FitTrackee/fittrackee/users/utils.py

import re
from typing import Optional, Tuple

from flask import Request

from fittrackee import db
from fittrackee.responses import (
    ForbiddenErrorResponse,
    HttpResponse,
    UnauthorizedErrorResponse,
)

from .exceptions import UserNotFoundException
from .models import User


def is_valid_email(email: str) -> bool:
    """
    Return if email format is valid
    """
    mail_pattern = r"(^[a-zA-Z0-9_.+-]+@[a-zA-Z0-9-]+\.[a-zA-Z0-9-.]+$)"
    return re.match(mail_pattern, email) is not None


def check_passwords(password: str, password_conf: str) -> str:
    """
    Verify if password and password confirmation are the same and have
    more than 8 characters

    If not, it returns not empty string
    """
    ret = ''
    if password_conf != password:
        ret = 'password: password and password confirmation do not match\n'
    if len(password) < 8:
        ret += 'password: 8 characters required\n'
    return ret


def register_controls(
    username: str, email: str, password: str, password_conf: str
) -> str:
    """
    Verify if username, email and passwords are valid

    If not, it returns not empty string
    """
    ret = ''
    if not 2 < len(username) < 13:
        ret += 'username: 3 to 12 characters required\n'
    if not is_valid_email(email):
        ret += 'email: valid email must be provided\n'
    ret += check_passwords(password, password_conf)
    return ret


def verify_user(
    current_request: Request, verify_admin: bool
) -> Tuple[Optional[HttpResponse], Optional[User]]:
    """
    Return authenticated user, if the provided token is valid and user has
    admin rights if 'verify_admin' is True
    """
    default_message = 'provide a valid auth token'
    auth_header = current_request.headers.get('Authorization')
    if not auth_header:
        return UnauthorizedErrorResponse(default_message), None
    auth_token = auth_header.split(' ')[1]
    resp = User.decode_auth_token(auth_token)
    if isinstance(resp, str):
        return UnauthorizedErrorResponse(resp), None
    user = User.query.filter_by(id=resp).first()
    if not user:
        return UnauthorizedErrorResponse(default_message), None
    if verify_admin and not user.admin:
        return ForbiddenErrorResponse(), None
    return None, user


def can_view_workout(
    auth_user_id: int, workout_user_id: int
) -> Optional[HttpResponse]:
    """
    Return error response if user has no right to view workout
    """
    if auth_user_id != workout_user_id:
        return ForbiddenErrorResponse()
    return None


def set_admin_rights(username: str) -> None:
    user = User.query.filter_by(username=username).first()
    if not user:
        raise UserNotFoundException()
    user.admin = True
    db.session.commit()
API & Client: registration controls 2018-01-01 11:10:39 +01:00			`import re`
API - fix error message on file uplaod + refactor - #72 2021-02-20 21:37:31 +01:00			`from typing import Optional, Tuple`
Client: login/register Client: login/register Client: login/register Client: login/register Client: login/register Client: login/register Client: login/register Client: login/register Client: login/register 2017-12-25 17:45:28 +01:00
API - fix error message on file uplaod + refactor - #72 2021-02-20 21:37:31 +01:00			`from flask import Request`
API - refactor imports 2021-01-20 16:47:00 +01:00
API - add command to set an admin after fresh install 2022-02-12 14:30:59 +01:00			`from fittrackee import db`
API - refactor api responses 2021-01-01 16:39:25 +01:00			`from fittrackee.responses import (`
			`ForbiddenErrorResponse,`
API - add typing 2021-01-02 19:28:03 +01:00			`HttpResponse,`
API - refactor api responses 2021-01-01 16:39:25 +01:00			`UnauthorizedErrorResponse,`
			`)`
Client: login/register Client: login/register Client: login/register Client: login/register Client: login/register Client: login/register Client: login/register Client: login/register Client: login/register 2017-12-25 17:45:28 +01:00
API - add command to set an admin after fresh install 2022-02-12 14:30:59 +01:00			`from .exceptions import UserNotFoundException`
Client: login/register Client: login/register Client: login/register Client: login/register Client: login/register Client: login/register Client: login/register Client: login/register Client: login/register 2017-12-25 17:45:28 +01:00			`from .models import User`


API - add typing 2021-01-02 19:28:03 +01:00			`def is_valid_email(email: str) -> bool:`
			`"""`
			`Return if email format is valid`
			`"""`
API: sports - minor refactor 2018-05-09 16:50:30 +02:00			`mail_pattern = r"(^[a-zA-Z0-9_.+-]+@[a-zA-Z0-9-]+\.[a-zA-Z0-9-.]+$)"`
			`return re.match(mail_pattern, email) is not None`


API - add typing 2021-01-02 19:28:03 +01:00			`def check_passwords(password: str, password_conf: str) -> str:`
			`"""`
			`Verify if password and password confirmation are the same and have`
			`more than 8 characters`

