Tivix/django-rest-auth
1
1
Fork 0
mirror of https://github.com/Tivix/django-rest-auth.git synced 2025-06-13 01:13:06 +03:00
Code Issues Packages Projects Releases Wiki Activity

Checking for pre-existing accounts from a different flow when using social connect

Browse Source
This commit is contained in:
Philippe Luickx 2016-05-27 14:26:44 +03:00
parent 8c58782e30
commit fb774109a0
1 changed files with 15 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
rest_auth/registration/serializers.py
View File

@ -1,6 +1,7 @@
from django.http import HttpRequest from django.http import HttpRequest
from django.conf import settings from django.conf import settings
from django.utils.translation import ugettext_lazy as _ from django.utils.translation import ugettext_lazy as _
from django.contrib.auth import get_user_model
try: try:
from allauth.account import app_settings as allauth_settings from allauth.account import app_settings as allauth_settings
@ -111,6 +112,20 @@ class SocialLoginSerializer(serializers.Serializer):
raise serializers.ValidationError(_('Incorrect value')) raise serializers.ValidationError(_('Incorrect value'))
if not login.is_existing: if not login.is_existing:
# We have an account already signed up in a different flow
# with the same email address: raise an exception.
# This needs to be handled in the frontend. We can not just
# link up the accounts due to security constraints
if(allauth_settings.UNIQUE_EMAIL):
# Do we have an account already with this email address?
existing_account = get_user_model().objects.filter(
email=login.user.email,
).count()
if(existing_account != 0):
# There is an account already
raise serializers.ValidationError(
_("A user is already registered with this e-mail address."))
login.lookup() login.lookup()
login.save(request, connect=True) login.save(request, connect=True)
attrs['user'] = login.account.user attrs['user'] = login.account.user