Clean authorize template. Separate hidden inputs.
This commit is contained in:
parent
8e78e2dc9e
commit
564dd29d27
3 changed files with 18 additions and 10 deletions
|
@ -6,17 +6,11 @@
|
||||||
|
|
||||||
{% csrf_token %}
|
{% csrf_token %}
|
||||||
|
|
||||||
<input name="client_id" type="hidden" value="{{ params.client_id }}" />
|
{{ hidden_inputs }}
|
||||||
<input name="redirect_uri" type="hidden" value="{{ params.redirect_uri }}" />
|
|
||||||
<input name="response_type" type="hidden" value="{{ params.response_type }}" />
|
|
||||||
<input name="scope" type="hidden" value="{{ params.scope_str }}" />
|
|
||||||
<input name="state" type="hidden" value="{{ params.state }}" />
|
|
||||||
|
|
||||||
<ul>
|
<ul>
|
||||||
{% for scope in params.scope %}
|
{% for scope in params.scope %}
|
||||||
{% if scope != 'openid' %}
|
|
||||||
<li>{{ scope | capfirst }}</li>
|
<li>{{ scope | capfirst }}</li>
|
||||||
{% endif %}
|
|
||||||
{% endfor %}
|
{% endfor %}
|
||||||
</ul>
|
</ul>
|
||||||
|
|
||||||
|
|
|
@ -0,0 +1,5 @@
|
||||||
|
<input name="client_id" type="hidden" value="{{ params.client_id }}" />
|
||||||
|
<input name="redirect_uri" type="hidden" value="{{ params.redirect_uri }}" />
|
||||||
|
<input name="response_type" type="hidden" value="{{ params.response_type }}" />
|
||||||
|
<input name="scope" type="hidden" value="{{ params.scope | join:' ' }}" />
|
||||||
|
<input name="state" type="hidden" value="{{ params.state }}" />
|
|
@ -3,6 +3,7 @@ from django.contrib.auth.views import redirect_to_login
|
||||||
from django.core.urlresolvers import reverse
|
from django.core.urlresolvers import reverse
|
||||||
from django.http import HttpResponse, HttpResponseRedirect, JsonResponse
|
from django.http import HttpResponse, HttpResponseRedirect, JsonResponse
|
||||||
from django.shortcuts import render
|
from django.shortcuts import render
|
||||||
|
from django.template.loader import render_to_string
|
||||||
from django.views.decorators.http import require_http_methods
|
from django.views.decorators.http import require_http_methods
|
||||||
from django.views.generic import View
|
from django.views.generic import View
|
||||||
from openid_provider.lib.errors import *
|
from openid_provider.lib.errors import *
|
||||||
|
@ -23,12 +24,20 @@ class AuthorizeView(View):
|
||||||
|
|
||||||
if request.user.is_authenticated():
|
if request.user.is_authenticated():
|
||||||
|
|
||||||
# This is for printing scopes in form.
|
# Generate hidden inputs for the form.
|
||||||
authorize.params.scope_str = ' '.join(authorize.params.scope)
|
|
||||||
|
|
||||||
context = {
|
context = {
|
||||||
'params': authorize.params,
|
'params': authorize.params,
|
||||||
|
}
|
||||||
|
hidden_inputs = render_to_string(
|
||||||
|
'openid_provider/hidden_inputs.html', context)
|
||||||
|
|
||||||
|
# Remove openid from scope list since we don't need to print it.
|
||||||
|
authorize.params.scope.remove('openid')
|
||||||
|
|
||||||
|
context = {
|
||||||
'client': authorize.client,
|
'client': authorize.client,
|
||||||
|
'hidden_inputs': hidden_inputs,
|
||||||
|
'params': authorize.params,
|
||||||
}
|
}
|
||||||
|
|
||||||
return render(request, 'openid_provider/authorize.html', context)
|
return render(request, 'openid_provider/authorize.html', context)
|
||||||
|
|
Loading…
Reference in a new issue