Changeset 9334 for main/waeup.kofa/trunk/src/waeup/kofa/students/authentication.py

Timestamp:

14 Oct 2012, 21:02:31 (12 years ago)

Author:

Henrik Bettermann

Message:

Dedicated officers should be able to login as student with a temporary password set by the system. This is the first part of its implementation.

File:

• main/waeup.kofa/trunk/src/waeup/kofa/students/authentication.py (modified) (3 diffs)

main/waeup.kofa/trunk/src/waeup/kofa/students/authentication.py

@@ -101 +101 @@
 
     def checkPassword(self, password):
-        """Check whether the given `password` matches the one stored.
+        """Check whether the given `password` matches the one stored by
+        students or the temporary password set by officers.
 
         We additionally check if student account has been suspended.
@@ -107 +108 @@
         if not isinstance(password, basestring):
             return False
+        passwordmanager = getUtility(IPasswordManager, 'SSHA')
+        temp_password = self.context.getTempPassword()
+        if temp_password:
+            return passwordmanager.checkPassword(temp_password, password)
         if not getattr(self.context, 'password', None):
             # unset/empty passwords do never match
@@ -112 +117 @@
         if self.context.suspended == True:
             return False
-        passwordmanager = getUtility(IPasswordManager, 'SSHA')
-        return passwordmanager.checkPassword(
-            self.context.password, password)
+        return passwordmanager.checkPassword(self.context.password, password)
 
 class StudentsAuthenticatorPlugin(grok.GlobalUtility):