from='/'):
'''
Redirect user on tequila page in order to log him
'''
if tg.config.get('authentication.disable').lower() in ['t', 'true']:
print constants.admin_user_email()
environ = request.environ
authentication_plugins = environ['repoze.who.plugins']
identifier = authentication_plugins['ticket']
secret = identifier.secret
cookiename = identifier.cookie_name
remote_addr = environ['REMOTE_ADDR']
user = DBSession.query(User).filter(User.email == constants.admin_user_email()).first()
admins = tg.config.get('admin.mails')
group_admins = DBSession.query(Group).filter(Group.id == constants.group_admins_id).first()
if user.email in admins:
user not in group_admins.users and group_admins.users.append(user)
else:
user in group_admins.users and group_admins.users.remove(user)
DBSession.flush()
userdata = "%s|%s" % (user.id, user in group_admins.users)
ticket = auth_tkt.AuthTicket(
secret, user.email, remote_addr, tokens=token,
user_data=userdata, time=None, cookie_name=cookiename,
secure=True)
val = ticket.cookie_value()
# set it in the cookies
response.set_cookie(
cookiename, value=val, max_age=None, path='/', domain=None, secure=False,
httponly=False, comment=None, expires=None, overwrite=False)
raise redirect(came_from)
u = resolve_relative_url(url(), request.environ)
res = tequila.create_request(u + '/login/auth', 'tequila.epfl.ch')
raise redirect('https://tequila.epfl.ch/cgi-bin/tequila/requestauth?request' + res)
def bootstrap(command, conf, vars):
"""Place any commands to setup turbotequila here.
Note that you will have to log in the application one before launching the bootstrap."""
try:
print '[pygdv] [DATABASE] Adding default groups and permissions'
print '[pygdv] [bootstrap] Adding default groups and permissions'
# ADMIN GROUP
admins = model.Group()
admins.name = constants.groups['admin']['name']
admins.id = constants.groups['admin']['id']
model.DBSession.add(admins)
# USER GROUP
users = model.Group()
users.name = constants.groups['user']['name']
users.id = constants.groups['user']['id']
model.DBSession.add(users)
# ADMIN PERMISSION
perm = model.Permission()
perm.id = constants.permissions['admin']['id']
perm.name = constants.permissions['admin']['name']
perm.description = constants.permissions['admin']['desc']
perm.groups.append(admins)
model.DBSession.add(perm)
# READ PERMISSION
read = model.Permission()
read.id = constants.permissions['read']['id']
read.name = constants.permissions['read']['name']
read.description = constants.permissions['read']['desc']
read.groups.append(users)
model.DBSession.add(read)
# RIGHTS
write = model.Right()
write.id = constants.rights['upload']['id']
write.name = constants.rights['upload']['name']
write.description = constants.rights['upload']['desc']
model.DBSession.add(write)
execute = model.Right()
execute.id = constants.rights['download']['id']
execute.name = constants.rights['download']['name']
execute.description = constants.rights['download']['desc']
model.DBSession.add(execute)
read = model.Right()
read.id = constants.rights['read']['id']
read.name = constants.rights['read']['name']
read.description = constants.rights['read']['desc']
model.DBSession.add(read)
print '[pygdv] [bootstrap] Adding admin user'
u = model.User()
u.id = constants.admin_user['id']
u.name = constants.admin_user['name']
u.firstname = constants.admin_user['firstname']
u.key = constants.admin_user_key()
u.email = constants.admin_user_email()
admins.users.append(u)
users.users.append(u)
model.DBSession.add(u)
model.DBSession.add(users)
model.DBSession.add(admins)
transaction.commit()
except IntegrityError:
print 'Warning, there was a problem adding your auth data, it may have already been added:'
import traceback
print traceback.format_exc()
transaction.abort()
print 'Ending with bootstrapping...'
def bootstrap(command, conf, vars):
"""Place any commands to setup turbotequila here.
Note that you will have to log in the application one before launching the bootstrap."""
try:
print "[pygdv] [DATABASE] Adding default groups and permissions"
print "[pygdv] [bootstrap] Adding default groups and permissions"
# ADMIN GROUP
admins = model.Group()
admins.name = constants.groups["admin"]["name"]
admins.id = constants.groups["admin"]["id"]
model.DBSession.add(admins)
# USER GROUP
users = model.Group()
users.name = constants.groups["user"]["name"]
users.id = constants.groups["user"]["id"]
model.DBSession.add(users)
# ADMIN PERMISSION
perm = model.Permission()
perm.id = constants.permissions["admin"]["id"]
perm.name = constants.permissions["admin"]["name"]
perm.description = constants.permissions["admin"]["desc"]
perm.groups.append(admins)
model.DBSession.add(perm)
# READ PERMISSION
read = model.Permission()
read.id = constants.permissions["read"]["id"]
read.name = constants.permissions["read"]["name"]
read.description = constants.permissions["read"]["desc"]
read.groups.append(users)
model.DBSession.add(read)
# RIGHTS
write = model.Right()
write.id = constants.rights["upload"]["id"]
write.name = constants.rights["upload"]["name"]
write.description = constants.rights["upload"]["desc"]
model.DBSession.add(write)
execute = model.Right()
execute.id = constants.rights["download"]["id"]
execute.name = constants.rights["download"]["name"]
execute.description = constants.rights["download"]["desc"]
model.DBSession.add(execute)
read = model.Right()
read.id = constants.rights["read"]["id"]
read.name = constants.rights["read"]["name"]
read.description = constants.rights["read"]["desc"]
model.DBSession.add(read)
print "[pygdv] [bootstrap] Adding admin user"
u = model.User()
u.id = constants.admin_user["id"]
u.name = constants.admin_user["name"]
u.firstname = constants.admin_user["firstname"]
u.key = constants.admin_user_key()
u.email = constants.admin_user_email()
admins.users.append(u)
users.users.append(u)
model.DBSession.add(u)
model.DBSession.add(users)
model.DBSession.add(admins)
transaction.commit()
except IntegrityError:
print "Warning, there was a problem adding your auth data, it may have already been added:"
import traceback
print traceback.format_exc()
transaction.abort()
print "Ending with bootstrapping..."
