def user_change_password(request, userid):
if not userid:
userid = request.user.id
# only admin can change the password for someone else
if request.user.id != userid and request.user.profile.role != Profile.ACCESS_ADMIN:
messages.error(request, 'Something went wrong.')
return HttpResponse("Something went wrong.")
qs = User.objects.filter(id=userid)
if qs.count() < 1:
return HttpResponse("No such user")
the_user = qs.get()
if request.method == 'POST':
form = AdminPasswordChangeForm(the_user, request.POST)
if form.is_valid():
form.save()
messages.success(
request, f'Password for "{the_user.username}" {the_user.get_full_name()} ' +
'was successfully updated.')
if request.user == the_user:
return redirect('sis:profile')
else:
return redirect(reverse('schooladmin:user', args=[userid]))
else:
messages.error(request, 'Please correct the error(s) below.')
else:
form = AdminPasswordChangeForm(request.user)
return render(request, 'sis/user_change_password.html', {'auser': the_user, 'form': form})
def recover_pass(request):
if Perfil.objects.filter(code_activation = request.GET['code']):
perfil = Perfil.objects.get(code_activation = request.GET['code'])
usuario = User.objects.get(id = perfil.usuario_id)
categorias = Categorias.objects.all()
envio = perfil.time + timedelta(hours=2)
hoy = datetime.now()
if envio.strftime("%Y-%m-%d %H:%M") >= hoy.strftime("%Y-%m-%d %H:%M"):
if request.method == 'POST':
formulario = AdminPasswordChangeForm(user=usuario, data=request.POST)
if formulario.is_valid():
formulario.save()
perfil.code_activation += usuario.username
perfil.save()
sms = "Contraseña Cambiada Correctamente"
messages.success(request, sms)
return HttpResponseRedirect(reverse(loguet_in))
else:
formulario = AdminPasswordChangeForm(user=usuario)
return render(request, 'users/change_pass.html', {
'formulario':formulario,
'categorias':categorias,
})
else:
sms = "El Enlace ya expiro por favor solicite uno nuevo"
messages.error(request, sms, 'danger')
return HttpResponseRedirect(reverse(sent_code_reset_pass))
else:
sms = "Enlace no Valido"
messages.error(request, sms, 'danger')
return HttpResponseRedirect(reverse(sent_code_reset_pass))
def user_change_password(request, id):
if not request.user.has_perm('auth.change_user'):
raise PermissionDenied
user = get_object_or_404(User, pk=id)
if request.method == 'POST':
form = AdminPasswordChangeForm(user, request.POST)
if form.is_valid():
new_user = form.save()
msg = _('Password changed successfully.')
request.user.message_set.create(message=msg)
return HttpResponseRedirect('..')
else:
form = AdminPasswordChangeForm(user)
return render_to_response('admin/auth/user/change_password.html', {
'title': _('Change password: %s') % escape(user.username),
'form': form,
'is_popup': '_popup' in request.REQUEST,
'add': True,
'change': False,
'has_delete_permission': False,
'has_change_permission': True,
'has_absolute_url': False,
'opts': User._meta,
'original': user,
'show_save': True,
}, context_instance=RequestContext(request))
def user_recoverpass(request, user_id, code):
if ActivationCode.objects.filter(user_id = user_id, state = True, code = code, description='Reset Pass'):
activation = ActivationCode.objects.get(user_id = user_id, state = True, code = code, description='Reset Pass')
user = User.objects.get(id = user_id)
envio = activation.send_time + timedelta(hours=24)
today = datetime.now()
if envio.strftime("%Y-%m-%d %H:%M") >= today.strftime("%Y-%m-%d %H:%M"):
if request.method == 'POST':
form = AdminPasswordChangeForm(user=user, data=request.POST)
if form.is_valid():
form.save()
activation.state = False
activation.save()
sms = "Contraseña Cambiada Correctamente"
messages.success(request, sms)
return HttpResponseRedirect(reverse(user_login))
else:
form = AdminPasswordChangeForm(user=user)
return render(request, 'users/reset_pass.html', {
'form':form,
})
else:
sms = "El Enlace ya expiro por favor solicite uno nuevo"
messages.error(request, sms, 'danger')
return HttpResponseRedirect(reverse(user-user-user_sendcoderesetpass))
else:
sms = "Enlace no Valido"
messages.error(request, sms, 'danger')
return HttpResponseRedirect('/')
def password_nuevo(request):
algo=""
if request.method == 'POST' :
formulario2=newpass(request.POST)
if formulario2.is_valid():
contrasena=request.POST['actual_password']
usuario=request.user
acceso=authenticate(username=usuario,password=contrasena)
if acceso is not None:
formulario = AdminPasswordChangeForm(user=usuario, data=request.POST)
if formulario.is_valid():
formulario.save()
logout(request)
return HttpResponseRedirect("/db/menu/loginlink/")
pass
else:
formulario = AdminPasswordChangeForm(user=request.user)
formulario2 = newpass()
algo="Las contrasena actual no es la misma"
return render_to_response('repassword.html', {'formulario' :formulario, "formulario2": formulario2, "algo": algo}, context_instance=RequestContext(request))
pass
else:
formulario = AdminPasswordChangeForm(user=request.user)
