django-oidc-provider/oidc_provider/admin.py

from hashlib import sha224
from random import randint
from uuid import uuid4

from django.forms import ModelForm
from django.contrib import admin
from django.utils.translation import ugettext_lazy as _

from oidc_provider.models import Client, Code, Token, RSAKey


class ClientForm(ModelForm):

    class Meta:
        model = Client
        exclude = []

    def __init__(self, *args, **kwargs):
        super(ClientForm, self).__init__(*args, **kwargs)
        self.fields['client_id'].required = False
        self.fields['client_id'].widget.attrs['disabled'] = 'true'
        self.fields['client_secret'].required = False
        self.fields['client_secret'].widget.attrs['disabled'] = 'true'

    def clean_client_id(self):
        instance = getattr(self, 'instance', None)
        if instance and instance.pk:
            return instance.client_id
        else:
            return str(randint(1, 999999)).zfill(6)

    def clean_client_secret(self):
        instance = getattr(self, 'instance', None)

        secret = ''

        if instance and instance.pk:
            if (self.cleaned_data['client_type'] == 'confidential') and not instance.client_secret:
                secret = sha224(uuid4().hex.encode()).hexdigest()
            elif (self.cleaned_data['client_type'] == 'confidential') and instance.client_secret:
                secret = instance.client_secret
        else:
            if (self.cleaned_data['client_type'] == 'confidential'):
                secret = sha224(uuid4().hex.encode()).hexdigest()

        return secret


@admin.register(Client)
class ClientAdmin(admin.ModelAdmin):

    fieldsets = [
        [_(u''), {
            'fields': (
                'name', 'owner', 'client_type', 'response_types', '_redirect_uris', 'jwt_alg',
                'require_consent', 'reuse_consent'),
        }],
        [_(u'Credentials'), {
            'fields': ('client_id', 'client_secret', '_scope'),
        }],
        [_(u'Information'), {
            'fields': ('contact_email', 'website_url', 'terms_url', 'logo', 'date_created'),
        }],
        [_(u'Session Management'), {
            'fields': ('_post_logout_redirect_uris',),
        }],
    ]
    form = ClientForm
    list_display = ['name', 'client_id', 'response_type_descriptions', 'date_created']
    readonly_fields = ['date_created']
    search_fields = ['name']
    raw_id_fields = ['owner']


@admin.register(Code)
class CodeAdmin(admin.ModelAdmin):

    def has_add_permission(self, request):
        return False


@admin.register(Token)
class TokenAdmin(admin.ModelAdmin):

    def has_add_permission(self, request):
        return False


@admin.register(RSAKey)
class RSAKeyAdmin(admin.ModelAdmin):

    readonly_fields = ['kid']
Generate bigger secret with sha224. 2016-10-26 20:04:12 +00:00			`from hashlib import sha224`
Auto-generate client_id and client_secret in the admin. 2016-01-11 19:04:04 +00:00			`from random import randint`
			`from uuid import uuid4`

			`from django.forms import ModelForm`
Adding models into the admin 2015-04-17 20:02:10 +00:00			`from django.contrib import admin`
Add more attr to Client object. 2016-09-09 18:57:25 +00:00			`from django.utils.translation import ugettext_lazy as _`
Bump version 0.0.4. 2015-04-22 14:53:19 +00:00
Implementation of RSA Keys using Models. Also providing DOC. 2016-01-25 20:52:24 +00:00			`from oidc_provider.models import Client, Code, Token, RSAKey`

Bump version 0.0.4. 2015-04-22 14:53:19 +00:00
Auto-generate client_id and client_secret in the admin. 2016-01-11 19:04:04 +00:00			`class ClientForm(ModelForm):`

			`class Meta:`
			`model = Client`
			`exclude = []`

			`def __init__(self, args, *kwargs):`
			`super(ClientForm, self).__init__(args, *kwargs)`
			`self.fields['client_id'].required = False`
			`self.fields['client_id'].widget.attrs['disabled'] = 'true'`
			`self.fields['client_secret'].required = False`
			`self.fields['client_secret'].widget.attrs['disabled'] = 'true'`

			`def clean_client_id(self):`
			`instance = getattr(self, 'instance', None)`
			`if instance and instance.pk:`
			`return instance.client_id`
			`else:`
			`return str(randint(1, 999999)).zfill(6)`

			`def clean_client_secret(self):`
			`instance = getattr(self, 'instance', None)`
Improve handle of client_secret with client_types. 2016-04-05 21:31:08 +00:00
			`secret = ''`

