django1/django/contrib/auth/handlers/modpython.py

from mod_python import apache
import os

def authenhandler(req, **kwargs):
    """
    Authentication handler that checks against Django's auth database.
    """

    # mod_python fakes the environ, and thus doesn't process SetEnv.  This fixes
    # that so that the following import works
    os.environ.update(req.subprocess_env)

    # check for PythonOptions
    _str_to_bool = lambda s: s.lower() in ('1', 'true', 'on', 'yes')

    options = req.get_options()
    permission_name = options.get('DjangoPermissionName', None)
    staff_only = _str_to_bool(options.get('DjangoRequireStaffStatus', "on"))
    superuser_only = _str_to_bool(options.get('DjangoRequireSuperuserStatus', "off"))
    settings_module = options.get('DJANGO_SETTINGS_MODULE', None)
    if settings_module:
        os.environ['DJANGO_SETTINGS_MODULE'] = settings_module

    from django.contrib.auth.models import User
    from django import db
    db.reset_queries()

    # check that the username is valid
    kwargs = {'username': req.user, 'is_active': True}
    if staff_only:
        kwargs['is_staff'] = True
    if superuser_only:
        kwargs['is_superuser'] = True
    try:
        try:
            user = User.objects.get(**kwargs)
        except User.DoesNotExist:
            return apache.HTTP_UNAUTHORIZED
    
        # check the password and any permission given
        if user.check_password(req.get_basic_auth_pw()):
            if permission_name:
                if user.has_perm(permission_name):
                    return apache.OK
                else:
                    return apache.HTTP_UNAUTHORIZED
            else:
                return apache.OK
        else:
            return apache.HTTP_UNAUTHORIZED
    finally:
        db.connection.close()
Moved Apache auth handler to django/contrib/auth/handlers/modpython.py git-svn-id: http://code.djangoproject.com/svn/django/trunk@1500 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2005-11-30 09:14:23 +08:00			`from mod_python import apache`
			`import os`

			`def authenhandler(req, **kwargs):`
			`"""`
			`Authentication handler that checks against Django's auth database.`
			`"""`

			`# mod_python fakes the environ, and thus doesn't process SetEnv. This fixes`
			`# that so that the following import works`
			`os.environ.update(req.subprocess_env)`

			`# check for PythonOptions`
Fixed #1185 -- Fixed Python 2.4 bug in Django authentication mod_python handler. Thanks, Brian Ray git-svn-id: http://code.djangoproject.com/svn/django/trunk@1853 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2006-01-08 13:10:51 +08:00			`_str_to_bool = lambda s: s.lower() in ('1', 'true', 'on', 'yes')`
Moved Apache auth handler to django/contrib/auth/handlers/modpython.py git-svn-id: http://code.djangoproject.com/svn/django/trunk@1500 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2005-11-30 09:14:23 +08:00
			`options = req.get_options()`
			`permission_name = options.get('DjangoPermissionName', None)`
			`staff_only = _str_to_bool(options.get('DjangoRequireStaffStatus', "on"))`
			`superuser_only = _str_to_bool(options.get('DjangoRequireSuperuserStatus', "off"))`
Added support to django/contrib/auth/handlers/modpython.py for setting DJANGO_SETTINGS_MODULE via a PythonOption instead of SetEnv git-svn-id: http://code.djangoproject.com/svn/django/trunk@3012 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2006-05-31 10:09:07 +08:00			`settings_module = options.get('DJANGO_SETTINGS_MODULE', None)`
			`if settings_module:`
			`os.environ['DJANGO_SETTINGS_MODULE'] = settings_module`

			`from django.contrib.auth.models import User`
Fixed #2770 -- Fixed a database connection leak in django.contrib.auth.handlers.modpython. git-svn-id: http://code.djangoproject.com/svn/django/trunk@3789 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2006-09-22 20:01:15 +08:00			`from django import db`
			`db.reset_queries()`
Moved Apache auth handler to django/contrib/auth/handlers/modpython.py git-svn-id: http://code.djangoproject.com/svn/django/trunk@1500 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2005-11-30 09:14:23 +08:00
			`# check that the username is valid`
MERGED MAGIC-REMOVAL BRANCH TO TRUNK. This change is highly backwards-incompatible. Please read http://code.djangoproject.com/wiki/RemovingTheMagic for upgrade instructions. git-svn-id: http://code.djangoproject.com/svn/django/trunk@2809 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2006-05-02 09:31:56 +08:00			`kwargs = {'username': req.user, 'is_active': True}`
Moved Apache auth handler to django/contrib/auth/handlers/modpython.py git-svn-id: http://code.djangoproject.com/svn/django/trunk@1500 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2005-11-30 09:14:23 +08:00			`if staff_only:`
MERGED MAGIC-REMOVAL BRANCH TO TRUNK. This change is highly backwards-incompatible. Please read http://code.djangoproject.com/wiki/RemovingTheMagic for upgrade instructions. git-svn-id: http://code.djangoproject.com/svn/django/trunk@2809 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2006-05-02 09:31:56 +08:00			`kwargs['is_staff'] = True`
Moved Apache auth handler to django/contrib/auth/handlers/modpython.py git-svn-id: http://code.djangoproject.com/svn/django/trunk@1500 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2005-11-30 09:14:23 +08:00			`if superuser_only:`
MERGED MAGIC-REMOVAL BRANCH TO TRUNK. This change is highly backwards-incompatible. Please read http://code.djangoproject.com/wiki/RemovingTheMagic for upgrade instructions. git-svn-id: http://code.djangoproject.com/svn/django/trunk@2809 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2006-05-02 09:31:56 +08:00			`kwargs['is_superuser'] = True`
Moved Apache auth handler to django/contrib/auth/handlers/modpython.py git-svn-id: http://code.djangoproject.com/svn/django/trunk@1500 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2005-11-30 09:14:23 +08:00			`try:`
Fixed #2770 -- Fixed a database connection leak in django.contrib.auth.handlers.modpython. git-svn-id: http://code.djangoproject.com/svn/django/trunk@3789 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2006-09-22 20:01:15 +08:00			`try:`
			`user = User.objects.get(**kwargs)`
			`except User.DoesNotExist:`
			`return apache.HTTP_UNAUTHORIZED`

			`# check the password and any permission given`
			`if user.check_password(req.get_basic_auth_pw()):`
			`if permission_name:`
			`if user.has_perm(permission_name):`
			`return apache.OK`
			`else:`
			`return apache.HTTP_UNAUTHORIZED`
Moved Apache auth handler to django/contrib/auth/handlers/modpython.py git-svn-id: http://code.djangoproject.com/svn/django/trunk@1500 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2005-11-30 09:14:23 +08:00			`else:`
Fixed #2770 -- Fixed a database connection leak in django.contrib.auth.handlers.modpython. git-svn-id: http://code.djangoproject.com/svn/django/trunk@3789 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2006-09-22 20:01:15 +08:00			`return apache.OK`
Moved Apache auth handler to django/contrib/auth/handlers/modpython.py git-svn-id: http://code.djangoproject.com/svn/django/trunk@1500 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2005-11-30 09:14:23 +08:00			`else:`
Fixed #2770 -- Fixed a database connection leak in django.contrib.auth.handlers.modpython. git-svn-id: http://code.djangoproject.com/svn/django/trunk@3789 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2006-09-22 20:01:15 +08:00			`return apache.HTTP_UNAUTHORIZED`
			`finally:`
			`db.connection.close()`