7ab5dbdee8
Inspired by the discussion here https://github.com/jonaswinkler/paperless-ng/discussions/639#discussion-3242017 it is worthwhile to be able to customize the header name that is used for authentication as its name is not really standardized.
37 lines
1.3 KiB
Python
37 lines
1.3 KiB
Python
from django.conf import settings
|
|
from django.contrib.auth.models import User
|
|
from django.utils.deprecation import MiddlewareMixin
|
|
from rest_framework import authentication
|
|
from django.contrib.auth.middleware import RemoteUserMiddleware
|
|
|
|
|
|
class AutoLoginMiddleware(MiddlewareMixin):
|
|
|
|
def process_request(self, request):
|
|
try:
|
|
request.user = User.objects.get(
|
|
username=settings.AUTO_LOGIN_USERNAME)
|
|
except User.DoesNotExist:
|
|
pass
|
|
|
|
|
|
class AngularApiAuthenticationOverride(authentication.BaseAuthentication):
|
|
""" This class is here to provide authentication to the angular dev server
|
|
during development. This is disabled in production.
|
|
"""
|
|
|
|
def authenticate(self, request):
|
|
if settings.DEBUG and 'Referer' in request.headers and request.headers['Referer'].startswith('http://localhost:4200/'): # NOQA: E501
|
|
user = User.objects.filter(is_staff=True).first()
|
|
print("Auto-Login with user {}".format(user))
|
|
return (user, None)
|
|
else:
|
|
return None
|
|
|
|
|
|
class HttpRemoteUserMiddleware(RemoteUserMiddleware):
|
|
""" This class allows authentication via HTTP_REMOTE_USER which is set for
|
|
example by certain SSO applications.
|
|
"""
|
|
header = settings.HTTP_REMOTE_USER_HEADER_NAME
|