Move general views into blueprint

The use of a default blueprint allows more independence of the app object.
author: Alexander Sulfrian <alexander@sulfrian.net> 2016-01-24 00:45:58 +0100
committer: Alexander Sulfrian <alexander@sulfrian.net> 2016-02-02 04:22:15 +0100
commit: d84dc754af1b5012e00a260725edcb3fce7d4a2b (patch)
tree: 6a8adc0aae4d910b09ba606f0f9e4a4834476028 /accounts/views
parent: fb5c7adde43014f962e3b03729b358c95ff50e99 (diff)
download: web-d84dc754af1b5012e00a260725edcb3fce7d4a2b.tar.gz
web-d84dc754af1b5012e00a260725edcb3fce7d4a2b.tar.bz2
web-d84dc754af1b5012e00a260725edcb3fce7d4a2b.zip
1 files changed, 246 insertions, 0 deletions
diff --git a/accounts/views/default/__init__.py b/accounts/views/default/__init__.py
new file mode 100644
index 0000000..e2db8b2
--- /dev/null
+++ b/accounts/views/default/__init__.py
@@ -0,0 +1,246 @@
+# -*- coding: utf-8 -*-
+from __future__ import absolute_import
+
+from copy import deepcopy
+from flask import Blueprint
+from flask import current_app, redirect, request, g, flash, url_for
+
+from accounts.forms import LoginForm, RegisterForm, RegisterCompleteForm, \
+    LostPasswordForm, SettingsForm
+from accounts.utils import *
+from accounts.account import Account
+
+
+bp = Blueprint('default', __name__)
+
+
+@bp.route('/', methods=['GET', 'POST'])
+@templated('index.html')
+def index():
+    if not g.user:
+        form = LoginForm(request.form)
+        if form.validate_on_submit():
+            if login_user(form.username.data, form.password.data):
+                flash(u'Erfolgreich eingeloggt', 'success')
+                return redirect(url_for('.settings'))
+            else:
+                flash(u'Ungültiger Benutzername und/oder Passwort', 'error')
+    else:
+        return redirect(url_for('.settings'))
+
+    return {'form': form}
+
+
+@bp.route('/register', methods=['GET', 'POST'])
+@templated('register.html')
+@logout_required
+def register():
+    form = RegisterForm(request.form)
+    if form.validate_on_submit():
+        send_register_confirmation_mail(form.username.data, form.mail.data)
+
+        flash(u'Es wurde eine E-Mail an die angegebene Adresse geschickt, '
+              u'um diese zu überprüfen. Bitte folge den Anweisungen in der '
+              u'E-Mail.', 'success')
+
+        return redirect(url_for('.index'))
+
+    return {'form': form}
+
+
+@bp.route('/register/<token>', methods=['GET', 'POST'])
+@templated('register_complete.html')
+@logout_required
+def register_complete(token):
+    #TODO: check for double uids and mail
+    username, mail = http_verify_confirmation('register', token.encode('ascii'), timeout=3*24*60*60)
+
+    try:
+        current_app.user_backend.get_by_uid(username)
+        current_app.user_backend.get_by_mail(mail)
+    except current_app.user_backend.NoSuchUserError:
+        pass
+    else:
+        flash(u'Du hast den Benutzer bereits angelegt! Du kannst dich jetzt einfach einloggen:')
+        return redirect(url_for('.index'))
+
+    form = RegisterCompleteForm(request.form)
+    if form.validate_on_submit():
+        password = form.password.data
+
+        user = Account(username, mail, password=form.password.data)
+        current_app.user_backend.register(user)
+
+        # populate request context and session
+        assert login_user(user.uid, user.password)
+
+        if current_app.config.get('MAIL_REGISTER_NOTIFY'):
+            current_app.mail_backend.send(
+                current_app.config['MAIL_REGISTER_NOTIFY'],
+                u'[accounts] Neuer Benutzer %s erstellt' % username,
+                u'Benutzername: %s\nE-Mail:       %s\n\nSpammer? Deaktivieren: '
+                u'%s\n' % (username, mail,
+                    url_for('admin.disable_account', uid=username, _external=True))
+            )
+
+        flash(u'Benutzer erfolgreich angelegt.', 'success')
+        return redirect(url_for('.settings'))
+
+    return {
+        'form': form,
+        'token': token,
+        'username': username,
+        'mail': mail,
+    }
+
+
+@bp.route('/lost_password', methods=['GET', 'POST'])
+@templated('lost_password.html')
+@logout_required
+def lost_password():
+    form = LostPasswordForm(request.form)
+    if form.validate_on_submit():
+        #TODO: make the link only usable once (e.g include a hash of the old pw)
+        # atm the only thing we do is make the link valid for only little time
+        confirm_token = make_confirmation('lost_password', (form.user.uid,))
+        confirm_link = url_for('.lost_password_complete', token=confirm_token, _external=True)
+
+        body = render_template('mail/lost_password.txt', username=form.user.uid,
+                               link=confirm_link)
+
+        current_app.mail_backend.send(
+            form.user.attributes['mail'], u'Passwort vergessen', body,
+            sender=current_app.config.get('MAIL_CONFIRM_SENDER'))
+
+        flash(u'Wir haben dir eine E-Mail mit einem Link zum Passwort ändern '
