Sha256: a3c4b24141c1d78e219ea5996cb515cde0cedad1d0519dd1d0398eb33dfe1b5e
Contents?: true
Size: 2 KB
Versions: 35
Compression:
Stored size: 2 KB
Contents
module Katello
class FailedAuthenticationController < ActionController::Base
# warning: this class is NOT based on ApplicationController
# This method is called when warden stack cannot authenticate UI request
def unauthenticated_ui
Rails.logger.warn "Request is unauthenticated_ui for #{request.remote_ip}"
# The logic below will generate a flash vs using ApplicationController::errors.
# The reason being, this controller purposely does not inherit from ApplicationController;
# otherwise, these actions would report an error that user must be logged in to perform them.
message = _("You have entered an incorrect username/password combination, or your account may currently be disabled. Please try again or contact your administrator.")
respond_to do |format|
format.all do
if request.env['HTTP_X_FORWARDED_USER'].blank?
path = new_user_session_url(:sso_tried => true)
else
message = _("You do not have valid credentials to access this system. Please contact your administrator.")
path = show_user_session_url
end
redirect_to path
end
end
return false
end
# This method is called when warden stack cannot authenticate API request
def unauthenticated_api
Rails.logger.warn "Request is unauthenticated_api for #{request.remote_ip}"
m = "Invalid credentials"
respond_to do |format|
format.json { render :json => {:displayMessage => m, :errors => [m] }, :status => 401 }
format.all { render :text => m, :status => 401 }
end
end
# In case Warden would fail this returns some reasonable output too
# warden stores it's options, for API request a scope is :api,
# when the scope is nil it's using a default one (currently :user that is used fo UI)
def unauthenticated
if request.env['warden.options'][:scope] == :api
unauthenticated_api
else
unauthenticated_ui
end
end
end
end
Version data entries
35 entries across 35 versions & 1 rubygems