2022-06-19 13:22:24 +01:00
|
|
|
from ..extensions import db, mail
|
2022-06-11 18:26:39 +01:00
|
|
|
from ..tools.encryption import decrypt, encrypt
|
|
|
|
from ..tools.logs import write
|
|
|
|
|
|
|
|
from flask import flash, jsonify, session
|
|
|
|
from flask.helpers import url_for
|
2022-06-12 21:03:51 +01:00
|
|
|
from flask_login import current_user, login_user, logout_user, UserMixin
|
2022-06-16 12:46:03 +01:00
|
|
|
from flask_mail import Message
|
2022-06-11 18:26:39 +01:00
|
|
|
from werkzeug.security import check_password_hash, generate_password_hash
|
|
|
|
|
2022-06-12 21:03:51 +01:00
|
|
|
import secrets
|
|
|
|
from uuid import uuid4
|
2022-06-11 18:26:39 +01:00
|
|
|
class User(UserMixin, db.Model):
|
|
|
|
id = db.Column(db.String(36), primary_key=True)
|
|
|
|
username = db.Column(db.String(128), nullable=False)
|
|
|
|
password = db.Column(db.String(128), nullable=False)
|
|
|
|
email = db.Column(db.String(128), nullable=False)
|
|
|
|
reset_token = db.Column(db.String(20), nullable=True)
|
|
|
|
verification_token = db.Column(db.String(20), nullable=True)
|
2022-06-12 21:20:09 +01:00
|
|
|
tests = db.relationship('Test', backref='creator')
|
2022-06-14 22:55:11 +01:00
|
|
|
datasets = db.relationship('Dataset', backref='creator')
|
2022-06-11 18:26:39 +01:00
|
|
|
|
|
|
|
def __repr__(self):
|
|
|
|
return f'<user {self.username}> was added with <id {self.id}>.'
|
|
|
|
|
2022-06-12 21:03:51 +01:00
|
|
|
@property
|
|
|
|
def generate_id(self): raise AttributeError('generate_id is not a readable attribute.')
|
|
|
|
|
|
|
|
generate_id.setter
|
2022-06-15 23:54:44 +01:00
|
|
|
def generate_id(self): self.id = uuid4().hex
|
2022-06-12 21:03:51 +01:00
|
|
|
|
2022-06-11 18:26:39 +01:00
|
|
|
@property
|
|
|
|
def set_username(self): raise AttributeError('set_username is not a readable attribute.')
|
|
|
|
|
|
|
|
set_username.setter
|
|
|
|
def set_username(self, username:str): self.username = encrypt(username)
|
|
|
|
|
|
|
|
def get_username(self): return decrypt(self.username)
|
|
|
|
|
|
|
|
@property
|
|
|
|
def set_password(self): raise AttributeError('set_password is not a readable attribute.')
|
|
|
|
|
|
|
|
set_password.setter
|
|
|
|
def set_password(self, password:str): self.password = generate_password_hash(password, method="sha256")
|
|
|
|
|
|
|
|
def verify_password(self, password:str): return check_password_hash(self.password, password)
|
|
|
|
|
|
|
|
@property
|
|
|
|
def set_email(self): raise AttributeError('set_email is not a readable attribute.')
|
|
|
|
|
|
|
|
set_email.setter
|
|
|
|
def set_email(self, email:str): self.email = encrypt(email)
|
|
|
|
|
|
|
|
def get_email(self): return decrypt(self.email)
|
|
|
|
|
2022-06-16 12:46:03 +01:00
|
|
|
def register(self, notify:bool=False, password:str=None):
|
2022-06-14 22:55:11 +01:00
|
|
|
self.generate_id()
|
2022-06-11 18:26:39 +01:00
|
|
|
users = User.query.all()
|
|
|
|
for user in users:
|
2022-06-12 22:48:13 +01:00
|
|
|
if user.get_username() == self.get_username(): return False, f'Username {self.get_username()} already in use.'
|
|
|
|
if user.get_email() == self.get_email(): return False, f'Email address {self.get_email()} already in use.'
