pandora/pandora/oxuser/views.py

# -*- coding: utf-8 -*-
# vi:si:et:sw=4:sts=4:ts=4
import uuid
import hashlib

from django import forms
from django.contrib.auth.models import User
from django.contrib.auth import authenticate, login, logout
from django.shortcuts import render_to_response, get_object_or_404, get_list_or_404, redirect
from django.template import RequestContext, loader, Context
from django.utils import simplejson as json
from django.conf import settings
from django.core.mail import send_mail, BadHeaderError

from oxdjango.shortcuts import render_to_json_response, json_response
from oxdjango.decorators import login_required_json

import models

class LoginForm(forms.Form):
    username = forms.TextInput()
    password = forms.TextInput()

def api_login(request):
    '''
        param data
            {'username': username, 'password': password}
        
        return {'status': {'code': int, 'text': string}}
    '''
    response = json_response(status=403, text='login failed')
    data = json.loads(request.POST['data'])
    form = LoginForm(data, request.FILES)
    if form.is_valid():
        user = authenticate(username=data['username'], password=data['password'])
        if user is not None:
            if user.is_active:
                login(request, user)
                user_json = models.getUserJSON(user)
                response = json_response({'user': user_json},
                                         text='You are logged in.')
            else:
                response = json_response(status=401,
                    text='Your account is disabled.')
        else:
                errors = json_errors(form)
                response = json_response(errors,
                    status=401, text='Your username and password were incorrect.')
    else:
        response = json_response(status=400, text='invalid data')

    return render_to_json_response(response)

def api_logout(request):
    '''
        param data
            {}
        
        return {'status': {'code': int, 'text': string}}
    '''
    response = json_response(text='logged out')
    if request.user.is_authenticated():
        logout(request)
    return render_to_json_response(response)

class RegisterForm(forms.Form):
    username = forms.TextInput()
    password = forms.TextInput()
    email = forms.TextInput()

def api_register(request):
    '''
        param data
            {'username': username, 'password': password, 'email': email}
        
        return {'status': {'code': int, 'text': string}}
    '''
    data = json.loads(request.POST['data'])
    form = RegisterForm(data, request.FILES)
    if form.is_valid():
        if models.User.objects.filter(username=form.data['username']).count() > 0:
            response = json_response(status=400, text='username or email exists')
        elif models.User.objects.filter(email=form.data['email']).count() > 0:
            response = json_response(status=400, text='username or email exists')
        else:
            user = models.User(username=form.data['username'], email=form.data['email'])
            user.set_password(form.data['password'])
            user.save()
            user = authenticate(username=form.data['username'],
                                password=form.data['password'])
            login(request, user)
            response = json_response(text='account created')
    else:
        response = json_response(status=400, text='username exists')
    return render_to_json_response(response)

class RecoverForm(forms.Form):
    username_or_email = forms.TextInput()

def api_recover(request):
    '''
        param data
            {'username_or_email': username}
        
        return {'status': {'code': int, 'text': string}}
    '''
    data = json.loads(request.POST['data'])
    form = RegisterForm(data, request.FILES)
    if form.is_valid():
        username = data['username_or_email']
        user = None
        q = models.User.objects.filter(username=username)
        if q.count() > 0:
            user = q[0]
        else:
            q = models.User.objects.filter(email=username)
            if q.count() > 0:
                user = q[0]
        if user:
            key = hashlib.sha1(str(uuid.uuid4())).hexdigest()
            user_profile = user.get_profile()
            user_profile.recover_key = key
            user_profile.save()

            template = loader.get_template('recover_email.txt')
            context = RequestContext(request, {
                'recover_url': request.build_absolute_uri("/r/%s" % key),
                'sitename': settings.SITENAME,
            })
            message = template.render(context)
            subject = '%s account recovery' % settings.SITENAME
            user.email_user(subject, message)
            response = json_response(text='recover email sent')
        else:
            response = json_response(status=404, text='username or email not found')
    else:
        response = json_response(status=400, text='invalid data')
    return render_to_json_response(response)

def recover(request, key):
    qs = models.UserProfile.objects.filter(recover_key=key)
    if qs.count() == 1:
        user = qs[0].user
        user.set_password(key)
        user.save()
        user_profile = user.get_profile()
        user_profile.recover_key = ''
        user_profile.save()
        user = authenticate(username=user.username, password=key)
        login(request, user)
        
