Source code for waeup.kofa.applicants.authentication

## $Id: 13394 2015-11-06 05:43:37Z henrik $
## Copyright (C) 2011 Uli Fouquet & Henrik Bettermann
## This program is free software; you can redistribute it and/or modify
## it under the terms of the GNU General Public License as published by
## the Free Software Foundation; either version 2 of the License, or
## (at your option) any later version.
## This program is distributed in the hope that it will be useful,
## but WITHOUT ANY WARRANTY; without even the implied warranty of
## GNU General Public License for more details.
## You should have received a copy of the GNU General Public License
## along with this program; if not, write to the Free Software
## Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
Authenticate applicants.
import grok
from zope.component import getUtility
from zope.password.interfaces import IPasswordManager
from zope.pluggableauth.interfaces import IAuthenticatorPlugin
from waeup.kofa.interfaces import IAuthPluginUtility, IUserAccount
from waeup.kofa.applicants.interfaces import IApplicant
from waeup.kofa.students.authentication import (
    StudentAccount, StudentsAuthenticatorPlugin)

[docs]class ApplicantAccount(StudentAccount): """An adapter to turn applicant objects into accounts on-the-fly. """ grok.context(IApplicant) grok.implements(IUserAccount) @property def name(self): return self.context.applicant_id @property def title(self): return self.context.display_fullname @property def user_type(self): return u'applicant'
[docs] def checkPassword(self, password): """Check whether the given `password` matches the one stored by students. We additionally check if applicant account has been suspended or if the portal is blocked. """ try: blocker = grok.getSite()['configuration'].maintmode_enabled_by if blocker: return False except TypeError: # in unit tests pass if not isinstance(password, basestring): return False passwordmanager = getUtility(IPasswordManager, 'SSHA') if not getattr(self.context, 'password', None): # unset/empty passwords do never match return False if self.context.suspended == True: return False return passwordmanager.checkPassword(self.context.password, password)
[docs]class ApplicantsAuthenticatorPlugin(StudentsAuthenticatorPlugin): grok.implements(IAuthenticatorPlugin) grok.provides(IAuthenticatorPlugin)'applicants')
[docs] def getAccount(self, login): """Look up a applicant identified by `login`. Returns an account. First we split the login name into the container part and the application number part. Then we simply look up the key under which the applicant is stored in the respective applicants cointainer of the portal. Returns not an applicant but an account object adapted from any applicant found. If no such applicant exists, ``None`` is returned. """ site = grok.getSite() if site is None: return None applicantsroot = site.get('applicants', None) if applicantsroot is None: return None try: container, application_number = login.split('_') except ValueError: return None applicantscontainer = applicantsroot.get(container,None) if applicantscontainer is None: return None applicant = applicantscontainer.get(application_number, None) if applicant is None: return None return IUserAccount(applicant)
[docs]class ApplicantsAuthenticatorSetup(grok.GlobalUtility): """Register or unregister applicant authentication for a PAU. This piece is called when a new site is created. """ grok.implements(IAuthPluginUtility)'applicants_auth_setup')
[docs] def register(self, pau): plugins = list(pau.authenticatorPlugins) plugins.append('applicants') pau.authenticatorPlugins = tuple(plugins) return pau
[docs] def unregister(self, pau): plugins = [x for x in pau.authenticatorPlugins if x != 'applicants'] pau.authenticatorPlugins = tuple(plugins) return pau