gnx/GNX-mailEnterprise
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Mail

Browse Source
This commit is contained in:
Iliyan Angelov
2025-09-14 23:24:25 +03:00
commit c67067a2a4
71311 changed files with 6800714 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

0
venv/lib/python3.12/site-packages/allauth/socialaccount/providers/google/__init__.py Normal file
View File

BIN
venv/lib/python3.12/site-packages/allauth/socialaccount/providers/google/__pycache__/__init__.cpython-312.pyc Normal file
View File

Binary file not shown.

BIN
venv/lib/python3.12/site-packages/allauth/socialaccount/providers/google/__pycache__/provider.cpython-312.pyc Normal file
View File

Binary file not shown.

BIN
venv/lib/python3.12/site-packages/allauth/socialaccount/providers/google/__pycache__/tests.cpython-312.pyc Normal file
View File

Binary file not shown.

BIN
venv/lib/python3.12/site-packages/allauth/socialaccount/providers/google/__pycache__/urls.cpython-312.pyc Normal file
View File

Binary file not shown.

BIN
venv/lib/python3.12/site-packages/allauth/socialaccount/providers/google/__pycache__/views.cpython-312.pyc Normal file
View File

Binary file not shown.

59
venv/lib/python3.12/site-packages/allauth/socialaccount/providers/google/provider.py Normal file
View File

@@ -0,0 +1,59 @@
from allauth.account.models import EmailAddress
from allauth.socialaccount.app_settings import QUERY_EMAIL
from allauth.socialaccount.providers.base import AuthAction, ProviderAccount
from allauth.socialaccount.providers.oauth2.provider import OAuth2Provider
class Scope(object):
EMAIL = "email"
PROFILE = "profile"
class GoogleAccount(ProviderAccount):
def get_profile_url(self):
return self.account.extra_data.get("link")
def get_avatar_url(self):
return self.account.extra_data.get("picture")
def to_str(self):
dflt = super(GoogleAccount, self).to_str()
return self.account.extra_data.get("name", dflt)
class GoogleProvider(OAuth2Provider):
id = "google"
name = "Google"
account_class = GoogleAccount
def get_default_scope(self):
scope = [Scope.PROFILE]
if QUERY_EMAIL:
scope.append(Scope.EMAIL)
return scope
def get_auth_params(self, request, action):
ret = super(GoogleProvider, self).get_auth_params(request, action)
if action == AuthAction.REAUTHENTICATE:
ret["prompt"] = "select_account consent"
return ret
def extract_uid(self, data):
return data["sub"]
def extract_common_fields(self, data):
return dict(
email=data.get("email"),
last_name=data.get("family_name"),
first_name=data.get("given_name"),
)
def extract_email_addresses(self, data):
ret = []
email = data.get("email")
if email and data.get("email_verified"):
ret.append(EmailAddress(email=email, verified=True, primary=True))
return ret
provider_classes = [GoogleProvider]

214
venv/lib/python3.12/site-packages/allauth/socialaccount/providers/google/tests.py Normal file
View File

