mirror of https://github.com/mitsuhiko/flask.git
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
165 lines
5.0 KiB
165 lines
5.0 KiB
# -*- coding: utf-8 -*- |
|
""" |
|
OpenID Example |
|
~~~~~~~~~~~~~~ |
|
|
|
This simple application shows how OpenID can be used in an application. |
|
|
|
Dependencies: |
|
|
|
- python-openid |
|
- SQLAlchemy |
|
|
|
:copyright: (c) 2010 by Armin Ronacher. |
|
:license: BSD, see LICENSE for more details. |
|
""" |
|
from flask import Flask, render_template, request, g, session, flash, \ |
|
redirect, url_for, abort |
|
from simpleopenid import SimpleOpenID |
|
|
|
from sqlalchemy import create_engine, Column, Integer, String |
|
from sqlalchemy.orm import scoped_session, sessionmaker |
|
from sqlalchemy.ext.declarative import declarative_base |
|
|
|
# configuration |
|
DATABASE_URI = 'sqlite:////tmp/openidexample.db' |
|
OPENID_FS_PATH = '/tmp/openidexample-store' |
|
SECRET_KEY = 'development key' |
|
DEBUG = True |
|
|
|
# setup flask |
|
app = Flask(__name__) |
|
app.debug = DEBUG |
|
app.secret_key = SECRET_KEY |
|
|
|
# setup simpleopenid |
|
oid = SimpleOpenID(OPENID_FS_PATH) |
|
|
|
# setup sqlalchemy |
|
engine = create_engine(DATABASE_URI) |
|
db_session = scoped_session(sessionmaker(autocommit=False, |
|
autoflush=False, |
|
bind=engine)) |
|
Base = declarative_base() |
|
Base.query = db_session.query_property() |
|
|
|
def init_db(): |
|
Base.metadata.create_all(bind=engine) |
|
|
|
|
|
class User(Base): |
|
__tablename__ = 'users' |
|
id = Column(Integer, primary_key=True) |
|
name = Column(String(60)) |
|
email = Column(String(200)) |
|
openid = Column(String(200)) |
|
|
|
def __init__(self, name, email, openid): |
|
self.name = name |
|
self.email = email |
|
self.openid = openid |
|
|
|
|
|
@app.before_request |
|
def before_request(): |
|
g.user = None |
|
if 'openid' in session: |
|
g.user = User.query.filter_by(openid=session['openid']).first() |
|
|
|
|
|
@app.route('/') |
|
def index(): |
|
return render_template('index.html') |
|
|
|
|
|
@app.route('/login', methods=['GET', 'POST']) |
|
@oid.loginhandler |
|
def login(): |
|
"""Does the login via OpenID. Has to call into `oid.try_login` |
|
to start the OpenID machinery. |
|
""" |
|
# if we are already logged in, go back to were we came from |
|
if g.user is not None: |
|
return redirect(oid.get_next_url()) |
|
if request.method == 'POST': |
|
openid = request.form.get('openid') |
|
if openid: |
|
return oid.try_login(openid) |
|
return render_template('login.html', next_url=oid.get_next_url()) |
|
|
|
|
|
@oid.after_login |
|
def create_or_login(identity_url): |
|
"""This is called when login with OpenID succeeded and it's not |
|
necessary to figure out if this is the users's first login or not. |
|
This function has to redirect otherwise the user will be presented |
|
with a terrible URL which we certainly don't want. |
|
""" |
|
session['openid'] = identity_url |
|
user = User.query.filter_by(openid=identity_url).first() |
|
if user is not None: |
|
flash(u'Successfully signed in') |
|
g.user = user |
|
return redirect(oid.get_next_url()) |
|
return redirect(url_for('create_profile', next=oid.get_next_url())) |
|
|
|
|
|
@app.route('/create-profile', methods=['GET', 'POST']) |
|
def create_profile(): |
|
"""If this is the user's first login, the create_or_login function |
|
will redirect here so that the user can set up his profile. |
|
""" |
|
if g.user is not None or 'openid' not in session: |
|
return redirect(url_for('index')) |
|
if request.method == 'POST': |
|
name = request.form['name'] |
|
email = request.form['email'] |
|
if not name: |
|
flash(u'Error: you have to provide a name') |
|
elif '@' not in email: |
|
flash(u'Error: you have to enter a valid email address') |
|
else: |
|
flash(u'Profile successfully created') |
|
db_session.add(User(name, email, session['openid'])) |
|
db_session.commit() |
|
return redirect(oid.get_next_url()) |
|
return render_template('create_profile.html', next_url=oid.get_next_url()) |
|
|
|
|
|
@app.route('/profile', methods=['GET', 'POST']) |
|
def edit_profile(): |
|
"""Updates a profile""" |
|
if g.user is None: |
|
abort(401) |
|
form = dict(name=g.user.name, email=g.user.email) |
|
if request.method == 'POST': |
|
if 'delete' in request.form: |
|
db_session.delete(g.user) |
|
db_session.commit() |
|
session['openid'] = None |
|
flash(u'Profile deleted') |
|
return redirect(url_for('index')) |
|
form['name'] = request.form['name'] |
|
form['email'] = request.form['email'] |
|
if not form['name']: |
|
flash(u'Error: you have to provide a name') |
|
elif '@' not in form['email']: |
|
flash(u'Error: you have to enter a valid email address') |
|
else: |
|
flash(u'Profile successfully created') |
|
g.user.name = form['name'] |
|
g.user.email = form['email'] |
|
db_session.commit() |
|
return redirect(url_for('edit_profile')) |
|
return render_template('edit_profile.html', form=form) |
|
|
|
|
|
@app.route('/logout') |
|
def logout(): |
|
session.pop('openid', None) |
|
flash(u'You were signed out') |
|
return redirect(oid.get_next_url()) |
|
|
|
|
|
if __name__ == '__main__': |
|
app.run()
|
|
|