8bd256a1d7
ungleich-admin can do anything, but verify ungleich-auth can only verify rest cannot login
29 lines
948 B
Python
29 lines
948 B
Python
from django.shortcuts import render
|
|
|
|
from rest_framework import viewsets, serializers
|
|
from rest_framework.decorators import action
|
|
from rest_framework.response import Response
|
|
|
|
from django.http import JsonResponse
|
|
from otpauth.serializer import VerifySerializer, OTPSerializer, TokenSerializer
|
|
from otpauth.models import OTPSeed
|
|
|
|
class OTPVerifyViewSet(viewsets.ModelViewSet):
|
|
serializer_class = OTPSerializer
|
|
queryset = OTPSeed.objects.all()
|
|
|
|
@action(detail=False, methods=['post'])
|
|
def verify(self, request):
|
|
"""the standard serializer above already verified that
|
|
(name, realm, token) is valid.
|
|
|
|
Now we inspect the payload and return ok,
|
|
if they also verify
|
|
"""
|
|
|
|
serializer = VerifySerializer(data=request.data)
|
|
if serializer.is_valid():
|
|
serializer.save()
|
|
return Response({'status': 'OK'})
|
|
|
|
return JsonResponse(serializer.errors, status=400)
|