darkhelm/notifications-admin
1
0
Fork 0
mirror of https://github.com/GSA/notifications-admin.git synced 2026-06-05 05:50:41 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
17f74cf621ced95f044b4ee467441928b5b80e50
notifications-admin/app/main/views/user_profile.py

226 lines
6.7 KiB
Python
Raw Normal View History

Send an email to the user when they change email address This PR changes the flow to change an email address. Once the user enter their password, they are told "Check your email". An email has been sent to them containing a link to notify which contains an encrypted token. The encrypted token contains the user id and new email address. Once the link is clicked the user's email address is updated to the new email address. They are redirected to the /user-profile page. Also in this commit is an update from flask.ext.login to flask_login.
2016-10-13 17:05:37 +01:00
import json
change wording of platform admin toggle to positive rather than negative CHS Approved Wording :+1: also rename suppress_platform_admin -> disable_platform_admin_view in the backend, as suppress is a kinda weird word.
2019-06-14 12:32:47 +01:00
from flask import (
abort,
current_app,
redirect,
render_template,
session,
url_for,
)
Have permissions decorators check user signed in Rather than force us to write the decorators in a specific order let’s just have one decorator call the other. This should make fewer lines of code, and fewer annoying test failures. It also means that the same way of raising a `401` (through the `current_app` method) is used everywhere.
2019-07-01 15:22:08 +01:00
from flask_login import current_user
Send an email to the user when they change email address This PR changes the flow to change an email address. Once the user enter their password, they are told "Check your email". An email has been sent to them containing a link to notify which contains an encrypted token. The encrypted token contains the user id and new email address. Once the link is clicked the user's email address is updated to the new email address. They are redirected to the /user-profile page. Also in this commit is an update from flask.ext.login to flask_login.
2016-10-13 17:05:37 +01:00
from notifications_utils.url_safe_token import check_token
Changed registration flow to first send email verification link that when visited sends sms code for second step of account verification. At that second step user enters just sms code sent to users mobile number. Also moved dao calls that simply proxied calls to client to calling client directly. There is still a place where a user will be a sent a code for verification to their email namely if they update email address.
2016-03-17 13:07:52 +00:00
Enforce order and style of imports Done using isort[1], with the following command: ``` isort -rc ./app ./tests ``` Adds linting to the `run_tests.sh` script to stop badly-sorted imports getting re-introduced. Chosen style is ‘Vertical Hanging Indent’ with trailing commas, because I think it gives the cleanest diffs, eg: ``` from third_party import ( lib1, lib2, lib3, lib4, ) ``` 1. https://pypi.python.org/pypi/isort
2018-02-20 11:22:17 +00:00
from app import user_api_client
Extract user profile route into its own file
2016-01-12 09:52:00 +00:00
from app.main import main
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
from app.main.forms import (
Changed registration flow to first send email verification link that when visited sends sms code for second step of account verification. At that second step user enters just sms code sent to users mobile number. Also moved dao calls that simply proxied calls to client to calling client directly. There is still a place where a user will be a sent a code for verification to their email namely if they update email address.
2016-03-17 13:07:52 +00:00
ChangeEmailForm,
ChangeMobileNumberForm,
Enforce order and style of imports Done using isort[1], with the following command: ``` isort -rc ./app ./tests ``` Adds linting to the `run_tests.sh` script to stop badly-sorted imports getting re-introduced. Chosen style is ‘Vertical Hanging Indent’ with trailing commas, because I think it gives the cleanest diffs, eg: ``` from third_party import ( lib1, lib2, lib3, lib4, ) ``` 1. https://pypi.python.org/pypi/isort
2018-02-20 11:22:17 +00:00
ChangeNameForm,
ChangePasswordForm,
ConfirmPasswordForm,
add option to suppress platform admin temporarily so that platform admins (us) can view pages as regular users do easily. Simply adds a flag in the session cookie that overrides the actual platform admin flag on the user model if set. This way it's safe, since this only downgrades existing functionality, so if someone managed to alter it they could only get less permissions, not more. You can change this value from the user profile page if either: * you're a platform admin * the flag is set (to any value) on the cookie. This slightly weird check means that we don't check the underlying `user._platform_admin` flag anywhere in the code, even when toggling the suppression.