formulario2 = newpass()
return render_to_response('repassword.html', {'formulario' :formulario, "formulario2": formulario2}, context_instance=RequestContext(request))
def editZbyAccountView(request, acpk):
if request.POST:
print "post edit user"
instance = get_object_or_404(sysUser, pk=int(acpk))
userForm = AdminPasswordChangeForm(request.POST, instance=instance)
if userForm.is_valid():
print "form is valid"
instance = userForm.save(commit=True)
print instance.userid
ActionlogInstance = Actionlog(userid=119,
logevent=u"编辑账户:" +
instance.username,
loglevel="0")
ActionlogInstance.save()
return HttpResponseRedirect("/system/accounts/")
else:
return render(request, 'system/addAccount.html', {
'userForm': userForm,
'fun': u"编辑"
})
try:
instance = get_object_or_404(sysUser, pk=int(acpk))
userForm = AdminPasswordChangeForm(instance=instance)
return render(request, 'system/addAccount.html', {
'userForm': userForm,
'fun': u"编辑"
})
except Exception, e:
print e
def test_password_whitespace_not_stripped(self):
user = User.objects.get(username="******")
data = {"password1": " pass ", "password2": " pass "}
form = AdminPasswordChangeForm(user, data)
self.assertTrue(form.is_valid())
self.assertEqual(form.cleaned_data["password1"], data["password1"])
self.assertEqual(form.cleaned_data["password2"], data["password2"])
def change_password(request,
user_id,
template_name='accounts/admin_change_pw.html'):
"""
Admin change users password
"""
user_account = get_object_or_404(User, pk=user_id)
if request.method == 'POST':
form = AdminPasswordChangeForm(user_account, request.POST)
if form.is_valid():
try:
form.save()
msg = _(
'The password for user %(account)s has been updated') % {
'account': user_account.username
}
except DatabaseError:
msg = _('The password could not be updated')
djmessages.info(request, msg)
return HttpResponseRedirect(reverse('user-profile',
args=[user_id]))
else:
form = AdminPasswordChangeForm(user_account)
user_account = None
form.fields['password1'].widget.attrs['size'] = '45'
form.fields['password2'].widget.attrs['size'] = '45'
return render_to_response(template_name,
locals(),
context_instance=RequestContext(request))
def user_change_password(request, pk):
"""
Función que gestiona la actualización de las contraseña de un usuario.
"""
model = User
usuario = get_object_or_404(User, pk=pk)
print usuario
form = AdminPasswordChangeForm(user=usuario)
if request.method == 'POST':
form = AdminPasswordChangeForm(user=usuario, data=request.POST)
if form.is_valid():
form.save()
messages = ['Se actualizó la contraseña del usuario con éxito']
usuarios = User.objects.all()
data = {}
data['object_list'] = usuarios
object_list = usuarios
return render_to_response("usuarios/list_users.html", {
'messages': messages,
'object_list': object_list
},
context_instance=RequestContext(request))
else:
print "No se realizó el cambio de contraseña"
return render(request, 'usuarios/user_change_password.html', {
'form': form,
'usuario': usuario
})
def user_change_password(request: HttpRequest, user_id) -> HttpResponse:
# Get the User
user = get_object_or_404(User, pk=user_id)
# Dict for view
view_dict = {} # type: Dict[str, object]
# process or create form
if request.method == 'POST':
password_form = AdminPasswordChangeForm(user, request.POST)
# process admin user
if password_form.is_valid():
user = password_form.save()
messages.add_message(request, messages.SUCCESS,
f'User {user.username} password updated.')
return HttpResponseRedirect(reverse_lazy('index'))
else:
password_form = AdminPasswordChangeForm(user)
# modify the css and label attributes
password_form.fields['password1'].widget.attrs['class'] = 'form-control'
password_form.fields['password1'].label = "New Password:"******"New Password (again):"
view_dict['form'] = password_form
view_dict['user'] = user
return render(request, 'user_change_password.html', view_dict)
def user_change_password(request, id):
if not request.user.has_perm('auth.change_user'):
raise PermissionDenied
user = get_object_or_404(User, pk=id)
if request.method == 'POST':
form = AdminPasswordChangeForm(user, request.POST)
if form.is_valid():
new_user = form.save()
msg = _('Password changed successfully.')
request.user.message_set.create(message=msg)
return HttpResponseRedirect('..')
else:
form = AdminPasswordChangeForm(user)
return render_to_response(
'admin/auth/user/change_password.html', {
'title': _('Change password: %s') % escape(user.username),
'form': form,
'is_popup': '_popup' in request.REQUEST,
'add': True,
'change': False,
'has_delete_permission': False,
'has_change_permission': True,
'has_absolute_url': False,
'opts': User._meta,
'original': user,
'save_as': False,
'show_save': True,
'root_path': re.sub('auth/user/(\d+)/password/$', '',
request.path),
},
context_instance=RequestContext(request))
def password_resetenter(request, uidb64=None, token=None):
"""
Enter new password for reset password.
