fe7f23238c
* core: initial migration to /if Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * core: move jsi18n to api Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * tests: fix static URLs in tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: add new html files to rollup Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: fix rollup config and nginx config Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * core: add Impersonation support to user API Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: add banner for impersonation Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * tests: fix test_user function for new User API Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * flows: add background to API Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: set background from flow API Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * core: make root view login_required for redirect Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * flows: redirect to root-redirect instead of if-admin direct Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * api: add header to prevent Authorization Basic prompt in browser Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: redirect to root when user/me request fails Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
25 lines
934 B
Python
25 lines
934 B
Python
"""recovery views"""
|
|
from django.contrib import messages
|
|
from django.contrib.auth import login
|
|
from django.http import Http404, HttpRequest, HttpResponse
|
|
from django.shortcuts import redirect
|
|
from django.utils.translation import gettext as _
|
|
from django.views import View
|
|
|
|
from authentik.core.models import Token, TokenIntents
|
|
|
|
|
|
class UseTokenView(View):
|
|
"""Use token to login"""
|
|
|
|
def get(self, request: HttpRequest, key: str) -> HttpResponse:
|
|
"""Check if token exists, log user in and delete token."""
|
|
tokens = Token.filter_not_expired(key=key, intent=TokenIntents.INTENT_RECOVERY)
|
|
if not tokens.exists():
|
|
raise Http404
|
|
token = tokens.first()
|
|
login(request, token.user, backend="django.contrib.auth.backends.ModelBackend")
|
|
token.delete()
|
|
messages.warning(request, _("Used recovery-link to authenticate."))
|
|
return redirect("authentik_core:if-admin")
|