Esempio n. 1
0
    def get(self):
        """
            Handles the /logout endpoint.
            Logs out users.
        """
        session = SessionHandler()
        session.logout()

        clear_cookie(self, name="_ut_")

        success = "You have logged out successfully!"
        success_message(self, success)
        self.redirect("/login")
Esempio n. 2
0
    def post(self):
        """
            Handles the /register/verify/send endpoint.
            Resends email verification.
        """
        if self.POST("email"):
            email = self.POST("email").lower().strip()

            query = User.query()
            query = query.filter(User.current_email == email)
            user = query.get()

            if user:
                if user.status == "PENDING":
                    content = {
                        "token": user.confirmation_token,
                        "uid": str(user.key.id()),
                        "receiver_name": user.first_name,
                        "receiver_email": user.current_email,
                        "subject": "Email Verfication",
                        "email_type": "verify"
                    }

                    taskqueue.add(
                        url="/tasks/email/send",
                        params=content,
                        method="POST")

                    success = "The verification email has been sent to "
                    success += self.POST("email") + ". Please open the "
                    success += "email and verify your account "
                    success += "to complete the registration."
                    success_message(self, success)
                    self.redirect("/register/verify/send")
                else:
                    error = "Account is already verified."
                    error_message(self, error)
                    self.redirect("/register/verify/send")
            else:
                error = "Sorry, " + self.POST("email")
                error += " does not belong to an existing account."
                error_message(self, error)
                self.redirect("/register/verify/send")
        else:
            error = "Email is required."
            error_message(self, error)
            self.redirect("/register/verify/send")
Esempio n. 3
0
    def post(self):
        """
            Handles the /register endpoint.
            ODTF registration.
        """
        json_data = {}
        for arg in self.request.arguments():
            json_data[arg] = self.POST(arg)

        if self.POST("first_name") and self.POST("last_name") \
           and self.POST("email") and self.POST("street_address") \
           and self.POST("province") and self.POST("city") \
           and self.POST("password") and self.POST("confirm_password"):
            user_exist = User.check_user(email=self.POST("email"))
            if user_exist:
                message = "Sorry, it looks like "
                message += self.POST("email")
                message += " belongs to an existing account. If this is yours, please login using your account."
                error_message(self, message)

                data = base64.b64encode(json.dumps(json_data))
                set_cookie(self, name="_rm_", value=data)
            else:
                user = User.create_new_user(
                    first_name=self.POST("first_name"),
                    middle_name=self.POST("middle_name"),
                    last_name=self.POST("last_name"),
                    street_address=self.POST("street_address"),
                    province=self.POST("province"),
                    city=self.POST("city"),
                    password=self.POST("password"),
                    mobile=self.POST("mobile_number"),
                    email=self.POST("email"),
                    office_order_number=self.POST('office_order_number'),
                    redirect=self.POST("redirect"))

                query = UserGroup.query()
                query = query.filter(UserGroup.invited_users == user.current_email)
                user_groups = query.fetch()

                if user_groups:
                    for group in user_groups:
                        if user.key not in group.users:
                            group.users.append(user.key)
                        if user.current_email in group.invited_users:
                            group.invited_users.remove(user.current_email)
                        group.put()

                        if group.key in user.user_groups:
                            user.user_groups.append(str(group.key.id()))
                            user.put()

                success = "Thank you for your registration. "
                success += "We sent you a verification email, "
                success += "please open the email and verify your account "
                success += "to complete the registration."
                success_message(self, success)
        else:
            message = "We were unable to create your account. "
            message += "Please fill in all required fields."
            error_message(self, message)

            data = base64.b64encode(json.dumps(json_data))
            set_cookie(self, name="_rm_", value=data)

        url = "/register"
        if self.POST("redirect"):
            url += "?redirect="
            url += self.POST("redirect")

        self.redirect(url)
Esempio n. 4
0
    def post(self, data_id=None):
        response = {
            "code": 200,
            "type": "List of users",
            "method": "POST",
            "response": "OK",
            "data": []
        }
        if data_id:
            user = User.get_by_id(int(data_id))
            if self.POST("action") == "disable":
                response["type"] = "Disable user account."
                if user:
                    user.status = "DISABLED"
                    user.put()

                    response["data"] = user.to_api_object(
                        user_role=self.user.role, level=self.user.level)
                else:
                    response["code"] = 400
                    response["response"] = "ERROR"

                wrap_response(self, response)
                return

            if self.POST("action") == "approve":
                response["type"] = "Enable user account."
                if user:
                    user.status = "APPROVED"
                    user.approved_by_key = self.user.key
                    user.approved_by_name = self.user.name
                    user.approved_on = datetime.datetime.utcnow()
                    user.put()