"""
context_dict = {}
if request.method == 'POST':
assert uidb64 is not None and token is not None
uid = urlsafe_base64_decode(uidb64)
user = models.Employee.objects.get(soft_delete=False, pk=uid)
db_user = user.user
reset_token = models.PasswordReset.objects.get(token=token, user=user)
token_check = models.PasswordReset.objects.filter(
user=user,
soft_delete=False,
token_consumed=False,
).exclude(token=token).first()
update_fields = []
token_check.token_consumed = True
update_fields.append('token_consumed')
token_check.soft_delete = True
update_fields.append('soft_delete')
token_check.save(update_fields=update_fields)
time_threshold = timezone.now(
) - reset_token.password_request_created_at
if time_threshold > timedelta(minutes=30):
try:
update_fields = []
reset_token.token_consumed = True
update_fields.append('token_consumed')
reset_token.soft_delete = True
update_fields.append('soft_delete')
reset_token.save(update_fields=update_fields)
except Exception as e:
print(e)
if reset_token.user == user and reset_token.token == token:
if reset_token.token_consumed == False and reset_token.soft_delete == False:
try:
update_fields = []
reset_token.token_consumed = True
update_fields.append('token_consumed')
reset_token.soft_delete = True
update_fields.append('soft_delete')
reset_token.save(update_fields=update_fields)
except Exception as e:
print(e)
form = AdminPasswordChangeForm(user=db_user, data=request.POST)
if form.is_valid():
form.save()
history = models.History(user=user,
activity="",
activity_type="Reset Password")
history.save()
context_dict["message"] = "Password changed successfully"
else:
context_dict["message"] = "Password not changed"
else:
context_dict["message"] = "Link is no longer valid"
return render(request, "reset.html", context_dict)
def reset_pass(request):
if request.method == 'POST' :
formulario = AdminPasswordChangeForm(user=request.user, data=request.POST)
if formulario.is_valid():
formulario.save()
return HttpResponseRedirect('/user/login')
else:
formulario = AdminPasswordChangeForm(user=request.user)
return render_to_response('user/reset_pass.html', {'formulario' :formulario}, context_instance=RequestContext(request))
def test_success(self, password_changed):
user = User.objects.get(username="******")
data = {"password1": "test123", "password2": "test123"}
form = AdminPasswordChangeForm(user, data)
self.assertTrue(form.is_valid())
form.save(commit=False)
self.assertEqual(password_changed.call_count, 0)
form.save()
self.assertEqual(password_changed.call_count, 1)
def reset_pass(request):
if request.method == 'POST' :
formulario = AdminPasswordChangeForm(user=request.user, data=request.POST)
if formulario.is_valid():
formulario.save()
return HttpResponseRedirect('/user/login')
else:
formulario = AdminPasswordChangeForm(user=request.user)
return render_to_response('user/reset_pass.html', {'formulario' :formulario}, context_instance=RequestContext(request))
def change_admin_password(request):
if request.method == 'POST':
form = AdminPasswordChangeForm(request.user, request.POST)
if form.is_valid():
form.save()
return HttpResponseRedirect(reverse('morepractice:thanks'))
else:
form = AdminPasswordChangeForm(request.user)
return render(request, 'morepractice/change_admin_password.html', {'form': form})
def modifica_password_utente(request,utente_id):
user = User.objects.get(id=utente_id)
if request.method == 'POST': # If the form has been submitted...
form = AdminPasswordChangeForm(user=user, data=request.POST)
if form.is_valid():
form.save()
return HttpResponseRedirect('/utenti/') # Redirect after POST
else:
form = AdminPasswordChangeForm(user=user)
return render(request,'form_password_utente.html',{'request':request, 'form': form, 'user': user,})
def test_password_whitespace_not_stripped(self):
user = User.objects.get(username='******')
data = {
'password1': ' pass ',
'password2': ' pass ',
}
form = AdminPasswordChangeForm(user, data)
self.assertTrue(form.is_valid())
self.assertEqual(form.cleaned_data['password1'], data['password1'])
self.assertEqual(form.cleaned_data['password2'], data['password2'])
def admin_change_password(self, params):
"""As Admin, update another user's password."""
