PassThroughAuth - Code Metrics - troeger/opensubmit - Measure and Improve Code Quality continuously with Scrutinizer

PassThroughAuth A
last analyzed 2018-05-24 09:45 UTC

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	34
Duplicated Lines	0 %

Importance

Changes	1
Bugs	0	Features	0

Metric	Value
c	1
b	0
f	0
dl	0
loc	34
rs	10
wmc	7

4 Methods

Rating	Name	Size	Complexity
A	auth_complete()	9	2
A	get_user_id()	3	1
A	get_user_details()	13	3
A	auth_url()	3	1

'''
    A Python Social (PSA) authentication backend.

    It performs no authentication by itself, but believes in auth information that is
    stored by a separate view in the *session*.

    This is used for performing the authentication in an independent view,
    but managing the database and user creation still in PSA.

    Since PSA really wants to do all login views by itself,
    the separate auth view needs to redirect to '/login/passthrough/'
    after storing all data in the session variable SESSION_VAR.
    The keys can be seen in get_user_details().

    After the redirect, everything works as usual in Python Social,
    with the only exception that the auth_url redirect is no longer needed.
'''

from social_core.backends.base import BaseAuth
from django.core.exceptions import PermissionDenied
from opensubmit import settings

SESSION_VAR = 'passthrough_auth_data_' + settings.SECRET_KEY


class PassThroughAuth(BaseAuth):
    name = 'passthrough'

    def auth_url(self):
        """Must return redirect URL to auth provider."""
        return '/complete/%s/' % self.name

    def auth_complete(self, *args, **kwargs):
        """Completes loging process, must return user instance"""
        if SESSION_VAR not in self.strategy.request.session:
            # This is the only protection layer when people
            # go directly to the passthrough login view.
            raise PermissionDenied
        auth_data = self.strategy.request.session[SESSION_VAR]
        kwargs.update({'response': auth_data, 'backend': self})
        return self.strategy.authenticate(*args, **kwargs)

    def get_user_details(self, response):
        """ Complete with additional information from session, as available. """
        result = {
            'id': response['id'],
            'username': response.get('username', None),
            'email': response.get('email', None),
            'first_name': response.get('first_name', None),
            'last_name': response.get('last_name', None)
        }
        if result['first_name'] and result['last_name']:
            result['fullname'] = result['first_name'] + \
                ' ' + result['last_name']
        return result

    def get_user_id(self, details, response):
        """Return a unique ID for the current user, by default from server response."""
        return response['id']


1			'''
2			A Python Social (PSA) authentication backend.
3
4			It performs no authentication by itself, but believes in auth information that is
5			stored by a separate view in the session.
6
7			This is used for performing the authentication in an independent view,
8			but managing the database and user creation still in PSA.
9
10			Since PSA really wants to do all login views by itself,
11			the separate auth view needs to redirect to '/login/passthrough/'
12			after storing all data in the session variable SESSION_VAR.
13			The keys can be seen in get_user_details().
14
15			After the redirect, everything works as usual in Python Social,
16			with the only exception that the auth_url redirect is no longer needed.
17			'''
18
19			from social_core.backends.base import BaseAuth
20			from django.core.exceptions import PermissionDenied
21			from opensubmit import settings
22
23			SESSION_VAR = 'passthrough_auth_data_' + settings.SECRET_KEY
24
25
26			class PassThroughAuth(BaseAuth):
27			name = 'passthrough'
28
29			def auth_url(self):
30			"""Must return redirect URL to auth provider."""
31			return '/complete/%s/' % self.name
32
33			def auth_complete(self, args, *kwargs):
34			"""Completes loging process, must return user instance"""
35			if SESSION_VAR not in self.strategy.request.session:
36			# This is the only protection layer when people
37			# go directly to the passthrough login view.
38			raise PermissionDenied
39			auth_data = self.strategy.request.session[SESSION_VAR]
40			kwargs.update({'response': auth_data, 'backend': self})
41			return self.strategy.authenticate(args, *kwargs)
42
43			def get_user_details(self, response):
44			""" Complete with additional information from session, as available. """
45			result = {
46			'id': response['id'],
47			'username': response.get('username', None),
48			'email': response.get('email', None),
49			'first_name': response.get('first_name', None),
50			'last_name': response.get('last_name', None)
51			}
52			if result['first_name'] and result['last_name']:
53			result['fullname'] = result['first_name'] + \
54			' ' + result['last_name']
55			return result
56
57			def get_user_id(self, details, response):
58			"""Return a unique ID for the current user, by default from server response."""
59			return response['id']
60

troeger / opensubmit

PassThroughAuth A last analyzed 2018-05-24 09:45 UTC

Complexity

Size/Duplication

Importance

4 Methods

Duplication Side-by-Side

Filter issues like

PassThroughAuth A
last analyzed 2018-05-24 09:45 UTC