from ..modules import db from ..tools.encryption import decrypt, encrypt from ..tools.logs import write import secrets from flask import flash, jsonify, session from flask.helpers import url_for from flask_login import UserMixin, login_user, logout_user from werkzeug.security import check_password_hash, generate_password_hash class User(UserMixin, db.Model): id = db.Column(db.String(36), primary_key=True) username = db.Column(db.String(128), nullable=False) password = db.Column(db.String(128), nullable=False) email = db.Column(db.String(128), nullable=False) reset_token = db.Column(db.String(20), nullable=True) verification_token = db.Column(db.String(20), nullable=True) def __repr__(self): return f' was added with .' @property def set_username(self): raise AttributeError('set_username is not a readable attribute.') set_username.setter def set_username(self, username:str): self.username = encrypt(username) def get_username(self): return decrypt(self.username) @property def set_password(self): raise AttributeError('set_password is not a readable attribute.') set_password.setter def set_password(self, password:str): self.password = generate_password_hash(password, method="sha256") def verify_password(self, password:str): return check_password_hash(self.password, password) @property def set_email(self): raise AttributeError('set_email is not a readable attribute.') set_email.setter def set_email(self, email:str): self.email = encrypt(email) def get_email(self): return decrypt(self.email) def register(self): users = User.query.all() for user in users: if user.get_username() == self.get_username(): return False, f'Username {self.get_username()} already in use.' elif user.get_email() == self.get_email(): return False, f'Email address {self.get_email()} already in use.' db.session.add(self) db.session.commit() write('users.log', f'User \'{self.get_username()}\' was created with id \'{self.id}\'.') return True, f'User {self.get_username()} was created successfully.' def login(self, remember:bool=False): self.authenticated = True db.session.add(self) db.session.commit() login_user(self, remember = remember) write('users.log', f'User \'{self.get_username()}\' has logged in.') flash(message=f'Welcome {self.get_username()}', category='success') def logout(self): self.authenticated = False db.session.add(self) db.session.commit() session['remembered_username'] = self.get_username() logout_user() write('users.log', f'User \'{self.get_username()}\' has logged out.') flash(message='You have successfully logged out.', category='success') def reset_password(self): new_password = secrets.token_hex(12) self.set_password(new_password) self.reset_token = secrets.token_urlsafe(16) self.verification_token = secrets.token_urlsafe(16) db.session.commit() print('Password', new_password) print('Reset Token', self.reset_token) print('Verification Token', self.verification_token) print('Reset Link', f'{url_for("auth._reset", token=self.reset_token, verification=self.verification_token, _external=True)}') return jsonify({'success': 'Your password reset link has been generated.'}), 200 def clear_reset_tokens(self): self.reset_token = self.verification_token = None db.session.commit() def delete(self): username = self.get_username() db.session.delete(self) db.session.commit() write('users.log', f'User \'{username}\' was deleted.') # TODO add current user