2019-06-13 19:00:17 +01:00
ServiceOnOffSettingForm,
Remove `ConfirmMobileNumberForm` It’s exactly the same code as `TwoFactorForm` was.
2018-05-07 22:53:36 +01:00
TwoFactorForm,
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
)
Make user API client return JSON, not a model The data flow of other bits of our application looks like this: ``` API (returns JSON) ⬇ API client (returns a built in type, usually `dict`) ⬇ Model (returns an instance, eg of type `Service`) ⬇ View (returns HTML) ``` The user API client was architected weirdly, in that it returned a model directly, like this: ``` API (returns JSON) ⬇ API client (returns a model, of type `User`, `InvitedUser`, etc) ⬇ View (returns HTML) ``` This mixing of different layers of the application is bad because it makes it hard to write model code that doesn’t have circular dependencies. As our application gets more complicated we will be relying more on models to manage this complexity, so we should make it easy, not hard to write them. It also means that most of our mocking was of the User model, not just the underlying JSON. So it would have been easy to introduce subtle bugs to the user model, because it wasn’t being comprehensively tested. A lot of the changed lines of code in this commit mean changing the tests to mock only the JSON, which means that the model layer gets implicitly tested. For those reasons this commit changes the user API client to return JSON, not an instance of `User` or other models.
2019-05-23 15:27:35 +01:00
from app.models.user import User
Have permissions decorators check user signed in Rather than force us to write the decorators in a specific order let’s just have one decorator call the other. This should make fewer lines of code, and fewer annoying test failures. It also means that the same way of raising a `401` (through the `current_app` method) is used everywhere.
2019-07-01 15:22:08 +01:00
from app.utils import user_is_gov_user, user_is_logged_in
Stop non-gov user seeing/changing email and add test
2016-10-28 11:45:05 +01:00
Work in progress.
2016-01-25 10:47:27 +00:00
NEW_EMAIL = 'new-email'
NEW_MOBILE = 'new-mob'
NEW_MOBILE_PASSWORD_CONFIRMED = 'new-mob-password-confirmed'
Extract user profile route into its own file
2016-01-12 09:52:00 +00:00
@main.route("/user-profile")
Have permissions decorators check user signed in Rather than force us to write the decorators in a specific order let’s just have one decorator call the other. This should make fewer lines of code, and fewer annoying test failures. It also means that the same way of raising a `401` (through the `current_app` method) is used everywhere.
2019-07-01 15:22:08 +01:00
@user_is_logged_in
Work in progress, all tests passing and implemented mocks for services_dao.
2016-01-15 17:46:09 +00:00
def user_profile():
Stop non-gov user seeing/changing email and add test
2016-10-28 11:45:05 +01:00
return render_template(
'views/user-profile.html',
Refactor government user check onto model
2018-12-12 12:29:08 +00:00
can_see_edit=current_user.is_gov_user,
Stop non-gov user seeing/changing email and add test
2016-10-28 11:45:05 +01:00
)
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
@main.route("/user-profile/name", methods=['GET', 'POST'])
Have permissions decorators check user signed in Rather than force us to write the decorators in a specific order let’s just have one decorator call the other. This should make fewer lines of code, and fewer annoying test failures. It also means that the same way of raising a `401` (through the `current_app` method) is used everywhere.
2019-07-01 15:22:08 +01:00
@user_is_logged_in
Work in progress, all tests passing and implemented mocks for services_dao.
