Removed the this_is_the_login_form hack

Refs #21911. Now that we have a more traditional login form, we
don't need any more a special field telling us we are dealing with
the login form.
This commit is contained in:
Claude Paroz 2014-02-02 23:16:07 +01:00
parent be0ad62994
commit 343dfff133
5 changed files with 22 additions and 42 deletions

View File

@ -4,30 +4,23 @@ from django import forms
from django.contrib.auth import authenticate from django.contrib.auth import authenticate
from django.contrib.auth.forms import AuthenticationForm from django.contrib.auth.forms import AuthenticationForm
from django.utils.translation import ugettext_lazy from django.utils.translation import ugettext_lazy as _
ERROR_MESSAGE = ugettext_lazy("Please enter the correct %(username)s and password "
"for a staff account. Note that both fields may be case-sensitive.")
class AdminAuthenticationForm(AuthenticationForm): class AdminAuthenticationForm(AuthenticationForm):
""" """
A custom authentication form used in the admin app. A custom authentication form used in the admin app.
""" """
this_is_the_login_form = forms.BooleanField(widget=forms.HiddenInput, initial=1, error_messages = {
error_messages={'required': ugettext_lazy("Please log in again, because your session has expired.")}) 'invalid_login': _("Please enter the correct %(username)s and password "
"for a staff account. Note that both fields may be "
"case-sensitive."),
}
def clean(self): def confirm_login_allowed(self, user):
username = self.cleaned_data.get('username') if not user.is_active or not user.is_staff:
password = self.cleaned_data.get('password') raise forms.ValidationError(
message = ERROR_MESSAGE self.error_messages['invalid_login'],
params = {'username': self.username_field.verbose_name} code='invalid_login',
params={'username': self.username_field.verbose_name}
if username and password: )
self.user_cache = authenticate(username=username, password=password)
if self.user_cache is None:
raise forms.ValidationError(message, code='invalid', params=params)
elif not self.user_cache.is_active or not self.user_cache.is_staff:
raise forms.ValidationError(message, code='invalid', params=params)
return self.cleaned_data

View File

@ -15,8 +15,6 @@ from django.utils.translation import ugettext_lazy, ugettext as _
from django.views.decorators.cache import never_cache from django.views.decorators.cache import never_cache
from django.conf import settings from django.conf import settings
LOGIN_FORM_KEY = 'this_is_the_login_form'
class AlreadyRegistered(Exception): class AlreadyRegistered(Exception):
pass pass
@ -193,8 +191,6 @@ class AdminSite(object):
cacheable=True. cacheable=True.
""" """
def inner(request, *args, **kwargs): def inner(request, *args, **kwargs):
if LOGIN_FORM_KEY in request.POST and request.user.is_authenticated():
auth_logout(request)
if not self.has_permission(request): if not self.has_permission(request):
if request.path == reverse('admin:logout', current_app=self.name): if request.path == reverse('admin:logout', current_app=self.name):
index_path = reverse('admin:index', current_app=self.name) index_path = reverse('admin:index', current_app=self.name)

View File

@ -12,14 +12,14 @@
{% block breadcrumbs %}{% endblock %} {% block breadcrumbs %}{% endblock %}
{% block content %} {% block content %}
{% if form.errors and not form.non_field_errors and not form.this_is_the_login_form.errors %} {% if form.errors and not form.non_field_errors %}
<p class="errornote"> <p class="errornote">
{% if form.errors.items|length == 1 %}{% trans "Please correct the error below." %}{% else %}{% trans "Please correct the errors below." %}{% endif %} {% if form.errors.items|length == 1 %}{% trans "Please correct the error below." %}{% else %}{% trans "Please correct the errors below." %}{% endif %}
</p> </p>
{% endif %} {% endif %}
{% if form.non_field_errors or form.this_is_the_login_form.errors %} {% if form.non_field_errors %}
{% for error in form.non_field_errors|add:form.this_is_the_login_form.errors %} {% for error in form.non_field_errors %}
<p class="errornote"> <p class="errornote">
{{ error }} {{ error }}
</p> </p>
@ -29,13 +29,12 @@
<div id="content-main"> <div id="content-main">
<form action="{{ app_path }}" method="post" id="login-form">{% csrf_token %} <form action="{{ app_path }}" method="post" id="login-form">{% csrf_token %}
<div class="form-row"> <div class="form-row">
{% if not form.this_is_the_login_form.errors %}{{ form.username.errors }}{% endif %} {{ form.username.errors }}
<label for="id_username" class="required">{{ form.username.label }}:</label> {{ form.username }} <label for="id_username" class="required">{{ form.username.label }}:</label> {{ form.username }}
</div> </div>
<div class="form-row"> <div class="form-row">
{% if not form.this_is_the_login_form.errors %}{{ form.password.errors }}{% endif %} {{ form.password.errors }}
<label for="id_password" class="required">{% trans 'Password:' %}</label> {{ form.password }} <label for="id_password" class="required">{% trans 'Password:' %}</label> {{ form.password }}
<input type="hidden" name="this_is_the_login_form" value="1" />
<input type="hidden" name="next" value="{{ next }}" /> <input type="hidden" name="next" value="{{ next }}" />
</div> </div>
{% url 'admin_password_reset' as password_reset_url %} {% url 'admin_password_reset' as password_reset_url %}

