2020-04-06 05:27:05 -05:00
|
|
|
##########################################################################
|
|
|
|
#
|
|
|
|
# pgAdmin 4 - PostgreSQL Tools
|
|
|
|
#
|
2024-01-01 02:43:48 -06:00
|
|
|
# Copyright (C) 2013 - 2024, The pgAdmin Development Team
|
2020-04-06 05:27:05 -05:00
|
|
|
# This software is released under the PostgreSQL Licence
|
|
|
|
#
|
|
|
|
##########################################################################
|
|
|
|
|
|
|
|
"""Implements Internal Authentication"""
|
|
|
|
|
2021-07-06 02:52:58 -05:00
|
|
|
from flask import current_app, flash
|
2020-04-06 05:27:05 -05:00
|
|
|
from flask_security import login_user
|
|
|
|
from abc import abstractmethod, abstractproperty
|
2021-11-24 05:52:57 -06:00
|
|
|
from flask_babel import gettext
|
2020-04-06 05:27:05 -05:00
|
|
|
|
|
|
|
from .registry import AuthSourceRegistry
|
|
|
|
from pgadmin.model import User
|
2020-09-11 09:25:19 -05:00
|
|
|
from pgadmin.utils.validation_utils import validate_email
|
2021-01-18 05:02:10 -06:00
|
|
|
from pgadmin.utils.constants import INTERNAL
|
2020-04-06 05:27:05 -05:00
|
|
|
|
|
|
|
|
2022-11-18 22:43:41 -06:00
|
|
|
class BaseAuthentication(metaclass=AuthSourceRegistry):
|
2020-04-06 05:27:05 -05:00
|
|
|
|
|
|
|
DEFAULT_MSG = {
|
2020-09-11 09:25:19 -05:00
|
|
|
'USER_DOES_NOT_EXIST': gettext('Incorrect username or password.'),
|
|
|
|
'LOGIN_FAILED': gettext('Login failed'),
|
|
|
|
'EMAIL_NOT_PROVIDED': gettext('Email/Username not provided'),
|
|
|
|
'PASSWORD_NOT_PROVIDED': gettext('Password not provided'),
|
|
|
|
'INVALID_EMAIL': gettext('Email/Username is not valid')
|
2020-04-06 05:27:05 -05:00
|
|
|
}
|
2021-07-06 02:52:58 -05:00
|
|
|
LOGIN_VIEW = 'security.login'
|
|
|
|
LOGOUT_VIEW = 'security.logout'
|
2020-04-06 05:27:05 -05:00
|
|
|
|
2021-01-18 05:02:10 -06:00
|
|
|
@abstractmethod
|
|
|
|
def get_source_name(self):
|
|
|
|
pass
|
|
|
|
|
|
|
|
@abstractmethod
|
2020-04-08 08:05:45 -05:00
|
|
|
def get_friendly_name(self):
|
2020-04-06 05:27:05 -05:00
|
|
|
pass
|
|
|
|
|
|
|
|
@abstractmethod
|
2024-06-11 07:37:22 -05:00
|
|
|
def authenticate(self, form):
|
2020-04-06 05:27:05 -05:00
|
|
|
pass
|
|
|
|
|
|
|
|
def validate(self, form):
|
|
|
|
username = form.data['email']
|
|
|
|
password = form.data['password']
|
|
|
|
|
|
|
|
if username is None or username == '':
|
|
|
|
form.email.errors = list(form.email.errors)
|
|
|
|
form.email.errors.append(gettext(
|
|
|
|
self.messages('EMAIL_NOT_PROVIDED')))
|
2022-02-16 02:04:24 -06:00
|
|
|
return False, None
|
2020-04-06 05:27:05 -05:00
|
|
|
if password is None or password == '':
|
|
|
|
form.password.errors = list(form.password.errors)
|
|
|
|
form.password.errors.append(
|
|
|
|
self.messages('PASSWORD_NOT_PROVIDED'))
|
2022-02-16 02:04:24 -06:00
|
|
|
return False, None
|
2020-04-06 05:27:05 -05:00
|
|
|
|
2022-02-16 02:04:24 -06:00
|
|
|
return True, None
|
2020-04-06 05:27:05 -05:00
|
|
|
|
|
|
|
def login(self, form):
|
|
|
|
username = form.data['email']
|
|
|
|
user = getattr(form, 'user', None)
|
|
|
|
|
|
|
|
if user is None:
|
|
|
|
user = User.query.filter_by(username=username).first()
|
|
|
|
|
|
|
|
if user is None:
|
|
|
|
current_app.logger.exception(
|
|
|
|
self.messages('USER_DOES_NOT_EXIST'))
|
|
|
|
return False, self.messages('USER_DOES_NOT_EXIST')
|
|
|
|
|
|
|
|
# Login user through flask_security
|
|
|
|
status = login_user(user)
|
|
|
|
if not status:
|
|
|
|
current_app.logger.exception(self.messages('LOGIN_FAILED'))
|
|
|
|
return False, self.messages('LOGIN_FAILED')
|
2023-02-12 23:41:05 -06:00
|
|
|
current_app.logger.info(
|
|
|
|
"Internal user {0} logged in.".format(username))
|
2020-04-06 05:27:05 -05:00
|
|
|
return True, None
|
|
|
|
|
|
|
|
def messages(self, msg_key):
|
|
|
|
return self.DEFAULT_MSG[msg_key] if msg_key in self.DEFAULT_MSG\
|
|
|
|
else None
|
|
|
|
|
|
|
|
|
|
|
|
class InternalAuthentication(BaseAuthentication):
|
|
|
|
|
2021-01-18 05:02:10 -06:00
|
|
|
def get_source_name(self):
|
|
|
|
return INTERNAL
|
|
|
|
|
2020-04-08 08:05:45 -05:00
|
|
|
def get_friendly_name(self):
|
2020-04-06 05:27:05 -05:00
|
|
|
return gettext("internal")
|
|
|
|
|
|
|
|
def validate(self, form):
|
|
|
|
"""User validation"""
|
2020-09-11 09:25:19 -05:00
|
|
|
# validate the email id first
|
|
|
|
if not validate_email(form.data['email']):
|
2022-02-16 02:04:24 -06:00
|
|
|
return False, self.messages('INVALID_EMAIL')
|
2020-04-06 05:27:05 -05:00
|
|
|
# Flask security validation
|
2022-02-16 02:04:24 -06:00
|
|
|
submit = form.validate_on_submit()
|
|
|
|
return submit, None
|
2020-04-06 05:27:05 -05:00
|
|
|
|
|
|
|
def authenticate(self, form):
|
|
|
|
username = form.data['email']
|
2023-04-24 01:24:02 -05:00
|
|
|
if form.validate_on_submit():
|
|
|
|
user = getattr(form, 'user',
|
|
|
|
User.query.filter_by(username=username).first())
|
|
|
|
if user and user.is_authenticated:
|
|
|
|
return True, None
|
2020-04-06 05:27:05 -05:00
|
|
|
return False, self.messages('USER_DOES_NOT_EXIST')
|