2016-01-15 17:46:09 +00:00
def user_profile_name():
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
form = ChangeNameForm(new_name=current_user.name)
if form.validate_on_submit():
Make user API client return JSON, not a model The data flow of other bits of our application looks like this: ``` API (returns JSON) ⬇ API client (returns a built in type, usually `dict`) ⬇ Model (returns an instance, eg of type `Service`) ⬇ View (returns HTML) ``` The user API client was architected weirdly, in that it returned a model directly, like this: ``` API (returns JSON) ⬇ API client (returns a model, of type `User`, `InvitedUser`, etc) ⬇ View (returns HTML) ``` This mixing of different layers of the application is bad because it makes it hard to write model code that doesn’t have circular dependencies. As our application gets more complicated we will be relying more on models to manage this complexity, so we should make it easy, not hard to write them. It also means that most of our mocking was of the User model, not just the underlying JSON. So it would have been easy to introduce subtle bugs to the user model, because it wasn’t being comprehensively tested. A lot of the changed lines of code in this commit mean changing the tests to mock only the JSON, which means that the model layer gets implicitly tested. For those reasons this commit changes the user API client to return JSON, not an instance of `User` or other models.
2019-05-23 15:27:35 +01:00
current_user.update(name=form.new_name.data)
Work in progress, all tests passing and implemented mocks for services_dao.
2016-01-15 17:46:09 +00:00
return redirect(url_for('.user_profile'))
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
return render_template(
'views/user-profile/change.html',
thing='name',
form_field=form.new_name
)
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
@main.route("/user-profile/email", methods=['GET', 'POST'])
Have permissions decorators check user signed in Rather than force us to write the decorators in a specific order let’s just have one decorator call the other. This should make fewer lines of code, and fewer annoying test failures. It also means that the same way of raising a `401` (through the `current_app` method) is used everywhere.
2019-07-01 15:22:08 +01:00
@user_is_logged_in
Refactor gov user check into a decorator We quite often use it in the same way as `@user_has_permissions`.
2018-12-12 13:10:46 +00:00
@user_is_gov_user
Work in progress, all tests passing and implemented mocks for services_dao.
2016-01-15 17:46:09 +00:00
def user_profile_email():
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
Make user API client return JSON, not a model The data flow of other bits of our application looks like this: ``` API (returns JSON) ⬇ API client (returns a built in type, usually `dict`) ⬇ Model (returns an instance, eg of type `Service`) ⬇ View (returns HTML) ``` The user API client was architected weirdly, in that it returned a model directly, like this: ``` API (returns JSON) ⬇ API client (returns a model, of type `User`, `InvitedUser`, etc) ⬇ View (returns HTML) ``` This mixing of different layers of the application is bad because it makes it hard to write model code that doesn’t have circular dependencies. As our application gets more complicated we will be relying more on models to manage this complexity, so we should make it easy, not hard to write them. It also means that most of our mocking was of the User model, not just the underlying JSON. So it would have been easy to introduce subtle bugs to the user model, because it wasn’t being comprehensively tested. A lot of the changed lines of code in this commit mean changing the tests to mock only the JSON, which means that the model layer gets implicitly tested. For those reasons this commit changes the user API client to return JSON, not an instance of `User` or other models.
2019-05-23 15:27:35 +01:00
form = ChangeEmailForm(User.already_registered,
Working tests, hopefully all code changes done.
2016-01-27 12:22:32 +00:00
email_address=current_user.email_address)
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
if form.validate_on_submit():
Work in progress.
2016-01-25 10:47:27 +00:00
session[NEW_EMAIL] = form.email_address.data
Work in progress, all tests passing and implemented mocks for services_dao.
2016-01-15 17:46:09 +00:00
return redirect(url_for('.user_profile_email_authenticate'))
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
return render_template(
'views/user-profile/change.html',
thing='email address',
form_field=form.email_address
)
Add confirmation of password for important changes This commit adds an extra page or field for confirming your current password when making important changes Name | Email address | Mobile number | Password ---------------------|-------------------|-------------------|------------ No password required | As second page | As second page | On same page as new password
2016-01-12 11:25:46 +00:00
@main.route("/user-profile/email/authenticate", methods=['GET', 'POST'])
Have permissions decorators check user signed in Rather than force us to write the decorators in a specific order let’s just have one decorator call the other. This should make fewer lines of code, and fewer annoying test failures. It also means that the same way of raising a `401` (through the `current_app` method) is used everywhere.
