a ؁h@sddlZddlmZddlmZmZmZmZddlm Z ddl m Z ddl m Z mZddlmZddlmZmZmZdd lmZmZgd Zd d gZd dZddZddZddZddZ GdddZ!GdddeZ"GdddeZ#dS)N)reverse) HttpResponseHttpResponseServerErrorHttpResponseRedirectHttpResponseForbidden)PermissionDenied)messages)renderredirect) CommonView)query_00dump log_activity)koleksimaster)/loginlogout403404usrpwdcOsL|D]$\}}|jjdkr$t|}|||<qi}|D]}||||<q6|S)Ndatetime)items __class____name__str) SessionStoreargskwargskvsessargr$AD:\WORK\M-FILE\MFILE_PAPTENG_NEW\mfile_papteng_new\webapp\auth.pysessions  r&cCs,t|d}t|d}|S)Nzutf-8)hashlibmd5encode hexdigestsha1)rr$r$r% auth_pwd_hashsr,cKsTd}z8tjjjfi|}tj|}|jj|d<Wnt yNYn0|S)Nrole) m_masterUsersobjectsfilterselect_relatedgetZ_sanitize_resultZpk_rolesr- Exception)raccountuserr$r$r%auth_account_bys  r7cOsXt|d|dd}|dur$dStD]}||||kr(dSq(t|fi|dS)NrrrrFT)r7r3auth_validate_requiredr&)rrrr5rr$r$r%validate+s r;cCsd}z tjjj||ddd}Wnty6Yn0|rF|jrFdStd||dg}|}Wdn1sv0Y|r|drdSdS)z select access.is from access join menus on (menus.pk=access.menus_pk) join roles on (roles.pk=access.roles_pk) where access.users_pk is null and menus.href = '$path' and roles.role = '$role' Nr-)Zmenus_pk__hrefZroles_pk__roleZusers_pkTz SELECT access.is,menus.href FROM access JOIN menus ON (menus.pk=access.menus_pk) JOIN roles ON (roles.pk=access.roles_pk) WHERE access.users_pk IS NULL and %s like menus.href||'%%' and roles.role = %s ORDER BY menus.href DESC isF) r.ZAccessr0r1r3r4Z_isr Z result_one)pathr"Z rule_by_roleqZrule_by_href_partr$r$r%urlpath_validate7s"   (r?c@seZdZddZddZdS)AuthMiddlewarecCs ||_dSN) get_response)selfrBr$r$r%__init___szAuthMiddleware.__init__cs|tjjd<}tfddtD}|durP|dkrPttddjS|rr|dkrrtjjdkrrt| S)NZ sess_is_authc3s|]}t|jkVqdSrA)rr=).0irequestr$r% gz*AuthMiddleware.__call__..Frz ?redirect=) r;r&anymiddleware_views_ignoredrrr=r?rrB)rCrHZynZ yn_ignoredr$rGr%__call__eszAuthMiddleware.__call__N)r __module__ __qualname__rDrMr$r$r$r%r@]sr@c@seZdZddZddZdS) AuthLoginViewcCst|jrtdSt|dS)Nrz login.html)r;r&r r )rCrHr$r$r%r3tszAuthLoginView.getcCs|jdd}|jdd}|dks,|dkr@t|dtdSt|t|d}|durlt|dtdSt|jfi|t |dd|d d |d|j d drt |j d Std S) Nrrz#Isian Username atau Password kosongrr8zUser Tidak DitemukanauthpkzLogin sebagai r dash) POSTr3rwarningr r7r,errorr&rGETr)rCrHrrr5r$r$r%postys&    zAuthLoginView.postN)rrNrOr3rYr$r$r$r%rPssrPc@s$eZdZddZddZddZdS)AuthLogoutViewcOs|j|g|Ri|SrArrCrHrrr$r$r%r3rJzAuthLogoutView.getcOs|j|g|Ri|SrAr[r\r$r$r%rYrJzAuthLogoutView.postcCsTddlm}|jd}|jdd}|rB||dd|d|d |jtd S) Nr)rrSrunknownrrRzLogout dari sistem ()r) webapp.commonrr&r3flushr )rCrHruser_idZ user_namer$r$r%rs    zAuthLogoutView.logoutN)rrNrOr3rYrr$r$r$r%rZsrZ)$r' django.urlsr django.httprrrrdjango.core.exceptionsrZdjango.contribrZdjango.shortcutsr r Zwebapp.views.baser r_r r rZ webapp.modelsrZ m_koleksirr.rLr9r&r,r7r;r?r@rPrZr$r$r$r%s$       &$