if not self.user.is_superuser:
raise HandlerPermissionError()
user = self.get_object(params)
form = AdminPasswordChangeForm(user=user, data=get_QueryDict(params))
if form.is_valid():
form.save()
else:
raise HandlerValidationError(form.errors)
def test_password_whitespace_not_stripped(self):
user = User.objects.get(username='******')
data = {
'password1': ' pass ',
'password2': ' pass ',
}
form = AdminPasswordChangeForm(user, data)
self.assertTrue(form.is_valid())
self.assertEqual(form.cleaned_data['password1'], data['password1'])
self.assertEqual(form.cleaned_data['password2'], data['password2'])
def test_password_whitespace_not_stripped(self):
user = User.objects.get(username="******")
data = {
"password1": " pass ",
"password2": " pass ",
}
form = AdminPasswordChangeForm(user, data)
self.assertTrue(form.is_valid())
self.assertEqual(form.cleaned_data["password1"], data["password1"])
self.assertEqual(form.cleaned_data["password2"], data["password2"])
def reset_pass(request):
if request.method == 'POST':
form = AdminPasswordChangeForm(user=request.user, data=request.POST)
if form.is_valid():
form.save()
return HttpResponseRedirect(reverse(user_index))
else:
form = AdminPasswordChangeForm(user=request.user)
return render(request, 'users/reset_pass.html', {
'form': form,
})
def cambiar_password(request):
if request.method == 'POST' :
formulario = AdminPasswordChangeForm(user=request.user, data=request.POST)
if formulario.is_valid():
formulario.save()
return HttpResponseRedirect(reverse(iniciar_sesion))
else:
formulario = AdminPasswordChangeForm(user=request.user)
return render(request, 'users/reset_pass.html', {
'formulario' :formulario,
})
def password_change(req):
user_to_edit = User.objects.get(id=req.user.id)
if req.method == 'POST':
password_form = AdminPasswordChangeForm(user_to_edit, req.POST)
if password_form.is_valid():
password_form.save()
return HttpResponseRedirect('/')
else:
password_form = AdminPasswordChangeForm(user_to_edit)
template_name="password_change.html"
return render_to_response(req, template_name, {"form" : password_form})
def user_changepassword(request):
if request.method == 'POST' :
form = AdminPasswordChangeForm(user=request.user, data=request.POST)
if form.is_valid():
form.save()
return HttpResponseRedirect(reverse(user_notification))
else:
form= AdminPasswordChangeForm(user=request.user)
return render(request, 'users/change_pass.html', {
'form' :form,
})
def password_change(req):
user_to_edit = User.objects.get(id=req.user.id)
if req.method == 'POST':
password_form = AdminPasswordChangeForm(user_to_edit, req.POST)
if password_form.is_valid():
password_form.save()
return HttpResponseRedirect('/')
else:
password_form = AdminPasswordChangeForm(user_to_edit)
template_name = "password_change.html"
return render(req, template_name, {"form": password_form})
def password_change(req, id):
user_to_edit = User.objects.get(id=id)
print req.user
if req.method == "POST":
password_form = AdminPasswordChangeForm(user_to_edit, req.POST)
if password_form.is_valid():
password_form.save()
return HttpResponseRedirect("/iavi/users/%s/edit" % user_to_edit.id)
else:
password_form = AdminPasswordChangeForm(user_to_edit)
template_name = "iavi/password_change.html"
return render_to_response(req, template_name, {"current_user": user_to_edit, "form": password_form})
def test_success(self, password_changed):
user = User.objects.get(username='******')
data = {
'password1': 'test123',
'password2': 'test123',
}
form = AdminPasswordChangeForm(user, data)
self.assertTrue(form.is_valid())
form.save(commit=False)
self.assertEqual(password_changed.call_count, 0)
form.save()
self.assertEqual(password_changed.call_count, 1)
def update_user_password(request, user_id):
user = User.objects.get(id=user_id)
if request.method == 'GET':
form = AdminPasswordChangeForm(user, None)
return render_to_response('update_password.html', {'form':form, 'editing':True, 'site_user':user}, context_instance=RequestContext(request))
if request.method == 'POST':
form = AdminPasswordChangeForm(user,request.POST)
if form.is_valid():
form.save()
return redirect(reverse_lazy('users:edit_user',kwargs={'user_id':str(user.id)}))
return render_to_response('update_password.html', {'form':form, 'editing':True, 'site_user':user}, context_instance=RequestContext(request))
def change_password(request):
if request.method == 'POST':
form = AdminPasswordChangeForm(user=request.user, data=request.POST)
if form.is_valid():
request.user.set_password(form.clean_password2())
return HttpResponseRedirect('/recording/')
else:
context = {'form': form}
return render(request, 'change_password.html', {'form': form})
else:
form = AdminPasswordChangeForm(user=request.user)
return render(request, 'change_password.html', {'form': form})
def user_edit_password(request, user):
if settings.EXTERNAL_AUTH:
raise Http404()
user = get_object_or_404(User, id=user)
form = AdminPasswordChangeForm(user, request.POST or None)
if request.method == 'POST' and form.is_valid():
form.save()
messages.success(request, 'User password modified successfully.')
