Merge "leverage LFID as Authentication"

author: Serena Feng <feng.xiaowei@zte.com.cn> 2017-09-04 01:08:34 +0000
committer: Gerrit Code Review <gerrit@opnfv.org> 2017-09-04 01:08:34 +0000
commit: a137b9d89ae9e982e5edd33670c040fc4d8603c7 (patch)
tree: fd27805248663d79e7da62e2619381d2d2b4f6c8 /utils/test/testapi/opnfv_testapi/common/check.py
parent: 3402a07a0887038f54d1ea6ceb37a71bc6ec84a4 (diff)
parent: 16055e19d8d3f6cfc85a443703dabded8bee57bd (diff)
1 files changed, 35 insertions, 0 deletions
diff --git a/utils/test/testapi/opnfv_testapi/common/check.py b/utils/test/testapi/opnfv_testapi/common/check.py
index 24ba876a9..009d3d46c 100644
--- a/utils/test/testapi/opnfv_testapi/common/check.py
+++ b/utils/test/testapi/opnfv_testapi/common/check.py
@@ -8,14 +8,49 @@
 ##############################################################################
 import functools
 
+import cas
 from tornado import gen
 from tornado import web
 
+from opnfv_testapi.common import constants
 from opnfv_testapi.common import message
 from opnfv_testapi.common import raises
+from opnfv_testapi.common.config import CONF
 from opnfv_testapi.db import api as dbapi
 
 
+def login(method):
+    @web.asynchronous
+    @gen.coroutine
+    @functools.wraps(method)
+    def wrapper(self, *args, **kwargs):
+        ticket = self.get_query_argument('ticket', default=None)
+        if ticket:
+            client = cas.CASClient(version='2',
+                                   server_url=CONF.lfid_cas_url,
+                                   service_url=CONF.ui_url)
+            (user, attrs, _) = client.verify_ticket(ticket=ticket)
+            print 'login user: {}'.format(user)
+            login_user = {
+                'user': user,
+                'email': attrs.get('mail'),
+                'fullname': attrs.get('field_lf_full_name'),
+                'groups': constants.TESTAPI_USERS + attrs.get('group', [])
+            }
+            q_user = {'user': user}
+            db_user = yield dbapi.db_find_one(constants.USER_TABLE, q_user)
+            if not db_user:
+                dbapi.db_save(constants.USER_TABLE, login_user)
+            else:
+                dbapi.db_update(constants.USER_TABLE, q_user, login_user)
+
+            self.clear_cookie(constants.TESTAPI_ID)
+            self.set_secure_cookie(constants.TESTAPI_ID, user)
+        ret = yield gen.coroutine(method)(self, *args, **kwargs)
+        raise gen.Return(ret)
+    return wrapper
+
+
 def authenticate(method):
     @web.asynchronous
     @gen.coroutine
author	Serena Feng <feng.xiaowei@zte.com.cn>	2017-09-04 01:08:34 +0000
committer	Gerrit Code Review <gerrit@opnfv.org>	2017-09-04 01:08:34 +0000
commit	a137b9d89ae9e982e5edd33670c040fc4d8603c7 (patch)
tree	fd27805248663d79e7da62e2619381d2d2b4f6c8 /utils/test/testapi/opnfv_testapi/common/check.py
parent	3402a07a0887038f54d1ea6ceb37a71bc6ec84a4 (diff)
parent	16055e19d8d3f6cfc85a443703dabded8bee57bd (diff)