Ñò ?]Mc@sadZddkZddkZddkZddkZddkZddkZddkZddkl Z l Z ddk l Z yddk Z Wne j o eZ nXddklZddklZddklZddklZdd klZlZyeefWnej od Zd ZnXd fd „ƒYZeidƒZd„ZdS(s0Handle passwords and sanitize approved messages.iÿÿÿÿN(t StringTypet TupleType(turlparse(tmm_cfg(tUtils(tErrors(tsyslog(tmd5_newtsha_newiitSecurityManagercBsbeZd„Zdd„Zdd„Zdd„Zdd„Zdd„Zdd„Z d„Z RS( cCsd|_h|_dS(N(tNonet mod_passwordt passwords(tself((s+/usr/lib/mailman/Mailman/SecurityManager.pytInitVarsPs cCs)|iƒd}|tijoY|djo td‚n|i|ƒ}titi |ƒddƒ}|d|7}n§|ti jo|i }|d7}n€|ti jo|i }|d7}nY|tijoDtiƒ}tio|o|}d}q|i }|d7}nd S||fS( Nt+s%No user supplied for AuthUser contexttsafetsuser+%st moderatortadmintsite(NN(t internal_nameRtAuthUserR t TypeErrortgetMemberPasswordturllibtquoteRt ObscureEmailtAuthListModeratorR t AuthListAdmintpasswordt AuthSiteAdmintget_global_passwordtALLOW_SITE_ADMIN_COOKIES(R t authcontexttusertkeytsecrettuserdatatsitepass((s+/usr/lib/mailman/Mailman/SecurityManager.pytAuthContextInfoYs,        c Cs|ptiSxt|D]l}|tijo(ti|ddƒ}|otiSq|tijo"ti|ƒ}|otiSq|tijo'd„}|i|ƒ\}}|djoqnt |ƒi ƒ} t } }| |jo t }nFt |ƒiƒ|jot }} n|||ƒot }} n| oft } |iƒp|iƒt } nz"| |_| o|iƒnWd| o|iƒnXn|o|Sq|tijo>|i|ƒ\}}|ot |ƒi ƒ|jo|Sq|tijoJ|dj o9y|i||ƒo|SWqatij oqaXq‚qtdd|ƒtd|‚qWtiS(Nt siteadminicSsRy7|d }toti||ƒ|jotStSWntj otSXdS(Ni(tcrypttTruetFalseR(tresponseR%tsalt((s+/usr/lib/mailman/Mailman/SecurityManager.pyt cryptmatchp™s  terrorsBad authcontext: %s(Rt UnAuthorizedt AuthCreatorRtcheck_global_passwordRRR(R Rt hexdigestR,R+RtdigesttLockedtLockRtSavetUnlockRRtauthenticateMemberRtNotAMemberErrorRt ValueError( R t authcontextsR-R#tactokR/R$R%t sharesponsetupgradetsave_and_unlock((s+/usr/lib/mailman/Mailman/SecurityManager.pyt Authenticate„sh                 cCsex,|D]$}|i||ƒ}|otSqW|i|||ƒ}|o|i||ƒGHtStS(N(t CheckCookieR+RCt MakeCookieR,(R R=R-R#R>R?((s+/usr/lib/mailman/Mailman/SecurityManager.pytWebAuthenticateØs c Cs×|i||ƒ\}}|djp|djpt|tƒ o t‚nttiƒƒ}t|| ƒiƒ}t i ƒ}t i t i||fƒƒ||s6         ÿ