Esempio n. 1
0
    def cancel(self, request):
        """
        # Init the Cancel account flow and send token for it.
        ---
        omit_serializer: true
        """
        action_exist = UserAction.objects.filter(
            user=request.user,
            type=UserAction.ACTION_DISABLE_ACCOUNT).exists()
        if action_exist:
            action = UserAction.objects.get(
                user=request.user, type=UserAction.ACTION_DISABLE_ACCOUNT)

        else:
            action = UserAction(user=request.user,
                                type=UserAction.ACTION_DISABLE_ACCOUNT)

        action.token = get_uuid()
        action.creation_date, action.expiration_date = get_lapse()
        action.save()
        messaging.send_cancel_account(request, action)
        return DoneResponse(
            detail=
            _("Se inicio el proceso de desactivación de tu cuenta revisa tu correo para finalizarlo."
              ),
            status=status.HTTP_201_CREATED,
            code=codes.CANCEL_ACCOUNT_SENT,
        )
Esempio n. 2
0
    def post(self, request, **kwargs):
        """Clear all application sessions."""

        serializer = RefreshTokenSerializer(data=request.data)
        serializer.is_valid(raise_exception=True)
        SessionService.drop_session(serializer.validated_data['refresh_token'])
        return DoneResponse(**response_codes.LOGGED_OUT)
Esempio n. 3
0
def do_cancel_confirm(request, token=None, inner=False):
    action_exist = UserAction.objects.filter(
        token=token, type=UserAction.ACTION_DISABLE_ACCOUNT).exists()

    context = dict()
    context["title"] = _("Cancel account")

    if action_exist:
        action = UserAction.objects.get(token=token,
                                        type=UserAction.ACTION_DISABLE_ACCOUNT)

        action.user.is_active = False
        action.user.save()
        if not settings:
            action.user.delete()
        action.delete()

        message = _("Tu cuenta ha sido eliminada correctamente")
        if inner:
            context["message"] = message
            return render(request, 'credentials/message.html', context)
        else:
            return DoneResponse(
                detail=message,
                status=status.HTTP_201_CREATED,
                code=codes.ACCOUNT_DISABLED,
            )
    else:
        message = _("Acción inválida")
        if inner:
            context["message"] = message
            context["error"] = True
            return render(request, 'credentials/message.html', context)
        else:
            raise ValidationError(detail=message, code=codes.INVALID_ACTION)
Esempio n. 4
0
def do_change_email(request, token=None, inner=False):
    action_exist = UserAction.objects.filter(
        token=token, type=UserAction.ACTION_CHANGE_EMAIL).exists()

    context = dict()
    context["title"] = _("Change email")

    if action_exist:
        action = UserAction.objects.get(token=token,
                                        type=UserAction.ACTION_CHANGE_EMAIL)
        action.user.email = action.value
        action.user.save()

        action.delete()

        if inner:
            context["message"] = _("Tu correo ha sido actualizado con éxito")
            return render(request, 'credentials/message.html', context)
        else:
            return DoneResponse(
                detail=_("Correo actualizado con exito!"),
                status=status.HTTP_201_CREATED,
                code=codes.EMAIL_UPDATED,
            )
    else:
        if inner:
            context["message"] = _("Acción Invalida!")
            context["error"] = True
            return render(request, 'credentials/message.html', context)
        else:
            raise ValidationError(detail=_("Token de transacción invalido"),
                                  code=codes.INVALID_TRANSACTION_TOKEN)
Esempio n. 5
0
    def email_confirmation_request(self, request):
        """Requests a confirmation email."""
        serializer = UsernameOrEmailSerializer(data=request.data)
        serializer.is_valid(raise_exception=True)

        username_or_email = serializer.validated_data['user']
        user = UserSelector.get_by_username_or_email(username_or_email)

        if user.is_active:
            return DoneResponse(
                **response_codes.EMAIL_VERIFIED,
                status=status.HTTP_400_BAD_REQUEST,
            )
        else:
            AuthService.send_confirmation_email(user)
            return DoneResponse(**response_codes.CONFIRMATION_EMAIL_SENT)
Esempio n. 6
0
    def email_confirmation(self, request):
        """Confirms an email."""
        serializer = TokenSerializer(data=request.data)
        serializer.is_valid(raise_exception=True)

