2018-12-10 15:58:35 +00:00
|
|
|
"""passbook core user views"""
|
|
|
|
from django.contrib import messages
|
2019-02-23 19:56:41 +00:00
|
|
|
from django.contrib.auth import logout, update_session_auth_hash
|
2019-03-11 10:25:59 +00:00
|
|
|
from django.contrib.auth.mixins import LoginRequiredMixin
|
2019-02-27 14:09:05 +00:00
|
|
|
from django.contrib.messages.views import SuccessMessageMixin
|
2019-02-26 14:40:58 +00:00
|
|
|
from django.forms.utils import ErrorList
|
2019-02-23 19:56:41 +00:00
|
|
|
from django.shortcuts import redirect, reverse
|
2019-02-27 14:09:05 +00:00
|
|
|
from django.urls import reverse_lazy
|
2018-12-10 15:58:35 +00:00
|
|
|
from django.utils.translation import gettext as _
|
2019-02-23 19:56:41 +00:00
|
|
|
from django.views.generic import DeleteView, FormView, UpdateView
|
2018-12-10 15:58:35 +00:00
|
|
|
|
2019-02-23 19:56:41 +00:00
|
|
|
from passbook.core.forms.users import PasswordChangeForm, UserDetailForm
|
2019-10-07 15:33:48 +01:00
|
|
|
from passbook.factors.password.exceptions import PasswordPolicyInvalid
|
2019-02-23 19:56:41 +00:00
|
|
|
from passbook.lib.config import CONFIG
|
2018-12-10 15:58:35 +00:00
|
|
|
|
|
|
|
|
2019-03-11 10:25:59 +00:00
|
|
|
class UserSettingsView(SuccessMessageMixin, LoginRequiredMixin, UpdateView):
|
2018-12-10 15:58:35 +00:00
|
|
|
"""Update User settings"""
|
2019-02-26 09:57:05 +00:00
|
|
|
|
2019-12-31 11:51:16 +00:00
|
|
|
template_name = "user/settings.html"
|
2018-12-10 15:58:35 +00:00
|
|
|
form_class = UserDetailForm
|
|
|
|
|
2019-12-31 11:51:16 +00:00
|
|
|
success_message = _("Successfully updated user.")
|
|
|
|
success_url = reverse_lazy("passbook_core:user-settings")
|
2019-02-27 14:09:05 +00:00
|
|
|
|
2018-12-10 15:58:35 +00:00
|
|
|
def get_object(self):
|
|
|
|
return self.request.user
|
|
|
|
|
2019-03-11 10:25:59 +00:00
|
|
|
|
|
|
|
class UserDeleteView(LoginRequiredMixin, DeleteView):
|
2018-12-10 15:58:35 +00:00
|
|
|
"""Delete user account"""
|
|
|
|
|
2019-12-31 11:51:16 +00:00
|
|
|
template_name = "generic/delete.html"
|
2018-12-10 15:58:35 +00:00
|
|
|
|
|
|
|
def get_object(self):
|
|
|
|
return self.request.user
|
|
|
|
|
|
|
|
def get_success_url(self):
|
2019-12-31 11:51:16 +00:00
|
|
|
messages.success(self.request, _("Successfully deleted user."))
|
2018-12-10 15:58:35 +00:00
|
|
|
logout(self.request)
|
2019-12-31 11:51:16 +00:00
|
|
|
return reverse("passbook_core:auth-login")
|
2019-02-23 19:56:41 +00:00
|
|
|
|
2019-03-11 10:25:59 +00:00
|
|
|
|
|
|
|
class UserChangePasswordView(LoginRequiredMixin, FormView):
|
2019-02-23 19:56:41 +00:00
|
|
|
"""View for users to update their password"""
|
|
|
|
|
|
|
|
form_class = PasswordChangeForm
|
2019-12-31 11:51:16 +00:00
|
|
|
template_name = "login/form_with_user.html"
|
2019-02-23 19:56:41 +00:00
|
|
|
|
|
|
|
def form_valid(self, form: PasswordChangeForm):
|
2019-02-26 14:40:58 +00:00
|
|
|
try:
|
2019-03-02 22:19:58 +00:00
|
|
|
# user.set_password checks against Policies so we don't need to manually do it here
|
2019-12-31 11:51:16 +00:00
|
|
|
self.request.user.set_password(form.cleaned_data.get("password"))
|
2019-02-26 14:40:58 +00:00
|
|
|
self.request.user.save()
|
|
|
|
update_session_auth_hash(self.request, self.request.user)
|
2019-12-31 11:51:16 +00:00
|
|
|
messages.success(self.request, _("Successfully changed password"))
|
2019-02-26 14:40:58 +00:00
|
|
|
except PasswordPolicyInvalid as exc:
|
|
|
|
# Manually inject error into form
|
|
|
|
# pylint: disable=protected-access
|
2019-12-31 11:51:16 +00:00
|
|
|
errors = form._errors.setdefault("password_repeat", ErrorList(""))
|
2019-02-26 14:40:58 +00:00
|
|
|
# pylint: disable=protected-access
|
|
|
|
errors = form._errors.setdefault("password", ErrorList())
|
|
|
|
for error in exc.messages:
|
|
|
|
errors.append(error)
|
|
|
|
return self.form_invalid(form)
|
2019-12-31 11:51:16 +00:00
|
|
|
return redirect("passbook_core:overview")
|
2019-02-23 19:56:41 +00:00
|
|
|
|
|
|
|
def get_context_data(self, **kwargs):
|
2019-12-31 11:51:16 +00:00
|
|
|
kwargs["config"] = CONFIG.y("passbook")
|
|
|
|
kwargs["is_login"] = True
|
|
|
|
kwargs["title"] = _("Change Password")
|
|
|
|
kwargs["primary_action"] = _("Change")
|
2019-02-23 19:56:41 +00:00
|
|
|
return super().get_context_data(**kwargs)
|