diff options
author | Alexander Sulfrian <alexander@sulfrian.net> | 2016-01-24 00:45:58 +0100 |
---|---|---|
committer | Alexander Sulfrian <alexander@sulfrian.net> | 2016-02-02 04:22:15 +0100 |
commit | d84dc754af1b5012e00a260725edcb3fce7d4a2b (patch) | |
tree | 6a8adc0aae4d910b09ba606f0f9e4a4834476028 /accounts/views | |
parent | fb5c7adde43014f962e3b03729b358c95ff50e99 (diff) | |
download | web-d84dc754af1b5012e00a260725edcb3fce7d4a2b.tar.gz web-d84dc754af1b5012e00a260725edcb3fce7d4a2b.tar.bz2 web-d84dc754af1b5012e00a260725edcb3fce7d4a2b.zip |
Move general views into blueprint
The use of a default blueprint allows more independence of the app object.
Diffstat (limited to 'accounts/views')
-rw-r--r-- | accounts/views/default/__init__.py | 246 |
1 files changed, 246 insertions, 0 deletions
diff --git a/accounts/views/default/__init__.py b/accounts/views/default/__init__.py new file mode 100644 index 0000000..e2db8b2 --- /dev/null +++ b/accounts/views/default/__init__.py @@ -0,0 +1,246 @@ +# -*- coding: utf-8 -*- +from __future__ import absolute_import + +from copy import deepcopy +from flask import Blueprint +from flask import current_app, redirect, request, g, flash, url_for + +from accounts.forms import LoginForm, RegisterForm, RegisterCompleteForm, \ + LostPasswordForm, SettingsForm +from accounts.utils import * +from accounts.account import Account + + +bp = Blueprint('default', __name__) + + +@bp.route('/', methods=['GET', 'POST']) +@templated('index.html') +def index(): + if not g.user: + form = LoginForm(request.form) + if form.validate_on_submit(): + if login_user(form.username.data, form.password.data): + flash(u'Erfolgreich eingeloggt', 'success') + return redirect(url_for('.settings')) + else: + flash(u'Ungültiger Benutzername und/oder Passwort', 'error') + else: + return redirect(url_for('.settings')) + + return {'form': form} + + +@bp.route('/register', methods=['GET', 'POST']) +@templated('register.html') +@logout_required +def register(): + form = RegisterForm(request.form) + if form.validate_on_submit(): + send_register_confirmation_mail(form.username.data, form.mail.data) + + flash(u'Es wurde eine E-Mail an die angegebene Adresse geschickt, ' + u'um diese zu überprüfen. Bitte folge den Anweisungen in der ' + u'E-Mail.', 'success') + + return redirect(url_for('.index')) + + return {'form': form} + + +@bp.route('/register/<token>', methods=['GET', 'POST']) +@templated('register_complete.html') +@logout_required +def register_complete(token): + #TODO: check for double uids and mail + username, mail = http_verify_confirmation('register', token.encode('ascii'), timeout=3*24*60*60) + + try: + current_app.user_backend.get_by_uid(username) + current_app.user_backend.get_by_mail(mail) + except current_app.user_backend.NoSuchUserError: + pass + else: + flash(u'Du hast den Benutzer bereits angelegt! Du kannst dich jetzt einfach einloggen:') + return redirect(url_for('.index')) + + form = RegisterCompleteForm(request.form) + if form.validate_on_submit(): + password = form.password.data + + user = Account(username, mail, password=form.password.data) + current_app.user_backend.register(user) + + # populate request context and session + assert login_user(user.uid, user.password) + + if current_app.config.get('MAIL_REGISTER_NOTIFY'): + current_app.mail_backend.send( + current_app.config['MAIL_REGISTER_NOTIFY'], + u'[accounts] Neuer Benutzer %s erstellt' % username, + u'Benutzername: %s\nE-Mail: %s\n\nSpammer? Deaktivieren: ' + u'%s\n' % (username, mail, + url_for('admin.disable_account', uid=username, _external=True)) + ) + + flash(u'Benutzer erfolgreich angelegt.', 'success') + return redirect(url_for('.settings')) + + return { + 'form': form, + 'token': token, + 'username': username, + 'mail': mail, + } + + +@bp.route('/lost_password', methods=['GET', 'POST']) +@templated('lost_password.html') +@logout_required +def lost_password(): + form = LostPasswordForm(request.form) + if form.validate_on_submit(): + #TODO: make the link only usable once (e.g include a hash of the old pw) + # atm the only thing we do is make the link valid for only little time + confirm_token = make_confirmation('lost_password', (form.user.uid,)) + confirm_link = url_for('.lost_password_complete', token=confirm_token, _external=True) + + body = render_template('mail/lost_password.txt', username=form.user.uid, + link=confirm_link) + + current_app.mail_backend.send( + form.user.attributes['mail'], u'Passwort vergessen', body, + sender=current_app.config.get('MAIL_CONFIRM_SENDER')) + + flash(u'Wir haben dir eine E-Mail mit einem Link zum Passwort ändern ' + u'geschickt. Bitte folge den Anweisungen in der E-Mail.', 'success') + + return redirect(url_for('.index')) + + return {'form': form} + + +@bp.route('/lost_password/<token>', methods=['GET', 'POST']) +@templated('lost_password_complete.html') +@logout_required +def lost_password_complete(token): + username, = http_verify_confirmation('lost_password', token.encode('ascii'), timeout=4*60*60) + + form = RegisterCompleteForm(request.form) + if form.validate_on_submit(): + user = current_app.user_backend.get_by_uid(username) + user.change_password(form.password.data) + current_app.user_backend.update(user, as_admin=True) + + session['username'] = username + session['password'] = encrypt_password(form.password.data) + flash(u'Passwort geändert.', 'success') + + return redirect(url_for('.settings')) + + return { + 'form': form, + 'token': token, + 'username': username, + } + + +@bp.route('/settings', methods=['GET', 'POST']) +@templated('settings.html') +@login_required +def settings(): + form = SettingsForm(request.form, mail=g.user.attributes['mail']) + if form.validate_on_submit(): + changed = False + + if request.form.get('submit_services'): + for service in current_app.all_services: + field = form.get_servicedelete(service.id) + if(field.data): + g.user.reset_password(service.id) + changed = True + + elif request.form.get('submit_main'): + if form.mail.data and form.mail.data != g.user.attributes['mail']: + confirm_token = make_confirmation('change_mail', (g.user.uid, form.mail.data)) + confirm_link = url_for('.change_mail', token=confirm_token, _external=True) + + body = render_template('mail/change_mail.txt', username=g.user.uid, + mail=form.mail.data, link=confirm_link) + + current_app.mail_backend.send( + form.mail.data, u'E-Mail-Adresse bestätigen', body, + sender=current_app.config.get('MAIL_CONFIRM_SENDER')) + + flash(u'Es wurde eine E-Mail an die angegebene Adresse geschickt, ' + u'um diese zu überprüfen. Bitte folge den Anweisungen in der ' + u'E-Mail.', 'success') + changed = True + + if form.password.data: + g.user.change_password(form.password.data, form.old_password.data) + session['password'] = encrypt_password(form.password.data) + + flash(u'Passwort geändert', 'success') + changed = True + + for service in current_app.all_services: + field = form.get_servicepassword(service.id) + if field.data: + changed = True + g.user.change_password(field.data, None, service.id) + + if changed: + current_app.user_backend.update(g.user, as_admin=True) #XXX: as_admin wieder wegmachen sobald ACLs richtig gesetzt sind + return redirect(url_for('.settings')) + else: + flash(u'Nichts geändert.') + + + services = deepcopy(current_app.all_services) + for s in services: + s.changed = s.id in g.user.services + + return { + 'form': form, + 'services': services, + } + + +@bp.route('/settings/change_mail/<token>') +@login_required +def change_mail(token): + username, mail = http_verify_confirmation('change_mail', token.encode('ascii'), timeout=3*24*60*60) + + if g.user.uid != username: + raise Forbidden(u'Bitte logge dich als der Benutzer ein, dessen E-Mail-Adresse du ändern willst.') + + results = current_app.user_backend.find_by_mail(mail) + for user in results: + if user.uid != g.user.uid: + raise Forbidden(u'Diese E-Mail-Adresse wird schon von einem anderen account benutzt!') + + g.user.change_email(mail) + current_app.user_backend.update(g.user) + + flash(u'E-Mail-Adresse geändert.', 'success') + return redirect(url_for('.settings')) + + +@bp.route('/logout') +def logout(): + logout_user() + flash(u'Erfolgreich ausgeloggt.', 'success') + return redirect(url_for('.index')) + + +@bp.route('/about') +@templated('about.html') +def about(): + return {} + + +@bp.app_errorhandler(403) +@bp.app_errorhandler(404) +def errorhandler(e): + return render_template('error.html', error=e), e.code |