| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155 |
- # coding: utf-8
- from __future__ import print_function
- from __future__ import absolute_import
- from __future__ import division
- from __future__ import unicode_literals
- from django.shortcuts import render
- from django.views.generic import TemplateView, View
- from django.views.generic.edit import FormView
- from django.core import signing
- from django.core.urlresolvers import reverse
- from django import forms
- from django.core.exceptions import PermissionDenied
- from backend.mixins import VisitorMixin
- import backend.models as bmodels
- from backend import const
- def is_valid_username(username):
- if username.endswith("@users.alioth.debian.org"): return True
- if username.endswith("@debian.org"): return True
- return False
- FORMER_ACTIVE = (const.STATUS_EMERITUS_DD, const.STATUS_EMERITUS_DM,
- const.STATUS_REMOVED_DD, const.STATUS_REMOVED_DM,
- const.STATUS_REMOVED_DC_GA)
- class ClaimForm(forms.Form):
- fpr = forms.CharField(label="Fingerprint", min_length=40, widget=forms.TextInput(attrs={"size": 60}))
- def clean_fpr(self):
- data = bmodels.FingerprintField.clean_fingerprint(self.cleaned_data['fpr'])
- try:
- fpr = bmodels.Fingerprint.objects.get(fpr=self.cleaned_data["fpr"])
- except bmodels.Fingerprint.DoesNotExist:
- raise forms.ValidationError("The GPG fingerprint is not known to this system. "
- "If you are a Debian Maintainer, and you entered the fingerprint that is in the DM keyring, "
- "please contact Front Desk to get this fixed.")
- if not fpr.is_active:
- raise forms.ValidationError("The GPG fingerprint corresponds to a key that is not currently the active key of the user.")
- if fpr.person.status not in FORMER_ACTIVE and is_valid_username(fpr.person.username):
- raise forms.ValidationError("The GPG fingerprint corresponds to a person that has a valid Single Sign-On username.")
- return data
- class Claim(VisitorMixin, FormView):
- """
- Validate and send an encrypted HMAC url to associate an alioth account with
- a DM key
- """
- template_name = "dm/claim.html"
- form_class = ClaimForm
- def pre_dispatch(self):
- super(Claim, self).pre_dispatch()
- if self.visitor is not None and not self.visitor.is_admin: raise PermissionDenied
- if self.request.sso_username is None: raise PermissionDenied
- if not is_valid_username(self.request.sso_username): raise PermissionDenied
- self.username = self.request.sso_username
- def get_context_data(self, fpr=None, **kw):
- ctx = super(Claim, self).get_context_data(**kw)
- ctx["username"] = self.username
- if fpr:
- ctx["fpr"] = fpr
- ctx["person"] = fpr.person
- key = fpr.get_key()
- if not key.key_is_fresh(): key.update_key()
- plaintext = self.request.build_absolute_uri(reverse("dm_claim_confirm", kwargs={
- "token": signing.dumps({
- "u": self.username,
- "f": fpr.fpr,
- })
- }))
- plaintext += "\n"
- # Add to context: it will not be rendered, but it can be picked up
- # by unit tests without the need to have access to the private key
- # to decode it
- ctx["plaintext"] = plaintext
- ctx["challenge"] = key.encrypt(plaintext.encode("utf8"))
- return ctx
- def form_valid(self, form):
- fpr = bmodels.Fingerprint.objects.get(fpr=form.cleaned_data["fpr"])
- return self.render_to_response(self.get_context_data(form=form, fpr=fpr))
- class ClaimConfirm(VisitorMixin, TemplateView):
- """
- Validate the claim confirmation links
- """
- template_name = "dm/claim_confirm.html"
- def pre_dispatch(self):
- super(ClaimConfirm, self).pre_dispatch()
- if self.request.sso_username is None: raise PermissionDenied
- if not is_valid_username(self.request.sso_username): raise PermissionDenied
- self.username = self.request.sso_username
- def validate_token(self, token):
- parsed = signing.loads(token)
- self.errors = []
- if self.visitor is not None:
- self.errors.append("Your SSO username is already associated with a person in the system")
- return False
- # Validate fingerprint
- try:
- self.fpr = bmodels.Fingerprint.objects.get(fpr=parsed["f"])
- except bmodels.Fingerprint.DoesNotExist:
- self.fpr = None
- self.errors.append("The GPG fingerprint is not known to this system")
- return False
- if not self.fpr.is_active:
- self.errors.append("The GPG fingerprint corresponds to a key that is not currently the active key of the user.")
- if self.fpr.person.status not in FORMER_ACTIVE and is_valid_username(self.fpr.person.username):
- self.errors.append("The GPG fingerprint corresponds to a person that has a valid Single Sign-On username.")
- if self.fpr.person.is_dd:
- self.errors.append("The GPG fingerprint corresponds to a Debian Developer.")
- # Validate username
- if self.username != parsed["u"]:
- self.errors.append("The token was not generated by you")
- try:
- existing_person = bmodels.Person.objects.get(username=self.username)
- except bmodels.Person.DoesNotExist:
- existing_person = None
- if existing_person is not None:
- self.errors.append("The SSO username is already associated with a different person in the system")
- return not self.errors
- def get_context_data(self, **kw):
- ctx = super(ClaimConfirm, self).get_context_data(**kw)
- if self.validate_token(self.kwargs["token"]):
- # Do the mapping
- self.fpr.person.username = self.username
- self.fpr.person.save(audit_author=self.fpr.person, audit_notes="claimed account via /dm/claim")
- ctx["mapped"] = True
- ctx["person"] = self.fpr.person
- ctx["fpr"] = self.fpr
- ctx["username"] = self.username
- ctx["errors"] = self.errors
- return ctx
|
