1
# -*- coding: iso-8859-1 -*-
3
MoinMoin - authentication using a remote wiki
5
@copyright: 2005 by Florian Festi,
6
2007-2008 by MoinMoin:ThomasWaldmann
7
@license: GNU GPL, see COPYING for details.
12
from MoinMoin import log
13
logging = log.getLogger(__name__)
15
from MoinMoin import wikiutil, user
16
from MoinMoin.auth import BaseAuth, ContinueLogin, CancelLogin
18
class InterwikiAuth(BaseAuth):
20
logout_possible = True
21
login_inputs = ['username', 'password']
23
def __init__(self, trusted_wikis):
24
BaseAuth.__init__(self)
25
self.trusted_wikis = trusted_wikis
27
def login(self, request, user_obj, **kw):
28
username = kw.get('username')
29
password = kw.get('password')
31
if not username or not password:
32
return ContinueLogin(user_obj)
34
logging.debug("trying to authenticate %r" % username)
35
wikiname, username = username.split(' ', 1) # XXX Hack because ':' is not allowed in name field
36
wikitag, wikiurl, name, err = wikiutil.resolve_interwiki(request, wikiname, username)
38
logging.debug("resolve wiki returned: %r %r %r %r" % (wikitag, wikiurl, name, err))
39
if err or wikitag not in self.trusted_wikis:
40
return ContinueLogin(user_obj)
42
homewiki = xmlrpclib.ServerProxy(wikiurl + "?action=xmlrpc2")
43
auth_token = homewiki.getAuthToken(name, password)
45
logging.debug("%r wiki did not return an auth token." % wikitag)
46
return ContinueLogin(user_obj)
48
logging.debug("successfully got an auth token for %r. trying to get user profile data..." % name)
50
mc = xmlrpclib.MultiCall(homewiki)
51
mc.applyAuthToken(auth_token)
53
result, account_data = mc()
55
if result != "SUCCESS":
56
logging.debug("%r wiki did not accept auth token." % wikitag)
57
return ContinueLogin(None)
60
logging.debug("%r wiki did not return a user profile." % wikitag)
61
return ContinueLogin(None)
63
logging.debug("%r wiki returned a user profile." % wikitag)
65
# TODO: check remote auth_attribs
66
u = user.User(request, name=name, auth_method=self.name, auth_attribs=('name', 'aliasname', 'password', 'email', ))
67
for key, value in account_data.iteritems():
68
if key not in request.cfg.user_transient_fields:
69
setattr(u, key, value)
71
u.create_or_update(True)
72
logging.debug("successful interwiki auth for %r" % name)
73
return ContinueLogin(u)