def new_password(recovery_code):
user = UserController()
result = user.verify_auth_token(recovery_code)
if result['status'] == 200:
res = user.get_user_by_recovery(str(recovery_code))
if res is not None:
return render_template('new_password.html',
data={
'status': result['status'],
'msg': None,
'type': None,
'user_id': res.id
})
else:
return render_template(
'recovery.html',
data={
'status': 400,
'msg':
'Erro ao tentar acessar os dados do usuário. Tente novamente mais tarde.',
'type': 1
})
else:
return render_template(
'recovery.html',
data={
'status': result['status'],
'msg':
'Token expirado ou inválido, solicite novamente a alteração de senha',
'type': 1
})
def login_api():
header = {}
user = UserController()
email = request.json['email']
password = request.json['password']
result = user.login(email=email, password=password)
code = 401
response = {"message": "Usuário não autorizado", "result": []}
if result:
if result.active:
result = {
'id': result.id,
'username': result.username,
'email': result.email,
'date_created': result.date_created,
'active': result.active
}
header = {
"access_token": user.generate_auth_token(result),
"token_type": "JWT"
}
code = 200
response["message"] = "Login realizado com sucesso"
response["result"] = result
return Response(json.dumps(response, ensure_ascii=False),
mimetype='application/json'), code, header
def new_password(recovery_code):
user = UserController()
result = user.verify_auth_token(recovery_code)
if result["status"] == 200:
res = user.get_user_by_recovery(str(recovery_code))
if res is not None:
return render_template("new_password.html",
data={
"status": result["status"],
"msg": None,
"type": None,
"user_id": res.id
})
else:
return render_template(
"recovery.html",
data={
"status": 400,
"msg":
"Erro ao tentar acessar os dados do usuário. Tente novamente mais tarde",
"type": 1
})
else:
return render_template(
"recovery.html",
data={
"status": result["status"],
"msg":
"Token expirado ou inválido, solicite novamente a alteração da senha",
"type": 1
})
def login_api():
header = {}
user = UserController()
email = request.json["email"]
password = request.json["password"]
res = user.login(email, password)
code = 401
response = {"message": "Usuário não autorizado", "result": []}
if res:
if res.active:
result = {
"id": res.id,
"username": res.username,
"email": res.email,
"date_created": res.date_created,
"active": res.active
}
header = {
"access_token": user.generate_auth_token(result),
"token_type": "JWT"
}
code = 200
response["message"] = "Login realizado com sucesso"
response["result"] = result
return Response(json.dumps(response, ensure_ascii=False),
mimetype="application/json"), code, header
def login_post():
user = UserController()
email = request.form['email']
password = request.form['password']
result = user.login(email, password)
if result:
if result.role == 4:
return render_template(
'login.html',
data={
'status': 401,
'msg':
'Seu usuário não tem permissão para acessar o admin',
'type': 2
})
else:
login_user(result)
return redirect('/admin')
else:
return render_template('login.html',
data={
'status': 401,
'msg': 'Dados de usuário incorretos',
'type': 1
})
def login_post():
user = UserController()
email = request.form["email"]
password = request.form["password"]
result = user.login(email, password)
if result:
if result.role == 4:
return render_template(
"login.html",
data={
"status": 401,
"msg":
"Seu usuário não tem permissão para acessar o admin",
"type": 2
})
else:
login_user(result)
return redirect("/admin")
else:
return render_template("login.html",
data={
"status": 401,
"msg": "Dados de usuário incorretos",
"type": 1
})
def send_recovery_password():
user = UserController()
result = user.recovery(request.form['email'])
if result:
return render_template('recovery.html',
data={'status': 200, 'msg': 'E-mail de recuperação enviado com sucesso'})
else:
return render_template('recovery.html', data={'status': 401, 'msg': 'Erro ao enviar e-mail de recuperação'})
def get_user_profile(user_id):
header = {
'access_token': request.headers['access_token'],
"token_type": "JWT"
}
user = UserController()
response = user.get_user_by_id(user_id=user_id)
return Response(json.dumps(response, ensure_ascii=False), mimetype='application/json'), response['status'], header
def send_recovery_password():
user = UserController()
result = user.recovery(request.form['email'])
# Capítulo 11 - Alterar parâmetros
if result['status_code'] == 200 or result['status_code'] == 202:
return render_template('recovery.html', data={'status': result['status_code'], 'msg': 'Você receberá um e-mail em sua caixa para alteração de senha.', 'type': 3})
else:
return render_template('recovery.html', data={'status': result['status_code'], 'msg': result['body'], 'type': 1})
def verify_token(*args, **kwargs):
user = UserController()
try:
result = user.verify_auth_token(request.headers['access_token'])
if result['status'] == 200:
return f(*args, **kwargs)
else:
abort(result['status'], result['message'])
except KeyError as e:
abort(401, 'Você precisa enviar um token de acesso')
def send_new_password():
user = UserController()
user_id = request.form['user_id']
