2018-11-11 12:41:48 +00:00
|
|
|
"""passbook LDAP Authentication Backend"""
|
|
|
|
|
from django.contrib.auth.backends import ModelBackend
|
2019-10-11 10:53:48 +00:00
|
|
|
from django.http import HttpRequest
|
2019-10-01 08:24:10 +00:00
|
|
|
from structlog import get_logger
|
2018-11-11 12:41:48 +00:00
|
|
|
|
2019-10-10 15:36:09 +00:00
|
|
|
from passbook.sources.ldap.connector import Connector
|
2019-10-07 14:33:48 +00:00
|
|
|
from passbook.sources.ldap.models import LDAPSource
|
2018-11-11 12:41:48 +00:00
|
|
|
|
2019-10-04 08:08:53 +00:00
|
|
|
LOGGER = get_logger()
|
2018-11-11 12:41:48 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
class LDAPBackend(ModelBackend):
|
|
|
|
|
"""Authenticate users against LDAP Server"""
|
|
|
|
|
|
2019-10-11 10:53:48 +00:00
|
|
|
def authenticate(self, request: HttpRequest, **kwargs):
|
2018-11-11 12:41:48 +00:00
|
|
|
"""Try to authenticate a user via ldap"""
|
2019-12-31 11:51:16 +00:00
|
|
|
if "password" not in kwargs:
|
2018-11-11 12:41:48 +00:00
|
|
|
return None
|
2018-11-26 17:12:04 +00:00
|
|
|
for source in LDAPSource.objects.filter(enabled=True):
|
2019-10-11 10:53:48 +00:00
|
|
|
LOGGER.debug("LDAP Auth attempt", source=source)
|
2020-07-10 18:10:51 +00:00
|
|
|
user = Connector(source).auth_user(**kwargs)
|
2018-11-26 17:12:04 +00:00
|
|
|
if user:
|
|
|
|
|
return user
|
|
|
|
|
return None
|