|
2022-06-16 12:46:03 +01:00
|
|
|
self.set_password(password=password)
|
2022-06-11 18:26:39 +01:00
|
|
|
db.session.add(self)
|
|
|
|
db.session.commit()
|
|
|
|
write('users.log', f'User \'{self.get_username()}\' was created with id \'{self.id}\'.')
|
2022-06-16 12:46:03 +01:00
|
|
|
if notify:
|
|
|
|
email = Message(
|
|
|
|
subject='RefTest | Registration Confirmation',
|
|
|
|
recipients=[self.email],
|
|
|
|
body=f"""
|
|
|
|
Hello {self.get_username()},\n\n
|
|
|
|
You have been registered as an administrator on the SKA RefTest App!\n\n
|
|
|
|
You can access your account using the username '{self.get_username()}'\n\n
|
|
|
|
Your password is as follows:\n\n
|
|
|
|
{password}\n\n
|
|
|
|
You can log in to the admin console via the following URL, where you can administer the test or change your password:\n\n
|
|
|
|
{url_for('admin._home', _external=True)}\n\n
|
|
|
|
Have a nice day!\n\n
|
|
|
|
SKA Refereeing
|
|
|
|
""",
|
|
|
|
html=f"""
|
|
|
|
<p>Hello {self.get_username()},</p>
|
|
|
|
<p>You have been registered as an administrator on the SKA RefTest App!</p>
|
|
|
|
<p>You can access your account using the username '{self.get_username()}'</p>
|
|
|
|
<p>Your password is as follows:</p>
|
|
|
|
<strong>{password}</strong>
|
|
|
|
<p>You can log in to the admin console via the following URL, where you can administer the test or change your password:</p>
|
|
|
|
<p><a href='{url_for('admin._home', _external=True)}'>{url_for('admin._home', _external=True)}</a></p>
|
|
|
|
<p>Have a nice day!</p>
|
|
|
|
<p>SKA Refereeing</p>
|
|
|
|
"""
|
|
|
|
)
|
|
|
|
mail.send(email)
|
2022-06-11 18:26:39 +01:00
|
|
|
return True, f'User {self.get_username()} was created successfully.'
|
|
|
|
|
|
|
|
def login(self, remember:bool=False):
|
|
|
|
login_user(self, remember = remember)
|
|
|
|
write('users.log', f'User \'{self.get_username()}\' has logged in.')
|
|
|
|
flash(message=f'Welcome {self.get_username()}', category='success')
|
|
|
|
|
|
|
|
def logout(self):
|
|
|
|
session['remembered_username'] = self.get_username()
|
|
|
|
logout_user()
|
|
|
|
write('users.log', f'User \'{self.get_username()}\' has logged out.')
|
|
|
|
flash(message='You have successfully logged out.', category='success')
|
|
|
|
|
|
|
|
def reset_password(self):
|
|
|
|
new_password = secrets.token_hex(12)
|
|
|
|
self.set_password(new_password)
|
|
|
|
self.reset_token = secrets.token_urlsafe(16)
|
|
|
|
self.verification_token = secrets.token_urlsafe(16)
|
|
|
|
db.session.commit()
|
2022-06-16 12:46:03 +01:00
|
|
|
email = Message(
|
|
|
|
subject='RefTest | Password Reset',
|
|
|
|
recipients=[self.get_email()],
|
|
|
|
body=f"""
|
|
|
|
Hello {self.get_username()},\n\n
|
|
|
|
This email was generated because we received a request to reset the password for your administrator account for the SKA RefTest app.\n\n
|
|
|
|
If you did not make this request, please ignore this email.\n\n
|
|
|
|
If you did make this request, then you have two options to recover your account.\n\n
|
|
|
|
