django-oidc-provider/oidc_provider/models.py

# -*- coding: utf-8 -*-
from hashlib import md5
import json

from django.db import models
from django.utils import timezone
from django.utils.translation import ugettext_lazy as _
from django.conf import settings


class Client(models.Model):

    CLIENT_TYPE_CHOICES = [
        ('confidential', 'Confidential'),
        ('public', 'Public'),
    ]

    RESPONSE_TYPE_CHOICES = [
        ('code', 'code (Authorization Code Flow)'),
        ('id_token', 'id_token (Implicit Flow)'),
        ('id_token token', 'id_token token (Implicit Flow)'),
    ]

    name = models.CharField(max_length=100, default='')
    client_type = models.CharField(max_length=30, choices=CLIENT_TYPE_CHOICES, default='confidential', help_text=_(u'<b>Confidential</b> clients are capable of maintaining the confidentiality of their credentials. <b>Public</b> clients are incapable.'))
    client_id = models.CharField(max_length=255, unique=True)
    client_secret = models.CharField(max_length=255, blank=True, default='')
    response_type = models.CharField(max_length=30, choices=RESPONSE_TYPE_CHOICES)
    date_created = models.DateField(auto_now_add=True)

    _redirect_uris = models.TextField(default='', verbose_name=_(u'Redirect URI'), help_text=_(u'Enter each URI on a new line.'))

    class Meta:
        verbose_name = _(u'Client')
        verbose_name_plural = _(u'Clients')

    def __str__(self):
        return u'{0}'.format(self.name)

    def __unicode__(self):
        return self.__str__()
    
    def redirect_uris():
        def fget(self):
            return self._redirect_uris.splitlines()
        def fset(self, value):
            self._redirect_uris = '\n'.join(value)
        return locals()
    redirect_uris = property(**redirect_uris())

    @property
    def default_redirect_uri(self):
        return self.redirect_uris[0] if self.redirect_uris else ''


class BaseCodeTokenModel(models.Model):

    user = models.ForeignKey(settings.AUTH_USER_MODEL)
    client = models.ForeignKey(Client)
    expires_at = models.DateTimeField()
    _scope = models.TextField(default='')

    def scope():
        def fget(self):
            return self._scope.split()
        def fset(self, value):
            self._scope = ' '.join(value)
        return locals()
    scope = property(**scope())

    def has_expired(self):
        return timezone.now() >= self.expires_at

    def __str__(self):
        return u'{0} - {1} ({2})'.format(self.client, self.user.email, self.expires_at)

    def __unicode__(self):
        return self.__str__()
    
    class Meta:
        abstract = True


class Code(BaseCodeTokenModel):

    code = models.CharField(max_length=255, unique=True)
    nonce = models.CharField(max_length=255, blank=True, default='')
    is_authentication = models.BooleanField(default=False)

    class Meta:
        verbose_name = _(u'Authorization Code')
        verbose_name_plural = _(u'Authorization Codes')


class Token(BaseCodeTokenModel):

    access_token = models.CharField(max_length=255, unique=True)
    refresh_token = models.CharField(max_length=255, unique=True, null=True)
    _id_token = models.TextField()
    def id_token():
        def fget(self):
            return json.loads(self._id_token)
        def fset(self, value):
            self._id_token = json.dumps(value)
        return locals()
    id_token = property(**id_token())

    class Meta:
        verbose_name = _(u'Token')
        verbose_name_plural = _(u'Tokens')


class UserConsent(BaseCodeTokenModel):

    class Meta:
        unique_together = ('user', 'client')


class RSAKey(models.Model):

    key = models.TextField(help_text=_(u'Paste your private RSA Key here.'))

    class Meta:
        verbose_name = _(u'RSA Key')
        verbose_name_plural = _(u'RSA Keys')

    def __str__(self):
        return u'{0}'.format(self.kid)

    def __unicode__(self):
        return self.__str__()

    @property
    def kid(self):
        return  u'{0}'.format(md5(self.key.encode('utf-8')).hexdigest() if self.key else '')
Implementation of RSA Keys using Models. Also providing DOC. 2016-01-25 20:52:24 +00:00			`# -- coding: utf-8 --`
			`from hashlib import md5`
Pull request PEP8 compliant from nicchub:master. 2015-01-28 18:19:36 +00:00			`import json`