			`If not, it returns not empty string`
			`"""`
API - add route to update password and email templates - #50 2020-05-17 16:42:44 +02:00			`ret = ''`
			`if password_conf != password:`
API & Client - update API error messages to remove i18n workarounds 2021-11-01 09:44:10 +01:00			`ret = 'password: password and password confirmation do not match\n'`
API - add route to update password and email templates - #50 2020-05-17 16:42:44 +02:00			`if len(password) < 8:`
API & Client - update API error messages to remove i18n workarounds 2021-11-01 09:44:10 +01:00			`ret += 'password: 8 characters required\n'`
API - add route to update password and email templates - #50 2020-05-17 16:42:44 +02:00			`return ret`


API - add typing 2021-01-02 19:28:03 +01:00			`def register_controls(`
			`username: str, email: str, password: str, password_conf: str`
			`) -> str:`
			`"""`
API - add command to set an admin after fresh install 2022-02-12 14:30:59 +01:00			`Verify if username, email and passwords are valid`
API - add typing 2021-01-02 19:28:03 +01:00
			`If not, it returns not empty string`
			`"""`
API: auth - minor refactor 2018-05-09 17:00:22 +02:00			`ret = ''`
			`if not 2 < len(username) < 13:`
API & Client - update API error messages to remove i18n workarounds 2021-11-01 09:44:10 +01:00			`ret += 'username: 3 to 12 characters required\n'`
API: auth - minor refactor 2018-05-09 17:00:22 +02:00			`if not is_valid_email(email):`
API & Client - update API error messages to remove i18n workarounds 2021-11-01 09:44:10 +01:00			`ret += 'email: valid email must be provided\n'`
API - add route to update password and email templates - #50 2020-05-17 16:42:44 +02:00			`ret += check_passwords(password, password_conf)`
API: auth - minor refactor 2018-05-09 17:00:22 +02:00			`return ret`


API - add typing 2021-01-02 19:28:03 +01:00			`def verify_user(`
			`current_request: Request, verify_admin: bool`
API - authentication decorators return user directly instead of user id 2021-12-01 19:22:47 +01:00			`) -> Tuple[Optional[HttpResponse], Optional[User]]:`
API - add typing 2021-01-02 19:28:03 +01:00			`"""`
update documentation 2021-12-01 19:39:45 +01:00			`Return authenticated user, if the provided token is valid and user has`
			`admin rights if 'verify_admin' is True`
API - add typing 2021-01-02 19:28:03 +01:00			`"""`
API & Client - update API error messages to remove i18n workarounds 2021-11-01 09:44:10 +01:00			`default_message = 'provide a valid auth token'`
API: auth - minor refactor 2018-05-09 17:00:22 +02:00			`auth_header = current_request.headers.get('Authorization')`
			`if not auth_header:`
API - refactor api responses 2021-01-01 16:39:25 +01:00			`return UnauthorizedErrorResponse(default_message), None`
			`auth_token = auth_header.split(' ')[1]`
API: auth - minor refactor 2018-05-09 17:00:22 +02:00			`resp = User.decode_auth_token(auth_token)`
			`if isinstance(resp, str):`
API - refactor api responses 2021-01-01 16:39:25 +01:00			`return UnauthorizedErrorResponse(resp), None`
API: auth - minor refactor 2018-05-09 17:00:22 +02:00			`user = User.query.filter_by(id=resp).first()`
			`if not user:`
API - refactor api responses 2021-01-01 16:39:25 +01:00			`return UnauthorizedErrorResponse(default_message), None`
API - authentication decorators return user directly instead of user id 2021-12-01 19:22:47 +01:00			`if verify_admin and not user.admin:`
API - refactor api responses 2021-01-01 16:39:25 +01:00			`return ForbiddenErrorResponse(), None`
API - authentication decorators return user directly instead of user id 2021-12-01 19:22:47 +01:00			`return None, user`
API: auth - minor refactor 2018-05-09 17:00:22 +02:00

API - replace 'Activity' with 'Workout' - #58 2021-01-10 11:16:43 +01:00			`def can_view_workout(`
			`auth_user_id: int, workout_user_id: int`
API - add typing 2021-01-02 19:28:03 +01:00			`) -> Optional[HttpResponse]:`
			`"""`
API - replace 'Activity' with 'Workout' - #58 2021-01-10 11:16:43 +01:00			`Return error response if user has no right to view workout`
API - add typing 2021-01-02 19:28:03 +01:00			`"""`
API - replace 'Activity' with 'Workout' - #58 2021-01-10 11:16:43 +01:00			`if auth_user_id != workout_user_id:`
API - refactor api responses 2021-01-01 16:39:25 +01:00			`return ForbiddenErrorResponse()`
			`return None`
API - add command to set an admin after fresh install 2022-02-12 14:30:59 +01:00

			`def set_admin_rights(username: str) -> None:`
			`user = User.query.filter_by(username=username).first()`
			`if not user:`
			`raise UserNotFoundException()`
			`user.admin = True`
			`db.session.commit()`