def password_user(request, user_id):
""" Generate new password for user """
web_provider = request.user.get_profile()
try:
provider = Provider.objects.get(id=user_id)
except Provider.DoesNotExist:
raise Http404(_(u"There is no Provider account with ID #%(id)d") \
% {'id': int(user_id)})
# generate and assign password
password = random_password()
provider.set_password(password)
provider.save()
if provider.email:
# send email with password on account creation
sent, sent_message = send_email(recipients=provider.email, \
context={'provider': provider, \
'creator': web_provider, \
'password': password, \
'url': full_url()},
template='emails/new_password.txt', \
title_template='emails/title.new_password.txt')
if sent:
messages.success(request, _(u"An e-mail containing the " \
"password has been sent " \
"to %(email)s") \
% {'email': provider.email})
else:
messages.error(request, _(u"Unable to send e-mail " \
"to %(email)s. Please record " \
"and forward the password: "******"%(pass)s") \
% {'email': provider.email, \
'pass': password})
# log exception
logger.warning(u"Unable to send email to %(email)s " \
"with Exception %(e)r" \
% {'email': provider.email, \
'e': sent_message})
# display password if user has no email address
else:
messages.info(request, _(u"Please record and forward the " \
"generated password: %(pass)s") \
% {'pass': password})
return redirect('edit_user', provider.id)
def add_edit_user(request, user_id=None):
context = {'category': 'users'}
web_provider = request.user.get_profile()
if request.method == 'POST':
form = EditProviderForm(request.POST)
if form.is_valid():
# build an Access based on Role and Entity selected
role = Role.objects.get(slug=form.cleaned_data.get('role'))
# if a national role, force attachment to root entity
if role.slug in ('antim', 'national'):
entity = Entity.objects.filter(level=0)[0]
else:
entity = form.cleaned_data.get('entity')
access = Access.find_by(role, entity)
if user_id:
provider = Provider.objects.get(id=user_id)
# remove all access and add new one
while provider.access.count() > 0 \
and access != provider.access.all()[0]:
provider.access.remove(provider.access.all()[0])
provider.access.add(access)
else:
# forge username
username = username_from_name(\
form.cleaned_data.get('first_name'), \
form.cleaned_data.get('last_name'))
# generate password
password = random_password()
# create Provider
provider = Provider.create_provider(username, \
password, access=[access])
# we have a valid provider whatever the case. update details
provider.first_name = form.cleaned_data.get('first_name')
provider.last_name = form.cleaned_data.get('last_name')
provider.email = form.cleaned_data.get('email')
phone_number = form.cleaned_data.get('phone_number')
# only update if not None to preserve uniqueness
if phone_number:
provider.phone_number = phone_number
provider.save()
messages.success(request, _(u"Profile details updated."))
if not user_id and provider.email:
# send email with password on account creation
sent, sent_message = send_email(recipients=provider.email, \
context={'provider': provider, \
'creator': web_provider, \
'password': password, \
'url': full_url()},
template='emails/new_account.txt', \
title_template='emails/title.new_account.txt')
if sent:
messages.success(request, _(u"An e-mail containing the " \
"password has been sent " \
"to %(email)s") \
% {'email': provider.email})
else:
messages.error(request, _(u"Unable to send e-mail " \
"to %(email)s. Please record " \
"and forward the password: "******"%(pass)s") \
% {'email': provider.email, \
'pass': password})
# log exception
logger.warning(u"Unable to send email to %(email)s " \
"with Exception %(e)r" \
% {'email': provider.email, \
'e': sent_message})
# display password if user has no email address
elif not provider.email:
messages.info(request, _(u"Please record and forward the " \
"generated password: %(pass)s") \
% {'pass': password})
return redirect(add_edit_user, provider.id)
else:
if user_id:
# user_id might be forged and thus innexistant
try:
provider = Provider.objects.get(id=user_id)
provider_data = provider.to_dict()
except Provider.DoesNotExist:
raise Http404
try:
provider_data.update({'entity': provider.default_access() \
.target.id, \
'role': provider.main_role().slug})
except:
pass
else:
provider = {}
provider_data = {}
form = EditProviderForm(initial=provider_data)
context.update({'form': form, 'user_id': user_id, 'provider': provider})
return render(request, 'add_edit_provider.html', context)