fb8e72652786f58f168a8f267bc50747ae350383
1 # GNU MediaGoblin -- federated, autonomous media hosting
2 # Copyright (C) 2011, 2012 MediaGoblin contributors. See AUTHORS.
4 # This program is free software: you can redistribute it and/or modify
5 # it under the terms of the GNU Affero General Public License as published by
6 # the Free Software Foundation, either version 3 of the License, or
7 # (at your option) any later version.
9 # This program is distributed in the hope that it will be useful,
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 # GNU Affero General Public License for more details.
14 # You should have received a copy of the GNU Affero General Public License
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
21 from itsdangerous
import BadSignature
23 from mediagoblin
import messages
, mg_globals
24 from mediagoblin
.db
.models
import User
, Privilege
25 from mediagoblin
.tools
.crypto
import get_timed_signer_url
26 from mediagoblin
.decorators
import auth_enabled
, allow_registration
27 from mediagoblin
.tools
.response
import render_to_response
, redirect
, render_404
28 from mediagoblin
.tools
.translate
import pass_to_ugettext
as _
29 from mediagoblin
.tools
.mail
import email_debug_message
30 from mediagoblin
.tools
.pluginapi
import hook_handle
31 from mediagoblin
.auth
.tools
import (send_verification_email
, register_user
,
34 _log
= logging
.getLogger(__name__
)
39 def register(request
):
40 """The registration view.
42 Note that usernames will always be lowercased. Email domains are lowercased while
43 the first part remains case-sensitive.
45 if 'pass_auth' not in request
.template_env
.globals:
46 redirect_name
= hook_handle('auth_no_pass_redirect')
48 return redirect(request
, 'mediagoblin.plugins.{0}.register'.format(
51 return redirect(request
, 'index')
53 register_form
= hook_handle("auth_get_registration_form", request
)
55 if request
.method
== 'POST' and register_form
.validate():
56 # TODO: Make sure the user doesn't exist already
57 user
= register_user(request
, register_form
)
60 # redirect the user to their homepage... there will be a
61 # message waiting for them to verify their email
63 request
, 'mediagoblin.user_pages.user_home',
66 return render_to_response(
68 'mediagoblin/auth/register.html',
69 {'register_form': register_form
,
70 'post_url': request
.urlgen('mediagoblin.auth.register')})
76 MediaGoblin login view.
78 If you provide the POST with 'next', it'll redirect to that view.
80 if 'pass_auth' not in request
.template_env
.globals:
81 redirect_name
= hook_handle('auth_no_pass_redirect')
83 return redirect(request
, 'mediagoblin.plugins.{0}.login'.format(
86 return redirect(request
, 'index')
88 login_form
= hook_handle("auth_get_login_form", request
)
92 if request
.method
== 'POST':
94 if login_form
.validate():
95 user
= check_login_simple(
96 login_form
.username
.data
,
97 login_form
.password
.data
)
100 # set up login in session
101 if login_form
.stay_logged_in
.data
:
102 request
.session
['stay_logged_in'] = True
103 request
.session
['user_id'] = six
.text_type(user
.id)
104 request
.session
.save()
106 if request
.form
.get('next'):
107 return redirect(request
, location
=request
.form
['next'])
109 return redirect(request
, "index")
112 remote_addr
= request
.access_route
[-1] or request
.remote_addr
113 _log
.warn("Failed login attempt from %r", remote_addr
)
115 return render_to_response(
117 'mediagoblin/auth/login.html',
118 {'login_form': login_form
,
119 'next': request
.GET
.get('next') or request
.form
.get('next'),
120 'login_failed': login_failed
,
121 'post_url': request
.urlgen('mediagoblin.auth.login'),
122 'allow_registration': mg_globals
.app_config
["allow_registration"]})
126 # Maybe deleting the user_id parameter would be enough?
127 request
.session
.delete()
129 return redirect(request
, "index")
132 def verify_email(request
):
134 Email verification view
136 validates GET parameters against database and unlocks the user account, if
139 # If we don't have userid and token parameters, we can't do anything; 404
140 if not 'token' in request
.GET
:
141 return render_404(request
)
143 # Catch error if token is faked or expired
145 token
= get_timed_signer_url("mail_verification_token") \
146 .loads(request
.GET
['token'], max_age
=10*24*3600)
148 messages
.add_message(
151 _('The verification key or user id is incorrect.'))
157 user
= User
.query
.filter_by(id=int(token
)).first()
159 if user
and user
.has_privilege(u
'active') is False:
160 user
.verification_key
= None
161 user
.all_privileges
.append(
162 Privilege
.query
.filter(
163 Privilege
.privilege_name
==u
'active').first())
167 messages
.add_message(
170 _("Your email address has been verified. "
171 "You may now login, edit your profile, and submit images!"))
173 messages
.add_message(
176 _('The verification key or user id is incorrect'))
179 request
, 'mediagoblin.user_pages.user_home',
183 def resend_activation(request
):
185 The reactivation view
187 Resend the activation email.
190 if request
.user
is None:
191 messages
.add_message(
194 _('You must be logged in so we know who to send the email to!'))
196 return redirect(request
, 'mediagoblin.auth.login')
198 if request
.user
.has_privilege(u
'active'):
199 messages
.add_message(
202 _("You've already verified your email address!"))
204 return redirect(request
, "mediagoblin.user_pages.user_home", user
=request
.user
.username
)
206 email_debug_message(request
)
207 send_verification_email(request
.user
, request
)
209 messages
.add_message(
212 _('Resent your verification email.'))
214 request
, 'mediagoblin.user_pages.user_home',
215 user
=request
.user
.username
)