OnlineJudge/account/views/oj.py

#!/usr/bin/env python3
# -*- coding: utf-8 -*-

import os

from datetime import timedelta

from django.contrib import auth
from django.conf import settings
from django.core.exceptions import MultipleObjectsReturned
from django.utils.translation import ugettext as _
from django.utils.timezone import now
from otpauth import OtpAuth

from conf.models import WebsiteConfig
from utils.api import APIView, validate_serializer
from utils.captcha import Captcha
from utils.shortcuts import rand_str

from ..decorators import login_required
from ..models import User, UserProfile
from ..serializers import (UserChangePasswordSerializer, UserLoginSerializer,
                           UserRegisterSerializer,
                           ApplyResetPasswordSerializer)
from ..tasks import _send_email


class UserLoginAPI(APIView):
    @validate_serializer(UserLoginSerializer)
    def post(self, request):
        """
        User login api
        """
        data = request.data
        user = auth.authenticate(username=data["username"], password=data["password"])
        # None is returned if username or password is wrong
        if user:
            if not user.two_factor_auth:
                auth.login(request, user)
                return self.success(_("Succeeded"))

            # `tfa_code` not in post data
            if user.two_factor_auth and "tfa_code" not in data:
                return self.success("tfa_required")

            if OtpAuth(user.tfa_token).valid_totp(data["tfa_code"]):
                auth.login(request, user)
                return self.success(_("Succeeded"))
            else:
                return self.error(_("Invalid two factor verification code"))
        else:
            return self.error(_("Invalid username or password"))

    # todo remove this, only for debug use
    def get(self, request):
        auth.login(request, auth.authenticate(username=request.GET["username"], password=request.GET["password"]))
        return self.success({})


class UserRegisterAPI(APIView):
    @validate_serializer(UserRegisterSerializer)
    def post(self, request):
        """
        User register api
        """
        data = request.data
        captcha = Captcha(request)
        if not captcha.check(data["captcha"]):
            return self.error(_("Invalid captcha"))
        try:
            User.objects.get(username=data["username"])
            return self.error(_("Username already exists"))
        except User.DoesNotExist:
            pass
        try:
            User.objects.get(email=data["email"])
            return self.error(_("Email already exists"))
        # Some old data has duplicate email
        except MultipleObjectsReturned:
            return self.error(_("Email already exists"))
        except User.DoesNotExist:
            user = User.objects.create(username=data["username"], email=data["email"])
            user.set_password(data["password"])
            user.save()
            UserProfile.objects.create(user=user)
            return self.success(_("Succeeded"))


class UserChangePasswordAPI(APIView):
    @validate_serializer(UserChangePasswordSerializer)
    @login_required
    def post(self, request):
        """
        User change password api
        """
        data = request.data
        captcha = Captcha(request)
        if not captcha.check(data["captcha"]):
            return self.error(_("Invalid captcha"))
        username = request.user.username
        user = auth.authenticate(username=username, password=data["old_password"])
        if user:
            user.set_password(data["new_password"])
            user.save()
            return self.success(_("Succeeded"))
        else:
            return self.error(_("Invalid old password"))


class ApplyResetPasswordAPI(APIView):
    @validate_serializer(ApplyResetPasswordSerializer)
    def post(self, request):
        data = request.data
        captcha = Captcha(request)
        if not captcha.check(data["captcha"]):
            return self.error(_("Invalid captcha"))
        try:
            user = User.objects.get(email=data["email"])
        except User.DoesNotExist:
            return self.error(_("User does not exist"))
        if user.reset_password_token_expire_time and 0 < (
                    user.reset_password_token_expire_time - now()).total_seconds() < 20 * 60:
            return self.error(_("You can only reset password once per 20 minutes"))
        user.reset_password_token = rand_str()

        user.reset_password_token_expire_time = now() + timedelta(minutes=20)
        user.save()
        email_template = open("reset_password_email.html", "w",
                              encoding="utf-8").read()
        email_template = email_template.replace("{{ username }}", user.username). \
            replace("{{ website_name }}", settings.WEBSITE_INFO["website_name"]). \
            replace("{{ link }}", settings.WEBSITE_INFO["url"] + "/reset_password/t/" +
                    user.reset_password_token)
        config = WebsiteConfig.objects.first()
        _send_email.delay(config.name,
                          user.email,
                          user.username,
                          config.name + " 登录信息找回邮件",
                          email_template)
        return self.success(_("Succeeded"))


class ResetPasswordAPI(APIView):
    def post(self, request):
        data = request.data
        captcha = Captcha(request)
        if not captcha.check(data["captcha"]):
            return self.error(_("Invalid captcha"))
        try:
            user = User.objects.get(reset_password_token=data["token"])
        except User.DoesNotExist:
            return self.error(_("Token dose not exist"))
        if 0 < (user.reset_password_token_expire_time - now()).total_seconds() < 30 * 60:
            return self.error(_("Token expired"))
        user.reset_password_token = None
        user.set_password(data["password"])
        user.save()
        return self.success(_("Succeeded"))
Add reset password api 2017-04-18 03:57:57 +00:00			`#!/usr/bin/env python3`
			`# -- coding: utf-8 --`