                    response["data"] = user.to_api_object(
                        user_role=self.user.role, level=self.user.level)
                else:
                    response["code"] = 400
                    response["response"] = "ERROR"

                wrap_response(self, response)
                return

            if self.POST("action") == "enable":
                response["type"] = "Enable user account."
                if user:
                    user.status = "APPROVED"
                    user.put()

                    response["data"] = user.to_api_object(
                        user_role=self.user.role, level=self.user.level)
                else:
                    response["code"] = 400
                    response["response"] = "ERROR"

                wrap_response(self, response)
                return
            elif self.POST("action") == "update":
                if user:
                    if self.POST("first_name"):
                        user.first_name = self.POST("first_name")

                    if self.POST("middle_name"):
                        user.middle_name = self.POST("middle_name")

                    if self.POST("last_name"):
                        user.last_name = self.POST("last_name")

                    if self.POST("role"):
                        user.level = int(self.POST("role"))
                        if user.level == 2:
                            user.role = 'CLUSTERDIRECTOR'
                        elif user.level == 3:
                            user.role = 'AGENCYADMIN'
                        elif user.level == 4:
                            user.role = 'GEOSTOREADMIN'
                        else:
                            user.role = 'USER'

                    if self.POST("email"):
                        user.current_email = self.POST("email").strip().lower()
                        user.email_list.append(user.current_email)

                    if self.POST("access_key"):
                        access_key = ["PUBLIC"]
                        for key in self.POST("access_key").split(","):
                            if key:
                                access_key.append(key.upper().strip())

                        user.access_key = uniquify(access_key)

                    user.put()
                    msg = "User has been updated."
                    success_message(self, msg)

        self.redirect("/dashboard")
Esempio n. 5
0
    def get(self, group_id=None):
        if self.user.role != 'CLUSTERDIRECTOR':
            self.redirect('/environment')
            return

        self.tv['page_user_groups'] = True
        if group_id:
            group = UserGroup.get_by_id(int(group_id))
            if group:
                if self.GET("ta") == "join":
                    if self.user.current_email in group.invited_users:
                        if self.user.key in group.users:
                            msg = "You are already a member of the "
                            msg += group.title
                            msg += " user group."
                            error_message(self, msg)
                        else:
                            self.user.user_groups.append(str(group.key.id()))
                            self.user.put()

                            group.users.append(self.user.key)
                            group.invited_users.remove(self.user.current_email)
                            group.put()

                            if group.environments:
                                for environment in group.environments:
                                    environment = environment.get()
                                    if environment:
                                        if self.user.key not in environment.users:
                                            environment.users.append(
                                                self.user.key)
                                            environment.put()

                            msg = "You have successfully joined the "
                            msg += group.title
                            msg += " user group."
                            success_message(self, msg)
                    else:
                        msg = "Cannot find user group."
                        error_message(self, msg)

                    self.redirect("/groups")
                else:
                    if self.user.role == "CLUSTERDIRECTOR":
                        wrap_response(self, group.to_object())
                    else:
                        self.redirect("/groups")
            else:
                if self.user.role == "CLUSTERDIRECTOR":
                    wrap_response(self, {"error": "cannot find user group"})
                else:
                    self.redirect("/groups")
        else:
            query = UserGroup.query()
            if self.user.role == "CLUSTERDIRECTOR":
                query = query.filter(UserGroup.owner == self.user.key)
            else:
                query = query.filter(
                    ndb.OR(UserGroup.users == self.user.key,
                           UserGroup.invited_users == self.user.current_email))
            groups = query.fetch()

            self.tv["user_groups"] = []

            if groups:
                for g in groups:
                    if self.GET('fetch'):
                        if self.GET('environmentid'):
                            environment = Environment.get_by_id(
                                int(self.GET('environmentid')))
                            if self.GET('addusergroup'):
                                if g.key not in environment.user_groups:
                                    self.tv["user_groups"].append(
                                        g.to_object())
                            elif self.GET('removeusergroup'):
                                if g.key in environment.user_groups:
                                    self.tv["user_groups"].append(
                                        g.to_object())
                    else:
                        self.tv["user_groups"].append(g.to_object())

            if self.GET('fetch'):
                wrap_response(self, self.tv['user_groups'])
                return

            self.tv["breadcrumb"] = [{
                "name": "User Groups",
                "link": "/groups"
            }]

            if self.user.role == "CLUSTERDIRECTOR":
                self.tv["show_new_group"] = True
                self.render("groups.html")
            else:
                self.render("groups-user.html")
Esempio n. 6
0
    def post(self, group_id=None):
        if group_id:
            response = {}
            response["code"] = 200
            response["data"] = []
            response["description"] = ""
            response["success"] = True
            group = UserGroup.get_by_id(int(group_id))
            if group:
                if self.POST("action"):
                    if self.POST("action") == "delete_invited_user":
                        if self.POST("email").strip().lower(
                        ) in group.invited_users:
                            group.invited_users.remove(
                                self.POST("email").strip().lower())
                            group.put()