2019-07-01 15:22:08 +01:00
@user_is_logged_in
Work in progress, all tests passing and implemented mocks for services_dao.
2016-01-15 17:46:09 +00:00
def user_profile_email_authenticate():
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
# Validate password for form
def _check_password(pwd):
Merging conflict with two_factor.py Fixed merge mistake with two_factor.py.
2016-03-30 09:58:10 +01:00
return user_api_client.verify_password(current_user.id, pwd)
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
form = ConfirmPasswordForm(_check_password)
Add confirmation of password for important changes This commit adds an extra page or field for confirming your current password when making important changes Name | Email address | Mobile number | Password ---------------------|-------------------|-------------------|------------ No password required | As second page | As second page | On same page as new password
2016-01-12 11:25:46 +00:00
Work in progress.
2016-01-25 10:47:27 +00:00
if NEW_EMAIL not in session:
return redirect('main.user_profile_email')
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
if form.validate_on_submit():
Send an email to the user when they change email address This PR changes the flow to change an email address. Once the user enter their password, they are told "Check your email". An email has been sent to them containing a link to notify which contains an encrypted token. The encrypted token contains the user id and new email address. Once the link is clicked the user's email address is updated to the new email address. They are redirected to the /user-profile page. Also in this commit is an update from flask.ext.login to flask_login.
2016-10-13 17:05:37 +01:00
user_api_client.send_change_email_verification(current_user.id, session[NEW_EMAIL])
return render_template('views/change-email-continue.html',
new_email=session[NEW_EMAIL])
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
return render_template(
Fixed bug where there was an error when try and change email. - it tried to send a verify code which no longer is applicable - one stage of process removed and tests update properly Flow is: - Change email - Confirm with password - Done
2016-09-28 09:34:16 +01:00
'views/user-profile/authenticate.html',
thing='email address',
form=form,
back_link=url_for('.user_profile_email')
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
)
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
Send an email to the user when they change email address This PR changes the flow to change an email address. Once the user enter their password, they are told "Check your email". An email has been sent to them containing a link to notify which contains an encrypted token. The encrypted token contains the user id and new email address. Once the link is clicked the user's email address is updated to the new email address. They are redirected to the /user-profile page. Also in this commit is an update from flask.ext.login to flask_login.
2016-10-13 17:05:37 +01:00
@main.route("/user-profile/email/confirm/<token>", methods=['GET'])
Have permissions decorators check user signed in Rather than force us to write the decorators in a specific order let’s just have one decorator call the other. This should make fewer lines of code, and fewer annoying test failures. It also means that the same way of raising a `401` (through the `current_app` method) is used everywhere.
2019-07-01 15:22:08 +01:00
@user_is_logged_in
Send an email to the user when they change email address This PR changes the flow to change an email address. Once the user enter their password, they are told "Check your email". An email has been sent to them containing a link to notify which contains an encrypted token. The encrypted token contains the user id and new email address. Once the link is clicked the user's email address is updated to the new email address. They are redirected to the /user-profile page. Also in this commit is an update from flask.ext.login to flask_login.
2016-10-13 17:05:37 +01:00
def user_profile_email_confirm(token):
token_data = check_token(token,
current_app.config['SECRET_KEY'],
current_app.config['DANGEROUS_SALT'],
current_app.config['EMAIL_EXPIRY_SECONDS'])
token_data = json.loads(token_data)
Make user API client return JSON, not a model The data flow of other bits of our application looks like this: ``` API (returns JSON) ⬇ API client (returns a built in type, usually `dict`) ⬇ Model (returns an instance, eg of type `Service`) ⬇ View (returns HTML) ``` The user API client was architected weirdly, in that it returned a model directly, like this: ``` API (returns JSON) ⬇ API client (returns a model, of type `User`, `InvitedUser`, etc) ⬇ View (returns HTML) ``` This mixing of different layers of the application is bad because it makes it hard to write model code that doesn’t have circular dependencies. As our application gets more complicated we will be relying more on models to manage this complexity, so we should make it easy, not hard to write them. It also means that most of our mocking was of the User model, not just the underlying JSON. So it would have been easy to introduce subtle bugs to the user model, because it wasn’t being comprehensively tested. A lot of the changed lines of code in this commit mean changing the tests to mock only the JSON, which means that the model layer gets implicitly tested. For those reasons this commit changes the user API client to return JSON, not an instance of `User` or other models.