Add mail module and fix reset password api 2017-04-18 06:34:23 +00:00			`import os`

Add reset password api 2017-04-18 03:57:57 +00:00			`from datetime import timedelta`

重构 2016-09-25 06:07:45 +00:00			`from django.contrib import auth`
Add mail module and fix reset password api 2017-04-18 06:34:23 +00:00			`from django.conf import settings`
重构 2016-09-25 06:07:45 +00:00			`from django.core.exceptions import MultipleObjectsReturned`
			`from django.utils.translation import ugettext as _`
Add reset password api 2017-04-18 03:57:57 +00:00			`from django.utils.timezone import now`
reinit 2017-01-23 08:01:56 +00:00			`from otpauth import OtpAuth`

Add mail module and fix reset password api 2017-04-18 06:34:23 +00:00			`from conf.models import WebsiteConfig`
使用Python3和更科学的API写法 2016-11-19 04:32:23 +00:00			`from utils.api import APIView, validate_serializer`
重构 2016-09-25 06:07:45 +00:00			`from utils.captcha import Captcha`
Add reset password api 2017-04-18 03:57:57 +00:00			`from utils.shortcuts import rand_str`
isort 2017-01-23 08:48:04 +00:00
重构 2016-09-25 06:07:45 +00:00			`from ..decorators import login_required`
			`from ..models import User, UserProfile`
isort 2017-01-23 08:48:04 +00:00			`from ..serializers import (UserChangePasswordSerializer, UserLoginSerializer,`
Add reset password api 2017-04-18 03:57:57 +00:00			`UserRegisterSerializer,`
			`ApplyResetPasswordSerializer)`
Add mail module and fix reset password api 2017-04-18 06:34:23 +00:00			`from ..tasks import _send_email`
重构 2016-09-25 06:07:45 +00:00

统一APIView的名字 2016-11-19 04:37:27 +00:00			`class UserLoginAPI(APIView):`
使用Python3和更科学的API写法 2016-11-19 04:32:23 +00:00			`@validate_serializer(UserLoginSerializer)`
重构 2016-09-25 06:07:45 +00:00			`def post(self, request):`
			`"""`
			`User login api`
			`"""`
使用Python3和更科学的API写法 2016-11-19 04:32:23 +00:00			`data = request.data`
			`user = auth.authenticate(username=data["username"], password=data["password"])`
			`# None is returned if username or password is wrong`
			`if user:`
			`if not user.two_factor_auth:`
			`auth.login(request, user)`
			`return self.success(_("Succeeded"))`
重构 2016-09-25 06:07:45 +00:00
使用Python3和更科学的API写法 2016-11-19 04:32:23 +00:00			# `tfa_code` not in post data
			`if user.two_factor_auth and "tfa_code" not in data:`
			`return self.success("tfa_required")`
重构 2016-09-25 06:07:45 +00:00
使用Python3和更科学的API写法 2016-11-19 04:32:23 +00:00			`if OtpAuth(user.tfa_token).valid_totp(data["tfa_code"]):`
			`auth.login(request, user)`
			`return self.success(_("Succeeded"))`
重构 2016-09-25 06:07:45 +00:00			`else:`
使用Python3和更科学的API写法 2016-11-19 04:32:23 +00:00			`return self.error(_("Invalid two factor verification code"))`
重构 2016-09-25 06:07:45 +00:00			`else:`
使用Python3和更科学的API写法 2016-11-19 04:32:23 +00:00			`return self.error(_("Invalid username or password"))`
重构 2016-09-25 06:07:45 +00:00
			`# todo remove this, only for debug use`
			`def get(self, request):`
			`auth.login(request, auth.authenticate(username=request.GET["username"], password=request.GET["password"]))`
add some tests 2016-10-29 18:17:35 +00:00			`return self.success({})`
重构 2016-09-25 06:07:45 +00:00

