ScoDoc/app/auth/routes.py

127 lines
4.3 KiB
Python
Raw Permalink Normal View History

2021-05-29 18:22:51 +02:00
# -*- coding: UTF-8 -*
"""
auth.routes.py
"""
from flask import current_app, flash, render_template
from flask import redirect, url_for, request
2021-05-29 18:22:51 +02:00
from flask_login import login_user, logout_user, current_user
2022-09-14 22:47:31 +02:00
from sqlalchemy import func
2021-05-29 18:22:51 +02:00
from app import db
from app.auth import bp
from app.auth.forms import (
LoginForm,
UserCreationForm,
ResetPasswordRequestForm,
ResetPasswordForm,
)
from app.auth.models import Role
2021-05-29 18:22:51 +02:00
from app.auth.models import User
from app.auth.email import send_password_reset_email
from app.decorators import admin_required
2021-05-29 18:22:51 +02:00
_ = lambda x: x # sans babel
_l = _
@bp.route("/login", methods=["GET", "POST"])
def login():
"ScoDoc Login form"
2021-05-29 18:22:51 +02:00
if current_user.is_authenticated:
2021-08-17 22:11:35 +02:00
return redirect(url_for("scodoc.index"))
2021-05-29 18:22:51 +02:00
form = LoginForm()
if form.validate_on_submit():
user = User.query.filter_by(user_name=form.user_name.data).first()
2021-05-29 18:22:51 +02:00
if user is None or not user.check_password(form.password.data):
2021-09-09 12:49:23 +02:00
current_app.logger.info("login: invalid (%s)", form.user_name.data)
2021-09-11 15:59:06 +02:00
flash(_("Nom ou mot de passe invalide"))
2021-05-29 18:22:51 +02:00
return redirect(url_for("auth.login"))
login_user(user, remember=form.remember_me.data)
2021-09-09 12:49:23 +02:00
current_app.logger.info("login: success (%s)", form.user_name.data)
2022-07-26 16:05:30 +02:00
return form.redirect("scodoc.index")
message = request.args.get("message", "")
return render_template(
"auth/login.j2", title=_("Sign In"), form=form, message=message
)
2021-05-29 18:22:51 +02:00
@bp.route("/logout")
def logout():
"Logout current user and redirect to home page"
2021-05-29 18:22:51 +02:00
logout_user()
2021-08-17 22:11:35 +02:00
return redirect(url_for("scodoc.index"))
2021-05-29 18:22:51 +02:00
@bp.route("/create_user", methods=["GET", "POST"])
@admin_required
def create_user():
"Form creating new user"
form = UserCreationForm()
if form.validate_on_submit():
user = User(user_name=form.user_name.data, email=form.email.data)
2021-05-29 18:22:51 +02:00
user.set_password(form.password.data)
db.session.add(user)
db.session.commit()
flash(f"Utilisateur {user.user_name} créé")
2021-08-17 22:11:35 +02:00
return redirect(url_for("scodoc.index"))
return render_template("auth/register.j2", title="Création utilisateur", form=form)
2021-05-29 18:22:51 +02:00
@bp.route("/reset_password_request", methods=["GET", "POST"])
def reset_password_request():
"""Form demande renvoi de mot de passe par mail
Si l'utilisateur est déjà authentifié, le renvoie simplement sur
la page d'accueil.
"""
2021-05-29 18:22:51 +02:00
if current_user.is_authenticated:
2021-08-17 22:11:35 +02:00
return redirect(url_for("scodoc.index"))
2021-05-29 18:22:51 +02:00
form = ResetPasswordRequestForm()
if form.validate_on_submit():
2022-09-14 22:47:31 +02:00
users = User.query.filter(
func.lower(User.email) == func.lower(form.email.data)
).all()
if len(users) == 1:
send_password_reset_email(users[0])
elif len(users) > 1:
current_app.logger.info(
2022-09-14 22:47:31 +02:00
f"reset_password_request: multiple users with email '{form.email.data}' (ignoring)"
)
2021-05-29 18:22:51 +02:00
else:
current_app.logger.info(
2022-09-14 22:47:31 +02:00
f"reset_password_request: for unkown user '{form.email.data}'"
2021-05-29 18:22:51 +02:00
)
2021-10-17 11:19:01 +02:00
flash(
_("Voir les instructions envoyées par mail (pensez à regarder vos spams)")
)
2021-05-29 18:22:51 +02:00
return redirect(url_for("auth.login"))
return render_template(
"auth/reset_password_request.j2", title=_("Reset Password"), form=form
2021-05-29 18:22:51 +02:00
)
@bp.route("/reset_password/<token>", methods=["GET", "POST"])
def reset_password(token):
"Reset password après demande par mail"
2021-05-29 18:22:51 +02:00
if current_user.is_authenticated:
2021-08-17 22:11:35 +02:00
return redirect(url_for("scodoc.index"))
user: User = User.verify_reset_password_token(token)
2022-05-03 13:35:17 +02:00
if user is None:
2021-08-17 22:11:35 +02:00
return redirect(url_for("scodoc.index"))
2021-05-29 18:22:51 +02:00
form = ResetPasswordForm()
if form.validate_on_submit():
user.set_password(form.password.data)
db.session.commit()
flash(_("Votre mot de passe a été changé."))
2021-05-29 18:22:51 +02:00
return redirect(url_for("auth.login"))
return render_template("auth/reset_password.j2", form=form, user=user)
@bp.route("/reset_standard_roles_permissions", methods=["GET", "POST"])
@admin_required
def reset_standard_roles_permissions():
"Réinitialise (recrée au besoin) les rôles standards de ScoDoc et leurs permissions"
Role.reset_standard_roles_permissions()
flash("rôles standards réinitialisés !")
return redirect(url_for("scodoc.configuration"))