        pending_action = PendingActionSelector.get_by_token(
            token=serializer.validated_data['token'],
            category=ActionCategory.CONFIRM_EMAIL.value,
        )
        AuthService.confirm_email(pending_action)
        return DoneResponse(**response_codes.EMAIL_VERIFIED)
Esempio n. 7
0
 def clear_sessions(self, request):
     """
     # Clear all application sessions.
     ---
     omit_serializer: true
     """
     access_tokens = AccessToken.objects.filter(user=request.user)
     access_tokens.delete()
     return DoneResponse(
         detail=_("Sessions cleared.!"),
         code=codes.SESSIONS_CLEARED,
     )
Esempio n. 8
0
    def set_password(self, request):
        """Sets the user password."""
        serializer = PasswordSetSerializer(
            data=request.data,
            context={'request': request},
        )
        serializer.is_valid(raise_exception=True)

        plain_password = serializer.validated_data['password']
        PasswordService.set_pasword(request.user, plain_password)

        return DoneResponse(**response_codes.PASSWORD_ADDED)
Esempio n. 9
0
def do_reset_password(request, token=None, password=None, inner=False):
    action_exist = UserAction.objects.filter(
        token=token, type=UserAction.ACTION_RESET_PASSWORD).exists()

    context = dict()
    context["title"] = _("Reset Password")
    if action_exist:
        action = UserAction.objects.get(token=token,
                                        type=UserAction.ACTION_RESET_PASSWORD)

        context["valid"] = True
        user = action.user

        if user.is_active:

            if inner:
                form = ResetPasswordForm(data=request.POST)
                if form.is_valid():
                    password = form.cleaned_data["password1"]
                    _change_password(request, action, password)
                    context["message"] = _(
                        "Password has been reseted successfully!.")
                    return render(request, 'credentials/message.html', context)
                else:
                    context["has_error"] = True
                    context["message"] = _("Passwords aren't match!")
                    return render(request, 'credentials/password_reset.html',
                                  context)
            else:
                _change_password(request, action, password)
                return DoneResponse(
                    detail=_("La Contraseña ha sido restaurada!."),
                    code=codes.PASSWORD_RESTORED,
                    status=status.HTTP_201_CREATED,
                )
        else:
            if inner:
                context["has_error"] = True
                context["message"] = _("This an inactive account!")
                return render(request, 'credentials/password_reset.html',
                              context)
            else:
                raise ValidationError(detail=_("Cuenta inactiva"),
                                      code=codes.INACTIVE_ACCOUNT)
    else:
        if inner:
            context["has_error"] = True
            context["message"] = _("Invalid action!")
            return render(request, 'credentials/password_reset.html', context)
        else:
            raise ValidationError(detail=_("Token de transacción invalido"),
                                  code=codes.INVALID_TRANSACTION_TOKEN)
Esempio n. 10
0
    def reset_password(self, request):
        """Request a password reset."""

        serializer = PasswordResetSerializer(data=request.data)
        serializer.is_valid(raise_exception=True)

        username_or_email = serializer.validated_data['user']
        user = UserSelector.get_by_username_or_email(username_or_email)

        pending_action = PasswordService.perform_reset_password(user)
        AuthEmailService.send_reset_password(pending_action)

        return DoneResponse(**response_codes.RESET_PASSWORD_SENT)
Esempio n. 11
0
    def update_password(self, request):
        """Updates the useer passwrod."""
        serializer = PasswordUpdateSerializer(
            data=request.data,
            context={'request': request},
        )
        serializer.is_valid(raise_exception=True)

        new_plain_password = serializer.validated_data['new_password']
        PasswordService.set_pasword(request.user, new_plain_password)
        update_session_auth_hash(request, request.user)

        return DoneResponse(**response_codes.PASSWORD_UPDATED)
Esempio n. 12
0
    def post(self, request):
        """Registers an user using the info."""
        serializer = RegisterSerializer(data=request.data)
        serializer.is_valid(raise_exception=True)