@@ -0,0 +1,214 @@
# -*- coding: utf-8 -*-
from __future__ import absolute_import, unicode_literals
import json
from datetime import datetime, timedelta
from importlib import import_module
from django.conf import settings
from django.contrib.auth.models import User
from django.core import mail
from django.test.client import RequestFactory
from django.test.utils import override_settings
from django.urls import reverse
from allauth.account import app_settings as account_settings
from allauth.account.adapter import get_adapter
from allauth.account.models import EmailAddress, EmailConfirmation
from allauth.account.signals import user_signed_up
from allauth.socialaccount.models import SocialAccount
from allauth.socialaccount.providers.apple.client import jwt_encode
from allauth.socialaccount.tests import OAuth2TestsMixin
from allauth.tests import TestCase
from .provider import GoogleProvider
@override_settings(
SOCIALACCOUNT_AUTO_SIGNUP=True,
ACCOUNT_SIGNUP_FORM_CLASS=None,
ACCOUNT_EMAIL_VERIFICATION=account_settings.EmailVerificationMethod.MANDATORY,
)
class GoogleTests(OAuth2TestsMixin, TestCase):
provider_id = GoogleProvider.id
def setUp(self):
super().setUp()
self.email = "raymond.penners@example.com"
self.identity_overwrites = {}
def get_google_id_token_payload(self):
now = datetime.utcnow()
client_id = "app123id" # Matches `setup_app`
payload = {
"iss": "https://accounts.google.com",
"azp": client_id,
"aud": client_id,
"sub": "108204268033311374519",
"hd": "example.com",
"email": self.email,
"email_verified": True,
"at_hash": "HK6E_P6Dh8Y93mRNtsDB1Q",
"name": "Raymond Penners",
"picture": "https://lh5.googleusercontent.com/photo.jpg",
"given_name": "Raymond",
"family_name": "Penners",
"locale": "en",
"iat": now,
"exp": now + timedelta(hours=1),
}
payload.update(self.identity_overwrites)
return payload
def get_login_response_json(self, with_refresh_token=True):
data = {
"access_token": "testac",
"expires_in": 3600,
"scope": "https://www.googleapis.com/auth/userinfo.email https://www.googleapis.com/auth/userinfo.profile openid",
"token_type": "Bearer",
"id_token": jwt_encode(self.get_google_id_token_payload(), "secret"),
}
return json.dumps(data)
@override_settings(SOCIALACCOUNT_AUTO_SIGNUP=False)
def test_login(self):
resp = self.login(resp_mock=None)
self.assertRedirects(resp, reverse("socialaccount_signup"))
def test_wrong_id_token_claim_values(self):
wrong_claim_values = {
"iss": "not-google",
"exp": datetime.utcnow() - timedelta(seconds=1),
"aud": "foo",
}
for key, value in wrong_claim_values.items():
with self.subTest(key):
self.identity_overwrites = {key: value}
resp = self.login(resp_mock=None)
self.assertTemplateUsed(
resp,
"socialaccount/authentication_error.%s"
% getattr(settings, "ACCOUNT_TEMPLATE_EXTENSION", "html"),
)
def test_username_based_on_email(self):
self.identity_overwrites = {"given_name": "", "family_name": ""}
self.login(resp_mock=None)
user = User.objects.get(email=self.email)
self.assertEqual(user.username, "raymond.penners")
def test_email_verified(self):
self.identity_overwrites = {"email_verified": True}
self.login(resp_mock=None)
email_address = EmailAddress.objects.get(email=self.email, verified=True)
self.assertFalse(
EmailConfirmation.objects.filter(email_address__email=self.email).exists()
)
account = email_address.user.socialaccount_set.all()[0]
self.assertEqual(account.extra_data["given_name"], "Raymond")
def test_user_signed_up_signal(self):
sent_signals = []
def on_signed_up(sender, request, user, **kwargs):
sociallogin = kwargs["sociallogin"]
self.assertEqual(sociallogin.account.provider, GoogleProvider.id)
self.assertEqual(sociallogin.account.user, user)
sent_signals.append(sender)
user_signed_up.connect(on_signed_up)
self.login(resp_mock=None)
self.assertTrue(len(sent_signals) > 0)
@override_settings(ACCOUNT_EMAIL_CONFIRMATION_HMAC=False)
def test_email_unverified(self):
self.identity_overwrites = {"email_verified": False}
resp = self.login(resp_mock=None)
email_address = EmailAddress.objects.get(email=self.email)
self.assertFalse(email_address.verified)
self.assertTrue(
EmailConfirmation.objects.filter(email_address__email=self.email).exists()
)
self.assertTemplateUsed(
resp, "account/email/email_confirmation_signup_subject.txt"
)
def test_email_verified_stashed(self):
# http://slacy.com/blog/2012/01/how-to-set-session-variables-in-django-unit-tests/
engine = import_module(settings.SESSION_ENGINE)
store = engine.SessionStore()
store.save()
self.client.cookies[settings.SESSION_COOKIE_NAME] = store.session_key
request = RequestFactory().get("/")
request.session = self.client.session
adapter = get_adapter()
adapter.stash_verified_email(request, self.email)
request.session.save()
self.identity_overwrites = {"email_verified": False}
self.login(resp_mock=None)
email_address = EmailAddress.objects.get(email=self.email)
self.assertTrue(email_address.verified)
self.assertFalse(
EmailConfirmation.objects.filter(email_address__email=self.email).exists()
)
def test_account_connect(self):
email = "user@example.com"
user = User.objects.create(username="user", is_active=True, email=email)
user.set_password("test")
user.save()
EmailAddress.objects.create(user=user, email=email, primary=True, verified=True)
self.client.login(username=user.username, password="test")
self.identity_overwrites = {"email": email, "email_verified": True}
self.login(resp_mock=None, process="connect")
# Check if we connected...
self.assertTrue(
SocialAccount.objects.filter(user=user, provider=GoogleProvider.id).exists()
)
# For now, we do not pick up any new email addresses on connect
self.assertEqual(EmailAddress.objects.filter(user=user).count(), 1)
self.assertEqual(EmailAddress.objects.filter(user=user, email=email).count(), 1)
@override_settings(
ACCOUNT_EMAIL_VERIFICATION=account_settings.EmailVerificationMethod.MANDATORY,
SOCIALACCOUNT_EMAIL_VERIFICATION=account_settings.EmailVerificationMethod.NONE,
)
def test_social_email_verification_skipped(self):
self.identity_overwrites = {"email_verified": False}
self.login(resp_mock=None)
email_address = EmailAddress.objects.get(email=self.email)
self.assertFalse(email_address.verified)
self.assertFalse(
EmailConfirmation.objects.filter(email_address__email=self.email).exists()
)
@override_settings(
ACCOUNT_EMAIL_VERIFICATION=account_settings.EmailVerificationMethod.OPTIONAL,
SOCIALACCOUNT_EMAIL_VERIFICATION=account_settings.EmailVerificationMethod.OPTIONAL,
)
def test_social_email_verification_optional(self):
self.identity_overwrites = {"email_verified": False}
self.login(resp_mock=None)
self.assertEqual(len(mail.outbox), 1)
self.login(resp_mock=None)
self.assertEqual(len(mail.outbox), 1)
@override_settings(
SOCIALACCOUNT_PROVIDERS={
"google": {
"APP": {
"client_id": "app123id",
"key": "google",
"secret": "dummy",
}
}
}
)
class AppInSettingsTests(GoogleTests):
"""
Run the same set of tests but without having a SocialApp entry.
"""
pass

