distinguish validation when remote facility allows authentication wit…

…hout password
learningequality · Jan 5, 2024 · 9bfe9ec · 9bfe9ec
1 parent 1f75221
commit 9bfe9ec
Show file tree

Hide file tree

Showing 3 changed files with 24 additions and 3 deletions.
diff --git a/kolibri/core/auth/tasks.py b/kolibri/core/auth/tasks.py
@@ -7,6 +7,7 @@
 from django.core.management import call_command
 from django.utils import timezone
 from rest_framework import serializers
+from rest_framework.exceptions import AuthenticationFailed
 from rest_framework.exceptions import ValidationError
 
 from kolibri.core.auth.constants.demographics import NOT_SPECIFIED
@@ -532,7 +533,12 @@ def validate(self, data):
         facility_id = data["facility"]
         username = data["username"]
         password = data["password"]
-        facility_info = get_remote_users_info(baseurl, facility_id, username, password)
+        try:
+            facility_info = get_remote_users_info(
+                baseurl, facility_id, username, password
+            )
+        except AuthenticationFailed as e:
+            raise ValidationError(detail=str(e.detail), code=e.detail.code)
         user_info = facility_info["user"]
 
         # syncing using an admin account (username & password belong to the admin):

diff --git a/kolibri/core/auth/utils/users.py b/kolibri/core/auth/utils/users.py
@@ -49,9 +49,23 @@ def get_remote_users_info(baseurl, facility_id, username, password):
         response.raise_for_status()
     except (CommandError, HTTPError, ConnectionError) as e:
         if password == NOT_SPECIFIED or not password:
-            raise AuthenticationFailed(
-                detail="Password is required", code=error_constants.MISSING_PASSWORD
+            facility_info_url = reverse_remote(
+                baseurl,
+                "kolibri:core:publicfacility-detail",
+                args=[
+                    facility_id,
+                ],
             )
+            response = requests.get(facility_info_url)
+            if response.json()["learner_can_login_with_no_password"]:
+                raise AuthenticationFailed(
+                    detail="The username can not be found",
+                    code=error_constants.INVALID_USERNAME,
+                )
+            else:
+                raise AuthenticationFailed(
+                    detail="Password is required", code=error_constants.MISSING_PASSWORD
+                )
         else:
             raise AuthenticationFailed(
                 detail=str(e), code=error_constants.AUTHENTICATION_FAILED

diff --git a/kolibri/plugins/setup_wizard/assets/src/views/ImportIndividualUserForm.vue b/kolibri/plugins/setup_wizard/assets/src/views/ImportIndividualUserForm.vue
@@ -284,6 +284,7 @@
               ERROR_CONSTANTS.MISSING_PASSWORD,
               ERROR_CONSTANTS.PASSWORD_NOT_SPECIFIED,
               ERROR_CONSTANTS.AUTHENTICATION_FAILED,
+              ERROR_CONSTANTS.INVALID_USERNAME,
             ]);
 
             const errorData = error.response.data;