        #FIXME: set message to notify user to update password
        return redirect('/#settings')
    return redirect('/')

class ContactForm(forms.Form):
    email = forms.EmailField()
    subject = forms.TextInput()
    message = forms.TextInput()

def api_contact(request):
    '''
        param data
            {'email': string, 'message': string}
        
        return {'status': {'code': int, 'text': string}}
    '''
    data = json.loads(request.POST['data'])
    form = ContactForm(data, request.FILES)
    if form.is_valid():
        email = data['email']
        template = loader.get_template('contact_email.txt')
        context = RequestContext(request, {
            'sitename': settings.SITENAME,
            'email': email,
            'message': data['message'],
        })
        message = template.render(context)
        subject = '%s contact: %s' % (settings.SITENAME, data['subject'])
        response = json_response(text='message sent')
        try:
            send_mail(subject, message, email, [settings.DEFAULT_FROM_EMAIL, ])
        except BadHeaderError:
            response = json_response(status=400, text='invalid data')
    else:
        response = json_response(status=400, text='invalid data')
    return render_to_json_response(response)


@login_required_json
def api_preferences(request):
    '''
        param data
            string
            array
            object

        return
        if data is empy or {}
        if data is string:
            return preference with name
        if data is array:
            return preferences with names
        if data is object:
            set key values in dict as preferences
    '''
    response = json_response()
    if 'data' not in request.POST:
        response['data']['preferences'] = models.getPreferences(request.user)
    else:
        data = json.loads(request.POST['data'])
        if isinstance(data, basestring):
            response['data']['preferences'] = {}
            response['data']['preferences'][data] = models.getPreference(request.user, data)
        elif isinstance(data, list):
            response['data']['preferences'] = {}
            for preference in data:
                response['preferences'][preference] = models.getPreference(request.user, preference)
        elif isinstance(data, dict):
            if not data:
                response['data']['preferences'] = models.getPreferences(request.user)
            else:
                del response['data']
                for key in data:
                    models.setPreference(request.user, key, data[key])
    return render_to_json_response(response)
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`# -- coding: utf-8 --`
			`# vi:si:et:sw=4:sts=4:ts=4`
upload, recovery 2010-02-03 11:59:11 +00:00			`import uuid`
			`import hashlib`
random checking of new api stuff 2010-01-25 09:20:21 +00:00
random 2010-02-03 12:05:38 +00:00			`from django import forms`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`from django.contrib.auth.models import User`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`from django.contrib.auth import authenticate, login, logout`
recover account, email in preferences 2010-02-06 08:24:39 +00:00			`from django.shortcuts import render_to_response, get_object_or_404, get_list_or_404, redirect`
upload, recovery 2010-02-03 11:59:11 +00:00			`from django.template import RequestContext, loader, Context`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`from django.utils import simplejson as json`
recover account, email in preferences 2010-02-06 08:24:39 +00:00			`from django.conf import settings`
recover 2010-02-16 10:10:53 +00:00			`from django.core.mail import send_mail, BadHeaderError`
random checking of new api stuff 2010-01-25 09:20:21 +00:00
use json_response 2010-02-10 13:10:28 +00:00			`from oxdjango.shortcuts import render_to_json_response, json_response`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`from oxdjango.decorators import login_required_json`

