haiwen/seahub
1
0
Fork 0
mirror of https://github.com/haiwen/seahub.git synced 2025-09-20 02:48:51 +00:00
Code Issues Releases Wiki Activity
Files
ea6c4803e0415e517684ee063ea8fb96c74bba9c
seahub/seahub/api2/endpoints/webdav_secret.py

59 lines
2.0 KiB
Python
Raw Blame History

# Copyright (c) 2012-2016 Seafile Ltd.
import logging
from django.conf import settings
from rest_framework import status
from rest_framework.authentication import SessionAuthentication
from rest_framework.permissions import IsAuthenticated
from rest_framework.response import Response
from rest_framework.views import APIView
from django.utils.translation import ugettext as _
from seahub.api2.authentication import TokenAuthentication
from seahub.api2.throttling import UserRateThrottle
from seahub.api2.utils import api_error
from seahub.options.models import UserOptions
from seahub.utils.hasher import AESPasswordHasher
# Get an instance of a logger
logger = logging.getLogger(__name__)
class WebdavSecretView(APIView):
authentication_classes = (TokenAuthentication, SessionAuthentication)
permission_classes = (IsAuthenticated, )
throttle_classes = (UserRateThrottle, )
def get(self, request, format=None):
if not settings.ENABLE_WEBDAV_SECRET:
return api_error(status.HTTP_403_FORBIDDEN,
'Feature is not enabled.')
username = request.user.username
decoded = UserOptions.objects.get_webdav_decoded_secret(username)
return Response({
'secret': decoded,
})
def put(self, request, format=None):
if not settings.ENABLE_WEBDAV_SECRET:
return api_error(status.HTTP_403_FORBIDDEN,
'Feature is not enabled.')
aes = AESPasswordHasher()
username = request.user.username
secret = request.data.get("secret", None)
if len(secret) >= 30:
return api_error(status.HTTP_400_BAD_REQUEST,
_("Length of WebDav password should be less then 30."))
if secret:
encoded = aes.encode(secret)
UserOptions.objects.set_webdav_secret(username, encoded)
else:
UserOptions.objects.unset_webdav_secret(username)
return self.get(request, format)
Reference in New Issue View Git Blame Copy Permalink