def login(provider):
# after login url
next_page = 'site.index'
# check if provider is valid
providers = OAuthProvider()
if provider not in providers.get_slugs():
abort(404)
# create authomatic and response objects
authomatic = Authomatic(providers.credentials,
app.config['SECRET_KEY'],
report_errors=True)
oauth_response = make_response()
# try login
provider_name = providers.get_name(provider)
adapter = WerkzeugAdapter(request, oauth_response)
result = authomatic.login(adapter, provider_name)
if result:
# flash error message if any
if result.error and app.debug:
session['remember_me'] = False
session['provider'] = None
msg = BeautifulSoup(result.error.message).findAll(text=True)
flash({'type': 'alert', 'text': ' '.join(msg)})
# if success
redir_resp = make_response(redirect(url_for(next_page)))
if result.user:
result.user.update()
# check if api sent email address
if not result.user.email:
msg = '{} is refusing to send us your email address. '
msg += 'Please, try another log in provider.'
flash({'type': 'error', 'text': msg.format(provider_name)})
next_page = 'site.login_options'
# manage user data in db
else:
# convert all emails to lowercase (avoids duplicity in db)
result.user.email = result.user.email.lower()
# if existing user
user = User.query.filter_by(email=result.user.email).first()
if user:
if provider != user.created_with:
return redirect('/login/{}'.format(user.created_with))
user.last_seen = datetime.now()
db.session.add(user)
db.session.commit()
# if new user
else:
now = datetime.now()
roles = Group()
if result.user.email in app.config['ADMIN']:
role = roles.default('admin')
else:
role = roles.default()
new_user = User(email=result.user.email,
name=result.user.name,
created_with=provider,
created_at=now,
last_seen=now,
group=role)
# check if email address is valid
if not new_user.valid_email():
msg = 'The address “{}” provided by {} is not a valid '
msg += 'email. Please, try another log in provider.'
flash({
'type': 'error',
'text': msg.format(new_user.email, provider_name)
})
next_page = 'site.login_options'
# save user to db
else:
db.session.add(new_user)
db.session.commit()
new_query = User.query.filter_by(email=new_user.email)
user = new_query.first()
# login user
if user and user.valid_email():
login_user(user)
flash({
'type': 'success',
'text': 'Welcome, {}'.format(result.user.name)
})
# remember me
remember_me = session.get('remember_me', False)
if remember_me:
session_provider = session.get('provider', False)
if provider == session_provider:
session['remember_me'] = False
session['provider'] = None
user.remember_me_token = user.get_token()
db.session.add(user)
db.session.commit()
max_age = 60 * 60 * 24 * 30
redir_resp.set_cookie('remember_me',
user.get_hash(),
max_age=max_age)
redir_resp.set_cookie('user_id',
str(user.id),
max_age=max_age)
return redir_resp
return oauth_response
def login(provider):
# after login url
next_page = 'site.index'
# check if provider is valid
providers = OAuthProvider()
if provider not in providers.get_slugs():
abort(404)
# create authomatic and response objects
authomatic = Authomatic(providers.credentials,
app.config['SECRET_KEY'],
report_errors=True)
oauth_response = make_response()
# try login
provider_name = providers.get_name(provider)
adapter = WerkzeugAdapter(request, oauth_response)
result = authomatic.login(adapter, provider_name)
if result:
# flash error message if any
if result.error and app.debug:
session['remember_me'] = False
session['provider'] = None
msg = BeautifulSoup(result.error.message).findAll(text=True)
flash({'type': 'alert', 'text': ' '.join(msg)})
# if success
redir_resp = make_response(redirect(url_for(next_page)))
if result.user:
result.user.update()
# check if api sent email address
if not result.user.email:
msg = '{} is refusing to send us your email address. '
msg += 'Please, try another log in provider.'
flash({'type': 'error', 'text': msg.format(provider_name)})
next_page = 'site.login_options'
# manage user data in db
else:
# convert all emails to lowercase (avoids duplicity in db)
result.user.email = result.user.email.lower()
# if existing user
user = User.query.filter_by(email=result.user.email).first()
if user:
if provider != user.created_with:
return redirect('/login/{}'.format(user.created_with))
user.last_seen = datetime.now()
db.session.add(user)
db.session.commit()
# if new user
else:
now = datetime.now()
roles = Group()
if result.user.email in app.config['ADMIN']:
role = roles.default('admin')
else:
role = roles.default()
new_user = User(email=result.user.email,
name=result.user.name,
created_with=provider,
created_at=now,
last_seen=now,
group=role)
# check if email address is valid
if not new_user.valid_email():
msg = 'The address “{}” provided by {} is not a valid '
msg += 'email. Please, try another log in provider.'
flash({'type': 'error',
'text': msg.format(new_user.email,
provider_name)})
next_page = 'site.login_options'
# save user to db
else:
db.session.add(new_user)
db.session.commit()
new_query = User.query.filter_by(email=new_user.email)
user = new_query.first()
# login user
if user and user.valid_email():
login_user(user)
flash({'type': 'success',
'text': 'Welcome, {}'.format(result.user.name)})
# remember me
remember_me = session.get('remember_me', False)
if remember_me:
session_provider = session.get('provider', False)
if provider == session_provider:
session['remember_me'] = False
session['provider'] = None
user.remember_me_token = user.get_token()
db.session.add(user)
db.session.commit()
max_age = 60 * 60 * 24 * 30
redir_resp.set_cookie('remember_me',
user.get_hash(),
max_age=max_age)
redir_resp.set_cookie('user_id',
str(user.id),
max_age=max_age)
return redir_resp
return oauth_response