			`import models`

api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`class LoginForm(forms.Form):`
			`username = forms.TextInput()`
			`password = forms.TextInput()`
random checking of new api stuff 2010-01-25 09:20:21 +00:00
			`def api_login(request):`
			`'''`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`param data`
			`{'username': username, 'password': password}`
random checking of new api stuff 2010-01-25 09:20:21 +00:00
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`return {'status': {'code': int, 'text': string}}`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`'''`
use json_response 2010-02-10 13:10:28 +00:00			`response = json_response(status=403, text='login failed')`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`data = json.loads(request.POST['data'])`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`form = LoginForm(data, request.FILES)`
			`if form.is_valid():`
			`user = authenticate(username=data['username'], password=data['password'])`
			`if user is not None:`
			`if user.is_active:`
			`login(request, user)`
			`user_json = models.getUserJSON(user)`
recover 2010-02-16 10:10:53 +00:00			`response = json_response({'user': user_json},`
			`text='You are logged in.')`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`else:`
use json_response 2010-02-10 13:10:28 +00:00			`response = json_response(status=401,`
			`text='Your account is disabled.')`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`else:`
recover 2010-02-16 10:10:53 +00:00			`errors = json_errors(form)`
			`response = json_response(errors,`
			`status=401, text='Your username and password were incorrect.')`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`else:`
use json_response 2010-02-10 13:10:28 +00:00			`response = json_response(status=400, text='invalid data')`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`return render_to_json_response(response)`

			`def api_logout(request):`
			`'''`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`param data`
			`{}`

			`return {'status': {'code': int, 'text': string}}`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`'''`
use json_response 2010-02-10 13:10:28 +00:00			`response = json_response(text='logged out')`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`if request.user.is_authenticated():`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`logout(request)`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`return render_to_json_response(response)`

api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`class RegisterForm(forms.Form):`
			`username = forms.TextInput()`
			`password = forms.TextInput()`
			`email = forms.TextInput()`

random checking of new api stuff 2010-01-25 09:20:21 +00:00			`def api_register(request):`
			`'''`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`param data`
			`{'username': username, 'password': password, 'email': email}`
random checking of new api stuff 2010-01-25 09:20:21 +00:00
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`return {'status': {'code': int, 'text': string}}`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`'''`
			`data = json.loads(request.POST['data'])`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`form = RegisterForm(data, request.FILES)`
			`if form.is_valid():`
			`if models.User.objects.filter(username=form.data['username']).count() > 0:`
use json_response 2010-02-10 13:10:28 +00:00			`response = json_response(status=400, text='username or email exists')`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`elif models.User.objects.filter(email=form.data['email']).count() > 0:`
use json_response 2010-02-10 13:10:28 +00:00			`response = json_response(status=400, text='username or email exists')`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`else:`
			`user = models.User(username=form.data['username'], email=form.data['email'])`
			`user.set_password(form.data['password'])`
register 2010-01-26 13:24:50 +00:00			`user.save()`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`user = authenticate(username=form.data['username'],`
			`password=form.data['password'])`
			`login(request, user)`
use json_response 2010-02-10 13:10:28 +00:00			`response = json_response(text='account created')`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`else:`
use json_response 2010-02-10 13:10:28 +00:00			`response = json_response(status=400, text='username exists')`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`return render_to_json_response(response)`

api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`class RecoverForm(forms.Form):`
			`username_or_email = forms.TextInput()`

random checking of new api stuff 2010-01-25 09:20:21 +00:00			`def api_recover(request):`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`'''`
			`param data`
			`{'username_or_email': username}`

			`return {'status': {'code': int, 'text': string}}`
			`'''`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`data = json.loads(request.POST['data'])`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`form = RegisterForm(data, request.FILES)`
			`if form.is_valid():`
			`username = data['username_or_email']`
			`user = None`
			`q = models.User.objects.filter(username=username)`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`if q.count() > 0:`
			`user = q[0]`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`else:`
			`q = models.User.objects.filter(email=username)`
			`if q.count() > 0:`
			`user = q[0]`
			`if user:`
upload, recovery 2010-02-03 11:59:11 +00:00			`key = hashlib.sha1(str(uuid.uuid4())).hexdigest()`
			`user_profile = user.get_profile()`
			`user_profile.recover_key = key`
			`user_profile.save()`

recover account, email in preferences 2010-02-06 08:24:39 +00:00			`template = loader.get_template('recover_email.txt')`
			`context = RequestContext(request, {`
upload, recovery 2010-02-03 11:59:11 +00:00			`'recover_url': request.build_absolute_uri("/r/%s" % key),`
			`'sitename': settings.SITENAME,`
			`})`
			`message = template.render(context)`
			`subject = '%s account recovery' % settings.SITENAME`
			`user.email_user(subject, message)`
use json_response 2010-02-10 13:10:28 +00:00			`response = json_response(text='recover email sent')`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`else:`
use json_response 2010-02-10 13:10:28 +00:00			`response = json_response(status=404, text='username or email not found')`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`else:`
use json_response 2010-02-10 13:10:28 +00:00			`response = json_response(status=400, text='invalid data')`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`return render_to_json_response(response)`

