def add_admin_user():
__doc__ = """ Make an existing cartouche user a member of the 'admin' group.
Usage: %s config_uri login
"""
try:
config_uri, login = sys.argv[1:]
except:
print __doc__ % sys.argv[0]
sys.exit[2]
ini_file = config_uri.split('#')[0]
if not os.path.isfile(ini_file):
print __doc__ % sys.argv[0]
print
print 'Invalid config file:', ini_file
print
sys.exit[2]
env = bootstrap(config_uri)
request, root = env['request'], env['root']
confirmed = request.registry.queryAdapter(root,
IRegistrations,
name='confirmed')
if confirmed is None:
confirmed = ConfirmedRegistrations(root)
info = confirmed.get_by_login(login)
if info is None:
print __doc__ % sys.argv[0]
print
print 'Invalid login:'******'group_users').get('g:admin') or []
if info.uuid not in admins:
admins.append(info.uuid)
confirmed._getMapping('group_users')['g:admin'] = admins
groups = confirmed._getMapping('user_groups').get(info.uuid) or []
groups.append('g:admin')
confirmed._getMapping('user_groups')[info.uuid] = groups
transaction.commit()
env['closer']()
def add_admin_user():
__doc__ = """ Make an existing cartouche user a member of the 'admin' group.
Usage: %s config_uri login
"""
try:
config_uri, login = sys.argv[1:]
except:
print __doc__ % sys.argv[0]
sys.exit[2]
ini_file = config_uri.split('#')[0]
if not os.path.isfile(ini_file):
print __doc__ % sys.argv[0]
print
print 'Invalid config file:', ini_file
print
sys.exit[2]
env = bootstrap(config_uri)
request, root = env['request'], env['root']
confirmed = request.registry.queryAdapter(root, IRegistrations,
name='confirmed')
if confirmed is None:
confirmed = ConfirmedRegistrations(root)
info = confirmed.get_by_login(login)
if info is None:
print __doc__ % sys.argv[0]
print
print 'Invalid login:'******'group_users').get('g:admin') or []
if info.uuid not in admins:
admins.append(info.uuid)
confirmed._getMapping('group_users')['g:admin'] = admins
groups = confirmed._getMapping('user_groups').get(info.uuid) or []
groups.append('g:admin')
confirmed._getMapping('user_groups')[info.uuid] = groups
transaction.commit()
env['closer']()
def authenticate(self, environ, identity):
""" See IAuthenticator.
"""
login = identity.get('login')
password = identity.get('password')
if login is not None and password is not None:
request = get_current_request()
context = getattr(request, 'context', None)
registry = get_current_registry()
confirmed = registry.queryAdapter(context, IRegistrations,
name='confirmed')
if confirmed is None:
if getattr(context, '_p_jar', None) is None:
context = self._getFinder()(environ)
while context.__parent__ is not None:
context = context.__parent__
confirmed = ConfirmedRegistrations(context)
record = confirmed.get_by_login(login)
if record and self._pwd_mgr.checkPassword(record.password,
password):
return record.uuid
def authenticate(self, environ, identity):
""" See IAuthenticator.
"""
login = identity.get('login')
password = identity.get('password')
if login is not None and password is not None:
request = get_current_request()
context = getattr(request, 'context', None)
registry = get_current_registry()
confirmed = registry.queryAdapter(context,
IRegistrations,
name='confirmed')
if confirmed is None:
if getattr(context, '_p_jar', None) is None:
context = self._getFinder()(environ)
while context.__parent__ is not None:
context = context.__parent__
confirmed = ConfirmedRegistrations(context)
record = confirmed.get_by_login(login)
if record and self._pwd_mgr.checkPassword(record.password,
password):
return record.uuid
def admin_confirmed(context, request):
# Edit one pending registration
confirmed = request.registry.queryAdapter(context, IRegistrations,
name='confirmed')
if confirmed is None:
confirmed = ConfirmedRegistrations(context)
login = request.params['confirmed']
record = confirmed.get_by_login(login)
if record is None:
return HTTPNotFound()
main_template = get_renderer('templates/main.pt')
return {'main_template': main_template.implementation(),
'page_title': 'Edit Confirmed Registration',
'login': login,
'uuid': record.uuid,
'password': record.password,
'token': record.token,
'security_question': record.security_question,
'security_answer': record.security_answer,
}
def admin_confirmed(context, request):
# Edit one pending registration
confirmed = request.registry.queryAdapter(context,
IRegistrations,
name='confirmed')
if confirmed is None:
confirmed = ConfirmedRegistrations(context)
login = request.params['confirmed']
record = confirmed.get_by_login(login)
if record is None:
return HTTPNotFound()
main_template = get_renderer('templates/main.pt')
return {
'main_template': main_template.implementation(),
'page_title': 'Edit Confirmed Registration',
'login': login,
'uuid': record.uuid,
'password': record.password,
