def finalize_otp_login(user_id, otp):
check_value = DBotp.check_current(user_id, otp)
if check_value:
LoginHandler.verify_login(user_id)
DBlogs.update_login_log(user_id, 0)
return ResponseHandler.success_response('OTP valid')
else:
return ResponseHandler.forbidden_response('OTP not valid')
def caesar_cipher_crack(self, message, auth_token):
user_id = InputValidator.check_session_value('user_id')
if AuthHandler.check_for_auth(
user_id) and AuthHandler.check_auth_token(auth_token):
return ResponseHandler.success_response(
CaesarCipher(0).crack_cipher(message))
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
def hash_message(self, hash_function, message, auth_token):
user_id = InputValidator.check_session_value('user_id')
if AuthHandler.check_for_auth(
user_id) and AuthHandler.check_auth_token(auth_token):
return ResponseHandler.success_response(
HashHandler.choose_hash_function(hash_function, message))
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
def check_otp_verified(self):
user_id = InputValidator.check_session_value('user_id')
if user_id and AuthHandler.check_auth_token_db(user_id):
check_value = DBotp.check_verification(user_id)
if check_value:
LoginHandler.verify_login(user_id)
return ResponseHandler.success_response(str(check_value))
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
def vigenere_cipher_crack(self, message, auth_token):
user_id = InputValidator.check_session_value('user_id')
if AuthHandler.check_for_auth(
user_id) and AuthHandler.check_auth_token(auth_token):
clean_message = CipherHelper.remove_special_chars(message)
return ResponseHandler.success_response(
VigenereCipher().crack_cipher(clean_message))
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
def request_new_otp(self):
user_id = InputValidator.check_session_value('user_id')
if user_id and AuthHandler.check_auth_token_db(user_id):
user_id = str(user_id)
user_mail = InputValidator.check_session_value('user_mail')
otp_option = InputValidator.check_session_value('otp_option')
return ResponseHandler.success_response(
OtpHandler.prepare_otp_send(user_id, otp_option, user_mail))
else:
ResponseHandler.unauthorized_response('You are unauthorized')
def file_decrypt(self, file_id, auth_token):
user_id = InputValidator.check_session_value('user_id')
if AuthHandler.check_for_auth(
user_id) and AuthHandler.check_auth_token(auth_token):
user_id = str(user_id)
return ResponseHandler.success_response(
FileEncryptor.decrypt(user_id, file_id))
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
def file_update(self, file_id, file_description, file_name, auth_token):
user_id = InputValidator.check_session_value('user_id')
if AuthHandler.check_for_auth(
user_id) and AuthHandler.check_auth_token(auth_token):
user_id = str(user_id)
message = FileHandler.change_file_name(user_id, file_id, file_name,
file_description)
return ResponseHandler.success_response(message)
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
def activate_user_device(self, device_id, auth_token):
user_id = InputValidator.check_session_value('user_id')
if AuthHandler.check_for_auth(
user_id) and AuthHandler.check_auth_token(auth_token):
user_id = str(user_id)
DBdevices.deactivate_all(user_id)
return ResponseHandler.success_response(
SecondFactorHandler.activate_device(user_id, device_id))
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
def delete_user_device(self, device_id, auth_token):
user_id = InputValidator.check_session_value('user_id')
if AuthHandler.check_for_auth(
user_id) and AuthHandler.check_auth_token(auth_token):
user_id = str(user_id)
DBdevices.delete(device_id, user_id)
deleted_message = f'Device was deleted. \n {SecondFactorHandler.check_for_active_device(user_id)}'
return ResponseHandler.success_response(deleted_message)
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
def caesar_cipher(self, message, shift, option, auth_token):
user_id = InputValidator.check_session_value('user_id')
if not InputValidator.int_validator(int(shift)):
return ResponseHandler.bad_request_response(
'Your Shift value has to be an int')
if AuthHandler.check_for_auth(
user_id) and AuthHandler.check_auth_token(auth_token):
return ResponseHandler.success_response(
CaesarCipher(int(shift)).cipher(message, option))
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
def file_delete(self, file_id, is_encrypted, auth_token):
user_id = InputValidator.check_session_value('user_id')
if AuthHandler.check_for_auth(
user_id) and AuthHandler.check_auth_token(auth_token):
user_id = str(user_id)
message = FileHandler.delete_file(
user_id, file_id, DBfiles.get_file_path(user_id, file_id),
is_encrypted)
return ResponseHandler.success_response(message)
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
def request_password_reset(self, email):
if InputValidator.email_validator(email):
user_id = DBusers.get_user_id(email)[0]['id']
if user_id:
return ResponseHandler.success_response(
LoginHandler.send_reset_token(user_id, email))
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
else:
return ResponseHandler.bad_request_response(
'Not a valid email address')
def update_settings_sec_fa(self, sec_fa, sec_fa_email, sec_fa_app,
auth_token):
user_id = InputValidator.check_session_value('user_id')
if AuthHandler.check_for_auth(
user_id) and AuthHandler.check_auth_token(auth_token):
user_id = str(user_id)
message = SettingsHandler.check_second_factor_options(
sec_fa, sec_fa_email, sec_fa_app, user_id)
return ResponseHandler.success_response(message)
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
def reset_settings_sec_fa(self, token):
user_id = InputValidator.check_session_value('user_id')
if user_id:
if HashHandler.check_token(user_id, token, 1):
SecondFactorHandler.deactivate_both_second_factor_options(
user_id)
return ResponseHandler.success_response(
'Successfully disabled second factor. Please login again.')
else:
return ResponseHandler.forbidden_response('Wrong token')
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
def update_account_info(self, email, password, old_password, auth_token):
user_id = InputValidator.check_session_value('user_id')
if AuthHandler.check_for_auth(
user_id) and AuthHandler.check_auth_token(
auth_token) and InputValidator.email_validator(email):
user_id = str(user_id)
user_mail = InputValidator.check_session_value('user_mail')
message = SettingsHandler.update_account_info(
user_id, user_mail, email, password, old_password)
return ResponseHandler.success_response(message)
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
def password_reset(self, token, email):
if InputValidator.email_validator(email):
user_id = DBusers.get_user_id(email)[0]['id']
if user_id:
if HashHandler.check_token(user_id, token, 2):
return ResponseHandler.success_response('Correct token')
else:
return ResponseHandler.forbidden_response('Wrong token')
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
else:
return ResponseHandler.bad_request_response(
'Not a valid email address')
def deactivate_user_device(self, device_id, auth_token):
user_id = InputValidator.check_session_value('user_id')
if AuthHandler.check_for_auth(
user_id) and AuthHandler.check_auth_token(auth_token):
user_id = str(user_id)
deactivate_message = SecondFactorHandler.deactivate_device(
user_id, device_id)
deactivate_addition = SecondFactorHandler.check_for_active_device(
user_id)
return ResponseHandler.success_response(
f'{deactivate_message} {deactivate_addition}')
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
def new_password(self, password, token, email):
if InputValidator.email_validator(email):
user_id = DBusers.get_user_id(email)[0]['id']
if user_id:
if HashHandler.check_token(user_id, token, 2):
if len(DBusers.check_user(email, password)) == 0:
DBtokens.delete(user_id, 2)
return ResponseHandler.success_response(
DBusers.update_password(user_id, password))
else:
return ResponseHandler.forbidden_response(
'Do not use your old password!')
else:
return ResponseHandler.forbidden_response('Wrong token')
else:
return ResponseHandler.unauthorized_response(
'You are unauthorized')
else:
return ResponseHandler.bad_request_response(
'Not a valid email address')