+              u'geschickt. Bitte folge den Anweisungen in der E-Mail.', 'success')
+
+        return redirect(url_for('.index'))
+
+    return {'form': form}
+
+
+@bp.route('/lost_password/<token>', methods=['GET', 'POST'])
+@templated('lost_password_complete.html')
+@logout_required
+def lost_password_complete(token):
+    username, = http_verify_confirmation('lost_password', token.encode('ascii'), timeout=4*60*60)
+
+    form = RegisterCompleteForm(request.form)
+    if form.validate_on_submit():
+        user = current_app.user_backend.get_by_uid(username)
+        user.change_password(form.password.data)
+        current_app.user_backend.update(user, as_admin=True)
+
+        session['username'] = username
+        session['password'] = encrypt_password(form.password.data)
+        flash(u'Passwort geändert.', 'success')
+
+        return redirect(url_for('.settings'))
+
+    return {
+        'form': form,
+        'token': token,
+        'username': username,
+    }
+
+
+@bp.route('/settings', methods=['GET', 'POST'])
+@templated('settings.html')
+@login_required
+def settings():
+    form = SettingsForm(request.form, mail=g.user.attributes['mail'])
+    if form.validate_on_submit():
+        changed = False
+
+        if request.form.get('submit_services'):
+            for service in current_app.all_services:
+                field = form.get_servicedelete(service.id)
+                if(field.data):
+                    g.user.reset_password(service.id)
+                    changed = True
+
+        elif request.form.get('submit_main'):
+            if form.mail.data and form.mail.data != g.user.attributes['mail']:
+                confirm_token = make_confirmation('change_mail', (g.user.uid, form.mail.data))
+                confirm_link = url_for('.change_mail', token=confirm_token, _external=True)
+
+                body = render_template('mail/change_mail.txt', username=g.user.uid,
+                                       mail=form.mail.data, link=confirm_link)
+
+                current_app.mail_backend.send(
+                    form.mail.data, u'E-Mail-Adresse bestätigen', body,
+                    sender=current_app.config.get('MAIL_CONFIRM_SENDER'))
+
+                flash(u'Es wurde eine E-Mail an die angegebene Adresse geschickt, '
+                      u'um diese zu überprüfen. Bitte folge den Anweisungen in der '
+                      u'E-Mail.', 'success')
+                changed = True
+
+            if form.password.data:
+                g.user.change_password(form.password.data, form.old_password.data)
+                session['password'] = encrypt_password(form.password.data)
+
+                flash(u'Passwort geändert', 'success')
+                changed = True
+
+            for service in current_app.all_services:
+                field = form.get_servicepassword(service.id)
+                if field.data:
+                    changed = True
+                    g.user.change_password(field.data, None, service.id)
+
+        if changed:
+            current_app.user_backend.update(g.user, as_admin=True) #XXX: as_admin wieder wegmachen sobald ACLs richtig gesetzt sind
+            return redirect(url_for('.settings'))
+        else:
+            flash(u'Nichts geändert.')
+
+
+    services = deepcopy(current_app.all_services)
+    for s in services:
+        s.changed = s.id in g.user.services
+
+    return {
+        'form': form,
+        'services': services,
+    }
+
+
+@bp.route('/settings/change_mail/<token>')
+@login_required
+def change_mail(token):
+    username, mail = http_verify_confirmation('change_mail', token.encode('ascii'), timeout=3*24*60*60)
+
+    if g.user.uid != username:
+        raise Forbidden(u'Bitte logge dich als der Benutzer ein, dessen E-Mail-Adresse du ändern willst.')
+
+    results = current_app.user_backend.find_by_mail(mail)
+    for user in results:
+        if user.uid != g.user.uid:
+            raise Forbidden(u'Diese E-Mail-Adresse wird schon von einem anderen account benutzt!')
+
+    g.user.change_email(mail)
+    current_app.user_backend.update(g.user)
+
+    flash(u'E-Mail-Adresse geändert.', 'success')
+    return redirect(url_for('.settings'))
+
+
+@bp.route('/logout')
+def logout():
+    logout_user()
+    flash(u'Erfolgreich ausgeloggt.', 'success')
+    return redirect(url_for('.index'))
+
+
+@bp.route('/about')
+@templated('about.html')
+def about():
+    return {}
+
+
+@bp.app_errorhandler(403)
+@bp.app_errorhandler(404)
+def errorhandler(e):
+    return render_template('error.html', error=e), e.code
author	Alexander Sulfrian <alexander@sulfrian.net>	2016-01-24 00:45:58 +0100
committer	Alexander Sulfrian <alexander@sulfrian.net>	2016-02-02 04:22:15 +0100
commit	d84dc754af1b5012e00a260725edcb3fce7d4a2b (patch)
tree	6a8adc0aae4d910b09ba606f0f9e4a4834476028 /accounts/views
parent	fb5c7adde43014f962e3b03729b358c95ff50e99 (diff)
download	web-d84dc754af1b5012e00a260725edcb3fce7d4a2b.tar.gz web-d84dc754af1b5012e00a260725edcb3fce7d4a2b.tar.bz2 web-d84dc754af1b5012e00a260725edcb3fce7d4a2b.zip