Ejemplo n.º 1
0
def vote():

    if session.get('username') == None:
        return redirect(url_for('login'))

    if get_user(session.get('username'))[6] == False:
        return redirect(url_for('activate'))

    if not return_random_thread(session.get('username')) == None:
        session['tiq'] = return_random_thread(session.get('username'))[0]
    else:
        session['tiq'] = None

    if request.method == 'GET':
        pass

    if request.method == 'POST' and (('yes' in request.form) or
                                     ('no' in request.form)):
        if 'yes' in request.form:
            thread_vote(session.get('username'), request.form['yes'], "yes")
            return redirect(url_for('vote'))
        if 'no' in request.form:
            thread_vote(session.get('username'), request.form['no'], "no")
            return redirect(url_for('vote'))

    return render_template('user/vote.html')
Ejemplo n.º 2
0
def threadweb():

    if session.get('username') == None:
        return redirect(url_for('login'))

    if get_user(session.get('username'))[6] == False:
        return redirect(url_for('activate'))

    threadweb_algorithm()

    return render_template('user/threadweb.html')
Ejemplo n.º 3
0
def settings():

    if session.get('username') == None:
        return redirect(url_for('login'))
    elif get_user(session.get('username'))[6] == False:
        return redirect(url_for('activate'))
    else:

        if request.method == 'GET':
            pass

        if request.method == 'POST':
            if 'updateEmail' in request.form:
                currentE = request.form.get('cemail')
                newE = request.form.get('nemail')

                if len(newE) == 0:
                    flash("Please enter a new email!")
                    return redirect(url_for('settings'))

                if not check_email(newE):
                    flash("New email is invalid.")
                    return redirect(url_for('settings'))

                if email_sync(session.get('username'), currentE):
                    update_email(newE, session.get('username'))
                    flash("Email successfully updated!")
                else:
                    flash("Current email entered is incorrect!")
                    return redirect(url_for('settings'))

            if 'updatePass' in request.form:
                currentPass = request.form.get('cpass')
                newPass = request.form.get('npass')

                if len(newPass) == 0:
                    flash("Please enter a new password.")
                    return redirect(url_for('settings'))

                if len(newPass) < 6:
                    flash(
                        "Please make sure your new password is at least six characters!"
                    )
                    return redirect(url_for('settings'))

                if check_login(session.get('username'), currentPass):
                    update_password(newPass, session.get('username'))
                    flash("Password successfully updated!")
                else:
                    flash("Current password entered is incorrect!")
                    return redirect(url_for('settings'))

        return render_template('user/settings.html')
Ejemplo n.º 4
0
def activate():

    if get_user(session.get('username'))[6] == True:
        return redirect(url_for('profile'))

    activationCode = get_user(session.get('username'))[7]

    if request.method == 'GET':

        msg = Message("Threadfeed Account Activation",
                      sender="*****@*****.**",
                      recipients=[get_user(session.get('username'))[5]])

        msg.body = "***DO NOT REPLY, ALL RESPONSES GET AUTOMATICALLY DELETED***\n\nHello! Thank you for signing up for a Threadfeed account! You have been supplied a code below that will activate your account. Copy and paste it into the field located on the activation page then click 'Check'.\n\nThank you for using Threadfeed!\n\nACTIVATION CODE: \n" + activationCode
        mail.send(msg)

    if request.method == 'POST':
        e_c = request.form.get('ac')
        if e_c == activationCode:
            activate_user(session.get('username'))
            return redirect(url_for('profile'))

    return render_template('user/activate.html')
Ejemplo n.º 5
0
def login():

    session.clear()

    if request.method == 'GET':
        pass

    if request.method == 'POST':
        username = request.form.get('username')
        password = request.form.get('password')

        if check_login(username, password):

            id = get_user(username)[0]
            name = get_user(username)[1]
            session['user_id'] = id
            session['username'] = name

            return redirect(url_for('profile'))

        else:
            flash("Incorrect username or password")

    return render_template('auth/login.html')
Ejemplo n.º 6
0
def profile():

    if session.get('username') == None:
        return redirect(url_for('login'))
    if get_user(session.get('username'))[6] == False:
        return redirect(url_for('activate'))

    if request.method == 'GET':
        pass

    if request.method == 'POST':
        if 'delete' in request.form:
            delete_post(session.get('username'), request.form['delete'])
        else:
            return redirect(url_for('create'))

    return render_template('user/profile.html')
Ejemplo n.º 7
0
def create():

    if session.get('username') == None:
        return redirect(url_for('login'))
    if get_user(session.get('username'))[6] == False:
        return redirect(url_for('activate'))
    if request.method == 'GET':
        pass

    if request.method == 'POST':
        thread = request.form.get('thread-post')
        user = session.get('username')

        if len(thread) == 0:
            return redirect(url_for('create'))

        create_post(user, thread)

        return redirect(url_for('profile'))

    return render_template('user/create.html')
Ejemplo n.º 8
0
def forgot():

    if request.method == 'GET':
        pass

    if request.method == 'POST':
        username = request.form.get('username')
        email = request.form.get('email')

        if not check_user_exists(username, email):
            flash("This account does not exist!")
            return redirect(url_for('forgot'))

        if not email_sync(username, email):
            flash("That email is not registered to this username!")
            return redirect(url_for('forgot'))

        user = get_user(username)
        if email == user[5]:
            msg = Message("Threadfeed Recovery",
                          sender="*****@*****.**",
                          recipients=[email])

            temporaryPass = password_generator()

            msg.body = "***DO NOT REPLY, ALL RESPONSES GET AUTOMATICALLY DELETED***\n\nHello! It seems you have requested a password recovery for your Threadfeed account. You have been supplied a temporary password. Use it to login, then change your password immediately.\n\nThank you for using Threadfeed!\n\nTEMPORARY PASSWORD: \n" + temporaryPass + "\n\nDON'T SHOW THIS INFORMATION TO ANYONE!"
            mail.send(msg)

            update_password(temporaryPass, username)
            flash(
                "Further instructions have been sent to " + email +
                " from [email protected]. If you cannot find it, please check your spam folder."
            )

        else:
            flash(
                "The username and email entered are not registered to the same account."
            )

    return render_template('auth/forgot.html')