ordr2/ordr/resources/account.py

''' Resources (sub) package, used to connect URLs to views '''

import deform

from pyramid.security import Allow, Authenticated, Everyone, DENY_ALL

from ordr.models.account import Token, TokenSubject
from ordr.schemas.account import (
    ChangePasswordSchema,
    RegistrationSchema,
    ResetPasswordSchema,
    SettingsSchema
    )


from .helpers import BaseChildResource


class RegistrationTokenResource(BaseChildResource):
    ''' Resource for vaildating a new registered user's email

    :param pyramid.request.Request request: the current request object
    :param str name: the name of the resource
    :param parent: the parent resouce
    '''

    nav_active = 'registration'

    def __acl__(self):
        ''' access controll list for the resource '''
        return [(Allow, Everyone, 'view'), DENY_ALL]


class RegistrationResource(BaseChildResource):
    ''' The resource for new user registration

    :param pyramid.request.Request request: the current request object
    :param str name: the name of the resource
    :param parent: the parent resouce
    '''

    nav_active = 'registration'

    def __acl__(self):
        ''' access controll list for the resource '''
        return [(Allow, Everyone, 'view'), DENY_ALL]

    def __getitem__(self, key):
        ''' returns a resource for a valid registration token '''
        token = Token.retrieve(self.request, key, TokenSubject.REGISTRATION)
        if token is None:
            raise KeyError(f'Token {key} not found')
        return RegistrationTokenResource(name=key, parent=self, model=token)

    def get_registration_form(self, **kwargs):
        ''' returns the registration form'''
        settings = {
            'buttons': (
                deform.Button(name='create', title='Create Account'),
                deform.Button(
                    title='Cancel',
                    type='link',
                    value=self.request.resource_url(self.request.root),
                    css_class='btn btn-outline-secondary'
                    )
                ),
            }
        settings.update(kwargs)
        return self._prepare_form(RegistrationSchema, **settings)


class PasswordResetTokenResource(BaseChildResource):
    ''' Resource for the reset password link

    :param pyramid.request.Request request: the current request object
    :param str name: the name of the resource
    :param parent: the parent resouce
    '''

    nav_active = None

    def __acl__(self):
        ''' access controll list for the resource '''
        return [(Allow, Everyone, 'view'), DENY_ALL]

    def get_reset_form(self, **kwargs):
        ''' returns password reset form '''
        settings = {
            'buttons': (
                deform.Button(name='change', title='Set New Password'),
                deform.Button(name='cancel', title='Cancel'),
                )
            }
        settings.update(kwargs)
        return self._prepare_form(ResetPasswordSchema, **settings)


class PasswordResetResource(BaseChildResource):
    ''' The resource for resetting a forgotten password

    :param pyramid.request.Request request: the current request object
    :param str name: the name of the resource
    :param parent: the parent resouce
    '''

    nav_active = None

    def __acl__(self):
        ''' access controll list for the resource '''
        return [(Allow, Everyone, 'view'), DENY_ALL]

    def __getitem__(self, key):
        ''' returns a resource for a valid reset password token '''
        token = Token.retrieve(self.request, key, TokenSubject.RESET_PASSWORD)
        if token is None:
            raise KeyError(f'Token {key} not found')
        return PasswordResetTokenResource(name=key, parent=self, model=token)


class ChangeEmailTokenResource(BaseChildResource):
    ''' Resource for changing the email address

    :param pyramid.request.Request request: the current request object
    :param str name: the name of the resource
    :param parent: the parent resouce
    '''

    nav_active = None

    def __acl__(self):
        ''' access controll list for the resource '''
        return [(Allow, self.model.owner.principal, 'edit'), DENY_ALL]


class AccountResource(BaseChildResource):
    ''' The resource for changing account settings and passwords

    :param pyramid.request.Request request: the current request object
    :param str name: the name of the resource
    :param parent: the parent resouce
    '''

    nav_active = None

    def __init__(self, name, parent, model=None):
        ''' Create the resource

        :param str name: the name of the resource
        :param parent: the parent resouce
        :param model: optional data model for the resource

