def setup_user(context, session): """ Try to retrieve a valid user object from the request, be it either through the session or through a login. """ # first try setting up from session userobj = auth.setup_from_session(context, session) userobj, olduser = auth.setup_setuid(context, userobj) context._setuid_real_user = olduser # then handle login/logout forms form = context.request.values if 'login' in form: params = { 'username': form.get('name'), 'password': form.get('password'), 'attended': True, 'openid_identifier': form.get('openid_identifier'), 'stage': form.get('stage') } userobj = auth.handle_login(context, userobj, **params) elif 'logout' in form: userobj = auth.handle_logout(context, userobj) else: userobj = auth.handle_request(context, userobj) # if we still have no user obj, create a dummy: if not userobj: userobj = user.User(context, auth_method='invalid') return userobj
def setup_user(): """ Try to retrieve a valid user object from the request, be it either through the session or through a login. """ # init some stuff for auth processing: flaskg._login_multistage = None flaskg._login_multistage_name = None flaskg._login_messages = [] # first try setting up from session userobj = auth.setup_from_session() # then handle login/logout forms form = request.values.to_dict() if 'login_submit' in form: # this is a real form, submitted by POST userobj = auth.handle_login(userobj, **form) elif 'logout_submit' in form: # currently just a GET link userobj = auth.handle_logout(userobj) else: userobj = auth.handle_request(userobj) # if we still have no user obj, create a dummy: if not userobj: userobj = user.User(name=ANON, auth_method='invalid') # if we have a valid user we store it in the session if userobj.valid: session['user.itemid'] = userobj.itemid session['user.trusted'] = userobj.trusted session['user.auth_method'] = userobj.auth_method session['user.auth_attribs'] = userobj.auth_attribs session['user.session_token'] = userobj.get_session_token() return userobj
def setup_user(context, session): """ Try to retrieve a valid user object from the request, be it either through the session or through a login. """ # first try setting up from session userobj = auth.setup_from_session(context, session) userobj, olduser = auth.setup_setuid(context, userobj) context._setuid_real_user = olduser # then handle login/logout forms form = context.request.values if "login" in form: params = { "username": form.get("name"), "password": form.get("password"), "attended": True, "openid_identifier": form.get("openid_identifier"), "stage": form.get("stage"), } userobj = auth.handle_login(context, userobj, **params) elif "logout" in form: userobj = auth.handle_logout(context, userobj) else: userobj = auth.handle_request(context, userobj) # if we still have no user obj, create a dummy: if not userobj: userobj = user.User(context, auth_method="invalid") return userobj