6
venv/lib/python3.12/site-packages/allauth/socialaccount/providers/google/urls.py Normal file
View File

@@ -0,0 +1,6 @@
from allauth.socialaccount.providers.oauth2.urls import default_urlpatterns
from .provider import GoogleProvider
urlpatterns = default_urlpatterns(GoogleProvider)

66
venv/lib/python3.12/site-packages/allauth/socialaccount/providers/google/views.py Normal file
View File

@@ -0,0 +1,66 @@
from django.conf import settings
import jwt
from allauth.socialaccount.providers.oauth2.client import OAuth2Error
from allauth.socialaccount.providers.oauth2.views import (
OAuth2Adapter,
OAuth2CallbackView,
OAuth2LoginView,
)
from .provider import GoogleProvider
ACCESS_TOKEN_URL = (
getattr(settings, "SOCIALACCOUNT_PROVIDERS", {})
.get("google", {})
.get("ACCESS_TOKEN_URL", "https://oauth2.googleapis.com/token")
)
AUTHORIZE_URL = (
getattr(settings, "SOCIALACCOUNT_PROVIDERS", {})
.get("google", {})
.get("AUTHORIZE_URL", "https://accounts.google.com/o/oauth2/v2/auth")
)
ID_TOKEN_ISSUER = (
getattr(settings, "SOCIALACCOUNT_PROVIDERS", {})
.get("google", {})
.get("ID_TOKEN_ISSUER", "https://accounts.google.com")
)
class GoogleOAuth2Adapter(OAuth2Adapter):
provider_id = GoogleProvider.id
access_token_url = ACCESS_TOKEN_URL
authorize_url = AUTHORIZE_URL
id_token_issuer = ID_TOKEN_ISSUER
def complete_login(self, request, app, token, response, **kwargs):
try:
identity_data = jwt.decode(
response["id_token"],
# Since the token was received by direct communication
# protected by TLS between this library and Google, we
# are allowed to skip checking the token signature
# according to the OpenID Connect Core 1.0
# specification.
# https://openid.net/specs/openid-connect-core-1_0.html#IDTokenValidation
options={
"verify_signature": False,
"verify_iss": True,
"verify_aud": True,
"verify_exp": True,
},
issuer=self.id_token_issuer,
audience=app.client_id,
)
except jwt.PyJWTError as e:
raise OAuth2Error("Invalid id_token") from e
login = self.get_provider().sociallogin_from_response(request, identity_data)
return login
oauth2_login = OAuth2LoginView.adapter_view(GoogleOAuth2Adapter)
oauth2_callback = OAuth2CallbackView.adapter_view(GoogleOAuth2Adapter)