Initial commit. 2014-12-19 15:27:43 +00:00			`from django.db import models`
			`from django.utils import timezone`
Improve admin models. 2015-12-04 16:55:04 +00:00			`from django.utils.translation import ugettext_lazy as _`
Use models setting instead of User 2015-07-21 13:57:23 +00:00			`from django.conf import settings`
Initial commit. 2014-12-19 15:27:43 +00:00

			`class Client(models.Model):`

Add client type to client creation form. 2016-04-04 20:19:49 +00:00			`CLIENT_TYPE_CHOICES = [`
			`('confidential', 'Confidential'),`
			`('public', 'Public'),`
			`]`

Initial commit. 2014-12-19 15:27:43 +00:00			`RESPONSE_TYPE_CHOICES = [`
Add Implicit flow support. 2015-01-08 20:55:24 +00:00			`('code', 'code (Authorization Code Flow)'),`
			`('id_token', 'id_token (Implicit Flow)'),`
			`('id_token token', 'id_token token (Implicit Flow)'),`
Initial commit. 2014-12-19 15:27:43 +00:00			`]`

			`name = models.CharField(max_length=100, default='')`
Add client type to client creation form. 2016-04-04 20:19:49 +00:00			`client_type = models.CharField(max_length=30, choices=CLIENT_TYPE_CHOICES, default='confidential', help_text=_(u'<b>Confidential</b> clients are capable of maintaining the confidentiality of their credentials. <b>Public</b> clients are incapable.'))`
Initial commit. 2014-12-19 15:27:43 +00:00			`client_id = models.CharField(max_length=255, unique=True)`
Improve handle of client_secret with client_types. 2016-04-05 21:31:08 +00:00			`client_secret = models.CharField(max_length=255, blank=True, default='')`
Add client type to client creation form. 2016-04-04 20:19:49 +00:00			`response_type = models.CharField(max_length=30, choices=RESPONSE_TYPE_CHOICES)`
Auto-generate client_id and client_secret in the admin. 2016-01-11 19:04:04 +00:00			`date_created = models.DateField(auto_now_add=True)`
Initial commit. 2014-12-19 15:27:43 +00:00
Improve admin models. 2015-12-04 16:55:04 +00:00			`_redirect_uris = models.TextField(default='', verbose_name=_(u'Redirect URI'), help_text=_(u'Enter each URI on a new line.'))`

			`class Meta:`
			`verbose_name = _(u'Client')`
			`verbose_name_plural = _(u'Clients')`

add __str__ and __unicode__ methods to models so they look better in the admin pages 2015-05-30 11:54:04 +00:00			`def __str__(self):`
Fix incorrect mixture of %s and format 2015-11-02 16:19:03 +00:00			`return u'{0}'.format(self.name)`
add __str__ and __unicode__ methods to models so they look better in the admin pages 2015-05-30 11:54:04 +00:00
			`def __unicode__(self):`
			`return self.__str__()`

Small refactoring in grants. Add more doc. 2015-01-06 19:29:31 +00:00			`def redirect_uris():`
			`def fget(self):`
			`return self._redirect_uris.splitlines()`
			`def fset(self, value):`
			`self._redirect_uris = '\n'.join(value)`
			`return locals()`
			`redirect_uris = property(**redirect_uris())`
Initial commit. 2014-12-19 15:27:43 +00:00
			`@property`
			`def default_redirect_uri(self):`
Fix bug in default_redirect_uri property. 2015-01-16 18:03:41 +00:00			`return self.redirect_uris[0] if self.redirect_uris else ''`
Initial commit. 2014-12-19 15:27:43 +00:00
Pull request PEP8 compliant from nicchub:master. 2015-01-28 18:19:36 +00:00
Add abstract class for Code and Token models. 2015-04-21 18:19:43 +00:00			`class BaseCodeTokenModel(models.Model):`
Initial commit. 2014-12-19 15:27:43 +00:00
Use models setting instead of User 2015-07-21 13:57:23 +00:00			`user = models.ForeignKey(settings.AUTH_USER_MODEL)`
Initial commit. 2014-12-19 15:27:43 +00:00			`client = models.ForeignKey(Client)`
			`expires_at = models.DateTimeField()`
Refactoring. Add views for client creation. 2015-01-12 22:13:48 +00:00			`_scope = models.TextField(default='')`
add __str__ and __unicode__ methods to models so they look better in the admin pages 2015-05-30 11:54:04 +00:00
Add abstract class for Code and Token models. 2015-04-21 18:19:43 +00:00			`def scope():`
			`def fget(self):`
			`return self._scope.split()`
			`def fset(self, value):`
			`self._scope = ' '.join(value)`
			`return locals()`
			`scope = property(**scope())`
Initial commit. 2014-12-19 15:27:43 +00:00
			`def has_expired(self):`
			`return timezone.now() >= self.expires_at`