统一APIView的名字 2016-11-19 04:37:27 +00:00			`class UserRegisterAPI(APIView):`
使用Python3和更科学的API写法 2016-11-19 04:32:23 +00:00			`@validate_serializer(UserRegisterSerializer)`
重构 2016-09-25 06:07:45 +00:00			`def post(self, request):`
			`"""`
			`User register api`
			`"""`
使用Python3和更科学的API写法 2016-11-19 04:32:23 +00:00			`data = request.data`
			`captcha = Captcha(request)`
			`if not captcha.check(data["captcha"]):`
			`return self.error(_("Invalid captcha"))`
			`try:`
			`User.objects.get(username=data["username"])`
			`return self.error(_("Username already exists"))`
			`except User.DoesNotExist:`
			`pass`
			`try:`
			`User.objects.get(email=data["email"])`
			`return self.error(_("Email already exists"))`
			`# Some old data has duplicate email`
			`except MultipleObjectsReturned:`
			`return self.error(_("Email already exists"))`
			`except User.DoesNotExist:`
			`user = User.objects.create(username=data["username"], email=data["email"])`
			`user.set_password(data["password"])`
			`user.save()`
			`UserProfile.objects.create(user=user)`
			`return self.success(_("Succeeded"))`
重构 2016-09-25 06:07:45 +00:00

统一APIView的名字 2016-11-19 04:37:27 +00:00			`class UserChangePasswordAPI(APIView):`
使用Python3和更科学的API写法 2016-11-19 04:32:23 +00:00			`@validate_serializer(UserChangePasswordSerializer)`
重构 2016-09-25 06:07:45 +00:00			`@login_required`
			`def post(self, request):`
			`"""`
			`User change password api`
			`"""`
使用Python3和更科学的API写法 2016-11-19 04:32:23 +00:00			`data = request.data`
			`captcha = Captcha(request)`
			`if not captcha.check(data["captcha"]):`
			`return self.error(_("Invalid captcha"))`
			`username = request.user.username`
			`user = auth.authenticate(username=username, password=data["old_password"])`
			`if user:`
			`user.set_password(data["new_password"])`
			`user.save()`
			`return self.success(_("Succeeded"))`
重构 2016-09-25 06:07:45 +00:00			`else:`
使用Python3和更科学的API写法 2016-11-19 04:32:23 +00:00			`return self.error(_("Invalid old password"))`
Add reset password api 2017-04-18 03:57:57 +00:00

			`class ApplyResetPasswordAPI(APIView):`
			`@validate_serializer(ApplyResetPasswordSerializer)`
			`def post(self, request):`
			`data = request.data`
			`captcha = Captcha(request)`
			`if not captcha.check(data["captcha"]):`
			`return self.error(_("Invalid captcha"))`
			`try:`
			`user = User.objects.get(email=data["email"])`
			`except User.DoesNotExist:`
			`return self.error(_("User does not exist"))`
			`if user.reset_password_token_expire_time and 0 < (`
Add mail module and fix reset password api 2017-04-18 06:34:23 +00:00			`user.reset_password_token_expire_time - now()).total_seconds() < 20 * 60:`
Add reset password api 2017-04-18 03:57:57 +00:00			`return self.error(_("You can only reset password once per 20 minutes"))`
			`user.reset_password_token = rand_str()`

			`user.reset_password_token_expire_time = now() + timedelta(minutes=20)`
			`user.save()`
Add mail module and fix reset password api 2017-04-18 06:34:23 +00:00			`email_template = open("reset_password_email.html", "w",`
			`encoding="utf-8").read()`
			`email_template = email_template.replace("{{ username }}", user.username). \`
			`replace("{{ website_name }}", settings.WEBSITE_INFO["website_name"]). \`
			`replace("{{ link }}", settings.WEBSITE_INFO["url"] + "/reset_password/t/" +`
			`user.reset_password_token)`
			`config = WebsiteConfig.objects.first()`
			`_send_email.delay(config.name,`
			`user.email,`
			`user.username,`
			`config.name + " 登录信息找回邮件",`
			`email_template)`
Add reset password api 2017-04-18 03:57:57 +00:00			`return self.success(_("Succeeded"))`


			`class ResetPasswordAPI(APIView):`
			`def post(self, request):`
			`data = request.data`
			`captcha = Captcha(request)`
			`if not captcha.check(data["captcha"]):`
			`return self.error(_("Invalid captcha"))`
			`try:`
			`user = User.objects.get(reset_password_token=data["token"])`
			`except User.DoesNotExist:`
			`return self.error(_("Token dose not exist"))`
			`if 0 < (user.reset_password_token_expire_time - now()).total_seconds() < 30 * 60:`
			`return self.error(_("Token expired"))`
			`user.reset_password_token = None`
			`user.set_password(data["password"])`
			`user.save()`
			`return self.success(_("Succeeded"))`