+ def configure_user(self, user, ):
+ username = user.username
+ user.set_unusable_password()
+ con = ldap.open('ldap-too.mit.edu')
+ con.simple_bind_s("", "")
+ dn = "dc=mit,dc=edu"
+ fields = ['cn', 'sn', 'givenName', 'mail', ]
+ userfilter = ldap.filter.filter_format('uid=%s', [username])
+ result = con.search_s('dc=mit,dc=edu', ldap.SCOPE_SUBTREE, userfilter, fields)
+ if len(result) == 1:
+ user.first_name = result[0][1]['givenName'][0]
+ user.last_name = result[0][1]['sn'][0]
+ try:
+ user.email = result[0][1]['mail'][0]
+ except KeyError:
+ user.email = username + '@mit.edu'
+ try:
+ user.groups.add(auth.models.Group.objects.get(name='mit'))
+ except ObjectDoesNotExist:
+ print "Failed to retrieve mit group"
+ else:
+ raise ValueError, ("Could not find user with username '%s' (filter '%s')"%(username, userfilter))
+ try:
+ user.groups.add(auth.models.Group.objects.get(name='autocreated'))
+ except ObjectDoesNotExist:
+ print "Failed to retrieve autocreated group"
+ user.save()
+ return user
+
+def get_or_create_mit_user(username, ):
+ """
+ Given an MIT username, return a Django user object for them.
+ If necessary, create (and save) the Django user for them.
+ If the MIT user doesn't exist, raises ValueError.
+ """
+ user, created = auth.models.User.objects.get_or_create(username=username, )
+ if created:
+ backend = ScriptsRemoteUserBackend()
+ # Raises ValueError if the user doesn't exist
+ try:
+ return backend.configure_user(user), created
+ except ValueError:
+ user.delete()
+ raise
+ else:
+ return user, created
+
+def scripts_login(request, **kwargs):
+ host = request.META['HTTP_HOST'].split(':')[0]
+ if host in ('localhost', '127.0.0.1'):
+ return login(request, **kwargs)
+ elif request.META['SERVER_PORT'] == '444':
+ if request.user.is_authenticated():
+ # They're already authenticated --- go ahead and redirect
+ if 'redirect_field_name' in kwargs:
+ redirect_field_name = kwargs['redirect_field_names']
+ else:
+ from django.contrib.auth import REDIRECT_FIELD_NAME
+ redirect_field_name = REDIRECT_FIELD_NAME
+ redirect_to = request.REQUEST.get(redirect_field_name, '')
+ if not redirect_to or '//' in redirect_to or ' ' in redirect_to:
+ redirect_to = settings.LOGIN_REDIRECT_URL
+ return HttpResponseRedirect(redirect_to)
+ else:
+ return login(request, **kwargs)
+ else:
+ # Move to port 444
+ redirect_to = "https://%s:444%s" % (host, request.META['REQUEST_URI'], )
+ return HttpResponseRedirect(redirect_to)