def process_view(self, request, view_func, view_args, view_kwargs):
if getattr(view_func, 'csrf_exempt', False):
return None
if getattr(request, 'csrf_processing_done', False):
return None
if default_is_request_api(request):
request.csrf_processing_done = True
return None
def process_view(self, request, view_func, view_args, view_kwargs):
if default_is_request_api(request):
request.__class__.user = LazyAnonUser()
resource_name = getattr(request, 'oauth_resource_name', None)
if CheckOAuth.is_valid_request(request):
try:
consumer, token, parameters = CheckOAuth.validate_token(request)
except OAuthError, e:
return None
#!! ??return send_oauth_error(e)
if resource_name and token.resource.name != resource_name:
return send_oauth_error(OAuthError(_('You are not allowed to access this resource.')))
elif consumer and token:
if token.user:
request.__class__.user = token.user
def process_request(self, request):
if not default_is_request_api(request):
return self.auth_middleware.process_request(request)
return None
def process_response(self, request, response):
if getattr(response, 'csrf_processing_done', False):
return response
elif default_is_request_api(request):
response.csrf_processing_done = True
return response
