kumi/django-oidc-provider
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity

Clean authorize template. Separate hidden inputs.

Browse source
This commit is contained in:
juanifioren 2015-01-29 14:03:17 -03:00
parent 8e78e2dc9e
commit 564dd29d27
3 changed files with 18 additions and 10 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
openid_provider/templates/openid_provider/authorize.html
View file

@ -6,17 +6,11 @@
{% csrf_token %} {% csrf_token %}
<input name="client_id" type="hidden" value="{{ params.client_id }}" /> {{ hidden_inputs }}
<input name="redirect_uri" type="hidden" value="{{ params.redirect_uri }}" />
<input name="response_type" type="hidden" value="{{ params.response_type }}" />
<input name="scope" type="hidden" value="{{ params.scope_str }}" />
<input name="state" type="hidden" value="{{ params.state }}" />
<ul> <ul>
{% for scope in params.scope %} {% for scope in params.scope %}
{% if scope != 'openid' %}
<li>{{ scope | capfirst }}</li> <li>{{ scope | capfirst }}</li>
{% endif %}
{% endfor %} {% endfor %}
</ul> </ul>

5
openid_provider/templates/openid_provider/hidden_inputs.html Normal file
View file

@ -0,0 +1,5 @@
<input name="client_id" type="hidden" value="{{ params.client_id }}" />
<input name="redirect_uri" type="hidden" value="{{ params.redirect_uri }}" />
<input name="response_type" type="hidden" value="{{ params.response_type }}" />
<input name="scope" type="hidden" value="{{ params.scope | join:' ' }}" />
<input name="state" type="hidden" value="{{ params.state }}" />

15
openid_provider/views.py
View file

@ -3,6 +3,7 @@ from django.contrib.auth.views import redirect_to_login
from django.core.urlresolvers import reverse from django.core.urlresolvers import reverse
from django.http import HttpResponse, HttpResponseRedirect, JsonResponse from django.http import HttpResponse, HttpResponseRedirect, JsonResponse
from django.shortcuts import render from django.shortcuts import render
from django.template.loader import render_to_string
from django.views.decorators.http import require_http_methods from django.views.decorators.http import require_http_methods
from django.views.generic import View from django.views.generic import View
from openid_provider.lib.errors import * from openid_provider.lib.errors import *
@ -23,12 +24,20 @@ class AuthorizeView(View):
if request.user.is_authenticated(): if request.user.is_authenticated():
# This is for printing scopes in form. # Generate hidden inputs for the form.
authorize.params.scope_str = ' '.join(authorize.params.scope)
context = { context = {
'params': authorize.params, 'params': authorize.params,
}
hidden_inputs = render_to_string(
'openid_provider/hidden_inputs.html', context)
# Remove openid from scope list since we don't need to print it.
authorize.params.scope.remove('openid')
context = {
'client': authorize.client, 'client': authorize.client,
'hidden_inputs': hidden_inputs,
'params': authorize.params,
} }
return render(request, 'openid_provider/authorize.html', context) return render(request, 'openid_provider/authorize.html', context)