def update_todo(request): if not request.session.is_empty() : if request.session.has_key("name") and request.session.has_key("email") and request.session.has_key("auth_key"): user = { "name": request.session['name'], "email": request.session['email'], 'auth_key': request.session['auth_key'] } if authutils.authenticated(user): output = {"uuid":request.POST.get("id",'').lower(), "is_done":request.POST.get("is_done", "")} if output.get("uuid", "") != "": if Todo.objects.filter(user__email=user.get("email", ''), uid=output.get("uuid","")).exists(): todo = Todo.objects.get(user__email=user.get("email", ""), uid=output.get("uuid", "")) todo.is_done = output.get("is_done", "false") == "true" todo.save() output["updated"] = True else : output["updated"] = False output["error"] = "Todo never existed!" else : output["updated"] = False output["error"] = "Don't try to exploite our website (-_-)" return JsonResponse(output) return JsonResponse({"me":"Please, don't try to exploite our website"})
def delete_account(request): if not request.session.is_empty() : if request.session.has_key("name") and request.session.has_key("email") and request.session.has_key("auth_key"): user = { "name": request.session['name'], "email": request.session['email'], 'auth_key': request.session['auth_key'] } if authutils.authenticated(user): output = {"password":request.POST.get("password")} if(output["password"] != "") or (len(output["password"]) > 7): password = encutils.hash_str(output["password"]) usr = User.objects.get(email=user.get("email",""), name=user.get("name", "")) if usr.password == password: usr.delete() output["deleted"] = True else : output["deleted"] = False output["error"] = "Incorrect password..." else : output["deleted"] = False output["error"] = "Please provide valid password..." return JsonResponse(output) return JsonResponse({"error":"We are under attack..."})
def update_profile(request): if not request.session.is_empty(): if request.session.has_key("name") and request.session.has_key( "email") and request.session.has_key("auth_key"): user = { "name": request.session['name'], "email": request.session['email'], 'auth_key': request.session['auth_key'] } if authutils.authenticated(user): return render(request, "update_profile.html", user) return redirect("/logout")
def update_profile(request): if not request.session.is_empty() : if request.session.has_key("name") and request.session.has_key("email") and request.session.has_key("auth_key"): user = { "name": request.session['name'], "email": request.session['email'], 'auth_key': request.session['auth_key'] } if authutils.authenticated(user): output = { "name":request.POST.get("name",'').title().strip(), "old-password":request.POST.get("old_password", ""), "new-password": request.POST.get("new_password", ""), } usr = User.objects.get(email=user.get("email", "")) if (output["name"] != "") and (utils.is_name(output["name"])) and (output["name"] != user.get("name", "")): usr.name = output["name"] request.session.update({"name":output["name"]}) output["name_updated"] = True else : output["name_updated"] = False if (output["name"] == user.get("name", "")): output["nameError"] = "" else : output["nameError"] = "Please enter valid name..." if (output["old-password"] != "") and (output["new-password"] != ""): old_password = encutils.hash_str(output["old-password"]) if old_password == usr.password : if (len(output["new-password"]) > 7): new_password = encutils.hash_str(output["new-password"]) usr.password = new_password output["password_updated"] = True else : output["password_updated"] = False output["passwordError"] = "Please Provide Strong Password..." else : output["password_updated"] = False output["passwordError"] = "Incorrect Password..." else : output["password_updated"] = False output["passwordError"] = "" usr.save() request.session.update({"auth_key" : encutils.hash_str(f"{usr.name}.{usr.email}.{usr.password}")}) request.session.save() del output["old-password"], output["new-password"] return JsonResponse(output) return JsonResponse({"me": "Please, don't try to exploite our website"})
def get_all_todo(request): if not request.session.is_empty() : if request.session.has_key("name") and request.session.has_key("email") and request.session.has_key("auth_key"): user = { "name": request.session['name'], "email": request.session['email'], 'auth_key': request.session['auth_key'] } if authutils.authenticated(user): output = {} todos = Todo.objects.filter(user__email=user.get("email", "")) for todo in todos : output[todo.uid] = { "todo": todo.todo, "is_done": todo.is_done } return JsonResponse(output) return JsonResponse({"me":"Please, don't try to exploite our website"})
def create_todo(request): if not request.session.is_empty() : if request.session.has_key("name") and request.session.has_key("email") and request.session.has_key("auth_key"): user = { "name": request.session['name'], "email": request.session['email'], 'auth_key': request.session['auth_key'] } if authutils.authenticated(user): output = {"todo":request.POST.get("todo",'').lower()} if output.get("todo", "") != "": if not Todo.objects.filter(user__email=user.get("email", ''), todo=output.get("todo","")).exists(): todo = Todo.objects.create(user = User.objects.get(email=user.get("email", "")), todo=output.get("todo", ''), uid=uuid1().hex) output["created"] = True output["id"] = todo.uid else : output["created"] = False output["error"] = "ToDo already exists!" else : output["created"] = False output["error"] = "Empty ToDo not expected from You" return JsonResponse(output) return JsonResponse({"me":"Please, don't try to exploite our website"})