def _post_register():
redirect_to = request.args.get("redirect_to")
values = get_form_values(request, _get_registration_form())
dic = {k: v for k, v in values.iteritems()}
del dic["cfm_password"]
del dic["password"]
user_obj = users.User(
**dic
)
user_obj.account_status = users.AccountStatus.AWAITING_CONFIRMATION
if not users.get_user_by_attr({
"$or": [{
"email": user_obj.email
}, {
"username": user_obj.username
}]
}):
user_obj._id = users.save(user_obj, need_confirmation=False,
confirmation_email_subject="Complete your account registration",
confirmation_relative_url="/register/confirm/")
users.set_passwd(user_obj, values["password"])
return redirect(redirect_to)
login_user(user_obj)
return redirect(url_for("register_user") + "?user=exists")
def register():
if request.method == "GET":
registration_form = generate_form(__get_registration_form(), **{
"action": "/register/",
"method": "post",
})
return render_template("registration.html", **{
"registration_form": registration_form,
"is_register": True,
})
else:
values = get_form_values(request, __get_registration_form())
dic = {k: v for k, v in values.iteritems()}
user_obj = users.User(
**dic
)
user_obj.account_status = users.AccountStatus.AWAITING_CONFIRMATION
if not users.get_user_by_attr({
"$or": [{
"email": user_obj.email
}, {
"username": user_obj.username
}]
}):
user_obj = users.save(user_obj, need_confirmation=True,
confirmation_email_subject="Complete your account registration",
confirmation_relative_url="/register/confirm/")
users.set_passwd(user_obj, values["password"])
return "Saved!"
return "Already registered."
def rsvp_campaign(campaign_id):
#get form values
form_values = get_form_values(request, __rsvp_email_form())
#create attendee user with only email address
user_obj = users.User()
user_obj.email = form_values["rsvp_email"]
users.save(user_obj)
#save order
order_id = orders.save(user_obj, campaigns.Campaign.coll_name(), campaign_id)
return "Saved order with id: %s" % (order_id)
def _post_login():
redirect_to = request.args.get("redirect_to","/")
login_form = generate_login_form()
form_values = get_form_values(request, login_form)
username = form_values["username"]
passwd = form_values["password"]
user_obj = users.get_user_by_attr({"username": username})
if users.auth(user_obj, passwd):
if login_user(user_obj):
return redirect(redirect_to)
return redirect(url_for("login_user") + "?login=unsuccessful")
def forgot_password():
form = __forgot_passwd_form()
if request.method == "GET":
return render_template("forgot_password.html", **{
"form": generate_form(form, **{
"action": "/user/forgot-password/",
"method": "post",
})
})
elif request.method == "POST":
form_values = get_form_values(request, __forgot_passwd_form())
user_obj = users.get_user_by_attr({"email": form_values["email"]})
users.send_reset_passwd_notice(user_obj)
return "Check your email"
def reset_password(user_id, token):
user_obj = users.get(user_id)
if users.check_token(user_obj, users.AccountActivity.RESET_PASSWORD, token):
#show passwd reset form
if request.method == "GET":
form = __passwd_reset_form()
return render_template("passwd_reset.html", **{
"form": generate_form(form, **{
"method": "post"
}),
})
#parse reset form
else:
values = get_form_values(request, __passwd_reset_form())
new_passwd = values["passwd"]
users.set_passwd(user_obj, new_passwd)
users.remove_token(user_obj, users.AccountActivity.RESET_PASSWORD)
return "Changed password!"
return "Fail!"
def login():
login_form = generate_login_form()
#login form
if request.method == "GET":
login_form = generate_form(login_form, **{
"action": "/login/",
"method": "post",
})
return render_template("login.html", **{
"login_form": login_form,
"is_login": True,
})
#parse login credentials
form_values = get_form_values(request, login_form)
username = form_values["username"]
passwd = form_values["password"]
user_obj = users.get_user_by_attr({"username": username})
if users.auth(user_obj, passwd):
login_user(user_obj)
return "Logined"
return "Did not auth"
def _post_forgot_password():
form = _forgot_passwd_form()
form_values = get_form_values(request, form)
user_obj = users.get_user_by_attr({"email": form_values["email"]})
users.send_reset_passwd_notice(user_obj)
return render_template("forgot_password_done.html")
