2006-05-02 09:31:56 +08:00
|
|
|
from django.contrib.auth.models import User
|
2006-06-29 00:37:02 +08:00
|
|
|
from django.contrib.auth import authenticate
|
2006-05-02 09:31:56 +08:00
|
|
|
from django.contrib.sites.models import Site
|
|
|
|
from django.template import Context, loader
|
|
|
|
from django.core import validators
|
|
|
|
from django import forms
|
|
|
|
|
|
|
|
class AuthenticationForm(forms.Manipulator):
|
|
|
|
"""
|
|
|
|
Base class for authenticating users. Extend this to get a form that accepts
|
|
|
|
username/password logins.
|
|
|
|
"""
|
|
|
|
def __init__(self, request=None):
|
|
|
|
"""
|
|
|
|
If request is passed in, the manipulator will validate that cookies are
|
|
|
|
enabled. Note that the request (a HttpRequest object) must have set a
|
|
|
|
cookie with the key TEST_COOKIE_NAME and value TEST_COOKIE_VALUE before
|
|
|
|
running this validator.
|
|
|
|
"""
|
|
|
|
self.request = request
|
|
|
|
self.fields = [
|
|
|
|
forms.TextField(field_name="username", length=15, maxlength=30, is_required=True,
|
|
|
|
validator_list=[self.isValidUser, self.hasCookiesEnabled]),
|
2006-06-29 00:37:02 +08:00
|
|
|
forms.PasswordField(field_name="password", length=15, maxlength=30, is_required=True),
|
2006-05-02 09:31:56 +08:00
|
|
|
]
|
|
|
|
self.user_cache = None
|
|
|
|
|
|
|
|
def hasCookiesEnabled(self, field_data, all_data):
|
|
|
|
if self.request and not self.request.session.test_cookie_worked():
|
|
|
|
raise validators.ValidationError, _("Your Web browser doesn't appear to have cookies enabled. Cookies are required for logging in.")
|
|
|
|
|
|
|
|
def isValidUser(self, field_data, all_data):
|
2006-06-29 00:37:02 +08:00
|
|
|
username = field_data
|
|
|
|
password = all_data.get('password', None)
|
|
|
|
self.user_cache = authenticate(username=username, password=password)
|
2006-06-02 12:42:10 +08:00
|
|
|
if self.user_cache is None:
|
2006-05-02 09:31:56 +08:00
|
|
|
raise validators.ValidationError, _("Please enter a correct username and password. Note that both fields are case-sensitive.")
|
2006-06-02 12:42:10 +08:00
|
|
|
elif not self.user_cache.is_active:
|
|
|
|
raise validators.ValidationError, _("This account is inactive.")
|
2006-05-02 09:31:56 +08:00
|
|
|
|
|
|
|
def get_user_id(self):
|
|
|
|
if self.user_cache:
|
|
|
|
return self.user_cache.id
|
|
|
|
return None
|
|
|
|
|
|
|
|
def get_user(self):
|
|
|
|
return self.user_cache
|
|
|
|
|
|
|
|
class PasswordResetForm(forms.Manipulator):
|
|
|
|
"A form that lets a user request a password reset"
|
|
|
|
def __init__(self):
|
|
|
|
self.fields = (
|
|
|
|
forms.EmailField(field_name="email", length=40, is_required=True,
|
|
|
|
validator_list=[self.isValidUserEmail]),
|
|
|
|
)
|
|
|
|
|
|
|
|
def isValidUserEmail(self, new_data, all_data):
|
|
|
|
"Validates that a user exists with the given e-mail address"
|
|
|
|
try:
|
|
|
|
self.user_cache = User.objects.get(email__iexact=new_data)
|
|
|
|
except User.DoesNotExist:
|
|
|
|
raise validators.ValidationError, "That e-mail address doesn't have an associated user acount. Are you sure you've registered?"
|
|
|
|
|
2006-07-28 01:48:35 +08:00
|
|
|
def save(self, domain_override=None, email_template_name='registration/password_reset_email.html'):
|
2006-05-02 09:31:56 +08:00
|
|
|
"Calculates a new password randomly and sends it to the user"
|
|
|
|
from django.core.mail import send_mail
|
|
|
|
new_pass = User.objects.make_random_password()
|
|
|
|
self.user_cache.set_password(new_pass)
|
|
|
|
self.user_cache.save()
|
|
|
|
if not domain_override:
|
|
|
|
current_site = Site.objects.get_current()
|
|
|
|
site_name = current_site.name
|
|
|
|
domain = current_site.domain
|
|
|
|
else:
|
|
|
|
site_name = domain = domain_override
|
2006-07-28 01:48:35 +08:00
|
|
|
t = loader.get_template(email_template_name)
|
2006-05-02 09:31:56 +08:00
|
|
|
c = {
|
|
|
|
'new_password': new_pass,
|
|
|
|
'email': self.user_cache.email,
|
|
|
|
'domain': domain,
|
|
|
|
'site_name': site_name,
|
|
|
|
'user': self.user_cache,
|
|
|
|
}
|
|
|
|
send_mail('Password reset on %s' % site_name, t.render(Context(c)), None, [self.user_cache.email])
|
|
|
|
|
|
|
|
class PasswordChangeForm(forms.Manipulator):
|
|
|
|
"A form that lets a user change his password."
|
|
|
|
def __init__(self, user):
|
|
|
|
self.user = user
|
|
|
|
self.fields = (
|
|
|
|
forms.PasswordField(field_name="old_password", length=30, maxlength=30, is_required=True,
|
|
|
|
validator_list=[self.isValidOldPassword]),
|
|
|
|
forms.PasswordField(field_name="new_password1", length=30, maxlength=30, is_required=True,
|
|
|
|
validator_list=[validators.AlwaysMatchesOtherField('new_password2', "The two 'new password' fields didn't match.")]),
|
|
|
|
forms.PasswordField(field_name="new_password2", length=30, maxlength=30, is_required=True),
|
|
|
|
)
|
|
|
|
|
|
|
|
def isValidOldPassword(self, new_data, all_data):
|
|
|
|
"Validates that the old_password field is correct."
|
|
|
|
if not self.user.check_password(new_data):
|
|
|
|
raise validators.ValidationError, "Your old password was entered incorrectly. Please enter it again."
|
|
|
|
|
|
|
|
def save(self, new_data):
|
|
|
|
"Saves the new password."
|
|
|
|
self.user.set_password(new_data['new_password1'])
|
|
|
|
self.user.save()
|