Skip to content

Add handle login signin signals #6759

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
ThiefMaster merged 6 commits into from
Feb 28, 2025
Merged

Add handle login signin signals #6759

ThiefMaster merged 6 commits into from
Feb 28, 2025

Conversation

@openprojects
Copy link
Contributor

@openprojects openprojects commented Feb 18, 2025
edited
Loading

As previously discussed with Alejandro:

we would like to introduce a signal in Indico core that allows refusing sign ups and logins and display a custom message that explains the reason.
This signal will return a tuple: True/False , String. --> The first value explain if the login/signin process can continue or not, the second value contains the eventual error message.

@openprojects openprojects force-pushed the Add-signals-to-prevent-signin-login-for-specific-domains branch from 268efa4 to 3c54ff8 Compare February 18, 2025 09:45
@ThiefMaster
Copy link
Member

ThiefMaster commented Feb 18, 2025

As previously discussed with Alejandro.

can you please add details to the PR itself? it's not very convenient for anyone (neither me who would first need to check what discussions we had, nor other devs who are not on our matrix channel) to have any details explaining why a PR is useful only in some other place

ThiefMaster
ThiefMaster reviewed Feb 18, 2025
View reviewed changes
@openprojects openprojects force-pushed the Add-signals-to-prevent-signin-login-for-specific-domains branch from 25e164c to fb0b7e9 Compare February 18, 2025 10:19
ThiefMaster
ThiefMaster reviewed Feb 18, 2025
View reviewed changes
@ThiefMaster ThiefMaster force-pushed the Add-signals-to-prevent-signin-login-for-specific-domains branch from 21c7843 to c216b3e Compare February 28, 2025 14:26
@ThiefMaster
Copy link
Member

ThiefMaster commented Feb 28, 2025
edited
Loading

I made some changes to the signals to make them (in my opinion) more useful, and fixed incorrect documentation.

Please have a look and see if they still do everything you need. This is what I used for testing:

    def init(self):
        super().init()
        self.connect(signals.users.check_signup_email, self._check_signup_email)
        self.connect(signals.users.check_login_data, self._check_login_data)

    def _check_signup_email(self, email, **kwargs):
        print(email, kwargs)
        if email.endswith('@evil.com'):
            return 'YOU SHALL DO NO EVIL'

    def _check_login_data(self, sender, provider, data, **kwargs):
        print(sender, provider, data, kwargs)  # data includes the password as well
        if data['identifier'] == 'moo':
            return 'no cows allowed'

@ThiefMaster ThiefMaster added this to the v3.3 milestone Feb 28, 2025
openprojects and others added 6 commits February 28, 2025 16:36
@openprojects @ThiefMaster
Add handle login signin signals
baaf407
@openprojects @ThiefMaster
Manage multiple signal calls
6fe841b
@openprojects @ThiefMaster
Fix signup name
08a756a
@ThiefMaster
Simplify signup signal
51b33a9 
- clarify when it gets called
- just return strings instead of an allowed flag (this is useless here
  because returning True would not do anything useful)
@ThiefMaster
Simplify signin signal
2bfb60f
@ThiefMaster
Add changelog
718c4f7
@ThiefMaster ThiefMaster force-pushed the Add-signals-to-prevent-signin-login-for-specific-domains branch from 8f60f18 to 718c4f7 Compare February 28, 2025 15:36
@ThiefMaster ThiefMaster enabled auto-merge (squash) February 28, 2025 15:36
@openprojects
Copy link
Contributor Author

openprojects commented Feb 28, 2025

I made some changes to the signals to make them (in my opinion) more useful, and fixed incorrect documentation.

Please have a look and see if they still do everything you need. This is what I used for testing:

    def init(self):
        super().init()
        self.connect(signals.users.check_signup_email, self._check_signup_email)
        self.connect(signals.users.check_login_data, self._check_login_data)

    def _check_signup_email(self, email, **kwargs):
        print(email, kwargs)
        if email.endswith('@evil.com'):
            return 'YOU SHALL DO NO EVIL'

    def _check_login_data(self, sender, provider, data, **kwargs):
        print(sender, provider, data, kwargs)  # data includes the password as well
        if data['identifier'] == 'moo':
            return 'no cows allowed'

TESTED, works for us, thank you.

@ThiefMaster ThiefMaster merged commit f5ea371 into indico:master Feb 28, 2025
10 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ThiefMaster ThiefMaster ThiefMaster approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

v3.3

Development

Successfully merging this pull request may close these issues.

2 participants

@openprojects @ThiefMaster