Всем привет!хочу сделать 2 вида аутентификации для приложения: локальная и LDAPс локальной аутентификацией вопросов не возникает, тут всё понятнопо поводу интеграции с LDAP, взял этот сниппетвот моя страница логина:
.back_color {
background: #B5B5B5;
}
.login_module {
margin: 15% auto 0;
width: 29%;
background: #FF7F00;
padding: 5px;
padding-right: 20px;
float: none;
}
.error {
color: white;
}
{% csrf_token %}
:
:
LDAP
{% if errors %}
{{ errors }}
{% endif %}
вот описание представлений:
# -- coding: utf-8 --
from django.contrib import auth
from django.http import HttpResponseRedirect, HttpResponse
#from django.contrib.auth import authenticate, login
from django.shortcuts import render_to_response
from django.template import RequestContext
import auth_ldap
def userlogin(request, template_name):
if request.method == "POST" :
username = request.POST['username']
password = request.POST['password']
# if auth type is local
if request.POST['Auth'] == 'localuser':
user = auth.authenticate(username=username, password=password)
if user is not None:
if user.is_active:
auth.login(request, user)
if username == 'admin':
return HttpResponseRedirect("/admin/")
else:
return HttpResponse(request.POST['Auth'])
else:
errors = u' '
return render_to_response('login.html', {'errors': errors}, context_instance=RequestContext(request))
else:
errors = u' '
return render_to_response('login.html', {'errors': errors}, context_instance=RequestContext(request))
# if auth type is LDAP
else:
aLDAP = auth_ldap.ActiveDirectoryBackend()
user = aLDAP.authenticate(username=username, password=password)
if user is not None:
auth.login(request, user)
return HttpResponse(request.POST['Auth'])
else:
errors = u' '
return render_to_response('login.html', {'errors': errors}, context_instance=RequestContext(request))
else:
return render_to_response('login.html', context_instance=RequestContext(request))
вот файл settings (в самом конце настройки LDAP):
# Django settings for interface project.
DEBUG = True
TEMPLATE_DEBUG = DEBUG
ADMINS = (
# ('Your Name', 'your_email@example.com'),
)
MANAGERS = ADMINS
DATABASES = {
'default': {
'ENGINE': 'django.db.backends.oracle', # Add 'postgresql_psycopg2', 'mysql', 'sqlite3' or 'oracle'.
'NAME': 'имябазы', # Or path to database file if using sqlite3.
'USER': 'юзер', # Not used with sqlite3.
'PASSWORD': 'пароль', # Not used with sqlite3.
'HOST': 'айпи', # Set to empty string for localhost. Not used with sqlite3.
'PORT': '1521', # Set to empty string for default. Not used with sqlite3.
}
}
# Local time zone for this installation. Choices can be found here:
# http://en.wikipedia.org/wiki/List_of_tz_zones_by_name
# although not all choices may be available on all operating systems.
# In a Windows environment this must be set to your system time zone.
TIME_ZONE = 'Europe/Moscow'
# Language code for this installation. All choices can be found here:
# http://www.i18nguy.com/unicode/language-identifiers.html
LANGUAGE_CODE = 'en-us'
SITE_ID = 1
# If you set this to False, Django will make some optimizations so as not
# to load the internationalization machinery.
USE_I18N = True
# If you set this to False, Django will not format dates, numbers and
# calendars according to the current locale.
USE_L10N = True
# If you set this to False, Django will not use timezone-aware datetimes.
USE_TZ = True
# Absolute filesystem path to the directory that will hold user-uploaded files.
# Example: "/home/media/media.lawrence.com/media/"
MEDIA_ROOT = ''
# URL that handles the media served from MEDIA_ROOT. Make sure to use a
# trailing slash.
# Examples: "http://media.lawrence.com/media/", "http://example.com/media/"
MEDIA_URL = ''
# Absolute path to the directory static files should be collected to.
# Don't put anything in this directory yourself; store your static files
# in apps' "static/" subdirectories and in STATICFILES_DIRS.
# Example: "/home/media/media.lawrence.com/static/"
STATIC_ROOT = ''
# URL prefix for static files.
# Example: "http://media.lawrence.com/static/"
STATIC_URL = '/static/'
