Hi,
I tried the approach you mentioned and changed authenticate the following
way:
def authenticate(self, environ, identity):
### Addition
*print >>open('login_succ.txt', 'a'), "\n\nEnviron start ",
environ, "\n\n"*
### Addition end
login = identity['login']
user = self.sa_auth.dbsession.query(self.sa_auth.user_class).
filter_by(
user_name=login
).first()
if not user:
login = None
elif not user.validate_password(identity['password']):
login = None
if login is None:
### Addition
environ['LOGIN_SUCC'] = 'false'
### Addition end
try:
from urllib.parse import parse_qs, urlencode
except ImportError:
from urlparse import parse_qs
from urllib import urlencode
from tg.exceptions import HTTPFound
params = parse_qs(environ['QUERY_STRING'])
params.pop('password', None) # Remove password in case it was
there
if user is None:
params['failure'] = 'user-not-found'
else:
params['login'] = identity['login']
params['failure'] = 'invalid-password'
# When authentication fails send user to login page.
environ['repoze.who.application'] = HTTPFound(
location='?'.join(('%s/login' %(environ['SCRIPT_NAME']),
urlencode(params, True)))
#location='?'.join(('/login', urlencode(params, True)))
)
### Addition
else:
environ['LOGIN_SUCC'] = 'true'
print >>open('login_succ.txt', 'a'), "\n\nEnviron end ", environ,
"\n\n"
### Addition end
return login
It works OK without prefix but with prefix it looks like it does not
execute authenticate at all (login_succ.txt is empty unlike without prefix).
I hope it helps.
Best Regards
Ervin
On Monday, March 27, 2017 at 2:10:25 PM UTC+2, zov...@gmail.com wrote:
>
> Hi,
>
> I'm having a problem with a site deployed with a prefix. Authorization for
> the site is enabled but I cannot pass login phase. After I enter username
> and password i get redirected to:
>
> https://website/prefix/login_handler?__logins=0&came_from=%2Fprefix%2F
>
> but I get error 404
>
> As a consequence I cannot access any pages that require authorization.
> If I serve the same site with gearbox (without a prefix) I can pass login
> phase and afterwords access authenticated pages through prefix (for
> instance https://website/prefix/admin/).
>
> The same goes for logout (error 404 after redirected to
> https://website/prefix/logout_handler).
>
> Tried to check login handler and logout handler but could not find them in
> controllers.
>
> The same error happens in TG 2.3.10.
>
> What can be done about it?
>
> With Best Regards
>
> Ervin
>
--
You received this message because you are subscribed to the Google Groups
"TurboGears" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to turbogears+unsubscr...@googlegroups.com.
To post to this group, send email to turbogears@googlegroups.com.
Visit this group at https://groups.google.com/group/turbogears.
For more options, visit https://groups.google.com/d/optout.
