def registrant_confirm(request, regist_callback_me):
print request.REQUEST
user = request.user
registrant_redirect_token = request_get(request.REQUEST, url_keys.regist_redirect_token)
registrant_grant_user_token = request_get(request.REQUEST, url_keys.regist_grant_user_token)
regist_type = request_get(request.REQUEST, url_keys.regist_type)
if (check_compulsory((regist_type, registrant_redirect_token, registrant_grant_user_token))) == False:
return error_response(5, ())
if (check_choice(REGIST_TYPE, regist_type)) == False:
return error_response(2, (url_keys.regist_type, regist_type))
try:
registration = Registration.objects.get(registrant_redirect_token=registrant_redirect_token, registrant_grant_user_token=registrant_grant_user_token)
#if registration.regist_status >= find_key_by_value_regist_status(REGIST_STATUS['registrant_confirm']): # TODO: whether it is > or >=
# return error_response(7, (url_keys.regist_grant_user_token, registrant_grant_user_token))
except ObjectDoesNotExist:
return error_response(5, ())
if registration.user != user:
return error_response(6, ())
regist_status_key = find_key_by_value_regist_status(REGIST_STATUS['registrant_confirm'])
registration.regist_status = regist_status_key
registration.save()
##
if registration.registrant_access_token == None or registration.registrant_access_token == '':
registrant_access_token = dwlib.token_create_user(registration.register_callback, regist_callback_me, TOKEN_TYPE['access'], user)
registration.registrant_access_token = registrant_access_token
registration.save()
if registration.registrant_access_validate == None or registration.registrant_access_validate == '':
registrant_access_validate = registration.register_request_scope #TODO need to expand here, enable to edit here
registration.registrant_access_validate = registrant_access_validate
registration.save()
##
params = {
url_keys.regist_status: REGIST_STATUS['finish'], #if mutual, it can come to register,etc???
url_keys.regist_type: regist_type,
url_keys.regist_callback: regist_callback_me,
url_keys.registrant_access_token:registration.registrant_access_token,
url_keys.registrant_access_validate: registration.registrant_access_validate,
url_keys.register_access_token: registration.register_access_token,
}
url_params = dwlib.urlencode(params)
url = '%s?%s'%(registration.register_callback, url_params)
##
c = get_context_base_regist()
c['register_callback']['value'] = registration.register_callback
c['register_request_token']['value'] = registration.register_request_token
c['register_request_scope']['value'] = registration.register_request_scope
c['register_request_reminder']['value'] = registration.register_request_reminder
c['register_request_user_public']['value'] = registration.register_request_user_public
c['registrant_access_token']['value'] = registration.registrant_access_token
c['registrant_access_validate']['value'] = registration.registrant_access_validate
c['regist_status']['value'] = REGIST_STATUS['finish']
c['regist_status_current']['value'] = REGIST_STATUS['registrant_confirm']
c['regist_redirect_url']['value'] = url
c['regist_type']['value'] = regist_type
context = RequestContext(request, c)
return render_to_response("regist_confirm.html", context) #TODO how user can change their scope, and reminder, and user public information here.
def registrant_owner_grant(request, regist_callback_me):
user = request.user
regist_type = request_get(request.REQUEST, url_keys.regist_type)
registrant_redirect_token = request_get(request.REQUEST, url_keys.regist_redirect_token)
if (check_compulsory((regist_type, registrant_redirect_token))) == False:
return error_response(5, ())
if (check_choice(REGIST_TYPE, regist_type)) == False:
return error_response(2, (url_keys.regist_type, regist_type))
##
try:
registration = Registration.objects.get(registrant_redirect_token=registrant_redirect_token)
if registration.regist_status >= find_key_by_value_regist_status(REGIST_STATUS['registrant_confirm']): # if this token is too old
return error_response(7, (url_keys.registrant_request_token, registrant_request_token))
except ObjectDoesNotExist:
return error_response(3, (url_keys.register_redirect_token, register_redirect_token))
if registration.user != user:
return error_response(6, ())
regist_status_key = find_key_by_value_regist_status(REGIST_STATUS['registrant_owner_grant'])
registration.regist_status = regist_status_key
registration.save()
##
if registration.registrant_grant_user_token == None or registration.registrant_grant_user_token == '':
registrant_grant_user_token = dwlib.token_create_user(registration.register_callback, regist_callback_me, TOKEN_TYPE['grant'], user)
registration.registrant_grant_user_token = registrant_grant_user_token
registration.save()
##
params = {
url_keys.regist_status: REGIST_STATUS['registrant_confirm'],
url_keys.regist_type: regist_type,
url_keys.regist_redirect_token:registrant_redirect_token,
url_keys.regist_grant_user_token: registration.registrant_grant_user_token,
}
url_params = dwlib.urlencode(params)
url = '%s?%s'%(regist_callback_me, url_params)
print url
##
c = get_context_base_regist()
c['regist_callback']['value'] = registration.register_callback
c['regist_request_token']['value'] = registration.register_request_token
c['regist_request_scope']['value'] = registration.register_request_scope
c['regist_request_reminder']['value'] = registration.register_request_reminder
c['regist_request_user_public']['value'] = registration.register_request_user_public
c['regist_status']['value'] = REGIST_STATUS['registrant_confirm']
c['regist_status_current']['value'] = REGIST_STATUS['registrant_owner_grant']
c['regist_redirect_token']['value'] = registrant_redirect_token
c['regist_grant_user_token']['value'] = registration.registrant_grant_user_token
c['regist_redirect_url']['value'] = url
c['regist_type']['value'] = regist_type
context = RequestContext(request, c)
return render_to_response("regist_owner_grant.html", context)
def registrant_request(request, regist_callback_me):
user = request.user # user has to login, so that it would reduce the man-in-the middle attack, only logined user can make request, it will reduce unknown attack. We can also write code to limit the frequency of user to request, so that we can provide a health API over there.
