canaille-globuzma/canaille/oidc/consents.py

from canaille.flaskutils import user_needed
from canaille.oidc.models import Client
from canaille.oidc.models import Consent
from flask import Blueprint
from flask import flash
from flask import redirect
from flask import url_for
from flask_babel import gettext
from flask_themer import render_template

from .utils import SCOPE_DETAILS


bp = Blueprint("consents", __name__, url_prefix="/consent")


@bp.route("/")
@user_needed()
def consents(user):
    consents = Consent.filter(subject=user.dn)
    consents = [c for c in consents if not c.revokation_date]
    client_dns = list({t.client for t in consents})
    clients = {dn: Client.get(dn) for dn in client_dns}
    return render_template(
        "oidc/user/consent_list.html",
        consents=consents,
        clients=clients,
        menuitem="consents",
        scope_details=SCOPE_DETAILS,
        ignored_scopes=["openid"],
    )


@bp.route("/delete/<consent_id>")
@user_needed()
def delete(user, consent_id):
    consent = Consent.get(consent_id)

    if not consent or consent.subject != user.dn:
        flash(gettext("Could not delete this access"), "error")

    else:
        consent.revoke()
        flash(gettext("The access has been revoked"), "success")

    return redirect(url_for("oidc.consents.consents"))
Renamed the project 'canaille' 2020-10-21 12:04:40 +00:00			`from canaille.flaskutils import user_needed`
split oidc code from the rest 2022-01-11 18:49:06 +00:00			`from canaille.oidc.models import Client`
			`from canaille.oidc.models import Consent`
pre-commit tox test 2021-12-20 22:57:27 +00:00			`from flask import Blueprint`
			`from flask import flash`
			`from flask import redirect`
			`from flask import url_for`
			`from flask_babel import gettext`
			`from flask_themer import render_template`
Consents page 2020-09-17 10:01:21 +00:00
fixed the consent list and authorization pages translations 2022-12-28 00:46:05 +00:00			`from .utils import SCOPE_DETAILS`

Consents page 2020-09-17 10:01:21 +00:00
split oidc code from the rest 2022-01-11 18:49:06 +00:00			`bp = Blueprint("consents", __name__, url_prefix="/consent")`
Consents page 2020-09-17 10:01:21 +00:00

			`@bp.route("/")`
			`@user_needed()`
			`def consents(user):`
LdapObject an have attribute name different than the schema 2022-01-11 16:57:58 +00:00			`consents = Consent.filter(subject=user.dn)`
			`consents = [c for c in consents if not c.revokation_date]`
			`client_dns = list({t.client for t in consents})`
Consents page 2020-09-17 10:01:21 +00:00			`clients = {dn: Client.get(dn) for dn in client_dns}`
Menu items activity 2020-10-21 10:14:35 +00:00			`return render_template(`
split oidc code from the rest 2022-01-11 18:49:06 +00:00			`"oidc/user/consent_list.html",`
			`consents=consents,`
			`clients=clients,`
			`menuitem="consents",`
fixed the consent list and authorization pages translations 2022-12-28 00:46:05 +00:00			`scope_details=SCOPE_DETAILS,`
			`ignored_scopes=["openid"],`
Menu items activity 2020-10-21 10:14:35 +00:00			`)`
Consents page 2020-09-17 10:01:21 +00:00

			`@bp.route("/delete/<consent_id>")`
			`@user_needed()`
			`def delete(user, consent_id):`
			`consent = Consent.get(consent_id)`

LdapObject an have attribute name different than the schema 2022-01-11 16:57:58 +00:00			`if not consent or consent.subject != user.dn:`
Consents page 2020-09-17 10:01:21 +00:00			`flash(gettext("Could not delete this access"), "error")`

			`else:`
			`consent.revoke()`
			`flash(gettext("The access has been revoked"), "success")`

split oidc code from the rest 2022-01-11 18:49:06 +00:00			`return redirect(url_for("oidc.consents.consents"))`