k"g.ddlmZddlmZddlmZddlmZddlm Z m Z ddl m Z ddl mZddlmZdd lmZdd lmZdd lmZd Zd ZGddeZGddeZGddeZGddeZy))partial)urlparse)settings)auth)REDIRECT_FIELD_NAME load_backend)RemoteUserBackend)redirect_to_login)ImproperlyConfigured) resolve_url)MiddlewareMixin)SimpleLazyObjectcft|dstj||_|jS)N _cached_user)hasattrrget_userrrequests W/var/www/html/djangosite/lib/python3.12/site-packages/django/contrib/auth/middleware.pyrrs) 7N +#}}W5   cKt|ds"tj|d{|_|jS7w)N _acached_user)rr aget_userrrs rauserrs5 7O ,&*nnW&= =   !>s %?=?ceZdZdZy)AuthenticationMiddlewarectds tdtfd_t t _y)NsessionzThe Django authentication middleware requires session middleware to be installed. Edit your MIDDLEWARE setting to insert 'django.contrib.sessions.middleware.SessionMiddleware' before 'django.contrib.auth.middleware.AuthenticationMiddleware'.ctS)N)rrsrz:AuthenticationMiddleware.process_request..%s 0Ar)rr ruserrr)selfrs `rprocess_requestz(AuthenticationMiddleware.process_requests=w *&M ((AB w/ rN)__name__ __module__ __qualname__r#rrrrs 0rrc,eZdZdZeZdZdZdZdZ y)LoginRequiredMiddlewarez Middleware that redirects all unauthenticated requests to a login page. Views using the login_not_required decorator will not be redirected. cp|jjryt|ddsy|j||S)Nlogin_requiredT)r!is_authenticatedgetattrhandle_no_permission)r"r view_func view_args view_kwargss r process_viewz$LoginRequiredMiddleware.process_view2s5 << ( (y"2D9(()<  >((*D    ( ( 3  rN) r$r%r&__doc__rr9r2r7r:r.r'rrr)r))s$ .=S rr)c*eZdZdZdZdZdZdZdZy)RemoteUserMiddlewarea Middleware for utilizing web-server-provided authentication. If request.user is not authenticated, then this middleware attempts to authenticate the username passed in the ``REMOTE_USER`` request header. If authentication is successful, the user is automatically logged in to persist the user in the session. The header used is configurable and defaults to ``REMOTE_USER``. Subclass this class and change the ``header`` attribute if you need to use a different header. REMOTE_USERTct|ds td |j|j}|j jr?|j j|j||k(ry|j|tj||}|r||_tj||yy#t$r6|j r'|j jr|j|YywxYw)Nr!zThe Django remote user auth middleware requires the authentication middleware to be installed. Edit your MIDDLEWARE setting to insert 'django.contrib.auth.middleware.AuthenticationMiddleware' before the RemoteUserMiddleware class.) remote_user)rr METAheaderKeyErrorforce_logout_if_no_headerr!r,_remove_invalid_user get_usernameclean_usernamer authenticatelogin)r"rusernamer!s rr#z$RemoteUserMiddleware.process_requestosw'&:  ||DKK0H << ( (||((*d.A.A(G.TT))'2  h?  GL JJw % + --',,2O2O))'2   sB??=C>c|jtj}tj|} |j |}|S#t $rY|SwxYw)zr Allow the backend to clean the username, if the backend defines a clean_username method. )rrBACKEND_SESSION_KEYrrQAttributeError)r"rTr backend_strbackends rrQz#RemoteUserMiddleware.clean_usernames] ood&>&>? ##K0 --h7H   sA AAc t|jjtjd}t |t rtj|yy#t$rtj|YywxYw)z Remove the current authenticated user in the request which is invalid but only if the user is authenticated via the RemoteUserBackend. N) rrgetrrV isinstancer logout ImportError)r"rstored_backends rrOz)RemoteUserMiddleware._remove_invalid_usersf %)##D$<$rnse! A:77(44 ! 0 0/ o/ dV%?V%r &%9 &r