richard
/
doccano
mirror of https://github.com/doccano/doccano.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2144 Commits
11 Branches
32 Tags
77 MiB
Tree: 146726a3cd
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '146726a3cd'
${ noResults }
doccano/backend/server/middleware.py

42 lines
1.2 KiB
Raw Normal View History

Adds middlware that enables automatic login based on HTTP headers
5 years ago
  1. from django.conf import settings
  2. from django.contrib.auth.middleware import RemoteUserMiddleware
  5. def to_django_header(header):
  6. return f"HTTP_{header.replace('-', '_').upper()}"
  9. class HeaderAuthMiddleware(RemoteUserMiddleware):
  10. header = to_django_header(settings.HEADER_AUTH_USER_NAME)
  12. def process_request(self, request):
  13. if request.user.is_authenticated:
  14. return
  16. username = request.META.get(self.header)
  17. if not username:
  18. return
  20. super().process_request(request)
  21. self.process_user_groups(request.user, request.META)
  23. @classmethod
  24. def process_user_groups(cls, user, headers):
  25. if not user.is_authenticated:
  26. return
  28. groups = cls.parse_user_groups_from_header(headers)
  30. is_superuser = settings.HEADER_AUTH_ADMIN_GROUP_NAME in groups
  31. if user.is_superuser != is_superuser:
  32. user.is_superuser = is_superuser
  33. user.save()
  35. @classmethod
  36. def parse_user_groups_from_header(cls, headers):
  37. try:
  38. groups_header = headers[to_django_header(settings.HEADER_AUTH_USER_GROUPS)]
  39. except KeyError:
  40. return []
  41. else:
  42. return groups_header.split(settings.HEADER_AUTH_GROUPS_SEPERATOR)