password = request.form['password']
result = user.new_password(user_id, password)
if result:
return render_template('login.html', data={'status': 200, 'msg': 'Senha alterada com sucesso!', 'type': 3, 'user_id': user_id})
else:
return render_template('new_password.html', data={'status': 401, 'msg': 'Erro ao alterar senha.', 'type': 1, 'user_id': user_id})
def get_user(user_id):
header = {
'access_token': request.headers['access_token'],
'token_type': 'JWT'
}
user_controller = UserController()
response = user_controller.get_user_by_id(user_id)
return Response(json.dumps(response, ensure_ascii=False),
mimetype='application/json',
status=response['status'],
headers=header)
def verify_token(*args, **kwargs):
user = UserController()
try:
result = user.verify_auth_token(
request.headers["access_token"])
if result["status"] == 200:
return f(*args, **kwargs)
else:
abort(result["status"], result["message"])
except KeyError as e:
abort(401, "Você precisa enviar um token de acesso")
def login():
user = UserController()
email = request.form['email']
password = request.form['password']
result = user.login(email, password)
if result:
return redirect('/admin')
else:
return render_template('login.html',
message="This message came from route")
def verify_token(*args, **kwargs):
user = UserController()
try:
result = user.verify_auth_token(
request.headers['access_token'])
if result['status'] == 200:
return f(*args, **kwargs)
else:
abort(result['status'], result['message'])
except KeyError as e:
abort(401, 'Access Token is required')
def recovery_password_post():
user = UserController()
email = request.form['email']
recovery_response = user.recovery(email)
return render_template(
'recovery.html',
data={
'status':
200,
'message':
'Se o e-mail informado estiver correto o e-mail de recuperção foi enviado. Confira o SPAM'
})
def get_user_profile(user_id):
header = {
"access_token": request.headers["access_token"],
"token_type": "JWT"
}
user = UserController()
response = user.get_user_by_id(user_id=user_id)
return (
Response(json.dumps(response, ensure_ascii=False),
mimetype="application/json"),
response["status"],
header,
)
def login_post():
user = UserController()
email = request.form['email']
password = request.form['password']
result = user.login(email, password)
if result:
return redirect('/admin')
else:
return render_template('login.html',
data={
'status': 401,
'msg': 'Dados de usuário incorretos',
'type': None
})
def login_post():
user = UserController()
email = request.form["email"]
password = request.form["password"]
result = user.login(email, password)
if result:
return redirect("/admin")
else:
return render_template(
"login.html",
data={
"status": 401,
"msg": "Dados incorretos",
"type": None
},
)
def send_recovery_password():
user = UserController()
result = user.recovery(request.form['email'])
if result:
return render_template('recovery.html',
data={
"status": 200,
"message":
"recovery email has been sent",
})
else:
return render_template('recovery.html',
data={
"status": 401,
"message":
"Fail to send the recovery email"
})
def send_recovery_password():
user = UserController()
result = user.recovery(request.form["email"])
if (result["status_code"] == 200) or (result["status_code"] == 202):
return render_template(
"recovery.html",
data={
"status": result["status_code"],
"msg":
"Você receberá um e-mail em sua caixa para alteração de senha",
"type": 3
})
else:
return render_template("recovery.html",
data={
"status": result["status_code"],
"msg": result["body"],
"type": 1
})
def send_recovery_password():
user = UserController()
result = user.recovery(request.form["email"])
if result:
return render_template(
"recovery.html",
data={
"status": 200,
"msg": "E-mail de recuperação enviado com sucesso",
},
)
else:
return render_template(
"recovery.html",
data={
"status": 401,
"msg": "Erro ao enviar o e-mail de recuperação"
},
)
def send_new_password():
user = UserController()
user_id = request.form["user_id"]
password = request.form["password"]
result = user.new_password(user_id, password)
if result:
return render_template("login.html",
data={
"status": 200,
"msg": "Senha alterada com sucesso",
"type": 3,
"user_id": user_id
})
else:
return render_template("new_password.html",
data={
"status": 401,
"msg": "Erro ao alterar senha",
"type": 1,
"user_id": user_id
})
def login_api():
header = {}
user_controller = UserController()
email = request.json['email']
password = request.json['password']
result = user_controller.login(email, password)
code = 401
response = {'message': 'Usuário não autorizado', 'result': []}
if result:
if result.active:
result = {
'id': result.id,
'username': result.username,
'email': result.email,
'date_created': result.date_created,
'active': result.active
}
header = {
'access_token':
user_controller.generate_auth_token(result),
'token_type': 'JWT'
}
code = 200
response['message'] = 'Login realizado com sucesso'
response['result'] = result
return Response(json.dumps(response, ensure_ascii=False),
mimetype='application/json',
status=code,
headers=header)
def load_user(user_id):
user = UserController()
return user.get_admin_login(user_id)
