summaryrefslogtreecommitdiff
path: root/exchange/authenticators.py
blob: bcc2e382e232275c8a78f3e0e382f66bb5c41f69 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77

# vim: set filencoding=utf8
"""
Exchange Server Authenticators

@author: Mike Crute (mcrute@gmail.com)
@organization: SoftGroup Interactive, Inc.
@date: April 26, 2009
"""

import urllib

from copy import copy
from httplib import HTTPSConnection
from Cookie import SimpleCookie


class ExchangeAuthenticator(object):

    _auth_cookie = None
    authenticated = False
    username = None

    def __init__(self, web_server):
        self.web_server = web_server

    def authenticate(self, username, password):
        """
        Authenticate the user and cache the authentication so we aren't
        hammering the auth server. Should hanlde expiration eventually.
        """
        self.username = username

        if self._auth_cookie:
            return self._auth_cookie

        self._auth_cookie = self._do_authentication(username, password)
        return self._auth_cookie

    def _do_authentication(self, username, password):
        raise NotImplemented

    def patch_headers(self, headers):
        raise NotImplemented


class CookieAuthenticator(ExchangeAuthenticator):

    AUTH_DLL = "/exchweb/bin/auth/owaauth.dll"

    def _do_authentication(self, username, password):
        """
        Does a post to the authentication DLL to fetch a cookie for the session
        this can then be passed back to the exchange API for servers that don't
        support basicc HTTP auth.
        """
        params = urllib.urlencode({ "destination": "https://%s/exchange" % (self.web_server),
                                    "flags": "0",
                                    "username": username,
                                    "password": password,
                                    "SubmitCreds": "Log On",
                                    "trusted": "4"
                                    })

        conn = HTTPSConnection(self.web_server)
        conn.request("POST", self.AUTH_DLL, params)
        response = conn.getresponse()

        cookie = SimpleCookie(response.getheader("set-cookie"))
        cookie = ("sessionid=%s" % cookie["sessionid"].value, "cadata=%s" % cookie["cadata"].value)

        self.authenticated = True
        return "; ".join(cookie)

    def patch_headers(self, headers):
        out_headers = copy(headers)
        out_headers["Cookie"] = self._auth_cookie
        return out_headers
© 2015 Mike Crute