From 888500fca8c5fc1007e07d20205d30b3b1b54198 Mon Sep 17 00:00:00 2001
From: Patrick <patrick@fet.at>
Date: Tue, 25 Aug 2020 17:09:08 +0000
Subject: [PATCH] add a new app for ldap3-authentication (currently, it uses a
 testserver), login/logout from django, my own decorator

---
 fet2020/authentications/__init__.py          |   0
 fet2020/authentications/admin.py             |   3 +
 fet2020/authentications/apps.py              |   5 +
 fet2020/authentications/authentications.py   |  27 ++++
 fet2020/authentications/decorators.py        |  11 ++
 fet2020/authentications/models.py            |   3 +
 fet2020/authentications/tests.py             |   3 +
 fet2020/authentications/urls.py              |   8 ++
 fet2020/authentications/views.py             |  40 ++++++
 fet2020/fet2020/urls.py                      |   1 +
 fet2020/templates/authentications/login.html | 123 +++++++++++++++++++
 11 files changed, 224 insertions(+)
 create mode 100644 fet2020/authentications/__init__.py
 create mode 100644 fet2020/authentications/admin.py
 create mode 100644 fet2020/authentications/apps.py
 create mode 100644 fet2020/authentications/authentications.py
 create mode 100644 fet2020/authentications/decorators.py
 create mode 100644 fet2020/authentications/models.py
 create mode 100644 fet2020/authentications/tests.py
 create mode 100644 fet2020/authentications/urls.py
 create mode 100644 fet2020/authentications/views.py
 create mode 100644 fet2020/templates/authentications/login.html

diff --git a/fet2020/authentications/__init__.py b/fet2020/authentications/__init__.py
new file mode 100644
index 00000000..e69de29b
diff --git a/fet2020/authentications/admin.py b/fet2020/authentications/admin.py
new file mode 100644
index 00000000..4185d360
--- /dev/null
+++ b/fet2020/authentications/admin.py
@@ -0,0 +1,3 @@
+# from django.contrib import admin
+
+# Register your models here.
diff --git a/fet2020/authentications/apps.py b/fet2020/authentications/apps.py
new file mode 100644
index 00000000..cb10b004
--- /dev/null
+++ b/fet2020/authentications/apps.py
@@ -0,0 +1,5 @@
+from django.apps import AppConfig
+
+
+class AuthenticationsConfig(AppConfig):
+    name = 'authentications'
diff --git a/fet2020/authentications/authentications.py b/fet2020/authentications/authentications.py
new file mode 100644
index 00000000..cf928a75
--- /dev/null
+++ b/fet2020/authentications/authentications.py
@@ -0,0 +1,27 @@
+import ldap3
+
+
+def authentication(username, password):
+    # no empty passwords
+    if password is None or password.strip() == "":
+        # messages.info("username:%s Login denied for blank password", username)
+        return None
+
+    # username format
+    new_username = 'uid={username}, cn=users, cn=accounts, dc=demo1, dc=freeipa, dc=org'
+    userdn = new_username.format(username=username)
+
+    server_uri = 'ipa.demo1.freeipa.org'
+    server = ldap3.Server(server_uri, get_info=ldap3.ALL)
+
+    try:
+        ldap3.Connection(
+            server,
+            userdn,
+            password,
+            auto_bind=True,
+        )
+    except ldap3.core.exceptions.LDAPBindError:
+        username = None
+
+    return username
diff --git a/fet2020/authentications/decorators.py b/fet2020/authentications/decorators.py
new file mode 100644
index 00000000..db0e0b60
--- /dev/null
+++ b/fet2020/authentications/decorators.py
@@ -0,0 +1,11 @@
+from django.shortcuts import redirect
+
+
+def unauthenticated_user(view_func):
+    def wrapper_func(request, *args, **kwargs):
+        if request.user.is_authenticated:
+            return redirect('home')
+        else:
+            return view_func(request, *args, **kwargs)
+
+    return wrapper_func
diff --git a/fet2020/authentications/models.py b/fet2020/authentications/models.py
new file mode 100644
index 00000000..0b4331b3
--- /dev/null
+++ b/fet2020/authentications/models.py
@@ -0,0 +1,3 @@
+# from django.db import models
+
+# Create your models here.
diff --git a/fet2020/authentications/tests.py b/fet2020/authentications/tests.py
new file mode 100644
index 00000000..a79ca8be
--- /dev/null
+++ b/fet2020/authentications/tests.py
@@ -0,0 +1,3 @@
+# from django.test import TestCase
+
+# Create your tests here.
