StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

PO
primarykey
Id
5023911
data
AcceptedAnswerId
0
AnswerCount
0
ClosedDate
CommentCount
1
CommunityOwnedDate
CreationDate
2011-02-17T00:38:26.033
FavoriteCount
0
LastActivityDate
2011-02-17T00:38:26.033
LastEditDate
LastEditorUserId
0
OwnerUserId
10661
ParentId
5023762
PostTypeId
2
Score
20
ViewCount
0
LastEditorDisplayName
text
Body
Before searching for code, be sure you read the documentation. <a href="http://docs.djangoproject.com/en/1.2/topics/auth/#other-authentication-sources">http://docs.djangoproject.com/en/1.2/topics/auth/#other-authentication-sources</a> Also read the supplied Django source. You want to create three things. <ol> <li>Middleware to capture the token. This is where most of the work happens. It checks for the token, authenticates it (by confirming it with the identity manager) and then logs in the user.</li> <li>Authentication backend to find Users. This is a stub. All it does is create users as needed. Your identity manager has the details. You're just caching the current version of the user on Django's local DB.</li> </ol> Here's the middleware (edited). <pre><code>from django.contrib.auth import authenticate, login class CookieMiddleware( object ): """Authentication Middleware for OpenAM using a cookie with a token. Backend will get user. """ def process_request(self, request): if not hasattr(request, 'user'): raise ImproperlyConfigured() if "thecookiename" not in request.COOKIES: return token= request.COOKIES["thecookiename"] # REST request to OpenAM server for user attributes. token, attribute, role = identity_manager.get_attributes( token ) user = authenticate(remote_user=attribute['uid'][0]) request.user = user login(request, user) </code></pre> The <code>identity_manager.get_attributes</code> is a separate class we wrote to validate the token and get details on the user from the IM source. This, of course, has to be mocked for testing purposes. Here's a backend (edited) <pre><code>class Backend( RemoteUserBackend ): def authenticate(**credentials): """We could authenticate the token by checking with OpenAM Server. We don't do that here, instead we trust the middleware to do it. """ try: user= User.objects.get(username=credentials['remote_user']) except User.DoesNotExist: user= User.objects.create(username=credentials['remote_user'] ) # Here is a good place to map roles to Django Group instances or other features. return user </code></pre> This does not materially change the decorators for authentication or authorization. To make sure of this, we actually refresh the User and Group information from our identity manager. Note that the middleware runs for every single request. Sometimes, it's okay to pass the token to the backed <code>authenticate</code> method. If the token exists in the local user DB, the request can proceed without contacting the identity manager. We, however, have complex rules and timeouts in the identity manager, so we have to examine every token to be sure it's valid. Once the middleware is sure the token is valid, we can then allow the backend to do any additional processing. This isn't our live code (it's a little too complex to make a good example.)
Tags
Title
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. POToken Based Authentication in Django
 singulars
 PostTypePostTypeId
 PTQuestion
PostTypePostTypeId
1. PTAnswer
UserLastEditorUserId
1. This table or related slice is empty.
UserOwnerUserId
1. USS.Lott
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. POToken Based Authentication in Django
 singulars
 PostTypePostTypeId
 PTQuestion
PostsParentIdCreationDate
1. This table or related slice is empty.
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
2. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTAcceptedByOriginator
3. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
CommentsPostId
1. COBackend could be simplified to user, _ = User.objects.get_or_create(username=credentials['remote_user'])
 singulars
 PostPostId
 PO
 UserUserId
 USJustin Abrahms

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.