pstruebi/propedal-planner
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
e287a09e1b82d204c86963621135fa4415a828ad
propedal-planner/auth.py
pstruebi d104227a75 working on confirmation
2022-06-14 13:55:26 +02:00

146 lines
3.8 KiB
Python
Raw Blame History

import functools
from django import db
from flask import (
Blueprint, flash, g, redirect, render_template, request, session, url_for
)
from werkzeug.security import check_password_hash, generate_password_hash
from itsdangerous import URLSafeTimedSerializer
from db import get_db
from app import app
bp = Blueprint('auth', __name__, url_prefix='/auth')
@bp.route('/register', methods=('GET', 'POST'))
def register():
if request.method == 'POST':
username = request.form['username']
password = request.form['password']
email = request.form['email']
db = get_db()
error = None
if not username:
error = 'Username is required.'
elif not password:
error = 'Password is required.'
elif not email:
error = 'Email is required.'
if error is None:
try:
db.execute(
"INSERT INTO user (username, email, password) VALUES (?, ?, ?)",
(username, email, generate_password_hash(password)),
)
db.commit()
except db.IntegrityError:
error = f"User mit email {email} existiert bereits."
else:
return redirect(url_for("auth.login"))
flash(error)
return render_template('auth/register.html')
@bp.route('/login', methods=('GET', 'POST'))
def login():
if request.method == 'POST':
password = request.form['password']
email = request.form['email']
db = get_db()
error = None
user = db.execute(
'SELECT * FROM user WHERE email = ?', (email,)
).fetchone()
if user is None:
error = 'Email existiert nicht.'
elif not check_password_hash(user['password'], password):
error = 'Incorrect password.'
if error is None:
session.clear()
session['user_id'] = user['id']
return redirect(url_for('index'))
flash(error)
return render_template('auth/login.html')
@bp.before_app_request
def load_logged_in_user():
user_id = session.get('user_id')
if user_id is None:
g.user = None
else:
g.user = get_db().execute(
'SELECT * FROM user WHERE id = ?', (user_id,)
).fetchone()
@bp.route('/logout')
def logout():
session.clear()
return redirect(url_for('index'))
def login_required(view): # use this as decorator
@functools.wraps(view)
def wrapped_view(**kwargs):
if g.user is None:
return redirect(url_for('auth.login'))
elif not g.user["confirmed"]:
flash("Benutzer noch nicht freigeschaltet.")
return redirect(url_for('auth.login'))
return view(**kwargs)
return wrapped_view
def generate_confirmation_token(email):
serializer = URLSafeTimedSerializer(app.config['SECRET_KEY'])
return serializer.dumps(email, salt=app.config['SECURITY_PASSWORD_SALT'])
def confirm_token(token, expiration=3600):
serializer = URLSafeTimedSerializer(app.config['SECRET_KEY'])
try:
email = serializer.loads(
token,
salt=app.config['SECURITY_PASSWORD_SALT'],
# max_age=expiration
)
except:
return False
return email
@bp.route('/confirm/<token>')
@login_required
def confirm_email(token):
try:
email = confirm_token(token)
except:
flash('The confirmation link is invalid or has expired.', 'danger')
if g.user["confirmed"]:
flash('Account already confirmed. Please login.', 'success')
else:
db = get_db()
db.execute(
"UPDATE user SET confirmed = '1' where email = ?",
(email,)
)
db.commit()
flash('You have confirmed your account. Thanks!', 'success')
return redirect(url_for('main.home'))
Reference in New Issue View Git Blame Copy Permalink