                            response[
                                'description'] = 'Invitation to ' + self.POST(
                                    'email').strip().lower(
                                    ) + ' has been cancelled.'
                            response["data"] = group.to_object()
                    elif self.POST("action") == "remove_member":
                        user_key = ndb.Key('User', int(self.POST('user_id')))
                        if user_key in group.users:
                            if group.environments:
                                for environment in group.environments:
                                    environment = environment.get()
                                    if environment:
                                        if user_key in environment.users:
                                            environment.users.remove(user_key)
                                            environment.put()

                            group.users.remove(user_key)
                            group.put()

                            response["data"] = group.to_object()
                            response['description'] = 'User has been removed.'
                        else:
                            response['success'] = False
                            response[
                                'description'] = 'User is not a member of the user group.'
                    elif self.POST("action") == "invite_users":
                        if self.POST("email"):
                            for email in self.POST("email").strip().split(","):
                                email = email.strip().lower()

                                query = User.query()
                                query = query.filter(
                                    User.current_email == email)
                                user = query.get()

                                if user:
                                    user.user_groups.append(str(
                                        group.key.id()))
                                    user.put()

                                    group.users.append(user.key)
                                else:
                                    group.invited_users.append(email)

                            group.put()

                            response["data"] = group.to_object()
                    elif self.POST("action") == "leave_group":
                        if self.user.key in group.users:
                            group.users.remove(self.user.key)
                            group.put()

                            response["data"] = group.to_object()
                            response[
                                "description"] = "You have successfully left the " + group.title.upper(
                                ) + " user group."
                        else:
                            response["success"] = False
                            response[
                                "description"] = "User is not part of the team."
                    elif self.POST("action") == "update_group":
                        if self.POST("group_name"):
                            query = Teams.query()
                            query = query.filter(Teams.team_name == self.POST(
                                "group_name").strip().upper())
                            group2 = query.get()

                            logging.info(group2)
                            logging.info(group)

                            if group2:
                                if str(group2.key.id()) != str(group.key.id()):
                                    response["success"] = False
                                    response[
                                        "description"] = "User group already exists."
                                    wrap_response(self, response)
                                    return

                            group.title = self.POST(
                                "group_name").strip().upper()

                        if self.POST("group_description"):
                            group.description = self.POST("group_description")

                        group.put()

                        response["data"] = group.to_object()

            wrap_response(self, response)
        else:
            if self.POST("group_name") \
               and self.POST("group_description") \
               and self.POST("group_member_emails"):
                # Create Environment
                # Only CLUSTERDIRECTOR role can create an environment
                if self.user.role != "CLUSTERDIRECTOR":
                    msg = "You have insufficient rights to access this application."
                    error_message(self, msg)
                    self.redirect("/groups")
                    return

                query = UserGroup.query()
                query = query.filter(
                    UserGroup.title == self.POST("group_name").strip().upper())
                group = query.get()

                if group:
                    msg = "Could not create the user group. "
                    msg += self.POST("group_name").strip()
                    msg += " already exists."
                    error_message(self, msg)
                else:
                    group = UserGroup()
                    group.title = self.POST("group_name").strip().upper()
                    group.description = self.POST("group_description").strip()
                    group.owner = self.user.key

                    for email in self.POST("group_member_emails").split(","):
                        email = email.strip().lower()

                        query = User.query()
                        query = query.filter(User.current_email == email)
                        user = query.get()

                        if user:
                            group.users.append(user.key)
                        else:
                            group.invited_users.append(email)

                    group.put()

                    self.user.user_groups.append(str(group.key.id()))
                    self.user.put()

                    msg = "User group has been saved."
                    success_message(self, msg)

            self.redirect("/groups")
Esempio n. 7
0
    def get(self):
        """
            Handles the /register/verify endpoint.
            Verifies user registration.
        """
        if self.user:
            self.redirect("/dashboard")
        else:
            if self.GET("token") and self.GET("uid"):
                user = User.get_by_id(int(self.GET("uid")))
                logging.debug(user)
                if user:
                    if user.status == "PENDING":
                        if user.confirmation_token == self.GET("token"):
                            user.status = "VERIFIED"
                            user.put()

