Merge pull request #5 from bugov/add-idle-check

bugov · web-flow · commit 0cbd57e34ba9 · 2021-10-13T19:34:01.000+05:00
add info message after auto-logout &amp;&amp; more readme
diff --git a/.gitignore b/.gitignore
@@ -3,6 +3,7 @@
 !.travis.yml
 __pycache__
 *.egg-info
+*.sqlite3
 venv
 htmlcov
 build
diff --git a/README.rst b/README.rst
@@ -6,10 +6,10 @@ django-auto-logout
 
 Auto logout a user after specific time in Django.
 
-Works with Python ≥ 3.7, Django ≥ 3.0.
+Works with Python🐍 ≥ 3.7, Django🌐 ≥ 3.0.
 
-Installation
-------------
+✔️ Installation
+----------------
 
 .. code:: bash
 
@@ -20,13 +20,20 @@ Append to `settings` middlewares:
 
 .. code:: python
 
-    MIDDLEWARE = (
+    MIDDLEWARE = [
     ...
         'django_auto_logout.middleware.auto_logout',
-    )
+    ]
 
-Logout in case of idle
-----------------------
+.. note::
+    Make sure that the following middlewares are used before doing this:
+
+    - `django.contrib.sessions.middleware.SessionMiddleware`
+    - `django.contrib.auth.middleware.AuthenticationMiddleware`
+    - `django.contrib.messages.middleware.MessageMiddleware`
+
+💤 Logout in case of idle
+------------------------
 
 Logout a user if there are no requests for a long time.
 
@@ -37,8 +44,8 @@ Add to `settings`:
     AUTO_LOGOUT = {'IDLE_TIME': 600}  # logout after 10 minutes of downtime
 
 
-Limit session time
-------------------
+⌛ Limit session time
+--------------------
 
 Logout a user after 3600 seconds (hour) from the last login.
 
@@ -48,8 +55,36 @@ Add to `settings`:
 
     AUTO_LOGOUT = {'SESSION_TIME': 3600}
 
-Combine configurations
-----------------------
+✉️ Show messages when logging out automatically
+------------------------------------------------
+
+Set the message that will be displayed after the user automatically logs out of the system:
+
+.. code:: python
+
+    AUTO_LOGOUT = {
+        'SESSION_TIME': 3600,
+        'MESSAGE': 'The session has expired. Please login again to continue.',
+    }
+
+It uses `django.contrib.messages`. Don't forget to display messages in templates:
+
+.. code:: html
+
+    {% for message in messages %}
+        <div class="message {{ message.tags }}">
+            {{ message }}
+        </div>
+    {% endfor %}
+
+.. note::
+    `messages` template variable provides by `django.contrib.messages.context_processors.messages`
+    context processor.
+
+    See `TEMPLATES` → `OPTIONS` → `context_processors` in your `settings.py` file.
+
+🌈 Combine configurations
+------------------------
 
 You can combine previous configurations. For example, you may want to logout a user
 in case of downtime (5 minutes or more) and not allow working within one session
@@ -61,4 +96,5 @@ for more than half an hour:
     AUTO_LOGOUT = {
         'IDLE_TIME': 300,  # 5 minutes
         'SESSION_TIME': 1800,  # 30 minutes
+        'MESSAGE': 'The session has expired. Please login again to continue.',
     }
diff --git a/django_auto_logout/__init__.py b/django_auto_logout/__init__.py
@@ -1 +1 @@
-__version__ = '0.2.0'
+__version__ = '0.3.0'
diff --git a/django_auto_logout/middleware.py b/django_auto_logout/middleware.py
@@ -4,6 +4,7 @@
 from django.conf import settings
 from django.http import HttpRequest, HttpResponse
 from django.contrib.auth import get_user_model, logout
+from django.contrib.messages import info
 from pytz import timezone
 
 UserModel = get_user_model()
@@ -47,6 +48,9 @@ def _auto_logout(request: HttpRequest, options):
         logger.debug('Logout user %s', user)
         logout(request)
 
+        if options.get('MESSAGE') is not None:
+            info(request, options['MESSAGE'])
+
 
 def auto_logout(get_response: Callable[[HttpRequest], HttpResponse]) -> Callable:
     def middleware(request: HttpRequest) -> HttpResponse:
diff --git a/example/example/settings.py b/example/example/settings.py
@@ -163,6 +163,7 @@
 