return redirect('show-user', user.id)
return render(request, 'accounts/user_edit.html', {
'user': user,
'form': form,
})
def password_change(req, id):
user_to_edit = User.objects.get(id=id)
print req.user
if req.method == 'POST':
password_form = AdminPasswordChangeForm(user_to_edit, req.POST)
if password_form.is_valid():
password_form.save()
return HttpResponseRedirect('/iavi/users/%s/edit' % user_to_edit.id)
else:
password_form = AdminPasswordChangeForm(user_to_edit)
template_name="iavi/password_change.html"
return render_to_response(req, template_name, {"current_user" : user_to_edit,
"form" : password_form})
def reset_pass(request):
perfil = Perfil.objects.get(usuario = request.user)
if request.method == 'POST' :
formulario = AdminPasswordChangeForm(user=request.user, data=request.POST)
if formulario.is_valid():
formulario.save()
return HttpResponseRedirect(reverse(loguet_in))
else:
formulario = AdminPasswordChangeForm(user=request.user)
return render(request, 'users/reset_pass.html', {
'formulario' :formulario,
'perfil':perfil,
})
def user_edit_password(request, user):
if settings.EXTERNAL_AUTH:
raise Http404()
user = get_object_or_404(User, id=user)
form = AdminPasswordChangeForm(user, request.POST or None)
if request.method == 'POST' and form.is_valid():
form.save()
messages.success(request, 'User password modified successfully.')
return redirect('show-user', user.id)
return render(request, 'accounts/user_edit.html', {
'user': user,
'form': form,
})
def change_password(request):
if request.method == 'POST':
formulario = AdminPasswordChangeForm(user=request.user, data=request.POST)
if formulario.is_valid():
formulario.save()
sms = "Contraseña Modificada Correctamente"
messages.success(request, sms)
return HttpResponseRedirect(reverse(info_usuario))
else:
formulario = AdminPasswordChangeForm(user=request.user)
return render(request, 'usuarios/change_password.html', {
'formulario':formulario,
})
def modifica_password_utente(request, utente_id):
user = User.objects.get(id=utente_id)
if request.method == 'POST': # If the form has been submitted...
form = AdminPasswordChangeForm(user=user, data=request.POST)
if form.is_valid():
form.save()
return HttpResponseRedirect('/utenti/') # Redirect after POST
else:
form = AdminPasswordChangeForm(user=user)
return render(request, 'form_password_utente.html', {
'request': request,
'form': form,
'user': user,
})
def definir_senha(request, pk=None):
user_model = get_user_model()
user_obj = get_object_or_404(user_model, pk=pk)
if request.method == "POST":
form = AdminPasswordChangeForm(user=user_obj, data=request.POST)
if form.is_valid():
form.save()
update_session_auth_hash(request, form.user)
return HttpResponseRedirect(
reverse('agentes:agente:detalhes', args=[pk]))
else:
form = AdminPasswordChangeForm(user=request.user)
context = {'agente': user_obj, 'form': form, 'title': 'Redefinir senha'}
return render(request, 'registration/password_change_form.html', context)
def password(request, user_id):
user = get_object_or_404(User, pk=user_id)
if request.method == 'POST':
form = AdminPasswordChangeForm(user, request.POST)
if form.is_valid():
form.save()
messages.success(request, _(u'Password changed successfully.'))
if request.user == user:
update_session_auth_hash(request, form.user)
return redirect(reverse('users:user', args=(user.pk, )))
else:
messages.error(request, _(u'Please correct the error below.'))
else:
form = AdminPasswordChangeForm(user)
return render(request, 'users/password.html', {'form': form})
def admin_change_password(request, pk):
if "cancel" in request.POST:
return redirect('accounts:list_user')
user_change = get_object_or_404(CustomUser, pk=pk)
if request.method == 'POST':
form = AdminPasswordChangeForm(user_change, request.POST)
if form.is_valid():
messages.success(request, ' password was successfully updated!')
return redirect('accounts:list_user')
else:
messages.error(request, 'Please correct the error below.')
return redirect('accounts:list_user')
else:
form = AdminPasswordChangeForm(user_change)
return render(request, 'accounts/change_password.html', {'form': form})
def appuser_manageView(request, id = None, template_name='registration/user_manage.html'):
if id:
userI = get_object_or_404(User, pk=id)
else:
userI = User()
if request.method == 'POST':
UserForm = AdminPasswordChangeForm(request.POST, request.FILES, instance=userI)
if UserForm.is_valid():
UserForm.save()
return HttpResponseRedirect('/appusers/')
else:
UserForm = UserCreationForm(instance=userI)
return render_to_response(template_name, {'UserForm': UserForm,}
,context_instance = RequestContext(request))
def admin_client_password(request, pk):
'''
Shows change password page
'''
user = User.objects.get(pk=pk)
form = AdminPasswordChangeForm(user)
if request.method == 'POST':
form = AdminPasswordChangeForm(user, request.POST)
if form.is_valid():
user.set_password(form.cleaned_data.get('password1'))
user.save()
return redirect(reverse('admin'))
return render(request, "admin_client_password.html", {
'form': form,
'pk': pk,
})
def user_change_password(request, id):
user = User.objects.get(pk=id)
form = AdminPasswordChangeForm(user, request.POST)
if form.is_valid():
new_user = form.save()
msg = _('Password changed successfully.')
