takahe/users/views/auth.py

from django import forms
from django.conf import settings
from django.contrib.auth.password_validation import validate_password
from django.contrib.auth.views import LoginView, LogoutView
from django.shortcuts import get_object_or_404, render
from django.views.generic import FormView

from core.models import Config
from users.models import Invite, PasswordReset, User


class Login(LoginView):

    template_name = "auth/login.html"


class Logout(LogoutView):
    pass


class Signup(FormView):

    template_name = "auth/signup.html"

    class form_class(forms.Form):

        email = forms.EmailField(
            help_text="We will send a link to this email to set your password and create your account",
        )

        def __init__(self, *args, **kwargs):
            super().__init__(*args, **kwargs)
            if Config.system.signup_invite_only:
                self.fields["invite_code"] = forms.CharField(
                    help_text="Your invite code from one of our admins"
                )

        def clean_email(self):
            email = self.cleaned_data.get("email").lower()
            if not email:
                return
            if User.objects.filter(email=email).exists():
                raise forms.ValidationError("This email already has an account")
            return email

        def clean_invite_code(self):
            invite_code = self.cleaned_data["invite_code"].lower().strip()
            if not Invite.objects.filter(token=invite_code).exists():
                raise forms.ValidationError("That is not a valid invite code")
            return invite_code

        def clean(self):
            if not Config.system.signup_allowed:
                raise forms.ValidationError("Not accepting new users at this time")

    def form_valid(self, form):
        user = User.objects.create(email=form.cleaned_data["email"])
        # Auto-promote the user to admin if that setting is set
        if settings.AUTO_ADMIN_EMAIL and user.email == settings.AUTO_ADMIN_EMAIL:
            user.admin = True
            user.save()
        PasswordReset.create_for_user(user)
        if "invite_code" in form.cleaned_data:
            Invite.objects.filter(token=form.cleaned_data["invite_code"]).delete()
        return render(
            self.request,
            "auth/signup_success.html",
            {"email": user.email},
        )


class TriggerReset(FormView):

    template_name = "auth/trigger_reset.html"

    class form_class(forms.Form):

        email = forms.EmailField(
            help_text="We will send a reset link to this email",
        )

        def clean_email(self):
            email = self.cleaned_data.get("email").lower()
            if not email:
                return
            if not User.objects.filter(email=email).exists():
                raise forms.ValidationError("This email does not have an account")
            return email

    def form_valid(self, form):
        PasswordReset.create_for_user(
            User.objects.get(email=form.cleaned_data["email"])
        )
        return render(
            self.request,
            "auth/trigger_reset_success.html",
            {"email": form.cleaned_data["email"]},
        )


class PerformReset(FormView):

    template_name = "auth/perform_reset.html"

    class form_class(forms.Form):

        password = forms.CharField(
            widget=forms.PasswordInput,
            help_text="Must be at least 8 characters, and contain both letters and numbers.",
        )

        repeat_password = forms.CharField(
            widget=forms.PasswordInput,
        )

        def clean_password(self):
            password = self.cleaned_data["password"]
            validate_password(password)
            return password

        def clean_repeat_password(self):
            if self.cleaned_data.get("password") != self.cleaned_data.get(
                "repeat_password"
            ):
                raise forms.ValidationError("Passwords do not match")
            return self.cleaned_data.get("repeat_password")

    def dispatch(self, request, token):
        self.reset = get_object_or_404(PasswordReset, token=token)
        return super().dispatch(request)

    def form_valid(self, form):
        self.reset.user.set_password(form.cleaned_data["password"])
        self.reset.user.save()
        self.reset.delete()
        return render(
            self.request,
            "auth/perform_reset_success.html",
            {"email": self.reset.user.email},
        )

    def get_context_data(self, *args, **kwargs):
        context = super().get_context_data(*args, **kwargs)
        context["reset"] = self.reset
        return context
Add signup and password reset 2022-11-18 02:16:34 +00:00			`from django import forms`
Migration reset, start of docs, env vars 2022-11-18 15:28:15 +00:00			`from django.conf import settings`
Add signup and password reset 2022-11-18 02:16:34 +00:00			`from django.contrib.auth.password_validation import validate_password`
Initial commit (users and statuses) 2022-11-05 20:17:27 +00:00			`from django.contrib.auth.views import LoginView, LogoutView`
Add signup and password reset 2022-11-18 02:16:34 +00:00			`from django.shortcuts import get_object_or_404, render`
			`from django.views.generic import FormView`

Signup and invite tweaks 2022-11-18 07:09:04 +00:00			`from core.models import Config`
			`from users.models import Invite, PasswordReset, User`
Initial commit (users and statuses) 2022-11-05 20:17:27 +00:00

			`class Login(LoginView):`

			`template_name = "auth/login.html"`


			`class Logout(LogoutView):`
			`pass`
Add signup and password reset 2022-11-18 02:16:34 +00:00

