def authenticate(self, request): a = ILoginPassword(request, None) if a is not None: login = a.getLogin() if login is not None: p = self.__principalsByLogin.get(login, None) if p is not None: password = a.getPassword() if p.validate(password): return p return None
def authenticate(self, request): a = ILoginPassword(request, None) if a is not None: login = a.getLogin() if login is not None: # The login will be in bytes, but the registry stores them # using strings. p = self.__principalsByLogin.get(login.decode(), None) if p is not None: password = a.getPassword() if p.validate(password): return p return None
def authenticate(self, request): """Identify a principal for request. Retrieves the username and password from the session. """ session = ISession(request)[self.session_name] if 'username' in session and 'password' in session: if self._checkHashedPassword(session['username'], session['password']): self.restorePOSTData(request) return self.getPrincipal('sb.person.' + session['username']) # Try HTTP basic too creds = ILoginPassword(request, None) if creds: login = creds.getLogin() if self._checkPlainTextPassword(login, creds.getPassword()): return self.getPrincipal('sb.person.' + login)