Files
@ b232a36cc51f
Branch filter:
Location: kallithea/rhodecode/lib/base.py - annotation
b232a36cc51f
2.1 KiB
text/x-python
Improve LDAP authentication
* Adds an LDAP filter for locating the LDAP object
* Adds a search scope policy when using the Base DN
* Adds option required certificate policy when using LDAPS
* Adds attribute mapping for username, firstname, lastname, email
* Initializes rhodecode user using LDAP info (no longer uses "@ldap")
* Remembers the user object (DN) in the user table
* Updates admin interfaces
* Authenticates against actual user objects in LDAP
* Possibly other things.
Really, this should be extended to a list of LDAP configurations, but this is a good start.
* Adds an LDAP filter for locating the LDAP object
* Adds a search scope policy when using the Base DN
* Adds option required certificate policy when using LDAPS
* Adds attribute mapping for username, firstname, lastname, email
* Initializes rhodecode user using LDAP info (no longer uses "@ldap")
* Remembers the user object (DN) in the user table
* Updates admin interfaces
* Authenticates against actual user objects in LDAP
* Possibly other things.
Really, this should be extended to a list of LDAP configurations, but this is a good start.
1e757ac98988 1e757ac98988 1e757ac98988 1e757ac98988 1e757ac98988 1e757ac98988 1e757ac98988 1e757ac98988 1e757ac98988 1e757ac98988 1e757ac98988 7486da5f0628 e2f3c8e6939d 070f32743632 1e757ac98988 758f64f3fbda 1e757ac98988 b75b77ef649d 042d38683d42 cca7286401b3 1e757ac98988 7486da5f0628 758f64f3fbda 042d38683d42 30d3161c6683 30d3161c6683 30d3161c6683 30d3161c6683 1e757ac98988 2f89beda06a1 1e757ac98988 1e757ac98988 1e757ac98988 2f89beda06a1 2f89beda06a1 1e757ac98988 1e757ac98988 1e757ac98988 2f89beda06a1 2f89beda06a1 758f64f3fbda 758f64f3fbda 1e757ac98988 1e757ac98988 1e757ac98988 1e757ac98988 1e757ac98988 1e757ac98988 1e757ac98988 b75b77ef649d 1e757ac98988 1e757ac98988 1e757ac98988 | """The base Controller API
Provides the BaseController class for subclassing.
"""
from pylons import config, tmpl_context as c, request, session
from pylons.controllers import WSGIController
from pylons.templating import render_mako as render
from rhodecode import __version__
from rhodecode.lib import auth
from rhodecode.lib.utils import get_repo_slug
from rhodecode.model import meta
from rhodecode.model.scm import ScmModel
from rhodecode import BACKENDS
class BaseController(WSGIController):
def __before__(self):
c.rhodecode_version = __version__
c.rhodecode_name = config.get('rhodecode_title')
c.ga_code = config.get('rhodecode_ga_code')
c.repo_name = get_repo_slug(request)
c.cached_repo_list = ScmModel().get_repos()
c.backends = BACKENDS.keys()
self.cut_off_limit = int(config.get('cut_off_limit'))
self.sa = meta.Session()
scm_model = ScmModel(self.sa)
#c.unread_journal = scm_model.get_unread_journal()
if c.repo_name:
cached_repo = scm_model.get(c.repo_name)
if cached_repo:
c.repository_tags = cached_repo.tags
c.repository_branches = cached_repo.branches
c.repository_followers = scm_model.get_followers(cached_repo.dbrepo.repo_id)
c.repository_forks = scm_model.get_forks(cached_repo.dbrepo.repo_id)
else:
c.repository_tags = {}
c.repository_branches = {}
c.repository_followers = 0
c.repository_forks = 0
def __call__(self, environ, start_response):
"""Invoke the Controller"""
# WSGIController.__call__ dispatches to the Controller method
# the request is routed to. This routing information is
# available in environ['pylons.routes_dict']
try:
#putting this here makes sure that we update permissions every time
self.rhodecode_user = c.rhodecode_user = auth.get_user(session)
return WSGIController.__call__(self, environ, start_response)
finally:
meta.Session.remove()
|