2019-05-23 15:27:35 +01:00
user = User.from_id(token_data['user_id'])
user.update(email_address=token_data['email'])
Removed unused form. And used session.pop to remove NEW_EMAIL from the session. Also removed variable not being used in user_profile.
2016-10-14 14:46:31 +01:00
session.pop(NEW_EMAIL, None)
Send an email to the user when they change email address This PR changes the flow to change an email address. Once the user enter their password, they are told "Check your email". An email has been sent to them containing a link to notify which contains an encrypted token. The encrypted token contains the user id and new email address. Once the link is clicked the user's email address is updated to the new email address. They are redirected to the /user-profile page. Also in this commit is an update from flask.ext.login to flask_login.
2016-10-13 17:05:37 +01:00
return redirect(url_for('.user_profile'))
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
@main.route("/user-profile/mobile-number", methods=['GET', 'POST'])
Have permissions decorators check user signed in Rather than force us to write the decorators in a specific order let’s just have one decorator call the other. This should make fewer lines of code, and fewer annoying test failures. It also means that the same way of raising a `401` (through the `current_app` method) is used everywhere.
2019-07-01 15:22:08 +01:00
@user_is_logged_in
Work in progress, all tests passing and implemented mocks for services_dao.
2016-01-15 17:46:09 +00:00
def user_profile_mobile_number():
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
form = ChangeMobileNumberForm(mobile_number=current_user.mobile_number)
if form.validate_on_submit():
Work in progress.
2016-01-25 10:47:27 +00:00
session[NEW_MOBILE] = form.mobile_number.data
Work in progress, all tests passing and implemented mocks for services_dao.
2016-01-15 17:46:09 +00:00
return redirect(url_for('.user_profile_mobile_number_authenticate'))
Add confirmation of password for important changes This commit adds an extra page or field for confirming your current password when making important changes Name | Email address | Mobile number | Password ---------------------|-------------------|-------------------|------------ No password required | As second page | As second page | On same page as new password
2016-01-12 11:25:46 +00:00
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
return render_template(
'views/user-profile/change.html',
thing='mobile number',
form_field=form.mobile_number
)
Add confirmation of password for important changes This commit adds an extra page or field for confirming your current password when making important changes Name | Email address | Mobile number | Password ---------------------|-------------------|-------------------|------------ No password required | As second page | As second page | On same page as new password
2016-01-12 11:25:46 +00:00
@main.route("/user-profile/mobile-number/authenticate", methods=['GET', 'POST'])
Have permissions decorators check user signed in Rather than force us to write the decorators in a specific order let’s just have one decorator call the other. This should make fewer lines of code, and fewer annoying test failures. It also means that the same way of raising a `401` (through the `current_app` method) is used everywhere.
2019-07-01 15:22:08 +01:00
@user_is_logged_in
Work in progress, all tests passing and implemented mocks for services_dao.
2016-01-15 17:46:09 +00:00
def user_profile_mobile_number_authenticate():
Add confirmation of password for important changes This commit adds an extra page or field for confirming your current password when making important changes Name | Email address | Mobile number | Password ---------------------|-------------------|-------------------|------------ No password required | As second page | As second page | On same page as new password
2016-01-12 11:25:46 +00:00
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
# Validate password for form
def _check_password(pwd):
Merging conflict with two_factor.py Fixed merge mistake with two_factor.py.
2016-03-30 09:58:10 +01:00
return user_api_client.verify_password(current_user.id, pwd)
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
form = ConfirmPasswordForm(_check_password)
Add confirmation of password for important changes This commit adds an extra page or field for confirming your current password when making important changes Name | Email address | Mobile number | Password ---------------------|-------------------|-------------------|------------ No password required | As second page | As second page | On same page as new password
2016-01-12 11:25:46 +00:00
Work in progress.
