django使用ldap登录认证
2017-05-26 10:04
323 查看
1、重写认证过程
#coding:utf-8
from django.contrib.auth.models import User
import ldap
from django.contrib.auth import authenticate as authenticate_old
from xxxxxxxx.settings import ldapserver,mail_postfix ,se_dn,se_pw,base_dn,attrs,filter
#########################myclass
ldapserver='ldap://10.225.2.111:389'
#dn='CN=Users,DC=xxxx,DC=inc'
mail_postfix='@xxxx.com'
base_dn="OU=技术部,OU=xxxx,DC=xxxx,DC=inc"
se_dn='CN=xx,CN=Users,DC=xxxx,DC=inc'
se_pw='eds.ebj1'
attrs=['mailNickname','mobile']
filter = '(objectclass=person)'
class myldapBackend:
def authenticate(self,username=None,password=None):
if len(password) == 0:
return None
con = ldap.initialize(ldapserver)
try:
r1 = con.simple_bind_s( se_dn, se_pw )
#print r1
search_result = con.search_s( base_dn, ldap.SCOPE_SUBTREE, filter, attrs )
for i in search_result:
if i[1]['mailNickname'][0] == username:
x = i
dn=i[0]
result=con.simple_bind_s( dn, password )
break
else:
pass
if result:
pass
else:
return authenticate_old(username=username,password=password)
except:
return authenticate_old(username=username,password=password)
if result[0] == 97:
return self.get_or_create_user(username,password,dn,x)
else:
return None
def get_or_create_user(self, username, password, dn, i):
try:
user = User.objects.get(username=username)
except User.DoesNotExist:
mail = username + mail_postfix
user = User(username=username,email=mail)
user.is_staff = True
user.is_superuser = False
user.set_password('ldap a authenticated')
user.save()
return user
2、修改登录视图:
def login(req):
if req.method == 'POST':
uf = UserForm(req.POST)
if uf.is_valid():
username = uf.cleaned_data['username']
password = uf.cleaned_data['password']
a=myldapBackend()
user = a.authenticate(username=username, password=password)
print user
if user:
user.backend = 'django.contrib.auth.backends.ModelBackend'
if user.is_active:
user_login(req,user)
response = HttpResponseRedirect("/home/")
req.session["uid"] = user.id
#response.set_cookie('user_id',user.id)
return response
else:
return HttpResponseRedirect('/login/')
else:
uf = UserForm()
return render_to_response('login.html',{'uf':uf})
#coding:utf-8
from django.contrib.auth.models import User
import ldap
from django.contrib.auth import authenticate as authenticate_old
from xxxxxxxx.settings import ldapserver,mail_postfix ,se_dn,se_pw,base_dn,attrs,filter
#########################myclass
ldapserver='ldap://10.225.2.111:389'
#dn='CN=Users,DC=xxxx,DC=inc'
mail_postfix='@xxxx.com'
base_dn="OU=技术部,OU=xxxx,DC=xxxx,DC=inc"
se_dn='CN=xx,CN=Users,DC=xxxx,DC=inc'
se_pw='eds.ebj1'
attrs=['mailNickname','mobile']
filter = '(objectclass=person)'
class myldapBackend:
def authenticate(self,username=None,password=None):
if len(password) == 0:
return None
con = ldap.initialize(ldapserver)
try:
r1 = con.simple_bind_s( se_dn, se_pw )
#print r1
search_result = con.search_s( base_dn, ldap.SCOPE_SUBTREE, filter, attrs )
for i in search_result:
if i[1]['mailNickname'][0] == username:
x = i
dn=i[0]
result=con.simple_bind_s( dn, password )
break
else:
pass
if result:
pass
else:
return authenticate_old(username=username,password=password)
except:
return authenticate_old(username=username,password=password)
if result[0] == 97:
return self.get_or_create_user(username,password,dn,x)
else:
return None
def get_or_create_user(self, username, password, dn, i):
try:
user = User.objects.get(username=username)
except User.DoesNotExist:
mail = username + mail_postfix
user = User(username=username,email=mail)
user.is_staff = True
user.is_superuser = False
user.set_password('ldap a authenticated')
user.save()
return user
2、修改登录视图:
def login(req):
if req.method == 'POST':
uf = UserForm(req.POST)
if uf.is_valid():
username = uf.cleaned_data['username']
password = uf.cleaned_data['password']
a=myldapBackend()
user = a.authenticate(username=username, password=password)
print user
if user:
user.backend = 'django.contrib.auth.backends.ModelBackend'
if user.is_active:
user_login(req,user)
response = HttpResponseRedirect("/home/")
req.session["uid"] = user.id
#response.set_cookie('user_id',user.id)
return response
else:
return HttpResponseRedirect('/login/')
else:
uf = UserForm()
return render_to_response('login.html',{'uf':uf})
相关文章推荐
- Django使用ldap认证登录
- 使用外部LDAP用户认证后,DJANGO用户如何作登陆的操作?
- django使用邮箱账号密码做用户登录认证,启用加密
- 关于AD域在通过LDAP认证登录时密码修改后还可使用旧密码正常登录问题解决方法 推荐
- CAS 使用 ESUP 插件认证 LDAP 用户的单点登录
- [原创]django+ldap+memcache实现单点登录+统一认证
- 使用django的用户帐号登录openfire
- Apache使用SQL Server Express 2005保存登录认证帐户信息
- Video : 将使用AD认证的SharePoint网站配置为表单方式登录
- 使用django的用户帐号登录openfire
- C# LDAP认证登录
- Video : 将使用AD认证的SharePoint网站配置为表单方式登录
- jenkins 使用ldap认证
- django的用户认证管理,如何使用session(1)
- 牛腩购物12 :整合用户登录页 用到 asp.net 内置票据认证控件的使用(用户登录 用户权限) 用户控件ascx 设置/获取RadioButtonList 和RadioButton
- 详解Redis使用认证密码登录
- 在Tomcat 5.5 中使用 LDAP 进行用户认证
- php使用ldap模块登录windows的ad域控