add __str__ and __unicode__ methods to models so they look better in the admin pages 2015-05-30 11:54:04 +00:00			`def __str__(self):`
Fix incorrect mixture of %s and format 2015-11-02 16:19:03 +00:00			`return u'{0} - {1} ({2})'.format(self.client, self.user.email, self.expires_at)`
add __str__ and __unicode__ methods to models so they look better in the admin pages 2015-05-30 11:54:04 +00:00
			`def __unicode__(self):`
			`return self.__str__()`

Add abstract class for Code and Token models. 2015-04-21 18:19:43 +00:00			`class Meta:`
			`abstract = True`
Pull request PEP8 compliant from nicchub:master. 2015-01-28 18:19:36 +00:00
Initial commit. 2014-12-19 15:27:43 +00:00
Add abstract class for Code and Token models. 2015-04-21 18:19:43 +00:00			`class Code(BaseCodeTokenModel):`
Auto now 2015-02-06 17:26:34 +00:00
Add abstract class for Code and Token models. 2015-04-21 18:19:43 +00:00			`code = models.CharField(max_length=255, unique=True)`
Add nonce to Code model. Modify create_code function. 2015-07-15 19:23:36 +00:00			`nonce = models.CharField(max_length=255, blank=True, default='')`
Refactoring supporting OAuth2 flow. 2016-02-16 20:33:12 +00:00			`is_authentication = models.BooleanField(default=False)`
Initial commit. 2014-12-19 15:27:43 +00:00
Improve admin models. 2015-12-04 16:55:04 +00:00			`class Meta:`
			`verbose_name = _(u'Authorization Code')`
			`verbose_name_plural = _(u'Authorization Codes')`

Pull request PEP8 compliant from nicchub:master. 2015-01-28 18:19:36 +00:00
Add abstract class for Code and Token models. 2015-04-21 18:19:43 +00:00			`class Token(BaseCodeTokenModel):`

			`access_token = models.CharField(max_length=255, unique=True)`
Store refresh token 2015-09-30 10:42:04 +00:00			`refresh_token = models.CharField(max_length=255, unique=True, null=True)`
Add abstract class for Code and Token models. 2015-04-21 18:19:43 +00:00			`_id_token = models.TextField()`
Initial commit. 2014-12-19 15:27:43 +00:00			`def id_token():`
			`def fget(self):`
			`return json.loads(self._id_token)`
			`def fset(self, value):`
			`self._id_token = json.dumps(value)`
			`return locals()`
			`id_token = property(**id_token())`

Improve admin models. 2015-12-04 16:55:04 +00:00			`class Meta:`
			`verbose_name = _(u'Token')`
			`verbose_name_plural = _(u'Tokens')`

Pull request PEP8 compliant from nicchub:master. 2015-01-28 18:19:36 +00:00
Add UserConsent to models. 2015-06-22 21:42:04 +00:00			`class UserConsent(BaseCodeTokenModel):`
Improve admin models. 2015-12-04 16:55:04 +00:00
Make (user, client) unique on UserConsent We assume this combination is unique with our get and get_or_create calls. 2015-11-10 10:29:05 +00:00			`class Meta:`
			`unique_together = ('user', 'client')`
Implementation of RSA Keys using Models. Also providing DOC. 2016-01-25 20:52:24 +00:00

			`class RSAKey(models.Model):`

			`key = models.TextField(help_text=_(u'Paste your private RSA Key here.'))`

			`class Meta:`
			`verbose_name = _(u'RSA Key')`
			`verbose_name_plural = _(u'RSA Keys')`

			`def __str__(self):`
			`return u'{0}'.format(self.kid)`

			`def __unicode__(self):`
			`return self.__str__()`

			`@property`
			`def kid(self):`
			`return u'{0}'.format(md5(self.key.encode('utf-8')).hexdigest() if self.key else '')`