        if config.REGISTER_REQUIRES_EMAIL_CONFIRMATION:
            user = UserService.register_new_user(
                user_data=serializer.validated_data)
            AuthService.send_confirmation_email(user)
            return DoneResponse(**CONFIRMATION_EMAIL_SENT)
        else:
            user = UserService.register_new_user(
                user_data=serializer.validated_data)
            return Response(SessionSerializer(user).data)
Esempio n. 13
0
    def reset_password_confirm(self, request):
        """Confirms a password reset."""
        serializer = PasswordResetConfirmSerializer(data=request.data)
        serializer.is_valid(raise_exception=True)

        plain_password = serializer.validated_data['password']
        action_token = serializer.validated_data['token']

        pending_action = PendingActionSelector.get_by_token(
            action_token,
            category=ActionCategory.RESET_PASSWORD.value,
        )
        PasswordService.confirm_reset_password(pending_action, plain_password)

        return DoneResponse(**response_codes.PASSWORD_UPDATED)
Esempio n. 14
0
def do_confirm_register(request, token=None, inner=False):
    action_exist = UserAction.objects.filter(
        token=token, type=UserAction.ACTION_ENABLE_ACCOUNT).exists()

    context = dict()
    context["title"] = _("Confirmación de Cuenta")

    if action_exist:
        action = UserAction.objects.get(token=token,
                                        type=UserAction.ACTION_ENABLE_ACCOUNT)

        user = action.user
        user.is_active = True
        user.save()

        messaging.send_welcome(request, action)
        action.delete()

        if inner:
            context["message"] = _("Tu cuenta ha sido activada exitosamente.")
            return render(request, 'credentials/message.html', context)

        else:
            return DoneResponse(
                detail=_("La cuenta ha sido activada!"),
                code=codes.ACCOUNT_IS_ACTIVATED,
                status=status.HTTP_201_CREATED,
            )
    else:
        if inner:
            context["message"] = _(
                "Esta Cuenta es inválida o ya fué activada.")
            context["error"] = True
            return render(request, 'credentials/message.html', context)
        else:
            raise ValidationError(detail=_("Token de transacción invalido"),
                                  code=codes.INVALID_TRANSACTION_TOKEN)
Esempio n. 15
0
    def change_password(self, request):
        """
        # Change the password of the current user.
        ---
        serializer: PasswordChangeSerializer
        """
        serializer = PasswordChangeSerializer(data=request.data,
                                              context={'request': request})
        serializer.is_valid(raise_exception=True)
        user = request.user
        user.set_password(serializer.data["new_password"])
        user.save()

        if user.is_active:

            action_exist = UserAction.objects.filter(
                user=user, type=UserAction.ACTION_RESET_PASSWORD).exists()

            if action_exist:
                action = UserAction.objects.get(
                    user=user, type=UserAction.ACTION_RESET_PASSWORD)
            else:
                action = UserAction(user=user,
                                    type=UserAction.ACTION_RESET_PASSWORD)

            action.token = get_uuid()
            action.creation_date, action.expiration_date = get_lapse()
            action.save()

        messaging.change_password_realized(request, action)

        return DoneResponse(
            detail=_("Password successfully changed"),
            status=status.HTTP_201_CREATED,
            code=codes.PASSWORD_CHANGED,
        )
Esempio n. 16
0
    def change_email(self, request):
        """
        # Change the current user email change.
        ---
        serializer: EmailChangeSerializer
        """
        serializer = EmailChangeSerializer(data=request.data,
                                           context={'request': request})
        serializer.is_valid(raise_exception=True)
        user = request.user
        user.email = serializer.data["email"]
        user.save()

        if user.is_active:

            action_exist = UserAction.objects.filter(
                user=user, type=UserAction.ACTION_RESET_PASSWORD).exists()

            if action_exist:
                action = UserAction.objects.get(
                    user=user, type=UserAction.ACTION_RESET_PASSWORD)
            else:
                action = UserAction(user=user,
                                    type=UserAction.ACTION_RESET_PASSWORD)

            action.token = get_uuid()
            action.creation_date, action.expiration_date = get_lapse()
            action.save()

        messaging.change_email_realized(request, action)

        return DoneResponse(
            detail=_("Email successfully changed"),
            status=status.HTTP_201_CREATED,
            code=codes.EMAIL_UPDATED,
        )