        If model is not set, the current user will be used
        '''
        super().__init__(name, parent, model)
        self.model = model or getattr(self.request, 'user', None)

    def __acl__(self):
        ''' access controll list for the resource '''
        return [(Allow, Authenticated, 'edit'), DENY_ALL]

    def __getitem__(self, key):
        ''' returns a resource for a valid change email token '''
        token = Token.retrieve(self.request, key, TokenSubject.CHANGE_EMAIL)
        if token is None:
            raise KeyError(f'Token {key} not found')
        return ChangeEmailTokenResource(name=key, parent=self, model=token)

    def get_settings_form(self, **kwargs):
        ''' returns the account settings form '''
        settings = {
            'buttons': (
                deform.Button(name='change', title='Change Settings'),
                deform.Button(name='cancel', title='Cancel'),
                )
            }
        settings.update(kwargs)
        return self._prepare_form(SettingsSchema, **settings)

    def get_password_form(self, **kwargs):
        ''' returns the change password form '''
        settings = {
            'buttons': (
                deform.Button(name='change', title='Change Password'),
                deform.Button(name='cancel', title='Cancel'),
                )
            }
        settings.update(kwargs)
        return self._prepare_form(ChangePasswordSchema, **settings)
added registration resource 7 years ago			`''' Resources (sub) package, used to connect URLs to views '''`

completet registration form 7 years ago			`import deform`

added account settings and change password 7 years ago			`from pyramid.security import Allow, Authenticated, Everyone, DENY_ALL`
finished registration workflow 7 years ago
			`from ordr.models.account import Token, TokenSubject`
added account settings and change password 7 years ago			`from ordr.schemas.account import (`
			`ChangePasswordSchema,`
			`RegistrationSchema,`
			`ResetPasswordSchema,`
			`SettingsSchema`
			`)`

added registration resource 7 years ago
added schemas, starting on registration 7 years ago			`from .helpers import BaseChildResource`
added registration resource 7 years ago
added schemas, starting on registration 7 years ago
finished registration workflow 7 years ago			`class RegistrationTokenResource(BaseChildResource):`
			`''' Resource for vaildating a new registered user's email`

			`:param pyramid.request.Request request: the current request object`
			`:param str name: the name of the resource`
			`:param parent: the parent resouce`
			`'''`
added account settings and change password 7 years ago
linting and documentation 7 years ago			`nav_active = 'registration'`
added account settings and change password 7 years ago
finished registration workflow 7 years ago			`def __acl__(self):`
			`''' access controll list for the resource '''`
			`return [(Allow, Everyone, 'view'), DENY_ALL]`


added schemas, starting on registration 7 years ago			`class RegistrationResource(BaseChildResource):`
added registration resource 7 years ago			`''' The resource for new user registration`

			`:param pyramid.request.Request request: the current request object`
			`:param str name: the name of the resource`
			`:param parent: the parent resouce`
			`'''`
added account settings and change password 7 years ago
added schemas, starting on registration 7 years ago			`nav_active = 'registration'`
added registration resource 7 years ago
			`def __acl__(self):`
			`''' access controll list for the resource '''`
			`return [(Allow, Everyone, 'view'), DENY_ALL]`
added account settings and change password 7 years ago
finished registration workflow 7 years ago			`def __getitem__(self, key):`
			`''' returns a resource for a valid registration token '''`
			`token = Token.retrieve(self.request, key, TokenSubject.REGISTRATION)`
			`if token is None:`
			`raise KeyError(f'Token {key} not found')`
			`return RegistrationTokenResource(name=key, parent=self, model=token)`
added account settings and change password 7 years ago
added test for prefilling of forms 7 years ago			`def get_registration_form(self, **kwargs):`
added schemas, starting on registration 7 years ago			`''' returns the registration form'''`
			`settings = {`
completet registration form 7 years ago			`'buttons': (`
			`deform.Button(name='create', title='Create Account'),`
			`deform.Button(`
finished registration form processing 7 years ago			`title='Cancel',`
			`type='link',`
			`value=self.request.resource_url(self.request.root),`
working on forgotten password process 7 years ago			`css_class='btn btn-outline-secondary'`
completet registration form 7 years ago			`)`
			`),`
added schemas, starting on registration 7 years ago			`}`
added test for prefilling of forms 7 years ago			`settings.update(kwargs)`
added schemas, starting on registration 7 years ago			`return self._prepare_form(RegistrationSchema, **settings)`
working on forgotten password process 7 years ago