diff --git a/fet2020/authentications/urls.py b/fet2020/authentications/urls.py
new file mode 100644
index 00000000..7c084c15
--- /dev/null
+++ b/fet2020/authentications/urls.py
@@ -0,0 +1,8 @@
+from django.urls import path
+from . import views
+
+
+urlpatterns = [
+    path('login/', views.loginPage, name="login"),
+    path('logout/', views.logoutUser, name="logout"),
+]
diff --git a/fet2020/authentications/views.py b/fet2020/authentications/views.py
new file mode 100644
index 00000000..e9907280
--- /dev/null
+++ b/fet2020/authentications/views.py
@@ -0,0 +1,40 @@
+from django.shortcuts import render, redirect
+from django.contrib.auth import login, logout
+from django.contrib import messages
+from django.contrib.auth.models import User
+
+from .authentications import authentication
+# from .decorators import unauthenticated_user
+
+
+# @unauthenticated_user
+def loginPage(request):
+    """
+    if request.user.is_authenticated:
+        return redirect('home')
+    else:
+    """
+    if request.method == 'POST':
+        username = request.POST.get('username')
+        password = request.POST.get('password')
+
+        auth_user = authentication(username, password)
+
+        if auth_user is not None:
+            try:
+                user = User.objects.get(username=username)
+            except User.DoesNotExist:
+                user = User.objects.create_user(auth_user)
+
+            login(request, user)
+            return redirect('home')
+        else:
+            messages.info(request, 'username OR password is incorrect')
+
+    context = {}
+    return render(request, 'authentications/login.html', context)
+
+
+def logoutUser(request):
+    logout(request)
+    return redirect('home')
diff --git a/fet2020/fet2020/urls.py b/fet2020/fet2020/urls.py
index fb8164f1..41a166a2 100644
--- a/fet2020/fet2020/urls.py
+++ b/fet2020/fet2020/urls.py
@@ -30,6 +30,7 @@ urlpatterns = [
     path('posts/', include('posts.urls')),
     path('admin/doc/', include('django.contrib.admindocs.urls')),
     path('admin/', admin.site.urls),
+    path('auth/', include('authentications.urls')),
     path('', views.index, name='home'),
     path('index.html', views.index, name='home'),
     path('ckeditor/', include('ckeditor_uploader.urls')),
diff --git a/fet2020/templates/authentications/login.html b/fet2020/templates/authentications/login.html
new file mode 100644
index 00000000..85620a87
--- /dev/null
+++ b/fet2020/templates/authentications/login.html
@@ -0,0 +1,123 @@
+<!DOCTYPE html>
+<html>
+    
+<head>
+	<title>Login</title>
+	<link rel="stylesheet" href="https://stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css" integrity="sha384-MCw98/SFnGE8fJT3GXwEOngsV7Zt27NXFoaoApmYm81iuXoPkFOJwJ8ERdknLPMO" crossorigin="anonymous">
+	<script src="https://ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js"></script>
+	<link rel="stylesheet" href="https://use.fontawesome.com/releases/v5.6.1/css/all.css" integrity="sha384-gfdkjb5BdAXd+lj+gudLWI+BXq4IuLW5IT+brZEZsLFm++aCMlF1V92rMkPaX4PP" crossorigin="anonymous">
+
+
+	<style>
+		body,
+		html {
+			margin: 0;
+			padding: 0;
+			height: 100%;
+			background: #7abecc !important;
+		}
+		.user_card {
+			width: 350px;
+			margin-top: auto;
+			margin-bottom: auto;
+			background: #74cfbf;
+			position: relative;
+			display: flex;
+			justify-content: center;
+			flex-direction: column;
+			padding: 10px;
+			box-shadow: 0 4px 8px 0 rgba(0, 0, 0, 0.2), 0 6px 20px 0 rgba(0, 0, 0, 0.19);
+			-webkit-box-shadow: 0 4px 8px 0 rgba(0, 0, 0, 0.2), 0 6px 20px 0 rgba(0, 0, 0, 0.19);
+			-moz-box-shadow: 0 4px 8px 0 rgba(0, 0, 0, 0.2), 0 6px 20px 0 rgba(0, 0, 0, 0.19);
+			border-radius: 5px;
+
+		}
+
+		.form_container {
+			margin-top: 20px;
+		}
+
+		#form-title{
+			color: #fff;
+			
+		}
+
+		.login_btn {
+			width: 100%;
+			background: #33ccff !important;
+			color: white !important;
+		}
+		.login_btn:focus {
+			box-shadow: none !important;
+			outline: 0px !important;
+		}
+		.login_container {
+			padding: 0 2rem;
+		}
+		.input-group-text {
+			background: #f7ba5b !important;
+			color: white !important;
+			border: 0 !important;
+			border-radius: 0.25rem 0 0 0.25rem !important;
+		}
+		.input_user,
+		.input_pass:focus {
+			box-shadow: none !important;
+			outline: 0px !important;
+		}
+
+		#messages{
+			background-color: grey;
+			color: #fff;
+			padding: 10px;
+			margin-top: 10px;
+		}
+	</style>
+
+</head>
+<body>
+	<div class="container h-100">
+		<div class="d-flex justify-content-center h-100">
+			<div class="user_card">
+				<div class="d-flex justify-content-center">
+
+
+					<h3 id="form-title">LOGIN</h3>
+				</div>
+				<div class="d-flex justify-content-center form_container">
+					<form method="POST" action="">
+						{% csrf_token %}
+						<div class="input-group mb-3">
+							<div class="input-group-append">
+								<span class="input-group-text"><i class="fas fa-user"></i></span>
+							</div>
+
+							<input type="text" name="username" placeholder="Username..." class="form-control">
+						</div>
+
+						<div class="input-group mb-2">
+							<div class="input-group-append">
+								<span class="input-group-text"><i class="fas fa-key"></i></span>
+							</div>
+
+								<input type="password" name="password" placeholder="Password..." class="form-control" >
+						</div>
+
+							<div class="d-flex justify-content-center mt-3 login_container">
+				 				<input class="btn login_btn" type="submit" value="Login">
+				   			</div>
+					</form>
+
+				</div>
+
+				{% for message in messages %}
+					<p id="messages">{{message}}</p>
+				{% endfor %}
+					
+				</div>
+			</div>
+		</div>
+	</div>
+</body>
+
+</html>
\ No newline at end of file