Django 1.11 compatible and cleaned up

author: Markus Krogh <markus@nordu.net> 2017-06-02 13:19:30 +0200
committer: Markus Krogh <markus@nordu.net> 2017-06-02 13:19:30 +0200
commit: 934702f61f1cbdbf001ebb598c22c75efa247645 (patch)
tree: b0c6725a8c8a682b421aa35eea9662d7fff31bd6 /src/pwman
parent: 41afbaae97384968df6312cbe570305208b2216e (diff)
4 files changed, 189 insertions, 0 deletions
diff --git a/src/pwman/__init__.py b/src/pwman/__init__.py
new file mode 100644
index 0000000..e69de29
--- /dev/null
+++ b/src/pwman/__init__.py
diff --git a/src/pwman/settings.py b/src/pwman/settings.py
new file mode 100644
index 0000000..cf7bb69
--- /dev/null
+++ b/src/pwman/settings.py
@@ -0,0 +1,137 @@
+from os.path import abspath, dirname, join, normpath, isfile
+from os import environ
+# Django settings for sso project.
+
+DEBUG = environ.get('DEBUG_MODE', False)
+
+BASE_DIR = dirname(dirname(abspath(__file__)))
+DATA_DIR = environ.get('DATA_DIR', '/opt/pwman')
+
+# Quick-start development settings - unsuitable for production
+# See https://docs.djangoproject.com/en/1.11/howto/deployment/checklist/
+
+
+ALLOWED_HOSTS = ['crowd.nordu.net', 'pwman.nordu.net', 'localhost']
+
+INSTALLED_APPS = [
+    'django.contrib.auth',
+    'django.contrib.contenttypes',
+    'django.contrib.sessions',
+    'django.contrib.messages',
+    'django.contrib.staticfiles',
+    # Uncomment the next line to enable the admin:
+    # 'django.contrib.admin',
+    'apps.changepw',
+    'apps.fedlogin',
+]
+
+MIDDLEWARE = [
+    'django.middleware.security.SecurityMiddleware',
+    'django.middleware.common.CommonMiddleware',
+    'django.contrib.sessions.middleware.SessionMiddleware',
+    'django.contrib.auth.middleware.AuthenticationMiddleware',
+    #'django.contrib.auth.middleware.RemoteUserMiddleware',
+    'django.contrib.auth.middleware.PersistentRemoteUserMiddleware',
+    'django.middleware.csrf.CsrfViewMiddleware',
+    'django.contrib.messages.middleware.MessageMiddleware',
+    'django.middleware.clickjacking.XFrameOptionsMiddleware',
+    'apps.fedlogin.middleware.CustomHeaderMiddleware',
+
+]
+
+AUTHENTICATION_BACKENDS = (
+    'django.contrib.auth.backends.RemoteUserBackend',
+)
+
+ROOT_URLCONF = 'pwman.urls'
+
+TEMPLATES = [
+    {
+        'BACKEND': 'django.template.backends.django.DjangoTemplates',
+        'DIRS': [
+            normpath(join(BASE_DIR, 'templates')),
+        ],
+        'APP_DIRS': True,
+        'OPTIONS': {
+            'context_processors': [
+                'django.template.context_processors.debug',
+                'django.template.context_processors.request',
+                'django.contrib.auth.context_processors.auth',
+                'django.contrib.messages.context_processors.messages',
+            ],
+        },
+    },
+]
+
+
+WSGI_APPLICATION = 'pwman.wsgi.application'
+
+DATABASES = {
+    'default': {
+        'ENGINE': 'django.db.backends.sqlite3',
+        'NAME': join(DATA_DIR, 'database.db'),
+    }
+}
+
+# Password validation
+# https://docs.djangoproject.com/en/1.11/ref/settings/#auth-password-validators
+
+AUTH_PASSWORD_VALIDATORS = [
+    {
+        'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',
+    },
+    {
+        'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator',
+    },
+    {
+        'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator',
+    },
+    {
+        'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator',
+    },
+]
+
+# Local time zone for this installation. Choices can be found here:
+# http://en.wikipedia.org/wiki/List_of_tz_zones_by_name
+# although not all choices may be available on all operating systems.
+# On Unix systems, a value of None will cause Django to use the same
+# timezone as the operating system.
+# If running in a Windows environment this must be set to the same as your
+# system time zone.
