vÅÏ^ã@sÂddlmZddlmZddlmZddlmZddlm Z ddl m Z ddl m Z dd „ZGd d „d e ƒZGd d „d e ƒZGdd„deƒZdS)é)Úsettings)Úauth)Ú load_backend)ÚRemoteUserBackend)ÚImproperlyConfigured)ÚMiddlewareMixin)ÚSimpleLazyObjectcCs(t|dƒs!tj|ƒ|_|jS)NÚ _cached_user)ÚhasattrrÚget_userr )Úrequest©r ú@/tmp/pip-build-8lau8j11/django/django/contrib/auth/middleware.pyr sr c@seZdZdd„ZdS)ÚAuthenticationMiddlewarecsStˆdƒs4tdtjdkr*dndƒ‚t‡fdd†ƒˆ_dS)NÚsessionzóThe Django authentication middleware requires session middleware to be installed. Edit your MIDDLEWARE%s setting to insert 'django.contrib.sessions.middleware.SessionMiddleware' before 'django.contrib.auth.middleware.AuthenticationMiddleware'.Z_CLASSESÚcs tˆƒS)N)r r )r r rÚsz:AuthenticationMiddleware.process_request..)r ÚAssertionErrorrZ MIDDLEWARErÚuser)Úselfr r )r rÚprocess_requestsz(AuthenticationMiddleware.process_requestN)Ú__name__Ú __module__Ú __qualname__rr r r rrs rc@sFeZdZdZdZdZdd„Zdd„Zdd „Zd S) ÚRemoteUserMiddlewareaý Middleware for utilizing Web-server-provided authentication. If request.user is not authenticated, then this middleware attempts to authenticate the username passed in the ``REMOTE_USER`` request header. If authentication is successful, the user is automatically logged in to persist the user in the session. The header used is configurable and defaults to ``REMOTE_USER``. Subclass this class and change the ``header`` attribute if you need to use a different header. Z REMOTE_USERTc Csàt|dƒstdƒ‚y|j|j}Wn8tk ri|jra|jjra|j|ƒdSYnX|jjr¨|jj ƒ|j ||ƒkr›dS|j|ƒt j |d|ƒ}|rÜ||_t j ||ƒdS)NrzçThe Django remote user auth middleware requires the authentication middleware to be installed. Edit your MIDDLEWARE setting to insert 'django.contrib.auth.middleware.AuthenticationMiddleware' before the RemoteUserMiddleware class.Z remote_user)r rZMETAÚheaderÚKeyErrorÚforce_logout_if_no_headerrÚis_authenticatedÚ_remove_invalid_userZ get_usernameÚclean_usernamerZ authenticateÚlogin)rr Úusernamerr r rr/s"     !  z$RemoteUserMiddleware.process_requestc CsK|jtj}tj|ƒ}y|j|ƒ}Wntk rFYnX|S)zr Allow the backend to clean the username, if the backend defines a clean_username method. )rrÚBACKEND_SESSION_KEYrr ÚAttributeError)rr"r Z backend_strÚbackendr r rr Us z#RemoteUserMiddleware.clean_usernamec Csdy"t|jjtjdƒƒ}Wntk rCtj|ƒYnXt|tƒr`tj|ƒdS)z  Remove the current authenticated user in the request which is invalid but only if the user is authenticated via the RemoteUserBackend. rN) rrÚgetrr#Ú ImportErrorZlogoutÚ isinstancer)rr Zstored_backendr r rrbs " z)RemoteUserMiddleware._remove_invalid_userN) rrrÚ__doc__rrrr rr r r rrs  & rc@seZdZdZdZdS)ÚPersistentRemoteUserMiddlewarea£ Middleware for Web-server provided authentication on logon pages. Like RemoteUserMiddleware but keeps the user authenticated even if the header (``REMOTE_USER``) is not found in the request. Useful for setups when the external authentication via ``REMOTE_USER`` is only expected to happen on some "logon" URL and the rest of the application wants to use Django's authentication mechanism. FN)rrrr)rr r r rr*qs r*N)Z django.confrZdjango.contribrZdjango.contrib.authrZdjango.contrib.auth.backendsrZdjango.core.exceptionsrZdjango.utils.deprecationrZdjango.utils.functionalrr rrr*r r r rÚs  V