register_callback = request_get(request.REQUEST, url_keys.regist_callback)
regist_type = request_get(request.REQUEST, url_keys.regist_type)
registrant_request_scope = request_get(request.REQUEST, url_keys.registrant_request_scope)
registrant_request_reminder = request_get(request.REQUEST, url_keys.registrant_request_reminder)
registrant_request_user_public = request_get(request.REQUEST, url_keys.registrant_request_user_public)
if (check_compulsory((register_callback, regist_type, registrant_request_scope, registrant_request_reminder))) == False:
return error_response(5, ())
if (check_choice(REGIST_TYPE, regist_type)) == False:
return error_response(2, (url_keys.regist_type, regist_type))
##
registrant_request_token = dwlib.token_create_user(register_callback, regist_callback_me, TOKEN_TYPE['request'], user)
##
regist_type_key = find_key_by_value_regist_type(regist_type) ##what happened if not correct here?
regist_status_key = find_key_by_value_regist_status(REGIST_STATUS['registrant_request'])
obj, created = Registration.objects.get_or_create(
regist_type=regist_type_key,
regist_status=regist_status_key,
registrant_request_token=registrant_request_token,
registrant_request_scope=registrant_request_scope,
registrant_callback=regist_callback_me,
register_callback=register_callback,
registrant_request_reminder=registrant_request_reminder,
registrant_request_user_public=registrant_request_user_public,
user=user)
## #how to check whether a request token is in the working status, you can check whehter regist_status >= register_owner_redirect, better to set up cron to do it
params = {
url_keys.regist_status: REGIST_STATUS['register_owner_redirect'], #
url_keys.regist_type: regist_type,
url_keys.regist_callback: regist_callback_me,
url_keys.registrant_request_token: registrant_request_token,
url_keys.registrant_request_scope: registrant_request_scope,
url_keys.registrant_request_reminder: registrant_request_reminder,
url_keys.registrant_request_user_public: registrant_request_user_public,
}
url_params = dwlib.urlencode(params)
url = '%s?%s'%(register_callback, url_params)
##
c = get_context_base_regist()
c['regist_redirect_url']['value'] = url
c['regist_status']['value'] = REGIST_STATUS['register_owner_redirect']
c['regist_status_current']['value'] = REGIST_STATUS['registrant_request']
c['regist_type']['value'] = regist_type
context = RequestContext(request, c)
return render_to_response('registrant_request.html', context)
def registrant_owner_redirect_one_way(request, regist_callback_me):
user = request.user
regist_type = request_get(request.REQUEST, url_keys.regist_type)
registrant_request_token = request_get(request.REQUEST, url_keys.registrant_request_token)
register_access_token = request_get(request.REQUEST, url_keys.register_access_token)
register_access_validate = request_get(request.REQUEST, url_keys.register_access_validate)
if (check_compulsory((regist_type, registrant_request_token, register_access_token, register_access_validate))) == False:
return error_response(5, ())
if (check_choice(REGIST_TYPE, regist_type)) == False:
return error_response(2, (url_keys.regist_type, regist_type))
try:
registration = Registration.objects.get(registrant_request_token=registrant_request_token)
if registration.regist_status >= find_key_by_value_regist_status(REGIST_STATUS['registrant_confirm']): # if this token is too old
return error_response(7, (url_keys.registrant_request_token, registrant_request_token))
except ObjectDoesNotExist:
return error_response(3, (url_keys.registrant_request_token, registrant_request_token))
if registration.user != user:
return error_response(6, ())
##
if registration.registrant_redirect_token == None or registration.registrant_redirect_token == '':
registrant_redirect_token = dwlib.token_create(registration.registrant_callback, regist_callback_me, TOKEN_TYPE['redirect'])
registration.registrant_redirect_token = registrant_redirect_token
registration.save()
if registration.registrant_grant_user_token == None or registration.registrant_grant_user_token == '':
registrant_grant_user_token = dwlib.token_create_user(registration.register_callback, regist_callback_me, TOKEN_TYPE['grant'], user)
registration.registrant_grant_user_token = registrant_grant_user_token
registration.save()
##
regist_type_key = find_key_by_value_regist_type(regist_type)
regist_status_key = find_key_by_value_regist_status(REGIST_STATUS['registrant_owner_redirect'])
registration.regist_status=regist_status_key
registration.save()
##
params = {
url_keys.regist_status: REGIST_STATUS['registrant_confirm'],
url_keys.regist_type: regist_type,
url_keys.regist_redirect_token:registration.registrant_redirect_token,
url_keys.regist_grant_user_token:registration.registrant_grant_user_token,
}
url_params = dwlib.urlencode(params)
url = '%s?%s'%(regist_callback_me, url_params)
