From 9ee0565ac41661a0521630fbfe1ea9e896fcec52 Mon Sep 17 00:00:00 2001 From: "Jose M. Guisado" Date: Fri, 5 Mar 2021 11:06:11 +0100 Subject: Add login Ogcp requires a simple login page in order to avoid exposure of the ogServer API to anyone trying to access the web page. Because the main authorization mechanism in ogServer is the api token the login implemented for the ogcp does not include registration process but a single user and password specified in the ogcp.json. "USER": "user", "PASS": "pass" Adds two new views: /login and /logout. They are used to login the user so that the rest of views regarding ogServer functionality can be accessed in a "login required" fashion. Index view (/) is an exception, it can be accessed logged in or not so different data can be displayed. Templates can now access a variable "current_user" to get information about login status. This is a Flask-Login feature. - Templates regarding login can be found in templates/auth/ - Login form is defined in forms/auth.py to separate it from action_forms.py - Adds Flask-Login module to requirements.txt - Adds default user and pass in ogcp.json --- ogcp/forms/auth.py | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) create mode 100644 ogcp/forms/auth.py (limited to 'ogcp/forms') diff --git a/ogcp/forms/auth.py b/ogcp/forms/auth.py new file mode 100644 index 0000000..8c84e84 --- /dev/null +++ b/ogcp/forms/auth.py @@ -0,0 +1,20 @@ +from wtforms import ( + Form, SubmitField, HiddenField, SelectField, BooleanField, IntegerField, + StringField, RadioField, PasswordField +) +from wtforms.validators import InputRequired +from flask_wtf import FlaskForm +from flask_babel import _ + +class LoginForm(FlaskForm): + user = StringField( + label=_('User'), + validators=[InputRequired()] + ) + pwd = PasswordField( + label=_('Password'), + validators=[InputRequired()] + ) + submit = SubmitField( + label=_('Login') + ) -- cgit v1.2.3-18-g5258