API & CLI - refacto + new commands to update users

2022-04-23 13:48:29 +02:00
parent a43b538aae
commit cea049273c
6 changed files with 291 additions and 65 deletions
--- a/fittrackee/users/utils/admin.py
+++ b/fittrackee/users/utils/admin.py
@ -1,14 +1,86 @@
-from fittrackee import db
+import secrets
+from typing import Optional, Tuple

-from ..exceptions import UserNotFoundException
+from flask import current_app
+
+from fittrackee import bcrypt, db
+
+from ..exceptions import InvalidEmailException, UserNotFoundException
 from ..models import User
+from ..utils.controls import is_valid_email


-def set_admin_rights(username: str) -> None:
-    user = User.query.filter_by(username=username).first()
-    if not user:
-        raise UserNotFoundException()
-    user.admin = True
-    user.is_active = True
-    user.confirmation_token = None
-    db.session.commit()
+class UserManagerService:
+    def __init__(self, username: str):
+        self.username = username
+
+    def _get_user(self) -> User:
+        user = User.query.filter_by(username=self.username).first()
+        if not user:
+            raise UserNotFoundException()
+        return user
+
+    def _update_admin_rights(self, user: User, is_admin: bool) -> None:
+        user.admin = is_admin
+        if is_admin:
+            self._activate_user(user)
+
+    @staticmethod
+    def _activate_user(user: User) -> None:
+        user.is_active = True
+        user.confirmation_token = None
+
+    @staticmethod
+    def _reset_user_password(user: User) -> str:
+        new_password = secrets.token_urlsafe(30)
+        user.password = bcrypt.generate_password_hash(
+            new_password, current_app.config.get('BCRYPT_LOG_ROUNDS')
+        ).decode()
+        return new_password
+
+    @staticmethod
+    def _update_user_email(
+        user: User, new_email: str, with_confirmation: bool
+    ) -> None:
+        if not is_valid_email(new_email):
+            raise InvalidEmailException('valid email must be provided')
+        if user.email == new_email:
+            raise InvalidEmailException(
+                'new email must be different than curent email'
+            )
+        if with_confirmation:
+            user.email_to_confirm = new_email
+            user.confirmation_token = secrets.token_urlsafe(30)
+        else:
+            user.email = new_email
+
+    def update(
+        self,
+        is_admin: Optional[bool] = None,
+        activate: bool = False,
+        reset_password: bool = False,
+        new_email: Optional[str] = None,
+        with_confirmation: bool = True,
+    ) -> Tuple[User, bool, Optional[str]]:
+        user_updated = False
+        new_password = None
+        user = self._get_user()
+
+        if is_admin is not None:
+            self._update_admin_rights(user, is_admin)
+            user_updated = True
+
+        if activate:
+            self._activate_user(user)
+            user_updated = True
+
+        if reset_password:
+            new_password = self._reset_user_password(user)
+            user_updated = True
+
+        if new_email is not None:
+            self._update_user_email(user, new_email, with_confirmation)
+            user_updated = True
+
+        db.session.commit()
+        return user, user_updated, new_password