def get(self, request, member_id, token):
try:
helper = self.get_helper(request, member_id, token)
except OrganizationMember.DoesNotExist:
return self.respond_invalid(request)
if not helper.member_pending or not helper.valid_token:
return self.respond_invalid(request)
om = helper.om
organization = om.organization
# Keep track of the invite email for when we land back on the login page
request.session["invite_email"] = om.email
try:
auth_provider = AuthProvider.objects.get(organization=organization)
except AuthProvider.DoesNotExist:
auth_provider = None
data = {
"orgSlug": organization.slug,
"needsAuthentication": not helper.user_authenticated,
"needs2fa": helper.needs_2fa,
"needsSso": auth_provider is not None,
# If they're already a member of the organization its likely
# they're using a shared account and either previewing this invite
# or are incorrectly expecting this to create a new account.
"existingMember": helper.member_already_exists,
}
response = Response(None)
# Allow users to register an account when accepting an invite
if not helper.user_authenticated:
url = reverse("sentry-accept-invite", args=[member_id, token])
auth.initiate_login(self.request, next_url=url)
request.session["can_register"] = True
# If the org has SSO setup, we'll store the invite cookie to later
# associate the org member after authentication. We can avoid needing
# to come back to the accept invite page since 2FA will *not* be
# required if SSO is required.
if auth_provider is not None:
add_invite_cookie(request, response, member_id, token)
provider = auth_provider.get_provider()
data["ssoProvider"] = provider.name
if helper.needs_2fa:
add_invite_cookie(request, response, member_id, token)
response.data = data
return response
def get(self, request: Request, member_id, token) -> Response:
try:
helper = self.get_helper(request, member_id, token)
except OrganizationMember.DoesNotExist:
return self.respond_invalid(request)
om = helper.om
organization = om.organization
if not helper.member_pending or not helper.valid_token or not om.invite_approved:
return self.respond_invalid(request)
# Keep track of the invite email for when we land back on the login page
request.session["invite_email"] = om.email
try:
auth_provider = AuthProvider.objects.get(organization=organization)
except AuthProvider.DoesNotExist:
auth_provider = None
data = {
"orgSlug": organization.slug,
"needsAuthentication": not helper.user_authenticated,
"needsSso": auth_provider is not None,
"requireSso": auth_provider is not None and not auth_provider.flags.allow_unlinked,
# If they're already a member of the organization its likely
# they're using a shared account and either previewing this invite
# or are incorrectly expecting this to create a new account.
"existingMember": helper.member_already_exists,
}
response = Response(None)
# Allow users to register an account when accepting an invite
if not helper.user_authenticated:
request.session["can_register"] = True
add_invite_cookie(request, response, member_id, token)
# When SSO is required do *not* set a next_url to return to accept
# invite. The invite will be accepted after SSO is completed.
url = (
reverse("sentry-accept-invite", args=[member_id, token])
if not auth_provider
else "/"
)
auth.initiate_login(self.request, next_url=url)
# If the org has SSO setup, we'll store the invite cookie to later
# associate the org member after authentication. We can avoid needing
# to come back to the accept invite page since 2FA will *not* be
# required if SSO is required.
if auth_provider is not None:
add_invite_cookie(request, response, member_id, token)
provider = auth_provider.get_provider()
data["ssoProvider"] = provider.name
onboarding_steps = helper.get_onboarding_steps()
data.update(onboarding_steps)
if any(onboarding_steps.values()):
add_invite_cookie(request, response, member_id, token)
response.data = data
return response