			`class PasswordResetTokenResource(BaseChildResource):`
			`''' Resource for the reset password link`

			`:param pyramid.request.Request request: the current request object`
			`:param str name: the name of the resource`
			`:param parent: the parent resouce`
			`'''`
added account settings and change password 7 years ago
working on forgotten password process 7 years ago			`nav_active = None`
added account settings and change password 7 years ago
working on forgotten password process 7 years ago			`def __acl__(self):`
			`''' access controll list for the resource '''`
			`return [(Allow, Everyone, 'view'), DENY_ALL]`

completed password reset process 7 years ago			`def get_reset_form(self, **kwargs):`
			`''' returns password reset form '''`
			`settings = {`
			`'buttons': (`
			`deform.Button(name='change', title='Set New Password'),`
			`deform.Button(name='cancel', title='Cancel'),`
			`)`
			`}`
			`settings.update(kwargs)`
			`return self._prepare_form(ResetPasswordSchema, **settings)`

working on forgotten password process 7 years ago
			`class PasswordResetResource(BaseChildResource):`
			`''' The resource for resetting a forgotten password`

			`:param pyramid.request.Request request: the current request object`
			`:param str name: the name of the resource`
			`:param parent: the parent resouce`
			`'''`
added account settings and change password 7 years ago
working on forgotten password process 7 years ago			`nav_active = None`

			`def __acl__(self):`
			`''' access controll list for the resource '''`
			`return [(Allow, Everyone, 'view'), DENY_ALL]`
added account settings and change password 7 years ago
working on forgotten password process 7 years ago			`def __getitem__(self, key):`
			`''' returns a resource for a valid reset password token '''`
			`token = Token.retrieve(self.request, key, TokenSubject.RESET_PASSWORD)`
			`if token is None:`
			`raise KeyError(f'Token {key} not found')`
			`return PasswordResetTokenResource(name=key, parent=self, model=token)`
added account settings and change password 7 years ago

			`class ChangeEmailTokenResource(BaseChildResource):`
			`''' Resource for changing the email address`

			`:param pyramid.request.Request request: the current request object`
			`:param str name: the name of the resource`
			`:param parent: the parent resouce`
			`'''`

			`nav_active = None`

			`def __acl__(self):`
			`''' access controll list for the resource '''`
			`return [(Allow, self.model.owner.principal, 'edit'), DENY_ALL]`


			`class AccountResource(BaseChildResource):`
			`''' The resource for changing account settings and passwords`

			`:param pyramid.request.Request request: the current request object`
			`:param str name: the name of the resource`
			`:param parent: the parent resouce`
			`'''`

			`nav_active = None`

			`def __init__(self, name, parent, model=None):`
			`''' Create the resource`

			`:param str name: the name of the resource`
			`:param parent: the parent resouce`
			`:param model: optional data model for the resource`

			`If model is not set, the current user will be used`
			`'''`
			`super().__init__(name, parent, model)`
			`self.model = model or getattr(self.request, 'user', None)`

			`def __acl__(self):`
			`''' access controll list for the resource '''`
			`return [(Allow, Authenticated, 'edit'), DENY_ALL]`

			`def __getitem__(self, key):`
			`''' returns a resource for a valid change email token '''`
			`token = Token.retrieve(self.request, key, TokenSubject.CHANGE_EMAIL)`
			`if token is None:`
			`raise KeyError(f'Token {key} not found')`
			`return ChangeEmailTokenResource(name=key, parent=self, model=token)`

			`def get_settings_form(self, **kwargs):`
			`''' returns the account settings form '''`
			`settings = {`
			`'buttons': (`
			`deform.Button(name='change', title='Change Settings'),`
			`deform.Button(name='cancel', title='Cancel'),`
			`)`
			`}`
			`settings.update(kwargs)`
			`return self._prepare_form(SettingsSchema, **settings)`

			`def get_password_form(self, **kwargs):`
			`''' returns the change password form '''`
			`settings = {`
			`'buttons': (`
			`deform.Button(name='change', title='Change Password'),`
			`deform.Button(name='cancel', title='Cancel'),`
			`)`
			`}`
			`settings.update(kwargs)`
			`return self._prepare_form(ChangePasswordSchema, **settings)`