Changeset 1500

Timestamp:

11/29/05 19:14:23 (3 years ago)

Author:

adrian

Message:

Moved Apache auth handler to django/contrib/auth/handlers/modpython.py

Files:

• django/trunk/django/contrib/auth/handlers (added)
• django/trunk/django/contrib/auth/handlers/__init__.py (added)
• django/trunk/django/contrib/auth/handlers/modpython.py (added)
• django/trunk/django/core/handlers/modpython.py (modified) (1 diff)
• django/trunk/docs/apache_auth.txt (modified) (4 diffs)

django/trunk/django/core/handlers/modpython.py

@@ -164 +164 @@
-    # mod_python hooks into this function.
-    return ModPythonHandler()(req)
-
-def authenhandler(req, **kwargs):
-    """
-    Authentication handler that checks against Django's auth database.
-    """
-    from mod_python import apache
-    
-    # mod_python fakes the environ, and thus doesn't process SetEnv.  This fixes 
-    # that so that the following import works
-    os.environ.update(req.subprocess_env)
-    from django.models.auth import users
-    
-    # check for PythonOptions
-    _str_to_bool = lambda s: s.lower() in '1', 'true', 'on', 'yes'
-    
-    options = req.get_options()
-    permission_name = options.get('DjangoPermissionName', None)
-    staff_only = _str_to_bool(options.get('DjangoRequireStaffStatus', "on"))
-    superuser_only = _str_to_bool(options.get('DjangoRequireSuperuserStatus', "off"))
-    
-    # check that the username is valid
-    kwargs = {'username__exact': req.user, 'is_active__exact': True}
-    if staff_only:
-        kwargs['is_staff__exact'] = True
-    if superuser_only:
-        kwargs['is_superuser__exact'] = True
-    try:
-        user = users.get_object(**kwargs)
-    except users.UserDoesNotExist:
-        return apache.HTTP_UNAUTHORIZED
-        
-    # check the password and any permission given
-    if user.check_password(req.get_basic_auth_pw()):
-        if permission_name:
-            if user.has_perm(permission_name):
-                return apache.OK
-            else:
-                return apache.HTTP_UNAUTHORIZED
-        else:
-            return apache.OK
-    else:
-        return apache.HTTP_UNAUTHORIZED
-    

django/trunk/docs/apache_auth.txt

@@ -8 +8 @@
-
-    * Serve media files directly from Apache only to authenticated users.
-
+
-    * Authenticate access to a Subversion_ repository against Django users with
-      a certain permission.
-
+
-    * Allow certain users to connect to a WebDAV share created with mod_dav_.
-
+
-Configuring Apache
-==================
@@ -25 +25 @@
-        AuthName "example.com"
-        Require valid-user
-
+
-        SetEnv DJANGO_SETTINGS_MODULE mysite.settings
-re
+ntrib.auth
-    </Location>
-
@@ -38 +38 @@
-    ================================  =========================================
-    ``DjangoRequireStaffStatus``      If set to ``on`` only "staff" users (i.e.
- 
+
-                                      will be allowed.
-
+
-                                      Defaults to ``on``.
-
@@ -46 +46 @@
-                                      those with the ``is_superuser`` flag set)
-                                      will be allowed.
-
+
-                                      Defaults to ``off``.
-
+
-    ``DjangoPermissionName``          The name of a permission to require for
- 
+
-                                      more information.
-
+
-                                      By default no specific permission will be
-                                      required.
-    ================================  =========================================
-
+
-.. _authentication system: http://www.djangoproject.com/documentation/authentication/
-.. _Subversion: http://subversion.tigris.org/