# Additional locations of static files
STATICFILES_DIRS = (
# Put strings here, like "/home/html/static" or "C:/www/django/static".
# Always use forward slashes, even on Windows.
# Don't forget to use absolute paths, not relative paths.
)
# List of finder classes that know how to find static files in
# various locations.
STATICFILES_FINDERS = (
'django.contrib.staticfiles.finders.FileSystemFinder',
'django.contrib.staticfiles.finders.AppDirectoriesFinder',
# 'django.contrib.staticfiles.finders.DefaultStorageFinder',
)
# Make this unique, and don't share it with anybody.
SECRET_KEY = 'mh4zg+li_x@b-%qpu&*a6dk^+!gq$nft*n=hgx-*r$ns4=9$h+'
# List of callables that know how to import templates from various sources.
TEMPLATE_LOADERS = (
'django.template.loaders.filesystem.Loader',
'django.template.loaders.app_directories.Loader',
# 'django.template.loaders.eggs.Loader',
)
MIDDLEWARE_CLASSES = (
'django.middleware.common.CommonMiddleware',
'django.contrib.sessions.middleware.SessionMiddleware',
'django.middleware.csrf.CsrfViewMiddleware',
'django.contrib.auth.middleware.AuthenticationMiddleware',
'django.contrib.messages.middleware.MessageMiddleware',
# Uncomment the next line for simple clickjacking protection:
# 'django.middleware.clickjacking.XFrameOptionsMiddleware',
)
ROOT_URLCONF = 'interface.urls'
# Python dotted path to the WSGI application used by Django's runserver.
WSGI_APPLICATION = 'interface.wsgi.application'
TEMPLATE_DIRS = (
# Put strings here, like "/home/html/django_templates" or "C:/www/django/templates".
# Always use forward slashes, even on Windows.
# Don't forget to use absolute paths, not relative paths.
'/distr/akrillis/interface/templates',
'/distr/akrillis/interface/registration',
'/distr/akrillis/interface',
)
INSTALLED_APPS = (
'django.contrib.auth',
'django.contrib.contenttypes',
'django.contrib.sessions',
'django.contrib.sites',
'django.contrib.messages',
'django.contrib.staticfiles',
# Uncomment the next line to enable the admin:
'django.contrib.admin',
# Uncomment the next line to enable admin documentation:
'django.contrib.admindocs',
)
# A sample logging configuration. The only tangible logging
# performed by this configuration is to send an email to
# the site admins on every HTTP 500 error when DEBUG=False.
# See http://docs.djangoproject.com/en/dev/topics/logging for
# more details on how to customize your logging configuration.
LOGGING = {
'version': 1,
'disable_existing_loggers': False,
'filters': {
'require_debug_false': {
'()': 'django.utils.log.RequireDebugFalse'
}
},
'handlers': {
'mail_admins': {
'level': 'ERROR',
'filters': ['require_debug_false'],
'class': 'django.utils.log.AdminEmailHandler'
},
'my_log': {
'level':'DEBUG',
'class':'logging.handlers.RotatingFileHandler',
'filename': '/distr/akrillis/interface/logs/mylog.log',
'maxBytes': 1024*1024*5, # 5 MB
'backupCount': 5,
},
},
'loggers': {
'': {
'handlers': ['my_log'],
'level': 'DEBUG',
'propagate': True
},
'django.request': {
'handlers': ['mail_admins'],
'level': 'ERROR',
'propagate': True,
},
}
}
### ACTIVE DIRECTORY SETTINGS
# AD_DNS_NAME should set to the AD DNS name of the domain (ie; example.com)
# If you are not using the AD server as your DNS, it can also be set to
# FQDN or IP of the AD server.
AD_DNS_NAME = '1айпи'
AD_LDAP_PORT = 389
AD_SEARCH_DN = 'CN=Users,dc=mobicont,dc=local'
# This is the NT4/Samba domain name
AD_NT4_DOMAIN = 'MOBICONT'
AD_SEARCH_FIELDS = ['mail','givenName','sn','sAMAccountName']
AD_LDAP_URL = 'ldap://%s:%s' % (AD_DNS_NAME,AD_LDAP_PORT)
AUTHENTICATION_BACKENDS = ('interface.auth_ldap.ActiveDirectoryBackend',
'django.contrib.auth.backends.ModelBackend',
)
до AD достучаться получается, локально создаётся пользователь с пустым паролем, только авторизовываться он не хочет:
Exception Type: AttributeError
Exception Value: 'User' object has no attribute 'backend'
на строке auth.login(request, user)в связи с этим вопрос: как решить эту проблему?
