Home Explore Help
Sign In
221V
/
Misago
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 5ac973fbd7
Branches Tags
Misago
/
misago
/
users
/
views
/
auth.py

auth.py 1.0 KB
History Raw

1234567891011121314151617181920212223242526272829303132 
  1. from django.conf import settings
    2. 

  2. from django.contrib import auth
    3. 

  3. from django.shortcuts import redirect
    4. 

  4. from django.utils.http import is_safe_url
    5. 

  5. from django.utils.six.moves.urllib.parse import urlparse
    6. 

  6. from django.views.decorators.cache import never_cache
    7. 

  7. from django.views.decorators.csrf import csrf_protect
    8. 

  8. from django.views.decorators.debug import sensitive_post_parameters
    9. 

  9. 

  10. 

  11. @sensitive_post_parameters()
    12. 

  12. @never_cache
    13. 

  13. @csrf_protect
    14. 

  14. def login(request):
    15. 

  15.     if request.method == 'POST':
    16. 

  16.         redirect_to = request.POST.get('redirect_to')
    17. 

  17.         if redirect_to:
    18. 

  18.             is_redirect_safe = is_safe_url(
    19. 

  19.                 url=redirect_to, host=request.get_host())
    20. 

  20.             if is_redirect_safe:
    21. 

  21.                 redirect_to_path = urlparse(redirect_to).path
    22. 

  22.                 return redirect(redirect_to_path)
    23. 

  23. 

  24.     return redirect(settings.LOGIN_REDIRECT_URL)
    25. 

  25. 

  26. 

  27. @never_cache
    28. 

  28. @csrf_protect
    29. 

  29. def logout(request):
    30. 

  30.     if request.method == 'POST' and request.user.is_authenticated():
    31. 

  31.         auth.logout(request)
    32. 

  32.     return redirect(settings.LOGIN_REDIRECT_URL)
    33.