+TIME_ZONE = 'Europe/Stockholm'
+
+# Language code for this installation. All choices can be found here:
+# http://www.i18nguy.com/unicode/language-identifiers.html
+LANGUAGE_CODE = 'en-us'
+
+# If you set this to False, Django will make some optimizations so as not
+# to load the internationalization machinery.
+USE_I18N = True
+
+# If you set this to False, Django will not format dates, numbers and
+# calendars according to the current locale
+USE_L10N = True
+
+STATIC_URL = '/sso/static/'
+
+STATICFILES_DIRS = [
+    join(BASE_DIR, "static"),
+]
+
+STATIC_ROOT = join(DATA_DIR, "static")
+
+LOGIN_URL = '/sso/accounts/login-federated/'
+
+# secrets
+LDAP_USER = environ.get('LDAP_USER', 'cn=admin,dc=nordu,dc=net')
+LDAP_PASSWORD = environ.get('LDAP_PASSWORD', '')
+LDAP_URL = environ.get('LDAP_URL', 'ldaps://ldap.nordu.net')
+KERBEROS_SCRIPT = environ.get('KERBEROS_SCRIPT', join(BASE_DIR, 'scripts/create-kdc-principal.pl'))
+
+# SECURITY WARNING: keep the secret key used in production secret!
+_path = environ.get('SECRET_KEY_FILE', join(DATA_DIR, 'secret.txt'))
+if isfile(_path):
+    with open(_path) as f:
+        SECRET_KEY = f.read().strip()
+else:
+    SECRET_KEY = environ.get('SECRET_KEY')
diff --git a/src/pwman/urls.py b/src/pwman/urls.py
new file mode 100644
index 0000000..b98b75f
--- /dev/null
+++ b/src/pwman/urls.py
@@ -0,0 +1,36 @@
+"""pwman URL Configuration
+
+The `urlpatterns` list routes URLs to views. For more information please see:
+    https://docs.djangoproject.com/en/1.11/topics/http/urls/
+Examples:
+Function views
+    1. Add an import:  from my_app import views
+    2. Add a URL to urlpatterns:  url(r'^$', views.home, name='home')
+Class-based views
+    1. Add an import:  from other_app.views import Home
+    2. Add a URL to urlpatterns:  url(r'^$', Home.as_view(), name='home')
+Including another URLconf
+    1. Import the include() function: from django.conf.urls import url, include
+    2. Add a URL to urlpatterns:  url(r'^blog/', include('blog.urls'))
+"""
+from django.conf.urls import url, include
+from django.contrib.auth.views import login
+from apps.fedlogin.views import fedlogout, fedlogin
+
+# Uncomment the next two lines to enable the admin:
+# from django.contrib import admin
+# admin.autodiscover()
+
+urlpatterns = [
+
+    #Fedlogin
+    url(r'^sso/accounts/login/$', login, {'template_name': 'login.html'}, 'login'),
+    url(r'^sso/accounts/logout/$', fedlogout, name='logout'),
+    url(r'^sso/accounts/login-federated/$', fedlogin, name='loginfed'),
+    url(r'^sso/pwman', include('apps.changepw.urls')),
+    # Uncomment the admin/doc line below to enable admin documentation:
+    # (r'^admin/doc/', include('django.contrib.admindocs.urls')),
+
+    # Uncomment the next line to enable the admin:
+    # (r'^admin/', include(admin.site.urls)),
+]
diff --git a/src/pwman/wsgi.py b/src/pwman/wsgi.py
new file mode 100644
index 0000000..3719d7f
--- /dev/null
+++ b/src/pwman/wsgi.py
@@ -0,0 +1,16 @@
+"""
+WSGI config for pwman project.
+
+It exposes the WSGI callable as a module-level variable named ``application``.
+
+For more information on this file, see
+https://docs.djangoproject.com/en/1.11/howto/deployment/wsgi/
+"""
+
+import os
+
+from django.core.wsgi import get_wsgi_application
+
+os.environ.setdefault("DJANGO_SETTINGS_MODULE", "pwman.settings")
+
+application = get_wsgi_application()
author	Markus Krogh <markus@nordu.net>	2017-06-02 13:19:30 +0200
committer	Markus Krogh <markus@nordu.net>	2017-06-02 13:19:30 +0200
commit	934702f61f1cbdbf001ebb598c22c75efa247645 (patch)
tree	b0c6725a8c8a682b421aa35eea9662d7fff31bd6 /src/pwman
parent	41afbaae97384968df6312cbe570305208b2216e (diff)