2016-01-25 10:47:27 +00:00
if NEW_MOBILE not in session:
return redirect(url_for('.user_profile_mobile_number'))
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
if form.validate_on_submit():
Work in progress.
2016-01-25 10:47:27 +00:00
session[NEW_MOBILE_PASSWORD_CONFIRMED] = True
Make user API client return JSON, not a model The data flow of other bits of our application looks like this: ``` API (returns JSON) ⬇ API client (returns a built in type, usually `dict`) ⬇ Model (returns an instance, eg of type `Service`) ⬇ View (returns HTML) ``` The user API client was architected weirdly, in that it returned a model directly, like this: ``` API (returns JSON) ⬇ API client (returns a model, of type `User`, `InvitedUser`, etc) ⬇ View (returns HTML) ``` This mixing of different layers of the application is bad because it makes it hard to write model code that doesn’t have circular dependencies. As our application gets more complicated we will be relying more on models to manage this complexity, so we should make it easy, not hard to write them. It also means that most of our mocking was of the User model, not just the underlying JSON. So it would have been easy to introduce subtle bugs to the user model, because it wasn’t being comprehensively tested. A lot of the changed lines of code in this commit mean changing the tests to mock only the JSON, which means that the model layer gets implicitly tested. For those reasons this commit changes the user API client to return JSON, not an instance of `User` or other models.
2019-05-23 15:27:35 +01:00
current_user.send_verify_code(to=session[NEW_MOBILE])
Work in progress, all tests passing and implemented mocks for services_dao.
2016-01-15 17:46:09 +00:00
return redirect(url_for('.user_profile_mobile_number_confirm'))
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
return render_template(
'views/user-profile/authenticate.html',
thing='mobile number',
form=form,
back_link=url_for('.user_profile_mobile_number_confirm')
)
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
@main.route("/user-profile/mobile-number/confirm", methods=['GET', 'POST'])
Have permissions decorators check user signed in Rather than force us to write the decorators in a specific order let’s just have one decorator call the other. This should make fewer lines of code, and fewer annoying test failures. It also means that the same way of raising a `401` (through the `current_app` method) is used everywhere.
2019-07-01 15:22:08 +01:00
@user_is_logged_in
Work in progress, all tests passing and implemented mocks for services_dao.
2016-01-15 17:46:09 +00:00
def user_profile_mobile_number_confirm():
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
Working tests, hopefully all code changes done.
2016-01-27 12:22:32 +00:00
# Validate verify code for form
def _check_code(cde):
Merging conflict with two_factor.py Fixed merge mistake with two_factor.py.
2016-03-30 09:58:10 +01:00
return user_api_client.check_verify_code(current_user.id, cde, 'sms')
Working tests, hopefully all code changes done.
2016-01-27 12:22:32 +00:00
if NEW_MOBILE_PASSWORD_CONFIRMED not in session:
return redirect(url_for('.user_profile_mobile_number'))
Remove `ConfirmMobileNumberForm` It’s exactly the same code as `TwoFactorForm` was.
2018-05-07 22:53:36 +01:00
form = TwoFactorForm(_check_code)
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
if form.validate_on_submit():
Make user API client return JSON, not a model The data flow of other bits of our application looks like this: ``` API (returns JSON) ⬇ API client (returns a built in type, usually `dict`) ⬇ Model (returns an instance, eg of type `Service`) ⬇ View (returns HTML) ``` The user API client was architected weirdly, in that it returned a model directly, like this: ``` API (returns JSON) ⬇ API client (returns a model, of type `User`, `InvitedUser`, etc) ⬇ View (returns HTML) ``` This mixing of different layers of the application is bad because it makes it hard to write model code that doesn’t have circular dependencies. As our application gets more complicated we will be relying more on models to manage this complexity, so we should make it easy, not hard to write them. It also means that most of our mocking was of the User model, not just the underlying JSON. So it would have been easy to introduce subtle bugs to the user model, because it wasn’t being comprehensively tested. A lot of the changed lines of code in this commit mean changing the tests to mock only the JSON, which means that the model layer gets implicitly tested. For those reasons this commit changes the user API client to return JSON, not an instance of `User` or other models.
2019-05-23 15:27:35 +01:00
current_user.refresh_session_id()
Stop passing the 'whole' user object when making changes to profile
2016-11-03 11:20:24 +00:00
mobile_number = session[NEW_MOBILE]
Work in progress.
2016-01-25 10:47:27 +00:00
del session[NEW_MOBILE]
del session[NEW_MOBILE_PASSWORD_CONFIRMED]
Make user API client return JSON, not a model The data flow of other bits of our application looks like this: ``` API (returns JSON) ⬇ API client (returns a built in type, usually `dict`) ⬇ Model (returns an instance, eg of type `Service`) ⬇ View (returns HTML) ``` The user API client was architected weirdly, in that it returned a model directly, like this: ``` API (returns JSON) ⬇ API client (returns a model, of type `User`, `InvitedUser`, etc) ⬇ View (returns HTML) ``` This mixing of different layers of the application is bad because it makes it hard to write model code that doesn’t have circular dependencies. As our application gets more complicated we will be relying more on models to manage this complexity, so we should make it easy, not hard to write them. It also means that most of our mocking was of the User model, not just the underlying JSON. So it would have been easy to introduce subtle bugs to the user model, because it wasn’t being comprehensively tested. A lot of the changed lines of code in this commit mean changing the tests to mock only the JSON, which means that the model layer gets implicitly tested. For those reasons this commit changes the user API client to return JSON, not an instance of `User` or other models.
2019-05-23 15:27:35 +01:00
current_user.update(mobile_number=mobile_number)
Work in progress, all tests passing and implemented mocks for services_dao.
2016-01-15 17:46:09 +00:00
return redirect(url_for('.user_profile'))
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
return render_template(
'views/user-profile/confirm.html',
form_field=form.sms_code,
thing='mobile number'
)
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
@main.route("/user-profile/password", methods=['GET', 'POST'])
Have permissions decorators check user signed in Rather than force us to write the decorators in a specific order let’s just have one decorator call the other. This should make fewer lines of code, and fewer annoying test failures. It also means that the same way of raising a `401` (through the `current_app` method) is used everywhere.
2019-07-01 15:22:08 +01:00
@user_is_logged_in
Work in progress, all tests passing and implemented mocks for services_dao.
2016-01-15 17:46:09 +00:00
def user_profile_password():
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
Working tests, hopefully all code changes done.
2016-01-27 12:22:32 +00:00
# Validate password for form
def _check_password(pwd):
Merging conflict with two_factor.py Fixed merge mistake with two_factor.py.
2016-03-30 09:58:10 +01:00
return user_api_client.verify_password(current_user.id, pwd)
Working tests, hopefully all code changes done.
2016-01-27 12:22:32 +00:00
form = ChangePasswordForm(_check_password)
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
if form.validate_on_submit():
Update password on user profile with new endpoint
2017-02-07 13:32:20 +00:00
user_api_client.update_password(current_user.id, password=form.new_password.data)
Work in progress, all tests passing and implemented mocks for services_dao.
2016-01-15 17:46:09 +00:00
return redirect(url_for('.user_profile'))
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
return render_template(
'views/user-profile/change-password.html',
form=form
)
add option to suppress platform admin temporarily so that platform admins (us) can view pages as regular users do easily. Simply adds a flag in the session cookie that overrides the actual platform admin flag on the user model if set. This way it's safe, since this only downgrades existing functionality, so if someone managed to alter it they could only get less permissions, not more. You can change this value from the user profile page if either: * you're a platform admin * the flag is set (to any value) on the cookie. This slightly weird check means that we don't check the underlying `user._platform_admin` flag anywhere in the code, even when toggling the suppression.
2019-06-13 19:00:17 +01:00
change wording of platform admin toggle to positive rather than negative CHS Approved Wording :+1: also rename suppress_platform_admin -> disable_platform_admin_view in the backend, as suppress is a kinda weird word.
2019-06-14 12:32:47 +01:00
@main.route("/user-profile/disable-platform-admin-view", methods=['GET', 'POST'])
Have permissions decorators check user signed in Rather than force us to write the decorators in a specific order let’s just have one decorator call the other. This should make fewer lines of code, and fewer annoying test failures. It also means that the same way of raising a `401` (through the `current_app` method) is used everywhere.
2019-07-01 15:22:08 +01:00
@user_is_logged_in
change wording of platform admin toggle to positive rather than negative CHS Approved Wording :+1: also rename suppress_platform_admin -> disable_platform_admin_view in the backend, as suppress is a kinda weird word.
2019-06-14 12:32:47 +01:00
def user_profile_disable_platform_admin_view():
if not current_user.platform_admin and not session.get('disable_platform_admin_view'):
add option to suppress platform admin temporarily so that platform admins (us) can view pages as regular users do easily. Simply adds a flag in the session cookie that overrides the actual platform admin flag on the user model if set. This way it's safe, since this only downgrades existing functionality, so if someone managed to alter it they could only get less permissions, not more. You can change this value from the user profile page if either: * you're a platform admin * the flag is set (to any value) on the cookie. This slightly weird check means that we don't check the underlying `user._platform_admin` flag anywhere in the code, even when toggling the suppression.
2019-06-13 19:00:17 +01:00
abort(403)
form = ServiceOnOffSettingForm(
change wording of platform admin toggle to positive rather than negative CHS Approved Wording :+1: also rename suppress_platform_admin -> disable_platform_admin_view in the backend, as suppress is a kinda weird word.
2019-06-14 12:32:47 +01:00
name="Signing in again clears this setting",
enabled=not session.get('disable_platform_admin_view'),
truthy='Yes',
falsey='No',
add option to suppress platform admin temporarily so that platform admins (us) can view pages as regular users do easily. Simply adds a flag in the session cookie that overrides the actual platform admin flag on the user model if set. This way it's safe, since this only downgrades existing functionality, so if someone managed to alter it they could only get less permissions, not more. You can change this value from the user profile page if either: * you're a platform admin * the flag is set (to any value) on the cookie. This slightly weird check means that we don't check the underlying `user._platform_admin` flag anywhere in the code, even when toggling the suppression.
2019-06-13 19:00:17 +01:00
)
if form.validate_on_submit():
change wording of platform admin toggle to positive rather than negative CHS Approved Wording :+1: also rename suppress_platform_admin -> disable_platform_admin_view in the backend, as suppress is a kinda weird word.
2019-06-14 12:32:47 +01:00
session['disable_platform_admin_view'] = not form.enabled.data
add option to suppress platform admin temporarily so that platform admins (us) can view pages as regular users do easily. Simply adds a flag in the session cookie that overrides the actual platform admin flag on the user model if set. This way it's safe, since this only downgrades existing functionality, so if someone managed to alter it they could only get less permissions, not more. You can change this value from the user profile page if either: * you're a platform admin * the flag is set (to any value) on the cookie. This slightly weird check means that we don't check the underlying `user._platform_admin` flag anywhere in the code, even when toggling the suppression.
2019-06-13 19:00:17 +01:00
return redirect(url_for('.user_profile'))
return render_template(
change wording of platform admin toggle to positive rather than negative CHS Approved Wording :+1: also rename suppress_platform_admin -> disable_platform_admin_view in the backend, as suppress is a kinda weird word.
2019-06-14 12:32:47 +01:00
'views/user-profile/disable-platform-admin-view.html',
add option to suppress platform admin temporarily so that platform admins (us) can view pages as regular users do easily. Simply adds a flag in the session cookie that overrides the actual platform admin flag on the user model if set. This way it's safe, since this only downgrades existing functionality, so if someone managed to alter it they could only get less permissions, not more. You can change this value from the user profile page if either: * you're a platform admin * the flag is set (to any value) on the cookie. This slightly weird check means that we don't check the underlying `user._platform_admin` flag anywhere in the code, even when toggling the suppression.
2019-06-13 19:00:17 +01:00
form=form
)
Reference in New Issue Copy Permalink