def finalize_otp_login(user_id, otp):
check_value = DBotp.check_current(user_id, otp)
if check_value:
LoginHandler.verify_login(user_id)
DBlogs.update_login_log(user_id, 0)
return ResponseHandler.success_response('OTP valid')
else:
return ResponseHandler.forbidden_response('OTP not valid')
def new_password(self, password, token, email):
if InputValidator.email_validator(email):
user_id = DBusers.get_user_id(email)[0]['id']
if user_id:
if HashHandler.check_token(user_id, token, 2):
if len(DBusers.check_user(email, password)) == 0:
DBtokens.delete(user_id, 2)
return ResponseHandler.success_response(
DBusers.update_password(user_id, password))
else:
return ResponseHandler.forbidden_response(
'Do not use your old password!')
else:
return ResponseHandler.forbidden_response('Wrong token')
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
else:
return ResponseHandler.bad_request_response(
'Not a valid email address')
def login_account(self, email, password):
if InputValidator.email_validator(email):
user_id = DBusers.get_user_id(email)[0]
if len(user_id) > 0:
user = DBusers.check_user(email, password)
return LoginHandler.prepare_login(user, str(user_id['id']),
email)
else:
return ResponseHandler.forbidden_response('Not authorized')
else:
return ResponseHandler.bad_request_response(
'Not a valid email address')
def reset_settings_sec_fa(self, token):
user_id = InputValidator.check_session_value('user_id')
if user_id:
if HashHandler.check_token(user_id, token, 1):
SecondFactorHandler.deactivate_both_second_factor_options(
user_id)
return ResponseHandler.success_response(
'Successfully disabled second factor. Please login again.')
else:
return ResponseHandler.forbidden_response('Wrong token')
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
def password_reset(self, token, email):
if InputValidator.email_validator(email):
user_id = DBusers.get_user_id(email)[0]['id']
if user_id:
if HashHandler.check_token(user_id, token, 2):
return ResponseHandler.success_response('Correct token')
else:
return ResponseHandler.forbidden_response('Wrong token')
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
else:
return ResponseHandler.bad_request_response(
'Not a valid email address')
