[Mpuls-commits] r3880 - in base/trunk: . mpulsweb/controllers mpulsweb/lib
scm-commit@wald.intevation.org
scm-commit at wald.intevation.org
Mon Oct 4 15:36:46 CEST 2010
Author: bh
Date: 2010-10-04 15:36:44 +0200 (Mon, 04 Oct 2010)
New Revision: 3880
Modified:
base/trunk/ChangeLog
base/trunk/mpulsweb/controllers/auth.py
base/trunk/mpulsweb/lib/base.py
Log:
Make the name of the authorization cookie configurable. This
makes it possible to run several mpuls applications on the same
host on different ports and to log in to all of them at the same
time using the same browser. This is very useful for development.
* mpulsweb/controllers/auth.py (AuthController.loginAction)
(AuthController.logout): Use auth_cookie_name to determine the
cookie name instead of using a hard-wired name.
* mpulsweb/lib/base.py (auth_cookie_name): New. Return the name
of the authorization cookie.
(BaseController.__before__): Use auth_cookie_name to determine the
cookie name instead of using a hard-wired name.
Modified: base/trunk/ChangeLog
===================================================================
--- base/trunk/ChangeLog 2010-10-04 13:31:33 UTC (rev 3879)
+++ base/trunk/ChangeLog 2010-10-04 13:36:44 UTC (rev 3880)
@@ -1,3 +1,19 @@
+2010-10-04 Bernhard Herzog <bh at intevation.de>
+
+ Make the name of the authorization cookie configurable. This
+ makes it possible to run several mpuls applications on the same
+ host on different ports and to log in to all of them at the same
+ time using the same browser. This is very useful for development.
+
+ * mpulsweb/controllers/auth.py (AuthController.loginAction)
+ (AuthController.logout): Use auth_cookie_name to determine the
+ cookie name instead of using a hard-wired name.
+
+ * mpulsweb/lib/base.py (auth_cookie_name): New. Return the name
+ of the authorization cookie.
+ (BaseController.__before__): Use auth_cookie_name to determine the
+ cookie name instead of using a hard-wired name.
+
2010-10-04 Torsten Irländer <torsten.irlaender at intevation.de>
* mpulsweb/lib/renderer.py: Issue893: Added numebering of entries in
Modified: base/trunk/mpulsweb/controllers/auth.py
===================================================================
--- base/trunk/mpulsweb/controllers/auth.py 2010-10-04 13:31:33 UTC (rev 3879)
+++ base/trunk/mpulsweb/controllers/auth.py 2010-10-04 13:36:44 UTC (rev 3880)
@@ -4,7 +4,7 @@
from pylons import request, response, tmpl_context as c
from pylons.controllers.util import redirect_to
-from mpulsweb.lib.base import BaseController, render, session
+from mpulsweb.lib.base import BaseController, render, session, auth_cookie_name
from mpulsweb.lib.security import checkLogin, generateID, userIdentity
log = logging.getLogger(__name__)
@@ -19,7 +19,7 @@
session.delete()
session.save()
session.invalidate()
- response.delete_cookie('mpuls_auth')
+ response.delete_cookie(auth_cookie_name())
return render('/auth/logout.mako')
def login(self):
@@ -40,7 +40,7 @@
# Does only work work with enabled ssl. secure means that the
# cookie will only be sent over a secure connection.
#response.set_cookie('mpuls_auth', shared, secure=True)
- response.set_cookie('mpuls_auth', shared)
+ response.set_cookie(auth_cookie_name(), shared)
redirect_to("/")
else:
Modified: base/trunk/mpulsweb/lib/base.py
===================================================================
--- base/trunk/mpulsweb/lib/base.py 2010-10-04 13:31:33 UTC (rev 3879)
+++ base/trunk/mpulsweb/lib/base.py 2010-10-04 13:36:44 UTC (rev 3880)
@@ -70,6 +70,14 @@
log = logging.getLogger(__name__)
+def auth_cookie_name():
+ """Return the name of authorization cookie.
+ The name is taken from the config setting mpuls.app.auth_cookie_name
+ and defaults to 'mpuls_auth'.
+ """
+ return config.get("mpuls.app.auth_cookie_name", "mpuls_auth")
+
+
# Added own render_mako function which addes custom translation functions
def render_mako(template_name, extra_vars=None, cache_key=None,
cache_type=None, cache_expire=None):
@@ -135,9 +143,10 @@
try:
storedHash = session['AUTH']
try:
- shared = request.cookies['mpuls_auth']
+ shared = request.cookies[auth_cookie_name()]
except KeyError:
- log.error("Cannot find mpuls_auth cookie -> HTTPUnauthorized")
+ log.error("Cannot find %s cookie -> HTTPUnauthorized",
+ auth_cookie_name())
raise HTTPUnauthorized(detail=COOKIE_NOT_FOUND)
if storedHash != md5.new(shared + userIdentity()).digest():
More information about the Mpuls-commits
mailing list