FilesExpand file tree

 master

/

facade.py

Copy path

BlameMore file actions

BlameMore file actions

Latest commit

 

History

History

History

102 lines (79 loc) · 2.99 KB

 master

/

facade.py

Top

File metadata and controls

• Code
• Blame

102 lines (79 loc) · 2.99 KB

Raw

Copy raw file

Download raw file

Open symbols panel

Edit and raw actions

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

80

81

82

83

84

85

86

87

88

89

90

91

92

93

94

95

96

97

98

99

100

101

102

import base64

import binascii

import hashlib

import hmac

from logging import Logger

from urllib import parse

from django.conf import settings

_key_bytes = settings.DISCOURSE_SSO_SECRET.encode('utf-8')

__all__ = (

'generate_discourse_login_url',

'InvalidSOOPayload',

'MissingDiscourseAPICredentials',

'generate_sso_payload_and_signature'

)

class InvalidSOOPayload(Exception):

pass

class MissingDiscourseAPICredentials(Exception):

pass

logger = Logger(__file__)

def generate_discourse_login_url(user, payload, signature):

"""

Generate Discourse login url if payload matches signature

It will raise InvalidSOOPayload otherwise

:param user: Django's User

:param payload: payload to be validated

:param signature: payload signature

:return: url to login user

"""

decoded = _decode_payload(payload, signature)

_check_nonce_is_present(decoded)

nonce = parse.parse_qs(decoded)['nonce'][0]

return _generate_discourse_login_url(nonce, user)

def _generate_discourse_login_url(nonce, user):

params = {

'nonce': nonce,

'email': user.email,

'external_id': user.id,

'require_activation': 'false',

'groups': ','.join(g.name for g in user.groups.all())

}

sso_payload, signature = generate_sso_payload_and_signature(params)

query_string = parse.urlencode({'sso': sso_payload, 'sig': signature})

url = f'{settings.DISCOURSE_BASE_URL}/session/sso_login'

url = f'{url}?{query_string}'

return url

def generate_sso_payload_and_signature(params):

sso_payload = base64.encodebytes(parse.urlencode(params).encode('utf-8'))

h = hmac.new(_key_bytes, sso_payload, digestmod=hashlib.sha256)

signature = h.hexdigest()

return sso_payload, signature

def _decode_payload(payload, signature):

_check_mandatory_params(payload, signature)

payload_bytes = parse.unquote(payload).encode('utf-8')

try:

decoded = base64.decodebytes(payload_bytes).decode('utf-8')

except binascii.Error as e:

msg = f'Invalid base64 payload: {payload}'

logger.warning(msg)

raise InvalidSOOPayload(msg) from e

else:

h = hmac.new(_key_bytes, payload_bytes, digestmod=hashlib.sha256)

calculated_signature = h.hexdigest()

_check_signature(calculated_signature, signature)

return decoded

def _check_signature(calculated_signature, signature):

if not hmac.compare_digest(calculated_signature, signature):

msg = f'Signatures mismatch: {signature} != {calculated_signature}'

logger.warning(msg)

raise InvalidSOOPayload(msg)

def _check_nonce_is_present(decoded):

if 'nonce' not in decoded:

msg = f'Nonce not in payload={decoded}'

logger.warning(msg)

raise InvalidSOOPayload(msg)

def _check_mandatory_params(payload, signature):

if payload is None or signature is None:

msg = f'Invalid SSO payload={payload} signature={signature}'

logger.warning(msg)

raise InvalidSOOPayload(msg)