2020-05-07 19:51:06 +01:00
|
|
|
"""Flow models"""
|
2020-05-09 20:31:29 +01:00
|
|
|
from typing import Optional
|
2020-05-07 19:51:06 +01:00
|
|
|
|
|
|
|
from django.db import models
|
|
|
|
from django.utils.translation import gettext_lazy as _
|
2020-05-08 18:46:39 +01:00
|
|
|
from model_utils.managers import InheritanceManager
|
2020-05-07 19:51:06 +01:00
|
|
|
|
2020-05-08 18:46:39 +01:00
|
|
|
from passbook.core.types import UIUserSettings
|
2020-05-07 19:51:06 +01:00
|
|
|
from passbook.lib.models import UUIDModel
|
|
|
|
from passbook.policies.models import PolicyBindingModel
|
|
|
|
|
|
|
|
|
2020-05-09 19:54:56 +01:00
|
|
|
class FlowDesignation(models.TextChoices):
|
2020-05-07 19:51:06 +01:00
|
|
|
"""Designation of what a Flow should be used for. At a later point, this
|
|
|
|
should be replaced by a database entry."""
|
|
|
|
|
|
|
|
AUTHENTICATION = "authentication"
|
2020-05-12 13:50:00 +01:00
|
|
|
INVALIDATION = "invalidation"
|
2020-05-07 19:51:06 +01:00
|
|
|
ENROLLMENT = "enrollment"
|
2020-05-12 13:50:00 +01:00
|
|
|
UNRENOLLMENT = "unenrollment"
|
2020-05-07 19:51:06 +01:00
|
|
|
RECOVERY = "recovery"
|
2020-05-08 18:46:39 +01:00
|
|
|
PASSWORD_CHANGE = "password_change" # nosec # noqa
|
2020-05-07 19:51:06 +01:00
|
|
|
|
|
|
|
|
2020-05-08 18:46:39 +01:00
|
|
|
class Stage(UUIDModel):
|
|
|
|
"""Stage is an instance of a component used in a flow. This can verify the user,
|
|
|
|
enroll the user or offer a way of recovery"""
|
|
|
|
|
|
|
|
name = models.TextField()
|
|
|
|
|
|
|
|
objects = InheritanceManager()
|
|
|
|
type = ""
|
|
|
|
form = ""
|
|
|
|
|
|
|
|
@property
|
|
|
|
def ui_user_settings(self) -> Optional[UIUserSettings]:
|
|
|
|
"""Entrypoint to integrate with User settings. Can either return None if no
|
|
|
|
user settings are available, or an instanace of UIUserSettings."""
|
|
|
|
return None
|
|
|
|
|
|
|
|
def __str__(self):
|
|
|
|
return f"Stage {self.name}"
|
|
|
|
|
|
|
|
|
2020-05-07 19:51:06 +01:00
|
|
|
class Flow(PolicyBindingModel, UUIDModel):
|
2020-05-08 18:46:39 +01:00
|
|
|
"""Flow describes how a series of Stages should be executed to authenticate/enroll/recover
|
2020-05-07 19:51:06 +01:00
|
|
|
a user. Additionally, policies can be applied, to specify which users
|
|
|
|
have access to this flow."""
|
|
|
|
|
|
|
|
name = models.TextField()
|
|
|
|
slug = models.SlugField(unique=True)
|
|
|
|
|
2020-05-09 19:54:56 +01:00
|
|
|
designation = models.CharField(max_length=100, choices=FlowDesignation.choices)
|
2020-05-07 19:51:06 +01:00
|
|
|
|
2020-05-08 18:46:39 +01:00
|
|
|
stages = models.ManyToManyField(Stage, through="FlowStageBinding", blank=True)
|
2020-05-07 19:51:06 +01:00
|
|
|
|
|
|
|
pbm = models.OneToOneField(
|
|
|
|
PolicyBindingModel, parent_link=True, on_delete=models.CASCADE, related_name="+"
|
|
|
|
)
|
|
|
|
|
2020-05-10 17:14:10 +01:00
|
|
|
def related_flow(self, designation: str) -> Optional["Flow"]:
|
|
|
|
"""Get a related flow with `designation`. Currently this only queries
|
|
|
|
Flows by `designation`, but will eventually use `self` for related lookups."""
|
|
|
|
return Flow.objects.filter(designation=designation).first()
|
|
|
|
|
2020-05-07 19:51:06 +01:00
|
|
|
def __str__(self) -> str:
|
|
|
|
return f"Flow {self.name} ({self.slug})"
|
|
|
|
|
|
|
|
class Meta:
|
|
|
|
|
|
|
|
verbose_name = _("Flow")
|
|
|
|
verbose_name_plural = _("Flows")
|
|
|
|
|
|
|
|
|
2020-05-08 18:46:39 +01:00
|
|
|
class FlowStageBinding(PolicyBindingModel, UUIDModel):
|
|
|
|
"""Relationship between Flow and Stage. Order is required and unique for
|
|
|
|
each flow-stage Binding. Additionally, policies can be specified, which determine if
|
2020-05-07 19:51:06 +01:00
|
|
|
this Binding applies to the current user"""
|
|
|
|
|
|
|
|
flow = models.ForeignKey("Flow", on_delete=models.CASCADE)
|
2020-05-08 18:46:39 +01:00
|
|
|
stage = models.ForeignKey(Stage, on_delete=models.CASCADE)
|
2020-05-07 19:51:06 +01:00
|
|
|
|
2020-05-07 20:30:52 +01:00
|
|
|
re_evaluate_policies = models.BooleanField(
|
|
|
|
default=False,
|
|
|
|
help_text=_(
|
|
|
|
"When this option is enabled, the planner will re-evaluate policies bound to this."
|
|
|
|
),
|
|
|
|
)
|
|
|
|
|
2020-05-07 19:51:06 +01:00
|
|
|
order = models.IntegerField()
|
|
|
|
|
2020-05-16 18:55:59 +01:00
|
|
|
objects = InheritanceManager()
|
|
|
|
|
2020-05-07 19:51:06 +01:00
|
|
|
def __str__(self) -> str:
|
2020-05-08 18:46:39 +01:00
|
|
|
return f"Flow Stage Binding #{self.order} {self.flow} -> {self.stage}"
|
2020-05-07 19:51:06 +01:00
|
|
|
|
|
|
|
class Meta:
|
|
|
|
|
2020-05-08 13:33:14 +01:00
|
|
|
ordering = ["order", "flow"]
|
|
|
|
|
2020-05-08 18:46:39 +01:00
|
|
|
verbose_name = _("Flow Stage Binding")
|
|
|
|
verbose_name_plural = _("Flow Stage Bindings")
|
|
|
|
unique_together = (("flow", "stage", "order"),)
|