View File

@ -870,6 +870,10 @@ where any unauthorized request to an admin page will be redirected (by HTTP
status code 302) to the login page, with the ``next`` parameter set to the status code 302) to the login page, with the ``next`` parameter set to the
referring path. The user will be redirected there after a successful login. referring path. The user will be redirected there after a successful login.
Note also that the admin login form has been updated to not contain the
``this_is_the_login_form`` field (now unused) and the ``ValidationError`` code
has been set to the more regular ``invalid_login`` key.
Miscellaneous Miscellaneous
~~~~~~~~~~~~~ ~~~~~~~~~~~~~

View File

@ -17,7 +17,6 @@ from django.contrib.auth import get_permission_codename
from django.contrib.admin import ModelAdmin from django.contrib.admin import ModelAdmin
from django.contrib.admin.helpers import ACTION_CHECKBOX_NAME from django.contrib.admin.helpers import ACTION_CHECKBOX_NAME
from django.contrib.admin.models import LogEntry, DELETION from django.contrib.admin.models import LogEntry, DELETION
from django.contrib.admin.sites import LOGIN_FORM_KEY
from django.contrib.admin.utils import quote from django.contrib.admin.utils import quote
from django.contrib.admin.validation import ModelAdminValidator from django.contrib.admin.validation import ModelAdminValidator
from django.contrib.admin.views.main import IS_POPUP_VAR from django.contrib.admin.views.main import IS_POPUP_VAR
@ -769,7 +768,6 @@ class CustomModelAdminTest(AdminViewBasicTestCase):
self.assertEqual(response.status_code, 200) self.assertEqual(response.status_code, 200)
login = self.client.post('/test_admin/admin2/login/', { login = self.client.post('/test_admin/admin2/login/', {
REDIRECT_FIELD_NAME: '/test_admin/admin2/', REDIRECT_FIELD_NAME: '/test_admin/admin2/',
LOGIN_FORM_KEY: 1,
'username': 'customform', 'username': 'customform',
'password': 'secret', 'password': 'secret',
}, follow=True) }, follow=True)
@ -874,49 +872,41 @@ class AdminViewPermissionsTest(TestCase):
# login POST dicts # login POST dicts
self.super_login = { self.super_login = {
REDIRECT_FIELD_NAME: '/test_admin/admin/', REDIRECT_FIELD_NAME: '/test_admin/admin/',
LOGIN_FORM_KEY: 1,
'username': 'super', 'username': 'super',
'password': 'secret', 'password': 'secret',
} }
self.super_email_login = { self.super_email_login = {
REDIRECT_FIELD_NAME: '/test_admin/admin/', REDIRECT_FIELD_NAME: '/test_admin/admin/',
LOGIN_FORM_KEY: 1,
'username': 'super@example.com', 'username': 'super@example.com',
'password': 'secret', 'password': 'secret',
} }
self.super_email_bad_login = { self.super_email_bad_login = {
REDIRECT_FIELD_NAME: '/test_admin/admin/', REDIRECT_FIELD_NAME: '/test_admin/admin/',
LOGIN_FORM_KEY: 1,
'username': 'super@example.com', 'username': 'super@example.com',
'password': 'notsecret', 'password': 'notsecret',
} }
self.adduser_login = { self.adduser_login = {
REDIRECT_FIELD_NAME: '/test_admin/admin/', REDIRECT_FIELD_NAME: '/test_admin/admin/',
LOGIN_FORM_KEY: 1,
'username': 'adduser', 'username': 'adduser',
'password': 'secret', 'password': 'secret',
} }
self.changeuser_login = { self.changeuser_login = {
REDIRECT_FIELD_NAME: '/test_admin/admin/', REDIRECT_FIELD_NAME: '/test_admin/admin/',
LOGIN_FORM_KEY: 1,
'username': 'changeuser', 'username': 'changeuser',
'password': 'secret', 'password': 'secret',
} }
self.deleteuser_login = { self.deleteuser_login = {
REDIRECT_FIELD_NAME: '/test_admin/admin/', REDIRECT_FIELD_NAME: '/test_admin/admin/',
LOGIN_FORM_KEY: 1,
'username': 'deleteuser', 'username': 'deleteuser',
'password': 'secret', 'password': 'secret',
} }
self.joepublic_login = { self.joepublic_login = {
REDIRECT_FIELD_NAME: '/test_admin/admin/', REDIRECT_FIELD_NAME: '/test_admin/admin/',
LOGIN_FORM_KEY: 1,
'username': 'joepublic', 'username': 'joepublic',
'password': 'secret', 'password': 'secret',
} }
self.no_username_login = { self.no_username_login = {
REDIRECT_FIELD_NAME: '/test_admin/admin/', REDIRECT_FIELD_NAME: '/test_admin/admin/',
LOGIN_FORM_KEY: 1,
'password': 'secret', 'password': 'secret',
} }
@ -1391,7 +1381,6 @@ class AdminViewsNoUrlTest(TestCase):
# login POST dict # login POST dict
self.changeuser_login = { self.changeuser_login = {
REDIRECT_FIELD_NAME: '/test_admin/admin/', REDIRECT_FIELD_NAME: '/test_admin/admin/',
LOGIN_FORM_KEY: 1,
'username': 'changeuser', 'username': 'changeuser',
'password': 'secret', 'password': 'secret',
} }
@ -2600,7 +2589,6 @@ class AdminCustomQuerysetTest(TestCase):
self.pks = [EmptyModel.objects.create().id for i in range(3)] self.pks = [EmptyModel.objects.create().id for i in range(3)]
self.super_login = { self.super_login = {
REDIRECT_FIELD_NAME: '/test_admin/admin/', REDIRECT_FIELD_NAME: '/test_admin/admin/',
LOGIN_FORM_KEY: 1,
'username': 'super', 'username': 'super',
'password': 'secret', 'password': 'secret',
} }