Your password has been reset to the following:\n\n
|
|
|
|
{new_password}\n\n
|
|
|
|
You may use this to log back in to your account, and subsequently change your password to something more suitable.\n\n
|
|
|
|
Alternatively, you may visit the following private link using your unique token to override your password. Copy and paste the following link in a web browser. Please note that this token is only valid once:\n\n
|
2022-06-16 14:13:07 +01:00
|
|
|
{url_for('admin._reset', token = self.reset_token, verification = self.verification_token, _external = True)}\n\n
|
2022-06-16 12:46:03 +01:00
|
|
|
Hopefully, this should enable access to your account once again.\n\n
|
|
|
|
Have a nice day!\n\n
|
|
|
|
SKA Refereeing
|
|
|
|
""",
|
|
|
|
html=f"""
|
|
|
|
<p>Hello {self.get_username()},</p>
|
|
|
|
<p>This email was generated because we received a request to reset the password for your administrator account for the SKA RefTest app.</p>
|
|
|
|
<p>If you did not make this request, please ignore this email.</p>
|
|
|
|
<p>If you did make this request, then you have two options to recover your account.</p>
|
|
|
|
<p>Your password has been reset to the following:</p>
|
|
|
|
<strong>{new_password}</strong>
|
|
|
|
<p>You may use this to log back in to your account, and subsequently change your password to something more suitable.</p>
|
|
|
|
<p>Alternatively, you may visit the following private link using your unique token to override your password. Copy and paste the following link in a web browser. Please note that this token is only valid once:</p>
|
2022-06-16 14:13:07 +01:00
|
|
|
<p><a href='{url_for('admin._reset', token = self.reset_token, verification = self.verification_token, _external = True)}'>{url_for('admin._reset', token = self.reset_token, verification = self.verification_token, _external = True)}</a></p>
|
2022-06-16 12:46:03 +01:00
|
|
|
<p>Hopefully, this should enable access to your account once again.</p>
|
|
|
|
<p>Have a nice day!</p>
|
|
|
|
<p>SKA Refereeing</p>
|
|
|
|
"""
|
|
|
|
)
|
|
|
|
mail.send(email)
|
2022-06-11 18:26:39 +01:00
|
|
|
print('Password', new_password)
|
|
|
|
print('Reset Token', self.reset_token)
|
|
|
|
print('Verification Token', self.verification_token)
|
2022-06-15 23:54:44 +01:00
|
|
|
print('Reset Link', f'{url_for("admin._reset", token=self.reset_token, verification=self.verification_token, _external=True)}')
|
2022-06-11 18:26:39 +01:00
|
|
|
return jsonify({'success': 'Your password reset link has been generated.'}), 200
|
|
|
|
|
|
|
|
def clear_reset_tokens(self):
|
|
|
|
self.reset_token = self.verification_token = None
|
|
|
|
db.session.commit()
|
|
|
|
|
2022-06-14 22:55:11 +01:00
|
|
|
def delete(self, notify:bool=False):
|
2022-06-11 18:26:39 +01:00
|
|
|
username = self.get_username()
|
2022-06-16 12:46:03 +01:00
|
|
|
email_address = self.get_email()
|
2022-06-11 18:26:39 +01:00
|
|
|
db.session.delete(self)
|
|
|
|
db.session.commit()
|
2022-06-14 22:55:11 +01:00
|
|
|
message = f'User \'{username}\' was deleted by \'{current_user.get_username()}\'.'
