tr4ck3ur
/
jm2l
3
0
Fork 1
Code Issues 3 Pull Requests 0 Releases 0 Wiki Activity
Le repo des sources pour le site web des JM2L
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
71 Commits
2 Branches
46 MiB
 
 
 
 
 
Tree: d393d09715
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'd393d09715'
${ noResults }
jm2l/jm2l/auth.py

94 lines
4.0 KiB
Raw Blame History 

  1. # -*- coding: utf8 -*-

  2. from pyramid.view import view_config

  3. from pyramid.security import remember, forget

  4. from pyramid.httpexceptions import HTTPFound

  5. from .models import User, DBSession

  6. from mako.template import Template

  7. from pyramid_mailer import get_mailer

  8. from pyramid_mailer.message import Attachment, Message

  9. import datetime

  10. import re

  11. 

  12. @view_config(route_name='auth', match_param="action=login", renderer="jm2l:templates/login.mako")

  13. def login(request):

  14.     return {}

  15. 

  16. @view_config(route_name='auth', match_param="action=forgot", renderer="jm2l:templates/login.mako")

  17. def forgot(request):

  18.     if request.method == 'POST' and request.POST:

  19.         request.POST.get('mail')

  20.         Found = re.match(r'^.+@([^.@][^@]+)$', request.POST.get('mail'), re.IGNORECASE)

  21.         if not Found:

  22.             request.session.flash(('error',u"Vous n'avez pas entré un e-mail valide !"))

  23.             return { 'forgot': True }

  24.         else:

  25.             UserFound = User.by_mail( Found.group(0) )

  26.             if not UserFound:

  27.                 request.session.flash(('error',u"Nous n'avons pas d'interlocuteur avec cette adresse e-mail !"))

  28.                 return { 'forgot': True }

  29.             else:

  30.                 # Send the Forgot Mail

  31.                 mailer = request.registry['mailer']

  32.                 # Prepare Plain Text Message :

  33.                 Mail_template = Template(filename='jm2l/templates/mail_plain.mako')

  34.                 mail_plain = Mail_template.render(request=request, User=UserFound, action="Forgot")

  35.                 body = Attachment(data=mail_plain, transfer_encoding="quoted-printable")

  36.                 

  37.                 # Prepare HTML Message :

  38.                 Mail_template = Template(filename='jm2l/templates/mail_html.mako')

  39.                 mail_html = Mail_template.render(request=request, User=UserFound, action="Forgot")

  40.                 html = Attachment(data=mail_html, transfer_encoding="quoted-printable")

  41.                 

  42.                 # Prepare Message

  43.                 message = Message(subject="[JM2L] Mes identifiants du site web JM2L",

  44.                                   sender="contact@jm2l.linux-azur.org",

  45.                                   recipients=[UserFound.mail],

  46.                                   body=body, html=html)

  47.                 

  48.                 message.add_bcc("spam@style-python.fr")

  49.                 mailer.send(message)

  50. 

  51.                 request.session.flash(('info',u"Vos informations de connection vous ont été renvoyé par e-mail"))

  52.     return { 'forgot': True }

  53. 

  54. @view_config(route_name='bymail', renderer="string")    

  55. def bymail(request):

  56.     myhash = request.matchdict.get('hash', "")

  57.     user = User.by_hash(myhash)

  58.     if user:

  59.         user.last_logged=datetime.datetime.now()

  60.         DBSession.merge(user)

  61.         headers = remember(request, user.uid)

  62.         return HTTPFound(location=request.route_url('jm2l'),

  63.                             headers=headers)

  64.     else:

  65.         headers = forget(request)

  66.     return HTTPFound(location=request.route_url('auth', action='login'),

  67.                      headers=headers)

  68. 

  69. @view_config(route_name='auth', match_param="action=in", renderer="string",

  70.              request_method="POST")

  71. @view_config(route_name='auth', match_param="action=out", renderer="string")

  72. def sign_in_out(request):

  73.     username = request.POST.get('username')

  74.     if username:

  75.         user = User.by_slug(username)

  76.         if user and user.verify_password(request.POST.get('password')):

  77.             user.last_logged=datetime.datetime.now()

  78.             DBSession.merge(user)

  79.             headers = remember(request, user.uid)

  80.             return HTTPFound(location=request.route_url('jm2l'),

  81.                              headers=headers)

  82.         else:

  83.             headers = forget(request)

  84.     else:

  85.         headers = forget(request)

  86.     if request.matchdict.get('action')=='in':

  87.         request.session.flash(('error',u'Vous avez entré un mauvais couple identifiant/password !'))

  88.         return HTTPFound(location="/sign/login",

  89.                          headers=headers)

  90.     return HTTPFound(location=request.route_url('home', year=''),

  91.                      headers=headers)

  92.