                            # find teams and add it
                            teams = Teams.query(Teams.invited_users ==
                                                user.current_email).fetch(10)
                            for team in teams:
                                user.access_key.append(str(team.key.id()))
                                user.teams.append(str(team.key.id()))
                                user.put()

                                team.members.append(str(user.key.id()))
                                team.invited_users.remove(user.current_email)
                                team.put()

                            content = {
                                "receiver_name": user.first_name,
                                "receiver_email": user.current_email,
                                "subject": "Account Verified",
                                "email_type": "after_verify"
                            }

                            taskqueue.add(url="/tasks/email/send",
                                          params=content,
                                          method="POST")

                            success = "Your account has been verified and pending approval. "
                            success += "You will receive an email once your account is approved."
                            success_message(self, success)
                            if self.GET("r"):
                                url = "/login/authorize?r="
                                url += urllib.quote(self.GET("r"))
                                self.redirect(url)
                            else:
                                self.redirect("/login")
                        else:
                            msg = "You might have clicked a broken or expired link."
                            error_message(msg)
                            self.redirect("/register")
                    elif user.status == "INVITE" and user.role == "OPENDATAADMIN":
                        self.tv["token"] = self.GET("token")
                        self.tv["uid"] = self.GET("uid")
                        self.tv["email"] = user.current_email
                        self.render("register-opendataadmin.html")
                    elif user.status == "VERIFIED":
                        success = "Your account is already verified and pending approval. "
                        success += "You will receive an email once your account is approved."
                        success_message(self, success)
                        self.redirect("/login")
                    else:
                        error = "You may have clicked an expired link "
                        error += "or mistyped the address."
                        error_message(self, error)
                        if self.GET("r"):
                            url = "/login/authorize?r="
                            url += urllib.quote(self.GET("r"))
                            self.redirect(url)
                        else:
                            self.redirect("/login")
                else:
                    error = "Sorry, we couldn't process your request. "
                    error += "Please try again."
                    error_message(self, error)
                    self.redirect("/register")
            else:
                self.redirect("/register")
Esempio n. 8
0
    def post(self):
        """
            Handles the /password/reset endpoint.
            Resets password of the user.
        """
        if self.POST("email"):
            email = self.POST("email").lower().strip()

            query = User.query()
            query = query.filter(User.current_email == email)
            user = query.get()

            if user:
                user.password_token = generate_token()
                user.put()

                content = {
                    "token": user.password_token,
                    "uid": str(user.key.id()),
                    "receiver_name": user.first_name,
                    "receiver_email": user.current_email,
                    "subject": "Reset Password",
                    "email_type": "password_reset"
                }

                taskqueue.add(url="/tasks/email/send",
                              params=content,
                              method="POST")

                success = "We sent an email to "
                success += self.POST("email") + ". Please open the "
                success += "email and click on the password reset link "
                success += "to reset your password."
                success_message(self, success)
                self.redirect("/password/reset")
            else:
                error = "Sorry, " + self.POST("email")
                error += " does not belong to an existing account."
                error_message(self, error)
                self.redirect("/password/reset")
        elif self.POST("new_password") and self.POST("confirm_password") \
             and self.GET("uid") and self.GET("password_token"):
            if self.POST("new_password") == self.POST("confirm_password"):
                user = User.get_by_id(int(self.GET("uid")))
                if user:
                    if user.password_token == self.GET("password_token"):
                        password = user.hash_password(
                            self.POST("new_password"))
                        user.password_token = generate_token()
                        user.previous_passwords.append(password)
                        user.password_update = datetime.datetime.now()
                        user.hashed_password = password
                        user.put()

                        session = SessionHandler(user)
                        session.login()
                        code = session.generate_login_code()
                        if self.POST("redirect"):
                            self.redirect(
                                urllib.unquote(str(self.POST("redirect"))))
                        else:
                            self.redirect("/dashboard")
                        return
                    else:
                        error = "Sorry, your password reset request has expired."
                        error += " Please create a new request."
                        error_message(self, error)
                        self.redirect("/password/reset")
                else:
                    error = "Sorry, we couldn't process your request. "
                    error += "Please try again."
                    error_message(self, error)
                    self.redirect("/password/reset")
            else:
                error = "Passwords do not match."
                error_message(self, error)
                url = "/password/reset?password_token=" + self.POST(
                    "password_token")
                url += "&uid=" + self.POST("uid")
                self.redirect(url)
        else:
            error = "Please fill all required fields."
            error_message(self, error)
            self.redirect("/password/reset")