Changeset 9335 for main/waeup.kofa/trunk/src/waeup/kofa/applicants/authentication.py

Timestamp:

15 Oct 2012, 05:08:01 (12 years ago)

Author:

Henrik Bettermann

Message:

ApplicantAccount? can't reuse checkPassword.

Add new role and permission.

File:

• main/waeup.kofa/trunk/src/waeup/kofa/applicants/authentication.py (modified) (2 diffs)

main/waeup.kofa/trunk/src/waeup/kofa/applicants/authentication.py

@@ -20 +20 @@
 """
 import grok
+from zope.component import getUtility
+from zope.password.interfaces import IPasswordManager
 from zope.pluggableauth.interfaces import IAuthenticatorPlugin
 from waeup.kofa.interfaces import IAuthPluginUtility, IUserAccount
@@ -43 +45 @@
     def user_type(self):
         return u'applicant'
+
+    def checkPassword(self, password):
+        """Check whether the given `password` matches the one stored by
+        students.
+
+        We additionally check if student account has been suspended.
+        """
+        if not isinstance(password, basestring):
+            return False
+        passwordmanager = getUtility(IPasswordManager, 'SSHA')
+        if not getattr(self.context, 'password', None):
+            # unset/empty passwords do never match
+            return False
+        if self.context.suspended == True:
+            return False
+        return passwordmanager.checkPassword(self.context.password, password)
 
 class ApplicantsAuthenticatorPlugin(StudentsAuthenticatorPlugin):