You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 

26 lines
967 B

# -*- coding: utf-8 -*-
# Copyright 2017 LasLabs Inc.
# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl.html)
from openerp.http import redirect_with_hash, request, route
from openerp.addons.auth_totp.controllers.main import AuthTotp
class AuthTotpPasswordSecurity(AuthTotp):
@route()
def mfa_login_post(self, *args, **kwargs):
"""Overload to check password expiration after MFA login"""
super_object = super(AuthTotpPasswordSecurity, self)
response = super_object.mfa_login_post(*args, **kwargs)
if not request.params.get('login_success'):
return response
user = request.env['res.users'].sudo().browse(request.uid)
if user._password_has_expired():
user.action_expire_password()
request.session.logout(keep_db=True)
request.params['login_success'] = False
return redirect_with_hash(user.partner_id.signup_url)
return response