 # DJANGO AUTO LOGIN
 AUTO_LOGOUT = {
-    'IDLE_TIME': 300,  # 5 minutes
-    'SESSION_TIME': 1800,  # 30 minutes
+    'IDLE_TIME': 10,  # 10 seconds
+    'SESSION_TIME': 120,  # 2 minutes
+    'MESSAGE': 'The session has expired. Please login again to continue.',
 }
diff --git a/example/some_app_login_required/templates/layout.html b/example/some_app_login_required/templates/layout.html
@@ -0,0 +1,16 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <title>Title</title>
+</head>
+<body>
+{% for message in messages %}
+    <div class="message {{ message.tags }}">
+        {{ message }}
+    </div>
+{% endfor %}
+
+{% block content %}{% endblock %}
+</body>
+</html>
diff --git a/example/some_app_login_required/templates/login_page.html b/example/some_app_login_required/templates/login_page.html
@@ -0,0 +1,7 @@
+{% extends 'layout.html' %}
+
+{% block content %}
+<p>
+    login page
+</p>
+{% endblock %}
diff --git a/example/some_app_login_required/templates/login_required.html b/example/some_app_login_required/templates/login_required.html
@@ -0,0 +1,7 @@
+{% extends 'layout.html' %}
+
+{% block content %}
+<p>
+    login required view
+</p>
+{% endblock %}
diff --git a/example/some_app_login_required/tests.py b/example/some_app_login_required/tests.py
@@ -15,10 +15,13 @@ def setUp(self):
     def assertLoginRequiredIsOk(self):
         resp = self.client.get(self.url)
         self.assertContains(resp, 'login required view', msg_prefix='Fine with authorized')
+        return resp
 
     def assertLoginRequiredRedirect(self):
         resp = self.client.get(self.url)
-        self.assertRedirects(resp, f'{settings.LOGIN_URL}?next={self.url}', msg_prefix='Redirect for anonymous')
+        self.assertEqual(resp.status_code, 302, msg='Redirect for anonymous')
+        self.assertEqual(resp['location'], f'{settings.LOGIN_URL}?next={self.url}')
+        return resp
 
     def _logout_session_time(self):
         settings.AUTO_LOGOUT = {'SESSION_TIME': 1}
@@ -102,3 +105,38 @@ def test_combine_idle_and_session_time_but_session_less_than_idle(self):
         self.assertLoginRequiredIsOk()
         sleep(1)
         self.assertLoginRequiredRedirect()
+
+    def test_message_on_auto_logout(self):
+        settings.AUTO_LOGOUT = {
+            'SESSION_TIME': 1,
+            'MESSAGE': 'The session has expired. Please login again to continue.',
+        }
+        self.client.force_login(self.user)
+        self.assertLoginRequiredIsOk()
+        sleep(1)
+        resp = self.assertLoginRequiredRedirect()
+
+        # display message after redirect
+        resp = self.client.get(resp['location'])
+        self.assertContains(resp, 'login page', msg_prefix=resp.content.decode())
+        self.assertContains(resp, 'class="message info"', msg_prefix=resp.content.decode())
+        self.assertContains(resp, settings.AUTO_LOGOUT['MESSAGE'])
+
+        # message displays only once
+        resp = self.assertLoginRequiredRedirect()
+        resp = self.client.get(resp['location'])
+        self.assertContains(resp, 'login page', msg_prefix=resp.content.decode())
+        self.assertNotContains(resp, 'class="message info"', msg_prefix=resp.content.decode())
+
+    def test_no_messages_if_no_messages(self):
+        settings.AUTO_LOGOUT = {
+            'SESSION_TIME': 1,
+            'MESSAGE': None,
+        }
+        self.client.force_login(self.user)
+        self.assertLoginRequiredIsOk()
+        sleep(1)
+        resp = self.assertLoginRequiredRedirect()
+        resp = self.client.get(resp['location'])
+        self.assertContains(resp, 'login page', msg_prefix=resp.content.decode())
+        self.assertNotContains(resp, 'class="message info"', msg_prefix=resp.content.decode())
diff --git a/example/some_app_login_required/views.py b/example/some_app_login_required/views.py
@@ -1,11 +1,11 @@
-from django.http import HttpResponse
 from django.contrib.auth.decorators import login_required
+from django.shortcuts import render
 
 
 def login_page(request):
-    return HttpResponse(b'login page')
+    return render(request, 'login_page.html', {})
 
 
 @login_required
 def login_required_view(request):
-    return HttpResponse(b'login required view')
+    return render(request, 'login_required.html', {})

Original file line number	Diff line number	Diff line change
`@@ -1 +1 @@`
`1`		`-__version__ = '0.2.0'`
	`1`	`+__version__ = '0.3.0'`
Original file line number	Diff line number	Diff line change
`@@ -163,6 +163,7 @@`
`163`	`163`
`164`	`164`	`# DJANGO AUTO LOGIN`
`165`	`165`	`AUTO_LOGOUT = {`
`166`		`- 'IDLE_TIME': 300, # 5 minutes`
`167`		`- 'SESSION_TIME': 1800, # 30 minutes`
	`166`	`+ 'IDLE_TIME': 10, # 10 seconds`
	`167`	`+ 'SESSION_TIME': 120, # 2 minutes`
	`168`	`+ 'MESSAGE': 'The session has expired. Please login again to continue.',`
`168`	`169`	`}`