Commit 6ef8319e authored by ale's avatar ale

Add auth_authclient module.

Authenticates users using the authclient protocol (supports OTP).
parent 1f28fe38
# Copyright (c) 2016 Autistici/Inventati <info@autistici.org>
#
# Permission is hereby granted, free of charge, to any person
# obtaining a copy of this software and associated documentation
# files (the "Software"), to deal in the Software without
# restriction, including without limitation the rights to use,
# copy, modify, merge, publish, distribute, sublicense, and/or sell
# copies of the Software, and to permit persons to whom the
# Software is furnished to do so, subject to the following
# conditions:
#
# The above copyright notice and this permission notice shall be
# included in all copies or substantial portions of the Software.
#
# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
# EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES
# OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
# NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT
# HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY,
# WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
# FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR
# OTHER DEALINGS IN THE SOFTWARE.
import authclient
from sso_server.auth import AuthBase
class Auth(AuthBase):
"""Authclient authentication provider.
This module knows about the following options:
authclient_server_url
The URI of the authserver.
authclient_cert
File with the SSL client certificate.
authclient_key
File with the SSL client private key.
authclient_service
Service name for the authclient protocol.
authclient_shard
Shard for the authclient protocol (optional).
"""
supports_otp = True
def __init__(self, config):
self._client = authclient.Client(
url=config.authclient_server_url,
client_cert=config.authclient_cert,
client_key=config.authclient_key,
)
self._service = config.authclient_service
self._shard = config.authclient_shard
def authenticate(self, username, password, otp=None):
result = self._client.authenticate(
self._service,
username, password, otp,
shard=self._shard)
return result == authclient.OK
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment