import re from typing import Optional, Tuple from flask import Request from fittrackee.responses import ( ForbiddenErrorResponse, HttpResponse, UnauthorizedErrorResponse, ) from ..models import User def is_valid_email(email: str) -> bool: """ Return if email format is valid """ mail_pattern = r"(^[a-zA-Z0-9_.+-]+@[a-zA-Z0-9-]+\.[a-zA-Z0-9-.]+$)" return re.match(mail_pattern, email) is not None def check_passwords(password: str, password_conf: str) -> str: """ Verify if password and password confirmation are the same and have more than 8 characters If not, it returns not empty string """ ret = '' if password_conf != password: ret = 'password: password and password confirmation do not match\n' if len(password) < 8: ret += 'password: 8 characters required\n' return ret def check_username(username: str) -> str: """ Return if username is valid """ ret = '' if not 2 < len(username) < 13: ret += 'username: 3 to 12 characters required\n' if not re.match(r'^[a-zA-Z0-9_]+$', username): ret += ( 'username: only alphanumeric characters and the ' 'underscore character "_" allowed\n' ) return ret def register_controls( username: str, email: str, password: str, password_conf: str ) -> str: """ Verify if username, email and passwords are valid If not, it returns not empty string """ ret = check_username(username) if not is_valid_email(email): ret += 'email: valid email must be provided\n' ret += check_passwords(password, password_conf) return ret def verify_user( current_request: Request, verify_admin: bool ) -> Tuple[Optional[HttpResponse], Optional[User]]: """ Return authenticated user, if the provided token is valid and user has admin rights if 'verify_admin' is True """ default_message = 'provide a valid auth token' auth_header = current_request.headers.get('Authorization') if not auth_header: return UnauthorizedErrorResponse(default_message), None auth_token = auth_header.split(' ')[1] resp = User.decode_auth_token(auth_token) if isinstance(resp, str): return UnauthorizedErrorResponse(resp), None user = User.query.filter_by(id=resp).first() if not user: return UnauthorizedErrorResponse(default_message), None if verify_admin and not user.admin: return ForbiddenErrorResponse(), None return None, user