3 from random import randint
5 from django.views.generic import View
6 from django.template.loader import render_to_string
7 from django.shortcuts import render
8 from django.contrib.auth import get_user_model
10 from unfold.page import Page
11 from unfold.loginrequired import FreeAccessView
12 from ui.topmenu import topmenu_items_live
14 from manifoldapi.manifoldapi import execute_admin_query
15 from manifold.core.query import Query
17 from portal.models import PendingUser
18 #from portal.actions import create_pending_user
20 from portal.actions import create_pending_user, ldap_create_user
22 from theme import ThemeView
24 # since we inherit from FreeAccessView we cannot redefine 'dispatch'
25 # so let's override 'get' and 'post' instead
27 class RegistrationView (FreeAccessView, ThemeView):
28 template_name = 'registration_view.html'
30 def post (self, request):
31 return self.get_or_post (request, 'POST')
33 def get (self, request):
34 return self.get_or_post (request, 'GET')
36 def get_or_post(self, wsgi_request, method):
41 authorities_query = Query.get('authority').select('name', 'authority_hrn')
42 authorities = execute_admin_query(wsgi_request, authorities_query)
43 if authorities is not None:
44 authorities = sorted(authorities)
47 page = Page(wsgi_request)
48 page.add_js_files ( [ "js/jquery.validate.js", "js/my_account.register.js" ] )
49 page.add_css_files ( [ "css/onelab.css", "css/registration.css" ] )
50 page.add_css_files ( [ "http://code.jquery.com/ui/1.10.3/themes/smoothness/jquery-ui.css" ] )
53 # The form has been submitted
56 'first_name' : wsgi_request.POST.get('firstname', ''),
57 'last_name' : wsgi_request.POST.get('lastname', ''),
58 'authority_hrn' : wsgi_request.POST.get('authority_hrn', ''),
59 'email' : wsgi_request.POST.get('email', '').lower(),
60 'password' : wsgi_request.POST.get('password', ''),
63 # Construct user_hrn from email (XXX Should use common code)
64 split_email = user_request['email'].split("@")[0]
65 split_email = split_email.replace(".", "_")
66 user_request['user_hrn'] = user_request['authority_hrn'] \
70 UserModel = get_user_model()
71 if (re.search(r'^[\w+\s.@+-]+$', user_request['first_name']) == None):
72 errors.append('First Name may contain only letters, numbers, spaces and @/./+/-/_ characters.')
73 if (re.search(r'^[\w+\s.@+-]+$', user_request['last_name']) == None):
74 errors.append('Last Name may contain only letters, numbers, spaces and @/./+/-/_ characters.')
75 # checking in django_db !!
76 if PendingUser.objects.filter(email__iexact = user_request['email']):
77 errors.append('Email is pending for validation. Please provide a new email address.')
78 if UserModel._default_manager.filter(email__iexact = user_request['email']):
79 errors.append('This email is not usable. Please contact the administrator or try with another email.')
80 # Does the user exist in Manifold?
81 user_query = Query().get('local:user').select('user_id','email')
82 user_details = execute_admin_query(wsgi_request, user_query)
83 for user_detail in user_details:
84 if user_detail['email'] == user_request['email']:
85 errors.append('Email already registered in Manifold. Please provide a new email address.')
86 # Does the user exist in sfa? [query is very slow!!]
87 user_query = Query().get('user').select('user_hrn','user_email')
88 user_details_sfa = execute_admin_query(wsgi_request, user_query)
89 for user in user_details_sfa:
90 if user['user_email'] == user_request['email']:
91 errors.append('Email already registered in SFA registry. Please use another email.')
92 if user['user_hrn'] == user_request['user_hrn']:
93 # add random number if user_hrn already exists in the registry
94 user_request['user_hrn'] = user_request['authority_hrn'] \
95 + '.' + split_email + str(randint(1,1000000))
97 # XXX TODO: Factorize with portal/accountview.py
98 if 'generate' in wsgi_request.POST['question']:
99 user_request['auth_type'] = 'managed'
101 # XXX Common code, dependency ?
102 from Crypto.PublicKey import RSA
103 private = RSA.generate(1024)
105 # Example: private_key = '-----BEGIN RSA PRIVATE KEY-----\nMIIC...'
106 # Example: public_key = 'ssh-rsa AAAAB3...'
107 user_request['private_key'] = private.exportKey()
108 user_request['public_key'] = private.publickey().exportKey(format='OpenSSH')
111 user_request['auth_type'] = 'user'
113 up_file = wsgi_request.FILES['user_public_key']
115 file_content = up_file.read().strip()
116 file_name = up_file.name
117 file_extension = os.path.splitext(file_name)[1]
119 ALLOWED_EXTENSIONS = ['.pub','.txt']
120 if file_extension not in ALLOWED_EXTENSIONS or not re.search(r'ssh-rsa',file_content):
121 errors.append('Please upload a valid RSA public key.')
123 user_request['private_key'] = None
124 user_request['public_key'] = file_content
127 # verify if is a LDAP
128 mail = user_detail['email']
129 login = mail.split('@')[0]
130 org = mail.split('@')[1]
131 o = org.split('.')[-2]
132 dc = org.split('.')[-1]
133 # To know if user is a LDAP user - Need to has a 'dc' identifier
134 if dc == 'br' or 'eu':
135 # LDAP insert directly - but with userEnable = FALSE
136 ldap_create_user(wsgi_request, user_request, user_detail)
138 create_pending_user(wsgi_request, user_request, user_detail)
139 self.template_name = 'user_register_complete.html'
141 return render(wsgi_request, self.template, {'theme': self.theme})
147 'topmenu_items': topmenu_items_live('Register', page),
149 'authorities': authorities,
152 template_env.update(user_request)
153 template_env.update(page.prelude_env ())
154 return render(wsgi_request, self.template,template_env)
git://git.onelab.eu / myslice.git / blob