			`class Signup(FormView):`

			`template_name = "auth/signup.html"`

			`class form_class(forms.Form):`

			`email = forms.EmailField(`
			`help_text="We will send a link to this email to set your password and create your account",`
			`)`

Signup and invite tweaks 2022-11-18 07:09:04 +00:00			`def __init__(self, args, *kwargs):`
			`super().__init__(args, *kwargs)`
			`if Config.system.signup_invite_only:`
			`self.fields["invite_code"] = forms.CharField(`
			`help_text="Your invite code from one of our admins"`
			`)`

Add signup and password reset 2022-11-18 02:16:34 +00:00			`def clean_email(self):`
			`email = self.cleaned_data.get("email").lower()`
			`if not email:`
			`return`
			`if User.objects.filter(email=email).exists():`
			`raise forms.ValidationError("This email already has an account")`
			`return email`

Signup and invite tweaks 2022-11-18 07:09:04 +00:00			`def clean_invite_code(self):`
			`invite_code = self.cleaned_data["invite_code"].lower().strip()`
			`if not Invite.objects.filter(token=invite_code).exists():`
			`raise forms.ValidationError("That is not a valid invite code")`
			`return invite_code`

Enforce signups_allowed=False (#26) 2022-11-20 23:03:09 +00:00			`def clean(self):`
			`if not Config.system.signup_allowed:`
			`raise forms.ValidationError("Not accepting new users at this time")`

Add signup and password reset 2022-11-18 02:16:34 +00:00			`def form_valid(self, form):`
			`user = User.objects.create(email=form.cleaned_data["email"])`
Migration reset, start of docs, env vars 2022-11-18 15:28:15 +00:00			`# Auto-promote the user to admin if that setting is set`
			`if settings.AUTO_ADMIN_EMAIL and user.email == settings.AUTO_ADMIN_EMAIL:`
			`user.admin = True`
			`user.save()`
Add signup and password reset 2022-11-18 02:16:34 +00:00			`PasswordReset.create_for_user(user)`
Signup and invite tweaks 2022-11-18 07:09:04 +00:00			`if "invite_code" in form.cleaned_data:`
			`Invite.objects.filter(token=form.cleaned_data["invite_code"]).delete()`
Add signup and password reset 2022-11-18 02:16:34 +00:00			`return render(`
			`self.request,`
			`"auth/signup_success.html",`
			`{"email": user.email},`
			`)`


Add the user settings page too 2022-11-18 02:36:25 +00:00			`class TriggerReset(FormView):`
Add signup and password reset 2022-11-18 02:16:34 +00:00
Add the user settings page too 2022-11-18 02:36:25 +00:00			`template_name = "auth/trigger_reset.html"`

			`class form_class(forms.Form):`

			`email = forms.EmailField(`
			`help_text="We will send a reset link to this email",`
			`)`

			`def clean_email(self):`
			`email = self.cleaned_data.get("email").lower()`
			`if not email:`
			`return`
			`if not User.objects.filter(email=email).exists():`
			`raise forms.ValidationError("This email does not have an account")`
			`return email`

			`def form_valid(self, form):`
			`PasswordReset.create_for_user(`
			`User.objects.get(email=form.cleaned_data["email"])`
			`)`
			`return render(`
			`self.request,`
			`"auth/trigger_reset_success.html",`
			`{"email": form.cleaned_data["email"]},`
			`)`


			`class PerformReset(FormView):`

			`template_name = "auth/perform_reset.html"`
Add signup and password reset 2022-11-18 02:16:34 +00:00
			`class form_class(forms.Form):`

			`password = forms.CharField(`
			`widget=forms.PasswordInput,`
			`help_text="Must be at least 8 characters, and contain both letters and numbers.",`
			`)`

			`repeat_password = forms.CharField(`
			`widget=forms.PasswordInput,`
			`)`

			`def clean_password(self):`
			`password = self.cleaned_data["password"]`
			`validate_password(password)`
			`return password`

			`def clean_repeat_password(self):`
			`if self.cleaned_data.get("password") != self.cleaned_data.get(`
			`"repeat_password"`
			`):`
			`raise forms.ValidationError("Passwords do not match")`
			`return self.cleaned_data.get("repeat_password")`

			`def dispatch(self, request, token):`
			`self.reset = get_object_or_404(PasswordReset, token=token)`
			`return super().dispatch(request)`

			`def form_valid(self, form):`
			`self.reset.user.set_password(form.cleaned_data["password"])`
			`self.reset.user.save()`
			`self.reset.delete()`
			`return render(`
			`self.request,`
Add the user settings page too 2022-11-18 02:36:25 +00:00			`"auth/perform_reset_success.html",`
Add signup and password reset 2022-11-18 02:16:34 +00:00			`{"email": self.reset.user.email},`
			`)`

			`def get_context_data(self, args, *kwargs):`
			`context = super().get_context_data(args, *kwargs)`
			`context["reset"] = self.reset`
			`return context`