def reset(request, username="", user="******", token=""):
user = int(user)
try:
user = User.objects.get(pk=user)
user_ban = check_ban(username=user.username, email=user.email)
if user_ban:
return error_banned(request, user, user_ban)
if user.activation != User.ACTIVATION_NONE:
return error403(request, Message(request, 'users/activation/required', {'user': user}))
if not token or not user.token or user.token != token:
return error403(request, Message(request, 'users/invalid_confirmation_link', {'user': user}))
new_password = get_random_string(6)
user.token = None
user.set_password(new_password)
user.save(force_update=True)
# Logout signed in and kill remember me tokens
Session.objects.filter(user=user).update(user=None)
Token.objects.filter(user=user).delete()
# Set flash and mail new password
request.messages.set_flash(Message(request, 'users/password/reset_done', extra={'user':user}), 'success')
user.email_user(
request,
'users/password/new',
_("Your New Password"),
{'password': new_password}
)
return redirect(reverse('sign_in'))
except User.DoesNotExist:
return error404(request)
def validate_username(value, db_settings):
value = unicode(value).strip()
if len(value) < db_settings['username_length_min']:
raise ValidationError(ungettext(
'Username must be at least one character long.',
'Username must be at least %(count)d characters long.',
db_settings['username_length_min']
) % {
'count': db_settings['username_length_min'],
})
if len(value) > db_settings['username_length_max']:
raise ValidationError(ungettext(
'Username cannot be longer than one characters.',
'Username cannot be longer than %(count)d characters.',
db_settings['username_length_max']
) % {
'count': db_settings['username_length_max'],
})
if settings.UNICODE_USERNAMES:
if not re.search('^[^\W_]+$', value, re.UNICODE):
raise ValidationError(_("Username can only contain letters and digits."))
else:
if not re.search('^[^\W_]+$', value):
raise ValidationError(_("Username can only contain latin alphabet letters and digits."))
if check_ban(username=value):
raise ValidationError(_("This username is forbidden."))
def form(request):
message = None
if request.method == 'POST':
form = UserSendSpecialMailForm(request.POST, request=request)
if form.is_valid():
user = form.found_user
user_ban = check_ban(username=user.username, email=user.email)
if user_ban:
return error_banned(request, user, user_ban)
elif user.activation != User.ACTIVATION_NONE:
return error403(request, Message(request, 'users/activation/required', {'user': user}))
user.token = get_random_string(12)
user.save(force_update=True)
request.messages.set_flash(Message(request, 'users/password/reset_confirm', extra={'user':user}), 'success')
user.email_user(
request,
'users/password/confirm',
_("Confirm New Password Request")
)
return redirect(reverse('index'))
else:
message = Message(request, form.non_field_errors()[0])
else:
form = UserSendSpecialMailForm(request=request)
return request.theme.render_to_response('users/forgot_password.html',
{
'message': message,
'form': FormLayout(form),
},
context_instance=RequestContext(request));
def activate(request, username="", user="******", token=""):
user = int(user)
try:
user = User.objects.get(pk=user)
current_activation = user.activation
# Run checks
user_ban = check_ban(username=user.username, email=user.email)
if user_ban:
return error_banned(request, user, user_ban)
if user.activation == User.ACTIVATION_NONE:
return error403(request, Message(request, "users/activation/not_required", extra={"user": user}))
if user.activation == User.ACTIVATION_ADMIN:
return error403(request, Message(request, "users/activation/only_by_admin", extra={"user": user}))
if not token or not user.token or user.token != token:
return error403(request, Message(request, "users/invalid_confirmation_link", extra={"user": user}))
# Activate and sign in our member
user.activation = User.ACTIVATION_NONE
sign_user_in(request, user)
# Update monitor
request.monitor["users_inactive"] = request.monitor["users_inactive"] - 1
if current_activation == User.ACTIVATION_CREDENTIALS:
request.messages.set_flash(
Message(request, "users/activation/credentials", extra={"user": user}), "success"
