Andal.LND/edx-platform
6
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Validating OpenID request trust roots to only come from *.cs50.net

Browse Source
This commit is contained in:
Nate Hardison
2012-08-29 11:57:41 -04:00
parent 6de28fc592
commit 4126f3a29a
1 changed files with 42 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

44
common/djangoapps/external_auth/views.py
View File

@@ -33,7 +33,7 @@ from openid.consumer.consumer import (Consumer, SUCCESS, CANCEL, FAILURE)
import django_openid_auth.views as openid_views
from openid.server.server import Server, ProtocolError, CheckIDRequest, EncodingError
from openid.server.trustroot import verifyReturnTo
from openid.server.trustroot import TrustRoot
from openid.store.filestore import FileOpenIDStore
from openid.yadis.discover import DiscoveryFailure
from openid.consumer.discover import OPENID_IDP_2_0_TYPE
@@ -255,7 +255,7 @@ def provider_respond(server, request, response, data):
Respond to an OpenID request
"""
# get simple registration request
# get simple registration request
sreg_data = {}
sreg_request = sreg.SRegRequest.fromOpenIDRequest(request)
sreg_fields = sreg_request.allRequestedFields()
@@ -305,6 +305,37 @@ def provider_respond(server, request, response, data):
return http_response
def validate_trust_root(openid_request):
"""
Only allow OpenID requests from valid trust roots
"""
# verify the trust root/return to
trust_root = openid_request.trust_root
return_to = openid_request.return_to
# don't allow empty trust roots
if openid_request.trust_root is None:
return false
# ensure trust root parses cleanly (one wildcard, of form *.foo.com, etc.)
trust_root = TrustRoot.parse(openid_request.trust_root)
if trust_root is None:
return false
# don't allow empty return tos
if openid_request.return_to is None:
return false
# ensure return to is within trust root
if not trust_root.validateURL(openid_request.return_to):
return false
# only allow *.cs50.net for now
return trust_root.host.endswith('cs50.net')
@csrf_exempt
def provider_login(request):
"""
@@ -323,6 +354,10 @@ def provider_login(request):
# decode request
openid_request = server.decodeRequest(query)
# don't allow invalid and non-*.cs50.net trust roots
if not validate_trust_root(openid_request):
return default_render_failure(request, "Invalid OpenID trust root")
# checkid_immediate not supported, require user interaction
if openid_request.mode == 'checkid_immediate':
return provider_respond(server, openid_request, openid_request.answer(false), {})
@@ -351,6 +386,10 @@ def provider_login(request):
openid_request = request.session['openid_request']
del request.session['openid_request']
# don't allow invalid and non-*.cs50.net trust roots
if not validate_trust_root(openid_request):
return default_render_failure(request, "Invalid OpenID trust root")
# check if user with given email exists
email = request.POST['email']
password = request.POST['password']
@@ -431,3 +470,4 @@ def provider_xrds(request):
# custom XRDS header necessary for discovery process
response['X-XRDS-Location'] = get_xrds_url('xrds', request)
return response