FitTrackee/fittrackee/users/utils/controls.py

import re
from typing import Optional, Tuple

from flask import Request

from fittrackee.responses import (
    ForbiddenErrorResponse,
    HttpResponse,
    UnauthorizedErrorResponse,
)

from ..models import User


def is_valid_email(email: str) -> bool:
    """
    Return if email format is valid
    """
    mail_pattern = r"(^[a-zA-Z0-9_.+-]+@[a-zA-Z0-9-]+\.[a-zA-Z0-9-.]+$)"
    return re.match(mail_pattern, email) is not None


def check_password(password: str) -> str:
    """
    Verify if password have more than 8 characters
    If not, it returns error message
    """
    if len(password) < 8:
        return 'password: 8 characters required\n'
    return ''


def check_username(username: str) -> str:
    """
    Return if username is valid
    If not, it returns error messages
    """
    ret = ''
    if not (2 < len(username) < 31):
        ret += 'username: 3 to 30 characters required\n'
    if not re.match(r'^[a-zA-Z0-9_]+$', username):
        ret += (
            'username: only alphanumeric characters and the '
            'underscore character "_" allowed\n'
        )
    return ret


def register_controls(username: str, email: str, password: str) -> str:
    """
    Verify if username, email and passwords are valid
    If not, it returns error messages
    """
    ret = check_username(username)
    if not is_valid_email(email):
        ret += 'email: valid email must be provided\n'
    ret += check_password(password)
    return ret


def verify_user(
    current_request: Request, verify_admin: bool
) -> Tuple[Optional[HttpResponse], Optional[User]]:
    """
    Return authenticated user, if the provided token is valid and user has
    admin rights if 'verify_admin' is True
    """
    default_message = 'provide a valid auth token'
    auth_header = current_request.headers.get('Authorization')
    if not auth_header:
        return UnauthorizedErrorResponse(default_message), None
    auth_token = auth_header.split(' ')[1]
    resp = User.decode_auth_token(auth_token)
    if isinstance(resp, str):
        return UnauthorizedErrorResponse(resp), None
    user = User.query.filter_by(id=resp).first()
    if not user:
        return UnauthorizedErrorResponse(default_message), None
    if verify_admin and not user.admin:
        return ForbiddenErrorResponse(), None
    return None, user
API - users refactoring 2022-02-16 18:07:05 +01:00			`import re`
			`from typing import Optional, Tuple`

			`from flask import Request`

			`from fittrackee.responses import (`
			`ForbiddenErrorResponse,`
			`HttpResponse,`
			`UnauthorizedErrorResponse,`
			`)`

			`from ..models import User`


			`def is_valid_email(email: str) -> bool:`
			`"""`
			`Return if email format is valid`
			`"""`
			`mail_pattern = r"(^[a-zA-Z0-9_.+-]+@[a-zA-Z0-9-]+\.[a-zA-Z0-9-.]+$)"`
			`return re.match(mail_pattern, email) is not None`


API & Client - remove password confirmation 2022-03-13 08:39:50 +01:00			`def check_password(password: str) -> str:`
API - users refactoring 2022-02-16 18:07:05 +01:00			`"""`
API & Client - remove password confirmation 2022-03-13 08:39:50 +01:00			`Verify if password have more than 8 characters`
			`If not, it returns error message`
API - users refactoring 2022-02-16 18:07:05 +01:00			`"""`
			`if len(password) < 8:`
API & Client - remove password confirmation 2022-03-13 08:39:50 +01:00			`return 'password: 8 characters required\n'`
			`return ''`
API - users refactoring 2022-02-16 18:07:05 +01:00

			`def check_username(username: str) -> str:`
			`"""`
			`Return if username is valid`
API & Client - remove password confirmation 2022-03-13 08:39:50 +01:00			`If not, it returns error messages`
API - users refactoring 2022-02-16 18:07:05 +01:00			`"""`
			`ret = ''`
API & Client - update username max length 2022-03-13 08:38:45 +01:00			`if not (2 < len(username) < 31):`
			`ret += 'username: 3 to 30 characters required\n'`
API - users refactoring 2022-02-16 18:07:05 +01:00			`if not re.match(r'^[a-zA-Z0-9_]+$', username):`
			`ret += (`
			`'username: only alphanumeric characters and the '`
			`'underscore character "_" allowed\n'`
			`)`
			`return ret`


API & Client - remove password confirmation 2022-03-13 08:39:50 +01:00			`def register_controls(username: str, email: str, password: str) -> str:`
API - users refactoring 2022-02-16 18:07:05 +01:00			`"""`
			`Verify if username, email and passwords are valid`
API & Client - remove password confirmation 2022-03-13 08:39:50 +01:00			`If not, it returns error messages`
API - users refactoring 2022-02-16 18:07:05 +01:00			`"""`
			`ret = check_username(username)`
			`if not is_valid_email(email):`
			`ret += 'email: valid email must be provided\n'`
API & Client - remove password confirmation 2022-03-13 08:39:50 +01:00			`ret += check_password(password)`
API - users refactoring 2022-02-16 18:07:05 +01:00			`return ret`


			`def verify_user(`
			`current_request: Request, verify_admin: bool`
			`) -> Tuple[Optional[HttpResponse], Optional[User]]:`
			`"""`
			`Return authenticated user, if the provided token is valid and user has`
			`admin rights if 'verify_admin' is True`
			`"""`
			`default_message = 'provide a valid auth token'`
			`auth_header = current_request.headers.get('Authorization')`
			`if not auth_header:`
			`return UnauthorizedErrorResponse(default_message), None`
			`auth_token = auth_header.split(' ')[1]`
			`resp = User.decode_auth_token(auth_token)`
			`if isinstance(resp, str):`
			`return UnauthorizedErrorResponse(resp), None`
			`user = User.query.filter_by(id=resp).first()`
			`if not user:`
			`return UnauthorizedErrorResponse(default_message), None`
			`if verify_admin and not user.admin:`
			`return ForbiddenErrorResponse(), None`
			`return None, user`