1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
|
import hashlib
from time import time
from datetime import datetime
from urllib import urlopen, urlencode
from forum.authentication.base import AuthenticationConsumer, ConsumerTemplateContext, InvalidAuthentication
from django.utils.translation import ugettext as _
import settings
try:
from json import load as load_json
except:
from django.utils.simplejson import JSONDecoder
def load_json(json):
decoder = JSONDecoder()
return decoder.decode(json.read())
class FacebookAuthConsumer(AuthenticationConsumer):
def process_authentication_request(self, request):
API_KEY = settings.FB_API_KEY
if API_KEY in request.COOKIES:
if self.check_cookies_signature(request.COOKIES):
if self.check_session_expiry(request.COOKIES):
return request.COOKIES[API_KEY + '_user']
else:
raise InvalidAuthentication(_('Sorry, your Facebook session has expired, please try again'))
else:
raise InvalidAuthentication(_('The authentication with Facebook connect failed due to an invalid signature'))
else:
raise InvalidAuthentication(_('The authentication with Facebook connect failed, cannot find authentication tokens'))
def generate_signature(self, values):
keys = []
for key in sorted(values.keys()):
keys.append(key)
signature = ''.join(['%s=%s' % (key, values[key]) for key in keys]) + settings.FB_APP_SECRET
return hashlib.md5(signature).hexdigest()
def check_session_expiry(self, cookies):
return datetime.fromtimestamp(float(cookies[settings.FB_API_KEY+'_expires'])) > datetime.now()
def check_cookies_signature(self, cookies):
API_KEY = settings.FB_API_KEY
values = {}
for key in cookies.keys():
if (key.startswith(API_KEY + '_')):
values[key.replace(API_KEY + '_', '')] = cookies[key]
return self.generate_signature(values) == cookies[API_KEY]
def get_user_data(self, key):
request_data = {
'method': 'Users.getInfo',
'api_key': settings.FB_API_KEY,
'call_id': time(),
'v': '1.0',
'uids': key,
'fields': 'name,first_name,last_name,email',
'format': 'json',
}
request_data['sig'] = self.generate_signature(request_data)
fb_response = load_json(urlopen(settings.REST_SERVER, urlencode(request_data)))[0]
return {
'username': fb_response['first_name'] + ' ' + fb_response['last_name'],
'email': fb_response['email']
}
class FacebookAuthContext(ConsumerTemplateContext):
mode = 'BIGICON'
type = 'CUSTOM'
weight = 100
human_name = 'Facebook'
code_template = 'modules/facebookauth/button.html'
extra_css = ["http://www.facebook.com/css/connect/connect_button.css"]
API_KEY = settings.FB_API_KEY
|