##
return HttpResponseRedirect(url)
def register_grant(request, regist_callback_me):
user = request.user
register_redirect_token = request_get(request.REQUEST, url_keys.regist_redirect_token)
register_grant_user_token = request_get(request.REQUEST, url_keys.regist_grant_user_token)
regist_type = request_get(request.REQUEST, url_keys.regist_type)
if (check_compulsory((regist_type, register_redirect_token, register_grant_user_token))) == False:
return error_response(5, ())
if (check_choice(REGIST_TYPE, regist_type)) == False:
return error_response(2, (url_keys.regist_type, regist_type))
##
try:
registration = Registration.objects.get(register_redirect_token=register_redirect_token, register_grant_user_token=register_grant_user_token)
if registration.regist_status >= find_key_by_value_regist_status(REGIST_STATUS['register_grant']): # if this token is too old
return error_response(7, (url_keys.regist_grant_user_token, register_grant_user_token))
except ObjectDoesNotExist:
return error_response(5, ())
if registration.user != user:
return error_response(6, ())
regist_status_key = find_key_by_value_regist_status(REGIST_STATUS['register_grant'])
registration.regist_status = regist_status_key
registration.save()
##
if registration.register_access_token == None or registration.register_access_token == '':
register_access_token = dwlib.token_create_user(registration.registrant_callback, regist_callback_me, TOKEN_TYPE['access'], user)
registration.register_access_token = register_access_token
registration.save()
if registration.register_access_validate == None or registration.register_access_validate == '':
register_access_validate = registration.registrant_request_scope #TODO need to expand here, enable to edit here
registration.register_access_validate = register_access_validate
registration.save()
if registration.register_request_token == None or registration.register_request_token == '':
register_request_token = dwlib.token_create_user(registration.registrant_callback, regist_callback_me, TOKEN_TYPE['request'], user)
registration.register_request_token = register_request_token
registration.save()
#TODO how user can change their scope, and reminder, and user public information here.
if registration.register_request_scope == None or registration.register_request_scope == '': #TODO: need to be able to edit it
register_request_scope = registration.registrant_request_scope # need to dyanmic generated here, for example using javascript
registration.register_request_scope = register_request_scope
registration.save()
if registration.register_request_reminder == None or registration.register_request_reminder == '': #TODO: need to be able to edit it
register_request_reminder = registration.registrant_request_reminder ## may need to be changed
registration.register_request_reminder = register_request_reminder
if registration.register_request_user_public == None or registration.register_request_user_public == '': #TODO: need to be able to edit it
register_request_user_public = registration.registrant_request_user_public
registration.register_request_user_public = register_request_user_public
registration.save()
##
params = {
url_keys.regist_status: REGIST_STATUS['registrant_owner_redirect'], # registration will response according to regist_type later
url_keys.regist_type: regist_type,
url_keys.regist_callback: regist_callback_me,
url_keys.register_access_token: registration.register_access_token,
url_keys.register_access_validate: registration.register_access_validate,
url_keys.register_request_token: registration.register_request_token,
url_keys.register_request_scope: registration.register_request_scope,
url_keys.register_request_reminder: registration.register_request_reminder,
url_keys.register_request_user_public: registration.register_request_user_public,
url_keys.registrant_request_token: registration.registrant_request_token,
}
url_params = dwlib.urlencode(params)
url = '%s?%s'%(registration.registrant_callback, url_params)
##
c = get_context_base_regist()
c['register_access_token']['value'] = registration.register_access_token
c['register_access_validate']['value'] = registration.register_access_validate
c['register_request_token']['value'] = registration.register_request_token
c['register_request_scope']['value'] = registration.register_request_scope
c['register_request_reminder']['value'] = registration.register_request_reminder
c['register_request_user_public']['value'] = registration.register_request_user_public
c['regist_status']['value'] = REGIST_STATUS['registrant_owner_redirect']
c['regist_status_current']['value'] = REGIST_STATUS['register_grant']
c['regist_redirect_url']['value'] = url
c['regist_type']['value'] = regist_type
context = RequestContext(request, c)
return render_to_response("regist_grant.html", context)