recover account, email in preferences 2010-02-06 08:24:39 +00:00			`def recover(request, key):`
			`qs = models.UserProfile.objects.filter(recover_key=key)`
			`if qs.count() == 1:`
			`user = qs[0].user`
			`user.set_password(key)`
			`user.save()`
			`user_profile = user.get_profile()`
			`user_profile.recover_key = ''`
			`user_profile.save()`
			`user = authenticate(username=user.username, password=key)`
			`login(request, user)`

			`#FIXME: set message to notify user to update password`
			`return redirect('/#settings')`
			`return redirect('/')`

recover 2010-02-16 10:10:53 +00:00			`class ContactForm(forms.Form):`
			`email = forms.EmailField()`
			`subject = forms.TextInput()`
			`message = forms.TextInput()`

			`def api_contact(request):`
			`'''`
			`param data`
			`{'email': string, 'message': string}`

			`return {'status': {'code': int, 'text': string}}`
			`'''`
			`data = json.loads(request.POST['data'])`
			`form = ContactForm(data, request.FILES)`
			`if form.is_valid():`
			`email = data['email']`
			`template = loader.get_template('contact_email.txt')`
			`context = RequestContext(request, {`
			`'sitename': settings.SITENAME,`
			`'email': email,`
			`'message': data['message'],`
			`})`
			`message = template.render(context)`
			`subject = '%s contact: %s' % (settings.SITENAME, data['subject'])`
			`response = json_response(text='message sent')`
			`try:`
			`send_mail(subject, message, email, [settings.DEFAULT_FROM_EMAIL, ])`
			`except BadHeaderError:`
			`response = json_response(status=400, text='invalid data')`
			`else:`
			`response = json_response(status=400, text='invalid data')`
			`return render_to_json_response(response)`


random checking of new api stuff 2010-01-25 09:20:21 +00:00			`@login_required_json`
			`def api_preferences(request):`
			`'''`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`param data`
			`string`
more api implementation, some templates 2010-01-29 11:03:45 +00:00			`array`
			`object`

api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`return`
more api implementation, some templates 2010-01-29 11:03:45 +00:00			`if data is empy or {}`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`if data is string:`
			`return preference with name`
more api implementation, some templates 2010-01-29 11:03:45 +00:00			`if data is array:`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`return preferences with names`
more api implementation, some templates 2010-01-29 11:03:45 +00:00			`if data is object:`
api, api, api, today its all about the api 2010-01-26 13:11:57 +00:00			`set key values in dict as preferences`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`'''`
use json_response 2010-02-10 13:10:28 +00:00			`response = json_response()`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`if 'data' not in request.POST:`
implement preferences 2010-01-27 05:36:21 +00:00			`response['data']['preferences'] = models.getPreferences(request.user)`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`else:`
			`data = json.loads(request.POST['data'])`
			`if isinstance(data, basestring):`
implement preferences 2010-01-27 05:36:21 +00:00			`response['data']['preferences'] = {}`
			`response['data']['preferences'][data] = models.getPreference(request.user, data)`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`elif isinstance(data, list):`
implement preferences 2010-01-27 05:36:21 +00:00			`response['data']['preferences'] = {}`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`for preference in data:`
implement preferences 2010-01-27 05:36:21 +00:00			`response['preferences'][preference] = models.getPreference(request.user, preference)`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`elif isinstance(data, dict):`
more api implementation, some templates 2010-01-29 11:03:45 +00:00			`if not data:`
			`response['data']['preferences'] = models.getPreferences(request.user)`
			`else:`
			`del response['data']`
			`for key in data:`
			`models.setPreference(request.user, key, data[key])`
random checking of new api stuff 2010-01-25 09:20:21 +00:00			`return render_to_json_response(response)`