def add_environment(self, data, req_info, curs=None):
env_data = {'name': data.get('name')}
env = Environment(**env_data)
try:
mapping.save(curs, env)
except ObjectCreationError:
raise HelixauthObjectAlreadyExists('Environment %s already exists' % env.name)
# creating user
a = Authenticator()
salt = a.salt()
u_data = {'environment_id': env.id, 'email': data.get('su_email'),
'password': a.encrypt_password(data.get('su_password'), salt),
'salt': salt, 'role': User.ROLE_SUPER,
'lang': User.DEFAULT_LANG}
user = User(**u_data)
mapping.save(curs, user)
# creating default services and groups
self._create_default_objects(req_info, curs, env)
# creating session for super user
auth = Authenticator()
session = auth.create_session(curs, env, user, req_info)
_add_log_info(data, session)
return response_ok(session_id=session.session_id,
environment_id=env.id, user_id=session.user_id)
def register_user(self, data, req_info, curs=None):
env_name = data.get('environment_name')
env_f = EnvironmentFilter({'name': env_name}, {}, None)
env = env_f.filter_one_obj(curs)
# creating user
a = Authenticator()
salt = a.salt()
lang = data.get('lang', User.DEFAULT_LANG)
u_data = {'environment_id': env.id, 'email': data.get('email'),
'password': a.encrypt_password(data.get('password'), salt),
'salt': salt, 'role': User.ROLE_USER,
'lang': lang}
group_f = GroupFilter(env.id, {'is_default': True}, {}, None)
groups = group_f.filter_objs(curs)
groups_ids = [g.id for g in groups]
u_data['groups_ids'] = groups_ids
user = User(**u_data)
# For correct action logging
data['environment_id'] = env.id
try:
mapping.save(curs, user)
except ObjectCreationError:
raise UserAlreadyExists
auth = Authenticator()
session = auth.create_session(curs, env, user, req_info)
_add_log_info(data, session)
n = Notifier()
n_process = n.register_user(curs, user, session)
return response_ok(session_id=session.session_id, id=user.id,
notification=n_process)
def login(self, data, req_info, curs=None):
f = EnvironmentFilter(data, {}, None)
env = f.filter_one_obj(curs)
# Required for proper logging action
data['environment_id'] = env.id
f_params = {'environment_id': env.id, 'email': data.get('email')}
f = SubjectUserFilter(env.id, f_params, {}, None)
try:
user = f.filter_one_obj(curs)
except UserNotFound:
raise UserAuthError
if not user.is_active:
raise UserInactive()
# checking password
auth = Authenticator()
enc_p = auth.encrypt_password(data.get('password'), user.salt)
if enc_p != user.password:
raise UserAuthError
# creating session
bind_to_ip = data.get('bind_to_ip', False)
lt_minutes = data.get('fixed_lifetime_minutes')
session = auth.create_session(curs, env, user, req_info,
bind_to_ip=bind_to_ip, lifetime_minutes=lt_minutes)
_add_log_info(data, session)
return response_ok(session_id=session.session_id,
user_id=session.user_id, environment_id=session.environment_id)