request.user.message_set.create(message=msg)
return HttpResponseRedirect('../../user/users')
else:
form = AdminPasswordChangeForm(user)
extra_context = {
'form': form,
'change': True
}
return direct_to_template(request,"users/user_password_change.html",
extra_context = extra_context)
def change_password(request, user_id):
"""
Changes user's password. Cannot change admins's password.
"""
user = get_object_or_404(CustomUser, id=user_id, is_staff=False)
form = AdminPasswordChangeForm(user, data=request.POST or None)
if form.is_valid():
form.save()
resp = render(request, "snippets/change_password_form.html",
{"form": form})
response_data = {"html": resp.content, 'user_id': user.id}
return HttpResponse(json.dumps(response_data),
content_type="application/json")
def users_setpassword(request, pk):
object = get_object_or_404(User, pk=pk)
if request.method == 'POST': # If the form has been submitted...
form = AdminPasswordChangeForm(user=object, data=request.POST)
if form.is_valid(): # If the form is valid
form.save()
messages.success(request, 'The password has been saved.')
return redirect(reverse('main.views.users_show', args=(object.pk, )))
else:
form = AdminPasswordChangeForm(user=object)
return render_to_response('main/users/setpassword.html', {'form': form}, context_instance=RequestContext(request))
def create_password(request):
"""
A custom view for the admin password change form used for account activation.
"""
if request.method == 'POST':
form = AdminPasswordChangeForm(request.user, request.POST)
if form.is_valid():
user = form.save()
update_session_auth_hash(request, user) # Important!
messages.success(request,
'Your password was successfully updated!')
return redirect('users:account')
else:
messages.error(request, 'Please correct the errors below.')
else:
form = AdminPasswordChangeForm(request.user)
return render(request, 'users/change_password.html', {'form': form})
def employee_change_password(request, pk):
user = get_object_or_404(User, id=pk)
if request.method == 'POST':
form = AdminPasswordChangeForm(user, request.POST)
if form.is_valid():
user = form.save()
update_session_auth_hash(request, user) # Important!
messages.success(request,
'Your password was successfully updated!')
return redirect('change_password')
else:
messages.error(request, 'Please correct the error below.')
else:
form = AdminPasswordChangeForm(user)
return render(request, 'employees/employee_change_password.html', {
'form': form,
'object': user,
})
def change_password(request, user_id):
try:
passwd_user = User.objects.get(pk=user_id)
except ObjectDoesNotExist:
raise Http404
if request.method == "POST":
form = AdminPasswordChangeForm(passwd_user, request.POST)
if form.is_valid():
form.save()
return HttpResponseRedirect('../../')
else:
form = AdminPasswordChangeForm(passwd_user)
return render_to_response("accounts/admin_passwd.html",
{"form": form, "passwd_user": passwd_user},
context_instance=RequestContext(request))
def change_user_password(request, userId):
user = get_object_or_404(User, id=userId)
if INTEGRATION_ENABLED:
return redirect('user-password', user=user.pk)
else:
if request.method == 'POST':
passwordForm = AdminPasswordChangeForm(user, request.POST)
if passwordForm.is_valid():
user = passwordForm.save()
request.user.message_set.create(message=_('Password updated'))
return redirect('picket-admin-users')
else:
passwordForm = AdminPasswordChangeForm(user=user)
return direct_to_template(request, 'picket/admin/user_password.html',
{'password_form': passwordForm,})
def user_password_change(request, user_id):
user = get_object_or_404(User, id=user_id)
if request.method == 'GET':
form = AdminPasswordChangeForm(user)
return TemplateResponse(request, 'user_password_change.html', {
'form': form,
'user': user
})
elif request.method == 'POST':
form = AdminPasswordChangeForm(user, request.POST)
if form.is_valid():
form.save()
return HttpResponseRedirect('/server/users/')
else:
return TemplateResponse(request, 'user_password_change.html', {
'form': form,
'user_id': user_id
})
def change_password(request, user_id):
try:
passwd_user = User.objects.get(pk=user_id)
except ObjectDoesNotExist:
raise Http404
if request.method == "POST":
form = AdminPasswordChangeForm(passwd_user, request.POST)
if form.is_valid():
form.save()
return HttpResponseRedirect('/account/admin/')
else:
form = AdminPasswordChangeForm(passwd_user)
return render_to_response("account/passwd.html",
{"form": form, "passwd_user": passwd_user},
context_instance=RequestContext(request))
def user_password(request, profile_id):
profile = get_object_or_404(USER_CURATOR.profile_class, id=profile_id)
if request.method == 'POST':
form = AdminPasswordChangeForm(profile.user, request.POST)
if form.is_valid():
form.save()
return HttpResponseRedirect('/yacon/nexus/users/list_users/')
else: # GET
form = AdminPasswordChangeForm(profile.user)
data = {
'title': 'Change User Password',
'profile': profile,
'form': form,
'clear_autocomplete': True,
}
return render(request, 'yacon/nexus/edit_user.html', data)
def user_update_password(request, pk):
user = get_object_or_404(User, pk=pk)
if request.method == 'POST':
form = AdminPasswordChangeForm(user, request.POST)
if form.is_valid():
user = form.save()
update_session_auth_hash(request, user) # Important!
