0001-encrypt-user-credentials-9534.patch

Josué Kouka, 07 janvier 2016 18:39

Voir les différences: en ligne côte à côte

Subject: [PATCH] encrypt user credentials (#9534)

 debian/control              |  1 +
 mandayejs/mandaye/models.py | 34 ++++++++++++++++++++++++++++++++--
 mandayejs/mandaye/utils.py  |  8 ++++++++
 mandayejs/mandaye/views.py  |  1 +
 4 files changed, 42 insertions(+), 2 deletions(-)

debian/control
13	13	python-gadjo,
14	14	python-django-jsonfield,
15	15	python-ldap,
	16	python-cryptography
16	17	Recommends: python-django-mellon
17	18	Description: Authentication Reverse Proxy
18	19

     from django.db import models
     from jsonfield import JSONField
     from django.conf import settings
     from django.utils.translation import ugettext_lazy as _
     from jsonfield import JSONField
     from cryptography.fernet import Fernet
     from mandayejs.mandaye.utils import get_password_field
     class UserCredentials(models.Model):
         user = models.ForeignKey('auth.User')
-...
                 or self.user.email \
                 or self.user.username
         def to_login_info(self):
         def save(self, *args, **kwargs):
             self.encrypt()
             super(UserCredentials, self).save(*args, **kwargs)
         def encrypt(self,):
             """Encrypt password
             """
             secret_key = settings.SECRET_KEY
             password_field_name = get_password_field()
             f = Fernet(secret_key)
             self.locators[password_field_name] = \
                 f.encrypt(self.locators.get(password_field_name,'').encode('ascii'))
             return self.locators
         def decrypt(self,):
             """Decrypt password
             """
             secret_key = settings.SECRET_KEY
             password_field_name = get_password_field()
             f = Fernet(secret_key)
             self.locators[password_field_name] = \
                 f.decrypt(self.locators.get(password_field_name, '').encode('ascii'))
             return self.locators
         def to_login_info(self, decrypt=False):
             if decrypt:
                 self.decrypt()
             return {'#'+k : v for k,v in self.locators.items() }

         url = url._replace(netloc=settings.SITE_DOMAIN)
         return url.path
     def get_password_field():
         """Return name of the password field
         """
         try:
             field_name = [ field.get('name') for field in settings.SITE_LOCATORS if field.get('kind') == 'password' ]
             return field_name[0]
         except (IndexError,):
             return None

             'auth_checker': os.path.join(site_static_root, site_auth_checker)
+        }
         logger.debug(login_info)
         login_info['locators'] = [ credentials.to_login_info(decrypt=True)]
         result = exec_phantom(login_info)
         logger.debug(result)
+    -

Projet

Général

Profil

Produits Entr'ouvert » Mandaye

0001-encrypt-user-credentials-9534.patch