Esempio n. 1
0
    def update_email(user_id):

        req = request.get_json()
        utils.check_params(req, 'email', 'password', 'new_email')

        if req['email'] == req['new_email']:
            return jsonify(
                {'message': 'Your email is already ' + req['new_email']})

        user = Users.query.filter_by(id=user_id,
                                     email=req['email'],
                                     password=utils.sha256(
                                         req['password'])).first()

        if user is None:
            raise APIException('User not found', 404)

        user.status = 'invalid'
        user.email = req['new_email']

        db.session.commit()

        send_email(template='email_validation',
                   emails=user.email,
                   data={
                       'validation_link':
                       utils.jwt_link(user.id, role='email_change')
                   })

        return jsonify({'message': 'Please verify your new email'}), 200
Esempio n. 2
0
    def register_user():

        req = request.get_json()
        check_params(req, 'email', 'password')

        email = req['email'].strip()
        regex = r'^[a-zA-Z]+[\w\.]*@\w+\.[a-zA-Z]{2,5}$'
        if re.search(regex, email, re.IGNORECASE) is None:
            raise APIException('This is not a valid email', 401)

        if len( req['password'] ) < 6:
            raise APIException('Password must be at least 6 characters long', 401)

        # If user exists and failed to validate his account
        # user = (Users.query
        #         .filter_by( email=email, password=sha256(req['password']) )
        #         .first())
        user = (Users.query
                .filter_by( email=email )
                .first())
        print('user', user)
        if user and user.status._value_ == 'invalid':     
            data = {'validation_link': jwt_link(user.id)}
            send_email( template='email_validation', emails=user.email, data=data)
            
            return jsonify({'message':'Another email has been sent for email validation'})

        elif user and user.status._value_ == 'valid':
            print('should be ehreCCC')
            raise APIException('This email address is already taken', 400)
        print('should be ehreA')

        user = Users(
            email = email,
            password = sha256(req['password'])
        )
        print('should be ehreBBBB')

        db.session.add(user)
        db.session.commit()

        send_email( template='email_validation', emails=user.email, 
            data={'validation_link': jwt_link(user.id)} )

        return jsonify({'message': 'Please verify your email'}), 200
Esempio n. 3
0
    def reset_password():

        req = request.get_json()
        utils.check_params(req, 'email')

        # User forgot their password
        if request.args.get('forgot') == 'true':
            user = Users.query.filter_by(email=req['email']).first()
            if user is None:
                raise APIException('This email is not registered', 400)

            send_email('reset_password_link',
                       emails=req['email'],
                       data={
                           'link':
                           utils.jwt_link(user.id, 'users/reset_password/',
                                          req['email'])
                       })
            return jsonify({
                'message':
                'A link has been sent to your email to reset the password'
            }), 200

        # User knows their password
        utils.check_params(req, 'password', 'new_password')

        if req['password'] == req['new_password']:
            raise APIException(
                'Your new password is the same as the old password')
        if len(req['new_password']) < 6:
            raise APIException(
                'Your new password must be at least 6 characters long')

        user = Users.query.filter_by(email=req['email'],
                                     password=utils.sha256(
                                         req['password'])).first()
        if user is None:
            raise APIException('User not found', 404)

        user.password = utils.sha256(req['new_password'])

        db.session.commit()

        return jsonify({'message': 'Your password has been changed'}), 200