messages.success(
request, _("User password changed: {}".format(user.username)))
return redirect("admin:user_list")
else:
messages.error(request, _("Wrong Data Provided"))
else:
form = AdminPasswordChangeForm(user)
return render(request, "accounts/change_password_form.html", {
"form": form,
"user": user.username
})
def change_password(request, user_id, template_name='accounts/change_pw.html'):
"""
Admin change users password
"""
user_account = get_object_or_404(User, pk=user_id)
if request.method == 'POST':
form = AdminPasswordChangeForm(user_account, request.POST)
if form.is_valid():
form.save()
msg = 'The password for user %s has been updated' % (
user_account.username)
request.user.message_set.create(message=msg)
return HttpResponseRedirect(reverse('user-profile',
args=[user_id]))
else:
form = AdminPasswordChangeForm(user_account)
user_account = None
form.fields['password1'].widget.attrs['size'] = '45'
form.fields['password2'].widget.attrs['size'] = '45'
return render_to_response(template_name, locals(),
context_instance=RequestContext(request))
def change_password(request, user_id):
"""
Changes user's password. Cannot change admins's password.
"""
user = get_object_or_404(CustomUser, id=user_id, is_staff=False)
form = AdminPasswordChangeForm(user, data=request.POST or None)
if form.is_valid():
form.save()
resp = render(
request,
"snippets/change_password_form.html",
{"form": form}
)
response_data = {"html": resp.content, 'user_id': user.id}
return HttpResponse(
json.dumps(response_data),
content_type="application/json"
)
def reset_password(self, request, id, form_url=''):
if not self.has_change_permission(request):
raise PermissionDenied
user = get_object_or_404(self.queryset(request), pk=id)
if request.method == 'POST':
form = AdminPasswordChangeForm(user, request.POST)
if form.is_valid():
form.save()
msg = _('Password changed successfully.')
messages.success(request, msg)
return HttpResponseRedirect('..')
else:
form = AdminPasswordChangeForm(user)
fieldsets = [(None, {'fields': form.base_fields.keys()})]
adminForm = admin.helpers.AdminForm(form, fieldsets, {})
context = {
'title': _('Change password: %s') % escape(user.username),
'adminForm': adminForm,
'form_url': mark_safe(form_url),
'form': form,
'is_popup': '_popup' in request.REQUEST,
'add': True,
'change': False,
'has_delete_permission': False,
'has_change_permission': True,
'has_absolute_url': False,
'opts': self.model._meta,
'original': user,
'save_as': False,
'show_save': True,
}
return TemplateResponse(request, [
'admin/auth/user/change_password.html'
], context, current_app=self.admin_site.name)
def change_password(request, user_id, template_name='accounts/admin_change_pw.html'):
"""
Admin change users password
"""
user_account = get_object_or_404(User, pk=user_id)
if request.method == 'POST':
form = AdminPasswordChangeForm(user_account, request.POST)
if form.is_valid():
try:
form.save()
msg = _('The password for user %(account)s has been updated') % {
'account': user_account.username}
except DatabaseError:
msg = _('The password could not be updated')
djmessages.info(request, msg)
return HttpResponseRedirect(reverse('user-profile',
args=[user_id]))
else:
form = AdminPasswordChangeForm(user_account)
user_account = None
form.fields['password1'].widget.attrs['size'] = '45'
form.fields['password2'].widget.attrs['size'] = '45'
return render_to_response(template_name, locals(),
context_instance=RequestContext(request))
def custom_modify_user_view(request, targetUsername):
""" The page to modify a user. """
if targetUsername == ANONYMOUS_USERNAME:
messages.add_message(request, messages.WARNING, MESSAGES["ANONYMOUS_EDIT"])
page_name = "Admin - Modify User"
targetUser = get_object_or_404(User, username=targetUsername)
targetProfile = get_object_or_404(UserProfile, user=targetUser)
update_user_form = UpdateUserForm(
request.POST if "update_user_profile" in request.POST else None,
instance=targetUser,
profile=UserProfile.objects.get(user=request.user),
prefix="user",
)
update_profile_form = FullProfileForm(
request.POST if "update_user_profile" in request.POST else None, instance=targetProfile, prefix="profile"
)
change_user_password_form = AdminPasswordChangeForm(
targetUser, request.POST if "change_user_password" in request.POST else None
)
delete_user_form = DeleteUserForm(
