Add handling of anonymous user when updating account

Simplify variabe nale
2022-08-11 16:28:47 +01:00 · 2022-08-11 16:28:13 +01:00
2 changed files with 6 additions and 5 deletions
--- a/ref-test/app/admin/views.py
+++ b/ref-test/app/admin/views.py
@ -117,7 +117,7 @@ def _reset():
        user.clear_reset_tokens()
        if request.args.get('verification') == verification_token:
            form = UpdatePassword()
-            session['user_id'] = user.id
+            session['user'] = user.id
            return render_template('/admin/auth/update-password.html', form=form)
        flash('The verification of your password reset request failed and the token has been invalidated. Please make a new reset password request.', 'error')
@ -127,7 +127,7 @@ def _reset():
 def _update_password():
    form = UpdatePassword()
    if form.validate_on_submit():
-        user = session.pop('user_id')
+        user = session.pop('user')
        user = User.query.filter_by(id=user).first()
        user.update(password=request.form.get('password'))
        session['remembered_username'] = user.get_username()
--- a/ref-test/app/models/user.py
+++ b/ref-test/app/models/user.py
@ -194,7 +194,8 @@ class User(UserMixin, db.Model):
                if entry.get_email() == email and not entry == self: return False, f'The email address {email} is already in use.'
            self.set_email(email)
        db.session.commit()
-        write('system.log', f'Information for user {self.get_username()} has been updated by {current_user.get_username()}.')
+        _current_user = current_user.get_username() if current_user.is_authenticated else 'anonymous'
        write('system.log', f'Information for user {self.get_username()} has been updated by {_current_user}.')
        if notify:
            message = Message(
                subject='RefTest | Account Update',
@ -202,7 +203,7 @@ class User(UserMixin, db.Model):
                bcc=[old_email,current_user.get_email()],
                body=f"""
                Hello {self.get_username()},\n\n
-                Your administrator account for the SKA RefTest App has been updated by {current_user.get_username()}.\n\n
+                Your administrator account for the SKA RefTest App has been updated by {_current_user}.\n\n
                Your new account details are as follows:\n\n
                Email: {email}\n
                Password: {password if password else '<same as old>'}\n\n
@ -213,7 +214,7 @@ class User(UserMixin, db.Model):
                """,
                html=f"""
                <p>Hello {self.get_username()},</p>
-                <p>Your administrator account for the SKA RefTest App has been updated by {current_user.get_username()}.</p>
+                <p>Your administrator account for the SKA RefTest App has been updated by {_current_user}.</p>
                <p>Your new account details are as follows:</p>
                <p>Email: {email} <br/> Password: <strong>{password if password else '&lt;same as old&gt;'}</strong></p>
                <p>You can update your email address and password by logging in to the admin console using the following URL:</p>
Author	SHA1	Message	Date
Vivek Santayana	68314a4ed2	Add handling of anonymous user when updating account	2022-08-11 16:28:47 +01:00
Vivek Santayana	b90761fd2c	Simplify variabe nale	2022-08-11 16:28:13 +01:00