)
else:
request.messages.set_flash(Message(request, "users/activation/new", extra={"user": user}), "success")
return redirect(reverse("index"))
except User.DoesNotExist:
return error404(request)
def form(request):
message = None
if request.method == "POST":
form = UserSendSpecialMailForm(request.POST, request=request)
if form.is_valid():
user = form.found_user
user_ban = check_ban(username=user.username, email=user.email)
if user_ban:
return error_banned(request, user, user_ban)
if user.activation == User.ACTIVATION_NONE:
return error403(request, Message(request, "users/activation/not_required", extra={"user": user}))
if user.activation == User.ACTIVATION_ADMIN:
return error403(request, Message(request, "users/activation/only_by_admin", extra={"user": user}))
request.messages.set_flash(Message(request, "users/activation/resent", extra={"user": user}), "success")
user.email_user(request, "users/activation/resend", _("Account Activation"))
return redirect(reverse("index"))
else:
message = Message(request, form.non_field_errors()[0], "error")
else:
form = UserSendSpecialMailForm(request=request)
return request.theme.render_to_response(
"users/resend_activation.html",
{"message": message, "form": FormLayout(form)},
context_instance=RequestContext(request),
)
def reset(request, username="", user="******", token=""):
user = int(user)
try:
user = User.objects.get(pk=user)
user_ban = check_ban(username=user.username, email=user.email)
if user_ban:
return error_banned(request, user, user_ban)
if user.activation != User.ACTIVATION_NONE:
return error403(
request,
Message(request, 'users/activation/required', {'user': user}))
if not token or not user.token or user.token != token:
return error403(
request,
Message(request, 'users/invalid_confirmation_link',
{'user': user}))
new_password = get_random_string(6)
user.token = None
user.set_password(new_password)
user.save(force_update=True)
# Logout signed in and kill remember me tokens
Session.objects.filter(user=user).update(user=None)
Token.objects.filter(user=user).delete()
# Set flash and mail new password
request.messages.set_flash(
Message(request, 'users/password/reset_done',
extra={'user': user}), 'success')
user.email_user(request, 'users/password/new', _("Your New Password"),
{'password': new_password})
return redirect(reverse('sign_in'))
except User.DoesNotExist:
return error404(request)
def form(request):
message = None
if request.method == 'POST':
form = UserSendSpecialMailForm(request.POST, request=request)
if form.is_valid():
user = form.found_user
user_ban = check_ban(username=user.username, email=user.email)
if user_ban:
return error_banned(request, user, user_ban)
elif user.activation != User.ACTIVATION_NONE:
return error403(
request,
Message(request, 'users/activation/required',
{'user': user}))
user.token = get_random_string(12)
user.save(force_update=True)
request.messages.set_flash(
Message(request,
'users/password/reset_confirm',
extra={'user': user}), 'success')
user.email_user(request, 'users/password/confirm',
_("Confirm New Password Request"))
return redirect(reverse('index'))
else:
message = Message(request, form.non_field_errors()[0])
else:
form = UserSendSpecialMailForm(request=request)
return request.theme.render_to_response(
'users/forgot_password.html', {
'message': message,
'form': FormLayout(form),
},
context_instance=RequestContext(request))
def auth_forum(request, email, password):
"""
Forum auth - check bans and if we are in maintenance - maintenance access
"""
user = get_user(email, password)
user_ban = check_ban(username=user.username, email=user.email)
if user_ban:
raise AuthException(BANNED, user, user_ban)
return user
def auth_forum(request, email, password):
"""
Forum auth - check bans and if we are in maintenance - maintenance access
"""
user = get_user(email, password)
user_ban = check_ban(username=user.username, email=user.email)
if user_ban:
raise AuthException(BANNED, user, user_ban)
return user;
def validate_username(value):
value = unicode(value).strip()
if len(value) < 3:
raise ValidationError(_("Username cannot be shorter than 3 characters."))