request.POST if "delete_user" in request.POST else None, user=targetUser, request=request
)
if update_user_form.is_valid() and update_profile_form.is_valid():
update_user_form.save()
update_profile_form.save()
messages.add_message(
request, messages.SUCCESS, MESSAGES["USER_PROFILE_SAVED"].format(username=targetUser.username)
)
return HttpResponseRedirect(reverse("custom_modify_user", kwargs={"targetUsername": targetUsername}))
if change_user_password_form.is_valid():
change_user_password_form.save()
messages.add_message(
request, messages.SUCCESS, MESSAGES["USER_PW_CHANGED"].format(username=targetUser.username)
)
return HttpResponseRedirect(reverse("custom_modify_user", kwargs={"targetUsername": targetUsername}))
if delete_user_form.is_valid():
delete_user_form.save()
messages.add_message(request, messages.SUCCESS, MESSAGES["USER_DELETED"].format(username=targetUser.username))
return HttpResponseRedirect(reverse("custom_manage_users"))
template_dict = {
"targetUser": targetUser,
"targetProfile": targetProfile,
"page_name": page_name,
"update_user_form": update_user_form,
"update_profile_form": update_profile_form,
"change_user_password_form": change_user_password_form,
"delete_user_form": delete_user_form,
}
if "wiki" in settings.INSTALLED_APPS:
from wiki.models import Revision
template_dict["revision_count"] = Revision.objects.filter(created_by=targetUser).count()
template_dict["thread_count"] = Thread.objects.filter(owner=targetProfile).count()
template_dict["message_count"] = Message.objects.filter(owner=targetProfile).count()
template_dict["request_count"] = Request.objects.filter(owner=targetProfile).count()
template_dict["response_count"] = Response.objects.filter(owner=targetProfile).count()
template_dict["announcement_count"] = Announcement.objects.filter(incumbent=targetProfile).count()
template_dict["event_count"] = Event.objects.filter(owner=targetProfile).count()
return render_to_response("custom_modify_user.html", template_dict, context_instance=RequestContext(request))
def custom_modify_user_view(request, targetUsername):
''' The page to modify a user. '''
if targetUsername == ANONYMOUS_USERNAME:
messages.add_message(request, messages.WARNING, MESSAGES['ANONYMOUS_EDIT'])
page_name = "Admin - Modify User"
targetUser = get_object_or_404(User, username=targetUsername)
targetProfile = get_object_or_404(UserProfile, user=targetUser)
modify_user_form = ModifyUserForm(
request.POST if "update_user_profile" in request.POST else None,
user=targetUser,
request=request,
)
change_user_password_form = AdminPasswordChangeForm(
targetUser,
request.POST if "change_user_password" in request.POST else None,
)
delete_user_form = DeleteUserForm(
request.POST if "delete_user" in request.POST else None,
user=targetUser,
request=request,
)
if modify_user_form.is_valid():
modify_user_form.save()
messages.add_message(
request, messages.SUCCESS,
MESSAGES['USER_PROFILE_SAVED'].format(username=targetUser.username),
)
return HttpResponseRedirect(reverse(
'custom_modify_user', kwargs={'targetUsername': targetUsername}
))
if change_user_password_form.is_valid():
change_user_password_form.save()
messages.add_message(
request, messages.SUCCESS,
MESSAGES['USER_PW_CHANGED'].format(username=targetUser.username),
)
return HttpResponseRedirect(reverse(
'custom_modify_user', kwargs={'targetUsername': targetUsername})
)
if delete_user_form.is_valid():
delete_user_form.save()
messages.add_message(
request, messages.SUCCESS,
MESSAGES['USER_DELETED'].format(username=targetUser.username),
)
return HttpResponseRedirect(reverse("custom_manage_users"))
return render_to_response('custom_modify_user.html', {
'targetUser': targetUser,
'targetProfile': targetProfile,
'page_name': page_name,
'modify_user_form': modify_user_form,
'change_user_password_form': change_user_password_form,
'delete_user_form': delete_user_form,
'thread_count': Thread.objects.filter(owner=targetProfile).count(),
'message_count': Message.objects.filter(owner=targetProfile).count(),
'request_count': Request.objects.filter(owner=targetProfile).count(),
'response_count': Response.objects.filter(owner=targetProfile).count(),
'announcement_count': Announcement.objects.filter(incumbent=targetProfile).count(),
'event_count': Event.objects.filter(owner=targetProfile).count(),
}, context_instance=RequestContext(request))