Auto-generate client_id and client_secret in the admin. 2016-01-11 19:04:04 +00:00			`if instance and instance.pk:`
Improve handle of client_secret with client_types. 2016-04-05 21:31:08 +00:00			`if (self.cleaned_data['client_type'] == 'confidential') and not instance.client_secret:`
Generate bigger secret with sha224. 2016-10-26 20:04:12 +00:00			`secret = sha224(uuid4().hex.encode()).hexdigest()`
Improve handle of client_secret with client_types. 2016-04-05 21:31:08 +00:00			`elif (self.cleaned_data['client_type'] == 'confidential') and instance.client_secret:`
			`secret = instance.client_secret`
Auto-generate client_id and client_secret in the admin. 2016-01-11 19:04:04 +00:00			`else:`
Fix bug when creating first time client public. 2016-09-07 15:30:20 +00:00			`if (self.cleaned_data['client_type'] == 'confidential'):`
Generate bigger secret with sha224. 2016-10-26 20:04:12 +00:00			`secret = sha224(uuid4().hex.encode()).hexdigest()`
Improve handle of client_secret with client_types. 2016-04-05 21:31:08 +00:00
			`return secret`
Auto-generate client_id and client_secret in the admin. 2016-01-11 19:04:04 +00:00
Adding models into the admin 2015-04-17 20:02:10 +00:00
Improve admin models. 2015-12-04 16:55:04 +00:00			`@admin.register(Client)`
			`class ClientAdmin(admin.ModelAdmin):`
Fix bug when creating first time client public. 2016-09-07 15:30:20 +00:00
Add more attr to Client object. 2016-09-09 18:57:25 +00:00			`fieldsets = [`
			`[_(u''), {`
Add pep8 compliance and checker 2017-08-08 22:41:42 +00:00			`'fields': (`
support multiple response types per client The Dynamic Client Registration spec specifies multiple response_types and grant_types per client (https://openid.net/specs/openid-connect-registration-1_0.html#ClientMetadata). Since grant_types can be inferred from response_types we should be able to support both without needing to store grant_types. This also helps with oidc-client-js which expects a client that supports both "id_token" and "id_token token". 2018-08-15 20:43:48 +00:00			`'name', 'owner', 'client_type', 'response_types', '_redirect_uris', 'jwt_alg',`
Add owner field to Client (#211) * Add owner field to Client * Add related_name to client owner 2017-11-09 10:57:22 +00:00			`'require_consent', 'reuse_consent'),`
Add more attr to Client object. 2016-09-09 18:57:25 +00:00			`}],`
			`[_(u'Credentials'), {`
Client credentials implementation. 2018-04-08 20:43:24 +00:00			`'fields': ('client_id', 'client_secret', '_scope'),`
Add more attr to Client object. 2016-09-09 18:57:25 +00:00			`}],`
			`[_(u'Information'), {`
			`'fields': ('contact_email', 'website_url', 'terms_url', 'logo', 'date_created'),`
			`}],`
Add post_logout_redirect_uris for Client model. 2016-10-31 19:36:58 +00:00			`[_(u'Session Management'), {`
			`'fields': ('_post_logout_redirect_uris',),`
			`}],`
Add more attr to Client object. 2016-09-09 18:57:25 +00:00			`]`
Auto-generate client_id and client_secret in the admin. 2016-01-11 19:04:04 +00:00			`form = ClientForm`
support multiple response types per client The Dynamic Client Registration spec specifies multiple response_types and grant_types per client (https://openid.net/specs/openid-connect-registration-1_0.html#ClientMetadata). Since grant_types can be inferred from response_types we should be able to support both without needing to store grant_types. This also helps with oidc-client-js which expects a client that supports both "id_token" and "id_token token". 2018-08-15 20:43:48 +00:00			`list_display = ['name', 'client_id', 'response_type_descriptions', 'date_created']`
Auto-generate client_id and client_secret in the admin. 2016-01-11 19:04:04 +00:00			`readonly_fields = ['date_created']`
Improve admin models. 2015-12-04 16:55:04 +00:00			`search_fields = ['name']`
Add owner field to Client (#211) * Add owner field to Client * Add related_name to client owner 2017-11-09 10:57:22 +00:00			`raw_id_fields = ['owner']`
Improve admin models. 2015-12-04 16:55:04 +00:00

			`@admin.register(Code)`
			`class CodeAdmin(admin.ModelAdmin):`
Fix bug when creating first time client public. 2016-09-07 15:30:20 +00:00
Improve admin models. 2015-12-04 16:55:04 +00:00			`def has_add_permission(self, request):`
			`return False`


			`@admin.register(Token)`
			`class TokenAdmin(admin.ModelAdmin):`
Fix bug when creating first time client public. 2016-09-07 15:30:20 +00:00
Improve admin models. 2015-12-04 16:55:04 +00:00			`def has_add_permission(self, request):`
			`return False`
Implementation of RSA Keys using Models. Also providing DOC. 2016-01-25 20:52:24 +00:00

			`@admin.register(RSAKey)`
			`class RSAKeyAdmin(admin.ModelAdmin):`

			`readonly_fields = ['kid']`