|
|
|
|
write('users.log', message)
|
2022-06-16 12:46:03 +01:00
|
|
|
if notify:
|
|
|
|
email = Message(
|
|
|
|
subject='RefTest | Account Deletion',
|
|
|
|
recipients=[email_address],
|
|
|
|
bcc=[current_user.get_email()],
|
|
|
|
body=f"""
|
|
|
|
Hello {username},\n\n
|
|
|
|
Your administrator account for the SKA RefTest App, as well as all data associated with the account, have been deleted by {current_user.get_username()}.\n\n
|
|
|
|
If you believe this was done in error, please contact them immediately.\n\n
|
|
|
|
If you would like to register to administer the app, please ask an existing administrator to create a new account.\n\n
|
|
|
|
Have a nice day!\n\n
|
|
|
|
SKA Refereeing
|
|
|
|
""",
|
|
|
|
html=f"""
|
|
|
|
<p>Hello {username},</p>
|
|
|
|
<p>Your administrator account for the SKA RefTest App, as well as all data associated with the account, have been deleted by {current_user.get_username()}.</p>
|
|
|
|
<p>If you believe this was done in error, please contact them immediately.</p>
|
|
|
|
<p>If you would like to register to administer the app, please ask an existing administrator to create a new account.</p>
|
|
|
|
<p>Have a nice day!</p>
|
|
|
|
<p>SKA Refereeing</p>
|
|
|
|
"""
|
|
|
|
)
|
|
|
|
mail.send(email)
|
2022-06-14 22:55:11 +01:00
|
|
|
return True, message
|
2022-06-12 21:03:51 +01:00
|
|
|
|
2022-06-14 22:55:11 +01:00
|
|
|
def update(self, password:str=None, email:str=None, notify:bool=False):
|
2022-06-15 11:23:38 +01:00
|
|
|
if not password and not email: return False, 'There were no changes requested.'
|
2022-06-12 21:03:51 +01:00
|
|
|
if password: self.set_password(password)
|
2022-06-16 12:46:03 +01:00
|
|
|
old_email = self.get_email()
|
2022-06-20 12:09:31 +01:00
|
|
|
if email:
|
|
|
|
for entry in User.query.all():
|
|
|
|
if entry.get_email() == email and not entry == self: return False, f'The email address {email} is already in use.'
|
|
|
|
self.set_email(email)
|
2022-06-12 21:03:51 +01:00
|
|
|
db.session.commit()
|
2022-08-11 16:28:47 +01:00
|
|
|
_current_user = current_user.get_username() if current_user.is_authenticated else 'anonymous'
|
|
|
|
write('system.log', f'Information for user {self.get_username()} has been updated by {_current_user}.')
|
2022-06-16 12:46:03 +01:00
|
|
|
if notify:
|
|
|
|
message = Message(
|
|
|
|
subject='RefTest | Account Update',
|
|
|
|
recipients=[email],
|
|
|
|
bcc=[old_email,current_user.get_email()],
|
|
|
|
body=f"""
|
|
|
|
Hello {self.get_username()},\n\n
|
2022-08-11 16:28:47 +01:00
|
|
|
Your administrator account for the SKA RefTest App has been updated by {_current_user}.\n\n
|
2022-06-16 12:46:03 +01:00
|
|
|
Your new account details are as follows:\n\n
|
|
|
|
Email: {email}\n
|
|
|
|
Password: {password if password else '<same as old>'}\n\n
|
|
|
|
You can update your email address and password by logging in to the admin console using the following URL:\n\n
|
|
|
|
{url_for('admin._home', _external=True)}\n\n
|
|
|
|
Have a nice day!\n\n
|
|
|
|
SKA Refereeing
|
|
|
|
""",
|
|
|
|
html=f"""
|
|
|
|
<p>Hello {self.get_username()},</p>
|
2022-08-11 16:28:47 +01:00
|
|
|
<p>Your administrator account for the SKA RefTest App has been updated by {_current_user}.</p>
|
2022-06-16 12:46:03 +01:00
|
|
|
<p>Your new account details are as follows:</p>
|
2022-06-16 14:13:25 +01:00
|
|
|
<p>Email: {email} <br/> Password: <strong>{password if password else '<same as old>'}</strong></p>
|
2022-06-16 12:46:03 +01:00
|
|
|
<p>You can update your email address and password by logging in to the admin console using the following URL:</p>
|
|
|
|
<p><a href='{url_for('admin._home', _external=True)}'>{url_for('admin._home', _external=True)}</a></p>
|
|
|
|
<p>Have a nice day!</p>
|
|
|
|
<p>SKA Refereeing</p>
|
|
|
|
"""
|
|
|
|
)
|
|
|
|
mail.send(message)
|
2022-06-15 23:54:44 +01:00
|
|
|
return True, f'Account {self.get_username()} has been updated.'
|