26 lines
1.0 KiB
Python
26 lines
1.0 KiB
Python
"""Middleware classes for third_party_auth."""
|
|
|
|
from social.apps.django_app.middleware import SocialAuthExceptionMiddleware
|
|
|
|
from . import pipeline
|
|
|
|
|
|
class ExceptionMiddleware(SocialAuthExceptionMiddleware):
|
|
"""Custom middleware that handles conditional redirection."""
|
|
|
|
def get_redirect_uri(self, request, exception):
|
|
# Fall back to django settings's SOCIAL_AUTH_LOGIN_ERROR_URL.
|
|
redirect_uri = super(ExceptionMiddleware, self).get_redirect_uri(request, exception)
|
|
|
|
# Safe because it's already been validated by
|
|
# pipeline.parse_query_params. If that pipeline step ever moves later
|
|
# in the pipeline stack, we'd need to validate this value because it
|
|
# would be an injection point for attacker data.
|
|
auth_entry = request.session.get(pipeline.AUTH_ENTRY_KEY)
|
|
|
|
# Check if we have an auth entry key we can use instead
|
|
if auth_entry and auth_entry in pipeline.AUTH_DISPATCH_URLS:
|
|
redirect_uri = pipeline.AUTH_DISPATCH_URLS[auth_entry]
|
|
|
|
return redirect_uri
|