app/main/views/invites.py

from flask import abort, flash, redirect, render_template, session, url_for
from flask_login import current_user
from markupsafe import Markup
from notifications_python_client.errors import HTTPError

from app import (
    invite_api_client,
    org_invite_api_client,
    organisations_client,
    service_api_client,
    user_api_client,
)
from app.main import main


@main.route("/invitation/<token>")
def accept_invite(token):
    try:
        invited_user = invite_api_client.check_token(token)
    except HTTPError as e:
        if e.status_code == 400 and 'invitation' in e.message:
            flash(e.message['invitation'])
            return redirect(url_for('main.sign_in'))
        else:
            raise e

    if not current_user.is_anonymous and current_user.email_address.lower() != invited_user.email_address.lower():
        message = Markup("""
            You’re signed in as {}.
            This invite is for another email address.
            <a href={}>Sign out</a> and click the link again to accept this invite.
            """.format(
            current_user.email_address,
            url_for("main.sign_out", _external=True)))

        flash(message=message)

        abort(403)

    if invited_user.status == 'cancelled':
        from_user = user_api_client.get_user(invited_user.from_user)
        service = service_api_client.get_service(invited_user.service)['data']
        return render_template('views/cancelled-invitation.html',
                               from_user=from_user.name,
                               service_name=service['name'])

    if invited_user.status == 'accepted':
        session.pop('invited_user', None)
        return redirect(url_for('main.service_dashboard', service_id=invited_user.service))

    session['invited_user'] = invited_user.serialize()

    existing_user = user_api_client.get_user_by_email_or_none(invited_user.email_address)
    service_users = user_api_client.get_users_for_service(invited_user.service)

    if existing_user:
        invite_api_client.accept_invite(invited_user.service, invited_user.id)
        if existing_user in service_users:
            return redirect(url_for('main.service_dashboard', service_id=invited_user.service))
        else:
            service = service_api_client.get_service(invited_user.service)['data']
            # if the service you're being added to can modify auth type, then check if this is relevant
            if 'email_auth' in service['permissions'] and (
                    # they have a phone number, we want them to start using it. if they dont have a mobile we just
                    # ignore that option of the invite
                    (existing_user.mobile_number and invited_user.auth_type == 'sms_auth') or
                    # we want them to start sending emails. it's always valid, so lets always update
                    invited_user.auth_type == 'email_auth'
            ):
                user_api_client.update_user_attribute(existing_user.id, auth_type=invited_user.auth_type)
            user_api_client.add_user_to_service(invited_user.service,
                                                existing_user.id,
                                                invited_user.permissions)
            return redirect(url_for('main.service_dashboard', service_id=invited_user.service))
    else:
        return redirect(url_for('main.register_from_invite'))


@main.route("/organisation-invitation/<token>")
def accept_org_invite(token):
    invited_org_user = org_invite_api_client.check_token(token)
    if not current_user.is_anonymous and current_user.email_address.lower() != invited_org_user.email_address.lower():
        message = Markup("""
            You’re signed in as {}.
            This invite is for another email address.
            <a href={}>Sign out</a> and click the link again to accept this invite.
            """.format(
            current_user.email_address,
            url_for("main.sign_out", _external=True)))

        flash(message=message)

        abort(403)

    if invited_org_user.status == 'cancelled':
        invited_by = user_api_client.get_user(invited_org_user.invited_by)
        organisation = organisations_client.get_organisation(invited_org_user.organisation)
        return render_template('views/cancelled-invitation.html',
                               from_user=invited_by.name,
                               organisation_name=organisation['name'])

    if invited_org_user.status == 'accepted':
        session.pop('invited_org_user', None)
        return redirect(url_for('main.organisation_dashboard', org_id=invited_org_user.organisation))

    session['invited_org_user'] = invited_org_user.serialize()

    existing_user = user_api_client.get_user_by_email_or_none(invited_org_user.email_address)
    organisation_users = user_api_client.get_users_for_organisation(invited_org_user.organisation)

    if existing_user:
        org_invite_api_client.accept_invite(invited_org_user.organisation, invited_org_user.id)
        if existing_user not in organisation_users:
            user_api_client.add_user_to_organisation(invited_org_user.organisation, existing_user.id)
        return redirect(url_for('main.organisation_dashboard', org_id=invited_org_user.organisation))
    else:
        return redirect(url_for('main.register_from_org_invite'))
-												Enforce order and style of imports

Done using isort[1], with the following command:
```
isort -rc ./app ./tests
```

Adds linting to the `run_tests.sh` script to stop badly-sorted imports
getting re-introduced.

Chosen style is ‘Vertical Hanging Indent’ with trailing commas, because
I think it gives the cleanest diffs, eg:
```
from third_party import (
    lib1,
    lib2,
    lib3,
    lib4,
)
```

1. https://pypi.python.org/pypi/isort

											
										
										
											2018-02-20 11:22:17 +00:00
+								from flask import abort, flash, redirect, render_template, session, url_for
-												make sure invite tokens still check token on admin for error handler to kick in

											
										
										
											2017-11-01 16:02:05 +00:00
+								from flask_login import current_user
-												Enforce order and style of imports

Done using isort[1], with the following command:
```
isort -rc ./app ./tests
```

Adds linting to the `run_tests.sh` script to stop badly-sorted imports
getting re-introduced.

Chosen style is ‘Vertical Hanging Indent’ with trailing commas, because
I think it gives the cleanest diffs, eg:
```
from third_party import (
    lib1,
    lib2,
    lib3,
    lib4,
)
```

1. https://pypi.python.org/pypi/isort

											
										
										
											2018-02-20 11:22:17 +00:00
+								from markupsafe import Markup
-												add catch for http error on invite token check

											
										
										
											2018-03-08 12:47:24 +00:00
+								from notifications_python_client.errors import HTTPError
-												Changed registration flow to first send email verification link that
when visited sends sms code for second step of account verification.