'token': record.token,
'security_question': record.security_question,
'security_answer': record.security_answer,
}
def reset_password_view(context, request):
form = Form(ResetPassword(), buttons=('reset',))
rendered_form = form.render(null)
confirmed = request.registry.queryAdapter(context, IRegistrations,
name='confirmed')
if confirmed is None: #pragma NO COVERAGE
confirmed = ConfirmedRegistrations(context)
login_url = view_url(context, request, 'login_url', 'login.html')
reset_url = resource_url(context, request, request.view_name)
registry = request.registry
message = request.GET.get('message')
if 'reset' in request.POST:
try:
appstruct = form.validate(request.POST.items())
except ValidationFailure as e:
rendered_form = e.render()
else:
login = appstruct['login_name']
token = appstruct['token']
record = confirmed.get_by_login(login)
if record is None:
# DO NOT report lookup errors
return HTTPFound(location=login_url)
if token == '':
# send the e-mail
new_token = getRandomToken(request)
confirmed.set(record.uuid,
email=record.email,
login=login,
password=record.password,
security_question=record.security_question,
security_answer=record.security_answer,
token=new_token,
)
from_addr = registry.settings['cartouche.from_addr']
body = RESET_EMAIL % {'token': new_token,
'reset_url': reset_url}
delivery = registry.queryUtility(IMailDelivery,
default=localhost_mta)
message = Message()
message['Subject'] = 'Password reset confirmation'
message.set_payload(body)
delivery.send(from_addr, [record.email], message)
return HTTPFound(location=reset_url)
else:
if token != record.token:
message = CHECK_TOKEN
# fall through to 'GET'
else:
confirmed.set(record.uuid,
email=record.email,
login=record.login,
password=None, # clear it to allow update
security_question=record.security_question,
security_answer=record.security_answer,
token=None, # clear it
)
after_reset_url = view_url(context, request,
'after_reset_url',
'edit_account.html',
)
auto_login = request.registry.queryUtility(IAutoLogin)
if auto_login is not None:
headers = auto_login(record.uuid, request)
return HTTPFound(location=after_reset_url,
headers=headers)
else:
# TODO: generate random password and send e-mail.
sendGeneratedPassword(request, record.uuid, confirmed)
return HTTPFound(location=after_reset_url)
main_template = get_renderer('templates/main.pt')
return {'main_template': main_template.implementation(),
'message': message,
'rendered_form': rendered_form,
'recover_account_url': view_url(context, request,
'recover_account_url',
'recover_account.html'),
}
def reset_password_view(context, request):
form = Form(ResetPassword(), buttons=('reset',))
rendered_form = form.render(null)
confirmed = request.registry.queryAdapter(context, IRegistrations,
name='confirmed')
if confirmed is None: #pragma NO COVERAGE
confirmed = ConfirmedRegistrations(context)
login_url = view_url(context, request, 'login_url', 'login.html')
reset_url = resource_url(context, request, request.view_name)
registry = request.registry
message = request.GET.get('message')
if 'reset' in request.POST:
try:
appstruct = form.validate(request.POST.items())
except ValidationFailure, e:
rendered_form = e.render()
else:
login = appstruct['login_name']
token = appstruct['token']
record = confirmed.get_by_login(login)
if record is None:
# DO NOT report lookup errors
return HTTPFound(location=login_url)
if token == '':
# send the e-mail
new_token = getRandomToken(request)
confirmed.set(record.uuid,
email=record.email,
login=login,
password=record.password,
security_question=record.security_question,
security_answer=record.security_answer,
token=new_token,
)
from_addr = registry.settings['cartouche.from_addr']
body = RESET_EMAIL % {'token': new_token,
'reset_url': reset_url}
delivery = registry.queryUtility(IMailDelivery,
default=localhost_mta)
message = Message()
message['Subject'] = 'Password reset confirmation'
message.set_payload(body)
delivery.send(from_addr, [record.email], message)
return HTTPFound(location=reset_url)
else:
if token != record.token:
message = CHECK_TOKEN
# fall through to 'GET'
else:
confirmed.set(record.uuid,
email=record.email,
login=record.login,
password=None, # clear it to allow update
security_question=record.security_question,
security_answer=record.security_answer,
token=None, # clear it
)
after_reset_url = view_url(context, request,
'after_reset_url',
'edit_account.html',
)
auto_login = request.registry.queryUtility(IAutoLogin)
if auto_login is not None:
headers = auto_login(record.uuid, request)
return HTTPFound(location=after_reset_url,
headers=headers)
else:
# TODO: generate random password and send e-mail.
sendGeneratedPassword(request, record.uuid, confirmed)
return HTTPFound(location=after_reset_url)
