mirror of
https://github.com/postgres/pgweb.git
synced 2025-08-06 09:57:57 +00:00
30 lines
1.2 KiB
Python
30 lines
1.2 KiB
Python
from django.contrib.auth.models import User
|
|
from django.contrib.auth.backends import ModelBackend
|
|
|
|
|
|
# Special version of the authentication backend, so we can handle things like
|
|
# forced lowercasing of usernames.
|
|
class AuthBackend(ModelBackend):
|
|
def authenticate(self, request, username=None, password=None):
|
|
try:
|
|
# We don't allow @ signs in usernames (see accounts/forms.py), so if there is one
|
|
# specified then the user is clearly trying to log in with an email address,
|
|
# so look up by that.
|
|
if '@' in username:
|
|
user = User.objects.get(email=username.lower())
|
|
else:
|
|
user = User.objects.get(username=username.lower())
|
|
|
|
# If user is found, check the password using the django
|
|
# methods alone.
|
|
if user.check_password(password):
|
|
return user
|
|
|
|
# User found but password wrong --> tell django it is wrong
|
|
return None
|
|
except User.DoesNotExist:
|
|
# User not found, so clearly they can't log in!
|
|
return None
|
|
|
|
return None # Should never get here, but just in case...
|