Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
erp5
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Analytics
Analytics
CI / CD
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
Léo-Paul Géneau
erp5
Commits
f3719181
Commit
f3719181
authored
Nov 12, 2020
by
Vincent Pelletier
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
WebSite_logout: Catch up with erp5_xhtml_style's logout.
parent
c27f19d0
Changes
2
Show whitespace changes
Inline
Side-by-side
Showing
2 changed files
with
33 additions
and
5 deletions
+33
-5
bt5/erp5_web/SkinTemplateItem/portal_skins/erp5_web/WebSite_logout.py
.../SkinTemplateItem/portal_skins/erp5_web/WebSite_logout.py
+23
-5
bt5/erp5_web_renderjs_ui/SkinTemplateItem/portal_skins/erp5_web_renderjs_ui/WebSite_logout.py
...eItem/portal_skins/erp5_web_renderjs_ui/WebSite_logout.py
+10
-0
No files found.
bt5/erp5_web/SkinTemplateItem/portal_skins/erp5_web/WebSite_logout.py
View file @
f3719181
"""
Default logout handler, overwritten to give website specific portal status message.
"""
website
=
context
.
getWebSiteValue
()
REQUEST
=
context
.
REQUEST
from
AccessControl
import
getSecurityManager
portal
=
context
.
getPortalObject
()
REQUEST
=
portal
.
REQUEST
if
not
portal
.
ERP5Site_isCookieAuthenticationTrustable
(
REQUEST
):
# Prevent an attacker from logging-out users by tricking them into opening this script's URL (DoS).
return
if
REQUEST
.
has_key
(
'portal_skin'
):
context
.
portal_skins
.
clearSkinCookie
()
portal
.
portal_skins
.
clearSkinCookie
()
REQUEST
.
RESPONSE
.
expireCookie
(
'__ac'
,
path
=
'/'
)
msg
=
context
.
Base_translateString
(
'You have been logged out. Thank you for using this website.'
)
return
website
.
Base_redirect
(
form_id
,
keep_items
=
{
'portal_status_message'
:
msg
},
**
kw
)
# PAS logout, if user is from a PAS user folder (which is the acquisition parent of the user)
getattr
(
getSecurityManager
().
getUser
(),
'resetCredentials'
,
lambda
**
kw
:
None
,
)(
request
=
REQUEST
,
response
=
REQUEST
.
RESPONSE
,
)
context
.
getWebSiteValue
().
Base_redirect
(
form_id
,
keep_items
=
{
'portal_status_message'
:
context
.
Base_translateString
(
'You have been logged out. Thank you for using this website.'
),
},
**
kw
)
bt5/erp5_web_renderjs_ui/SkinTemplateItem/portal_skins/erp5_web_renderjs_ui/WebSite_logout.py
View file @
f3719181
"""
Default logout handler, overwritten to give website specific portal status message.
"""
from
AccessControl
import
getSecurityManager
portal
=
context
.
getPortalObject
()
REQUEST
=
context
.
REQUEST
if
REQUEST
.
has_key
(
'portal_skin'
):
...
...
@@ -10,6 +11,15 @@ if getattr(portal.portal_skins, "erp5_oauth_google_login", None):
REQUEST
.
RESPONSE
.
expireCookie
(
'__ac_google_hash'
,
path
=
'/'
)
if
getattr
(
portal
.
portal_skins
,
"erp5_oauth_facebook_login"
,
None
):
REQUEST
.
RESPONSE
.
expireCookie
(
'__ac_facebook_hash'
,
path
=
'/'
)
# PAS logout, if user is from a PAS user folder (which is the acquisition parent of the user)
getattr
(
getSecurityManager
().
getUser
(),
'resetCredentials'
,
lambda
**
kw
:
None
,
)(
request
=
REQUEST
,
response
=
REQUEST
.
RESPONSE
,
)
REQUEST
.
RESPONSE
.
setHeader
(
'Location'
,
came_from
or
context
.
getPermanentURL
(
context
))
REQUEST
.
RESPONSE
.
setStatus
(
303
)
# REQUEST.RESPONSE.redirect(came_from or context.getPermanentURL(context));
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment