zju: code style and comments, etc.

ustclug · Oct 14, 2023 · ed4882c · ed4882c
1 parent c884aa8
commit ed4882c
Show file tree

Hide file tree

Showing 2 changed files with 60 additions and 29 deletions.
diff --git a/frontend/auth_providers/zju.py b/frontend/auth_providers/zju.py
@@ -1,7 +1,8 @@
-import random
+import secrets
 import string
 import json
 import hmac
+from typing import Any
 from Crypto.Cipher import AES
 from base64 import b64decode
 from urllib.parse import urlencode
@@ -16,57 +17,85 @@
 
 from .base import BaseLoginView
 
-prng = random.SystemRandom()
 
 class LoginView(BaseLoginView):
-    template_name = 'login_oauth.html'
-    template_context = {'provider_name': '浙江大学统一身份认证', 'info': '此次登录需要您处在一个能够访问浙江大学内网的环境；如果您不在校内，请尝试使用 RVPN 等工具访问内网；确认能访问内网后，请单击登录按钮。'}
-    provider = 'zju'
-    group = 'zju'
-    state_key = settings.EXTERNAL_LOGINS[provider]['state_key'].encode()
-    cipher_key = b64decode(settings.EXTERNAL_LOGINS[provider]['cipher_key'])
-    provider_url = settings.EXTERNAL_LOGINS[provider]['provider_url']
+    template_name = "login_info.html"
+    template_context = {
+        "provider_name": "浙江大学统一身份认证",
+        "info": "此次登录需要您处在一个能够访问浙江大学内网的环境；如果您不在校内，请尝试使用 RVPN 等工具访问内网；确认能访问内网后，请单击登录按钮。",
+    }
+    provider = "zju"
+    group = "zju"
 
-    @method_decorator(csrf_exempt) # XXX: POST请求来源于外部，不宜外传csrf token，且反CSRF的功能已被state+proof实现
+    def __init__(self, **kwargs: Any) -> None:
+        super().__init__(**kwargs)
+        # 避免 local_settings 未配置时出错
+        provider = settings.EXTERNAL_LOGINS.get(self.provider)
+        if not provider:
+            raise RuntimeError(f"未配置{self.template_context['provider_name']}登录")
+        self.state_key = provider["state_key"].encode()
+        self.cipher_key = b64decode(provider["cipher_key"])
+        self.provider_url = provider["provider_url"]
+
+    # XXX: POST 请求到外部，不宜外传 csrf token，且反 CSRF 的功能已被 state+proof 实现
+    @method_decorator(csrf_exempt)
     def dispatch(self, *args, **kwargs):
         return super(LoginView, self).dispatch(*args, **kwargs)
 
-
-    def calc_hmac(self, state):
-        return hmac.new(self.state_key, state.encode(), 'sha256').hexdigest()
+    def calc_hmac(self, state: str) -> str:
+        return hmac.new(self.state_key, state.encode(), "sha256").hexdigest()
 
     def get(self, request):
         template_context = self.template_context.copy()
-        state = ''.join(prng.sample(string.ascii_letters + string.digits, 32))
+        state = "".join(
+            secrets.choice(string.ascii_letters + string.digits) for _ in range(32)
+        )
         proof = self.calc_hmac(state)
-        redirect_uri = request.build_absolute_uri('/accounts/zju/login/?' + urlencode({'proof': proof}))
-        template_context['url'] = self.provider_url + '?' + urlencode({'redirect_uri': redirect_uri, 'state': state})
+
+        # 在登录前显示提示信息（而非直接跳转）
+        redirect_uri = request.build_absolute_uri(
+            "/accounts/zju/login/?" + urlencode({"proof": proof})
+        )
+        template_context["url"] = (
+            self.provider_url
+            + "?"
+            + urlencode({"redirect_uri": redirect_uri, "state": state})
+        )
         return TemplateResponse(request, self.template_name, template_context)
 
-    def check_cipher(self):
+    def check_cipher(self) -> bool:
         try:
-            ciphertext = self.request.POST.get('cipher')
-            proof = self.request.GET.get('proof')
+            ciphertext = self.request.POST.get("cipher")
+            proof = self.request.GET.get("proof")
             assert isinstance(ciphertext, str) and isinstance(proof, str)
+            # ciphertext:
+            #  16 bytes: nonce
+            #  16 bytes till end - 16 bytes: payload
+            #  16 bytes from end: MAC
             ciphertext = b64decode(ciphertext)
             cipher = AES.new(self.cipher_key, AES.MODE_GCM, ciphertext[:16])
-            payload = json.loads(cipher.decrypt_and_verify(ciphertext[16:-16], ciphertext[-16:]))
-            student_id = payload['student_id']
-            state = payload['state']
+            payload = json.loads(
+                cipher.decrypt_and_verify(ciphertext[16:-16], ciphertext[-16:])
+            )
+            student_id = payload["student_id"]
+            state = payload["state"]
             assert isinstance(student_id, str) and isinstance(state, str)
             assert self.calc_hmac(state) == proof
             student_id = student_id.strip()
             # XXX: 实际上的长度是 8，但作为可信内容放宽限制来避免一些特殊情况
-            if not (all(char in string.digits for char in student_id) and 5 <= len(student_id) <= 26):
-                messages.error(self.request, '学号非法')
+            if not (
+                all(char in string.digits for char in student_id)
+                and 5 <= len(student_id) <= 26
+            ):
+                messages.error(self.request, "学号非法")
                 return False
             self.sno = student_id
-            self.name = payload['name']
+            self.name = payload["name"]
             # XXX: 能够以此学号登录应当与拥有此邮箱等价
-            self.identity = student_id + '@zju.edu.cn'
+            self.identity = student_id + "@zju.edu.cn"
             return True
         except Exception:
-            messages.error(self.request, '登录失败')
+            messages.error(self.request, "登录失败")
             return False
 
     def normalize_identity(self):
@@ -75,9 +104,9 @@ def normalize_identity(self):
     def post(self, request):
         if self.check_cipher():
             self.login(email=self.identity, sno=self.sno, name=self.name)
-        return redirect('hub')
+        return redirect("hub")
 
 
 urlpatterns = [
-    path('zju/login/', LoginView.as_view()),
+    path("zju/login/", LoginView.as_view()),
 ]
diff --git a/frontend/templates/login_oauth.html → frontend/templates/login_info.html b/frontend/templates/login_oauth.html → frontend/templates/login_info.html
@@ -1,5 +1,7 @@
 {% extends 'base.html' %}
 
+{% comment %}包含自定义 info 的登录页模板{% endcomment %}
+
 {% block content %}
     {% block form %}
         <h1>{% block heading %}{{ provider_name }}登录{% endblock %}</h1>