if len(value) > 12:
raise ValidationError(_("Username cannot be longer than 12 characters."))
if not re.search('^[0-9a-zA-Z]+$', value):
raise ValidationError(_("Username can only contain letters and digits."))
if check_ban(username=value):
raise ValidationError(_("This username is forbidden."))
def auth_forum(request, email, password):
"""
Forum auth - check bans and if we are in maintenance - maintenance access
"""
user = get_user(email, password)
user_ban = check_ban(username=user.username, email=user.email)
if user_ban:
if user_ban.reason_user:
raise AuthException(BANNED, _("Your account has been banned for following reason:"), ban=user_ban)
raise AuthException(BANNED, _("Your account has been banned."), ban=user_ban)
return user;
def validate_username(value):
value = unicode(value).strip()
if len(value) < 3:
raise ValidationError(
_("Username cannot be shorter than 3 characters."))
if len(value) > 12:
raise ValidationError(
_("Username cannot be longer than 12 characters."))
if not re.search('^[0-9a-zA-Z]+$', value):
raise ValidationError(
_("Username can only contain letters and digits."))
if check_ban(username=value):
raise ValidationError(_("This username is forbidden."))
def activate(request, username="", user="******", token=""):
user = int(user)
try:
user = User.objects.get(pk=user)
current_activation = user.activation
# Run checks
user_ban = check_ban(username=user.username, email=user.email)
if user_ban:
return error_banned(request, user, user_ban)
if user.activation == User.ACTIVATION_NONE:
return error403(
request,
Message(request,
'users/activation/not_required',
extra={'user': user}))
if user.activation == User.ACTIVATION_ADMIN:
return error403(
request,
Message(request,
'users/activation/only_by_admin',
extra={'user': user}))
if not token or not user.token or user.token != token:
return error403(
request,
Message(request,
'users/invalid_confirmation_link',
extra={'user': user}))
# Activate and sign in our member
user.activation = User.ACTIVATION_NONE
sign_user_in(request, user)
# Update monitor
request.monitor[
'users_inactive'] = request.monitor['users_inactive'] - 1
if current_activation == User.ACTIVATION_CREDENTIALS:
request.messages.set_flash(
Message(request,
'users/activation/credentials',
extra={'user': user}), 'success')
else:
request.messages.set_flash(
Message(request, 'users/activation/new', extra={'user': user}),
'success')
return redirect(reverse('index'))
except User.DoesNotExist:
return error404(request)
def form(request):
message = None
if request.method == 'POST':
form = UserSendSpecialMailForm(request.POST, request=request)
if form.is_valid():
user = form.found_user
user_ban = check_ban(username=user.username, email=user.email)
if user_ban:
return error_banned(request, user, user_ban)
if user.activation == User.ACTIVATION_NONE:
return error403(
request,
Message(request,
'users/activation/not_required',
extra={'user': user}))
if user.activation == User.ACTIVATION_ADMIN:
return error403(
request,
Message(request,
'users/activation/only_by_admin',
extra={'user': user}))
request.messages.set_flash(
Message(request,
'users/activation/resent',
extra={'user': user}), 'success')
user.email_user(
request,
'users/activation/resend',
_("Account Activation"),
)
return redirect(reverse('index'))
else:
message = Message(request, form.non_field_errors()[0], 'error')
else:
form = UserSendSpecialMailForm(request=request)
return request.theme.render_to_response(
'users/resend_activation.html', {
'message': message,
'form': FormLayout(form),
},
context_instance=RequestContext(request))
def validate_email(value):
value = unicode(value).strip()
if check_ban(email=value):
raise ValidationError(_("This board forbids registrations using this e-mail address."))
def validate_email(value):
value = unicode(value).strip()
if check_ban(email=value):
raise ValidationError(
_("This board forbids registrations using this e-mail address."))
