def POST(self, *args, **kwargs): us = UserSession() us.remote_login() user = us.get_user() if not user.is_anonymous: return self.lm.auth_successful(self.trans, user.name, 'password') else: error = cherrypy.request.wsgi_environ.get( 'EXTERNAL_AUTH_ERROR', 'Unknown error using external authentication') error = PAM_AUTH_ERRORS.get(error, error) cherrypy.log.error("Error: %s" % error) return self.lm.auth_failed(self.trans, error)
def POST(self, *args, **kwargs): us = UserSession() us.remote_login() user = us.get_user() if not user.is_anonymous: return self.lm.auth_successful(self.trans, user.name, 'password') else: error = cherrypy.request.wsgi_environ.get( 'EXTERNAL_AUTH_ERROR', 'Unknown error using external authentication' ) error = PAM_AUTH_ERRORS.get(error, error) cherrypy.log.error("Error: %s" % error) return self.lm.auth_failed(self.trans, error)
def root(self, *args, **kwargs): trans = self.get_valid_transaction("login", **kwargs) # If we can get here, we must be authenticated and remote_user # was set. Check the session has a user set already or error. us = UserSession() us.remote_login() self.user = us.get_user() if not self.user.is_anonymous: principal = cherrypy.request.wsgi_environ.get("GSS_NAME", None) if principal: userdata = {"gssapi_principal_name": principal} else: userdata = {"gssapi_principal_name": self.user.name} return self.lm.auth_successful(trans, self.user.name, "gssapi", userdata) else: return self.lm.auth_failed(trans)
def root(self, *args, **kwargs): trans = self.get_valid_transaction('login', **kwargs) # If we can get here, we must be authenticated and remote_user # was set. Check the session has a user set already or error. us = UserSession() us.remote_login(is_krb=True) self.user = us.get_user() if not self.user.is_anonymous: principal = cherrypy.request.wsgi_environ.get('GSS_NAME', None) if principal: userdata = {'gssapi_principal_name': principal} else: userdata = {'gssapi_principal_name': self.user.name} return self.lm.auth_successful(trans, self.user.name, 'gssapi', userdata) else: return self.lm.auth_failed(trans)