2023-10-01 19:40:46 -05:00
|
|
|
# -*- coding: utf-8; -*-
|
|
|
|
################################################################################
|
|
|
|
#
|
|
|
|
# Rattail -- Retail Software Framework
|
2024-07-04 21:37:23 -05:00
|
|
|
# Copyright © 2010-2024 Lance Edgar
|
2023-10-01 19:40:46 -05:00
|
|
|
#
|
|
|
|
# This file is part of Rattail.
|
|
|
|
#
|
|
|
|
# Rattail is free software: you can redistribute it and/or modify it under the
|
|
|
|
# terms of the GNU General Public License as published by the Free Software
|
|
|
|
# Foundation, either version 3 of the License, or (at your option) any later
|
|
|
|
# version.
|
|
|
|
#
|
|
|
|
# Rattail is distributed in the hope that it will be useful, but WITHOUT ANY
|
|
|
|
# WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
|
|
|
|
# FOR A PARTICULAR PURPOSE. See the GNU General Public License for more
|
|
|
|
# details.
|
|
|
|
#
|
|
|
|
# You should have received a copy of the GNU General Public License along with
|
|
|
|
# Rattail. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
#
|
|
|
|
################################################################################
|
|
|
|
"""
|
|
|
|
Auth Handler for use with CORE-POS
|
|
|
|
"""
|
|
|
|
|
|
|
|
from sqlalchemy import orm
|
|
|
|
|
|
|
|
from rattail import auth as base
|
|
|
|
|
|
|
|
|
|
|
|
class CoreAuthHandler(base.AuthHandler):
|
|
|
|
"""
|
|
|
|
Custom auth handler for use with CORE-POS.
|
|
|
|
"""
|
|
|
|
|
|
|
|
def authenticate_user(self, session, username, password):
|
|
|
|
model = self.model
|
|
|
|
|
|
|
|
# first try default logic, if it works then great
|
|
|
|
user = super().authenticate_user(session, username, password)
|
|
|
|
if user:
|
|
|
|
return user
|
|
|
|
|
|
|
|
# only if configured, we also check CORE-POS credentials
|
|
|
|
if self.config.getbool('rattail.auth', 'corepos.check_cashier_credentials',
|
|
|
|
default=False):
|
|
|
|
user = None
|
|
|
|
core_session = self.app.get_corepos_handler().make_session_office_op()
|
|
|
|
core_employee = self.check_corepos_cashier_credentials(core_session, password)
|
|
|
|
if core_employee:
|
|
|
|
user = self.get_user_from_corepos_employee(session, core_employee)
|
2024-07-04 21:37:23 -05:00
|
|
|
if not user and self.config.get_bool('rattail.auth.corepos.automake_users'):
|
|
|
|
# nb. new user must be made via separate session
|
|
|
|
# and then merged back into the main session.
|
|
|
|
# this is because the caller cannot be responsible
|
|
|
|
# for committing (persisting) the new user.
|
|
|
|
with self.app.short_session() as s:
|
|
|
|
user = self.make_user_from_corepos_employee(s, core_employee)
|
|
|
|
s.commit()
|
|
|
|
user = session.get(model.User, user.uuid)
|
2023-10-01 19:40:46 -05:00
|
|
|
core_session.close()
|
|
|
|
if user and user.active:
|
|
|
|
return user
|
|
|
|
|
|
|
|
def check_corepos_cashier_credentials(self, core_session, password):
|
|
|
|
core_op = self.app.get_corepos_handler().get_model_office_op()
|
|
|
|
|
|
|
|
try:
|
|
|
|
core_employee = core_session.query(core_op.Employee)\
|
|
|
|
.filter(core_op.Employee.cashier_password == password)\
|
|
|
|
.one()
|
|
|
|
except orm.exc.NoResultFound:
|
|
|
|
pass
|
|
|
|
else:
|
|
|
|
if core_employee.active:
|
|
|
|
return core_employee
|
|
|
|
|
2024-07-04 21:37:23 -05:00
|
|
|
def get_rattail_employee(self, session, core_employee):
|
2023-10-01 19:40:46 -05:00
|
|
|
model = self.model
|
|
|
|
try:
|
2024-07-04 21:37:23 -05:00
|
|
|
return session.query(model.Employee)\
|
|
|
|
.join(model.CoreEmployee)\
|
|
|
|
.filter(model.CoreEmployee.corepos_number == core_employee.number)\
|
|
|
|
.one()
|
2023-10-01 19:40:46 -05:00
|
|
|
except orm.exc.NoResultFound:
|
|
|
|
pass
|
2024-07-04 21:37:23 -05:00
|
|
|
|
|
|
|
def get_user_from_corepos_employee(self, session, core_employee):
|
|
|
|
employee = self.get_rattail_employee(session, core_employee)
|
|
|
|
if employee:
|
2023-10-01 19:40:46 -05:00
|
|
|
return self.app.get_user(employee)
|
2024-07-04 21:37:23 -05:00
|
|
|
|
|
|
|
def make_user_from_corepos_employee(self, session, core_employee):
|
|
|
|
employee = self.get_rattail_employee(session, core_employee)
|
|
|
|
if not employee:
|
|
|
|
raise ValueError(f"CORE employee not found in {self.app.get_title()}: {core_employee}")
|
|
|
|
|
|
|
|
person = self.app.get_person(employee)
|
|
|
|
user = self.make_user(session=session, person=person)
|
|
|
|
|
|
|
|
role = self.config.get('rattail.auth.corepos.automake_users_role')
|
|
|
|
if role:
|
|
|
|
role = self.get_role(session, role)
|
|
|
|
if role:
|
|
|
|
user.roles.append(role)
|
|
|
|
|
|
|
|
return user
|