Source code for dmr.security.django_session.views

from abc import abstractmethod
from collections.abc import Mapping
from http import HTTPStatus
from typing import Any, Generic, TypeVar

from django.conf import settings
from django.contrib.auth import aauthenticate, alogin, authenticate, login
from typing_extensions import TypedDict

from dmr import Body, Controller, CookieSpec, ResponseSpec, modify
from dmr.errors import ErrorModel
from dmr.exceptions import NotAuthenticatedError
from dmr.serializer import BaseSerializer

_RequestModelT = TypeVar('_RequestModelT', bound=Mapping[str, Any])
_ResponseT = TypeVar('_ResponseT')
_SerializerT = TypeVar(
    '_SerializerT',
    bound=BaseSerializer,
)




[docs]
class DjangoSessionPayload(TypedDict):
    """
    Payload for default version of a django session request body.

    Is also used as kwargs for :func:`django.contrib.auth.authenticate`.
    """

    username: str
    password: str






[docs]
class DjangoSessionResponse(TypedDict):
    """Default response type for django session endpoint."""

    user_id: str






[docs]
class DjangoSessionSyncController(
    Controller[_SerializerT],
    Generic[_SerializerT, _RequestModelT, _ResponseT],
):
    """
    Sync controller to get django session cookie.

    See also:
        https://docs.djangoproject.com/en/stable/topics/auth/

    """

    responses = (
        ResponseSpec(
            return_type=ErrorModel,
            status_code=HTTPStatus.UNAUTHORIZED,
        ),
    )



[docs]
    @modify(
        status_code=HTTPStatus.OK,
        cookies={
            settings.SESSION_COOKIE_NAME: CookieSpec(skip_validation=True),
            **(
                {}
                if settings.CSRF_USE_SESSIONS
                else {
                    settings.CSRF_COOKIE_NAME: CookieSpec(
                        skip_validation=True,
                        description='CSRF protection.',
                    ),
                }
            ),
        },
    )
    def post(self, parsed_body: Body[_RequestModelT]) -> _ResponseT:
        """By default cookies are acquired on post."""
        return self.login(parsed_body)





[docs]
    def login(self, parsed_body: _RequestModelT) -> _ResponseT:
        """Perform the sync login routine for user."""
        user = authenticate(
            self.request,
            **self.convert_auth_payload(parsed_body),
        )
        if user is None:
            raise NotAuthenticatedError
        login(self.request, user)
        return self.make_api_response()





[docs]
    @abstractmethod
    def convert_auth_payload(
        self,
        payload: _RequestModelT,
    ) -> DjangoSessionPayload:
        """
        Convert your custom payload to kwargs that django supports.

        See :func:`django.contrib.auth.authenticate` docs
        on which kwargs it supports.

        Basically it needs ``username`` and ``password`` strings.
        """
        raise NotImplementedError





[docs]
    @abstractmethod
    def make_api_response(self) -> _ResponseT:
        """Abstract method to create a response payload."""
        raise NotImplementedError








[docs]
class DjangoSessionAsyncController(
    Controller[_SerializerT],
    Generic[_SerializerT, _RequestModelT, _ResponseT],
):
    """
    Async controller to get django session cookie.

    See also:
        https://docs.djangoproject.com/en/stable/topics/auth/

    """

    responses = (
        ResponseSpec(
            return_type=ErrorModel,
            status_code=HTTPStatus.UNAUTHORIZED,
        ),
    )



[docs]
    @modify(
        status_code=HTTPStatus.OK,
        cookies={
            settings.SESSION_COOKIE_NAME: CookieSpec(skip_validation=True),
            **(
                {}
                if settings.CSRF_USE_SESSIONS
                else {
                    settings.CSRF_COOKIE_NAME: CookieSpec(
                        skip_validation=True,
                        description='CSRF protection.',
                    ),
                }
            ),
        },
    )
    async def post(self, parsed_body: Body[_RequestModelT]) -> _ResponseT:
        """By default cookies are acquired on post."""
        return await self.login(parsed_body)





[docs]
    async def login(self, parsed_body: _RequestModelT) -> _ResponseT:
        """Perform the sync login routine for user."""
        user = await aauthenticate(
            self.request,
            **(await self.convert_auth_payload(parsed_body)),
        )
        if user is None:
            raise NotAuthenticatedError
        await alogin(self.request, user)
        return await self.make_api_response()





[docs]
    @abstractmethod
    async def convert_auth_payload(
        self,
        payload: _RequestModelT,
    ) -> DjangoSessionPayload:
        """
        Convert your custom payload to kwargs that django supports.

        See :func:`django.contrib.auth.authenticate` docs
        on which kwargs it supports.

        Basically it needs ``username`` and ``password`` strings.
        """
        raise NotImplementedError





[docs]
    @abstractmethod
    async def make_api_response(self) -> _ResponseT:
        """Abstract method to create a response payload."""
        raise NotImplementedError