At that second step user enters just sms code sent to users mobile
number.

Also moved dao calls that simply proxied calls to client to calling
client directly.

There is still a place where a user will be a sent a code for
verification to their email namely if they update email address.

											
										
										
											2016-03-17 13:07:52 +00:00
-												[WIP] Start of user accepting invite.
This commit only deals with acceptance by
users who are already in system.

Changed invite client to return invited user objects
instead of dictionaries.

Added commented out test. fixed up fixtures to return invited user
object for invites

											
										
										
											2016-02-29 17:35:21 +00:00
+								from app import (
 								    invite_api_client,
-												invite-team-members

											
										
										
											2018-02-19 16:53:29 +00:00
+								    org_invite_api_client,
 								    organisations_client,
-												Enforce order and style of imports

Done using isort[1], with the following command:
```
isort -rc ./app ./tests
```

Adds linting to the `run_tests.sh` script to stop badly-sorted imports
getting re-introduced.

Chosen style is ‘Vertical Hanging Indent’ with trailing commas, because
I think it gives the cleanest diffs, eg:
```
from third_party import (
    lib1,
    lib2,
    lib3,
    lib4,
)
```

1. https://pypi.python.org/pypi/isort

											
										
										
											2018-02-20 11:22:17 +00:00
+								    service_api_client,
 								    user_api_client,
-												[WIP] Start of user accepting invite.
This commit only deals with acceptance by
users who are already in system.

Changed invite client to return invited user objects
instead of dictionaries.

Added commented out test. fixed up fixtures to return invited user
object for invites

											
										
										
											2016-02-29 17:35:21 +00:00
+								)
-												Enforce order and style of imports

Done using isort[1], with the following command:
```
isort -rc ./app ./tests
```

Adds linting to the `run_tests.sh` script to stop badly-sorted imports
getting re-introduced.

Chosen style is ‘Vertical Hanging Indent’ with trailing commas, because
I think it gives the cleanest diffs, eg:
```
from third_party import (
    lib1,
    lib2,
    lib3,
    lib4,
)
```

1. https://pypi.python.org/pypi/isort

											
										
										
											2018-02-20 11:22:17 +00:00
+								from app.main import main
-												[WIP] Start of user accepting invite.
This commit only deals with acceptance by
users who are already in system.

Changed invite client to return invited user objects
instead of dictionaries.

Added commented out test. fixed up fixtures to return invited user
object for invites

											
										
										
											2016-02-29 17:35:21 +00:00
 								@main.route("/invitation/<token>")
 								def accept_invite(token):
-												add catch for http error on invite token check

											
										
										
											2018-03-08 12:47:24 +00:00
+								    try:
 								        invited_user = invite_api_client.check_token(token)
 								    except HTTPError as e:
 								        if e.status_code == 400 and 'invitation' in e.message:
 								            flash(e.message['invitation'])
 								            return redirect(url_for('main.sign_in'))
 								        else:
 								            raise e
-												Merge branch 'master' into error-handling

Conflicts:
	app/main/views/invites.py

											
										
										
											2016-03-10 15:03:21 +00:00
-												Make email addresses case insensitive when inviting users to services

Email addresses in invites should be case insensitive. This is to stop
the bug where a user creates their account using a lower case email
address (e.g. user1@gov.uk), but is then invited to a service using
their email address in a different case (e.g. USER1.gov.uk) and sees
an error message telling them that they can't accept an invite for a
different email address.

											
										
										
											2017-12-21 16:42:16 +00:00
+								    if not current_user.is_anonymous and current_user.email_address.lower() != invited_user.email_address.lower():
-												Wrap message in Markup

											
										
										
											2016-04-26 12:12:47 +01:00
+								        message = Markup("""
-												More helpful error when signed in an accept invite

											
										
										
											2016-04-07 15:03:36 +01:00
+								            You’re signed in as {}.
 								            This invite is for another email address.
-												Missed the anchor tag in the mark up - oops.

											
										
										
											2016-04-26 12:15:25 +01:00
+								            <a href={}>Sign out</a> and click the link again to accept this invite.
-												Wrap message in Markup

											
										
										
											2016-04-26 12:12:47 +01:00
+								            """.format(
-												More helpful error when signed in an accept invite

											
										
										
											2016-04-07 15:03:36 +01:00
+								            current_user.email_address,
-												Wrap message in Markup

											
										
										
											2016-04-26 12:12:47 +01:00
+								            url_for("main.sign_out", _external=True)))
 								        flash(message=message)
-												Removed some un needed flash messages raised as bugs.

In the process found a couple of edge cases of incorrect
use of invitation links by other users which are now
handled.

											
										
										
											2016-03-30 16:16:34 +01:00
+								        abort(403)
-												Refactored register_errorhandlers so that it handles HTTPError
Remove most cases where we catch HTTPError

											
										
										
											2016-03-10 11:53:29 +00:00
+								    if invited_user.status == 'cancelled':
 								        from_user = user_api_client.get_user(invited_user.from_user)
-												Merge with master.

											
										
										
											2016-03-29 22:50:40 +01:00
+								        service = service_api_client.get_service(invited_user.service)['data']
-												Refactored register_errorhandlers so that it handles HTTPError
Remove most cases where we catch HTTPError

											
										
										
											2016-03-10 11:53:29 +00:00
+								        return render_template('views/cancelled-invitation.html',
 								                               from_user=from_user.name,
 								                               service_name=service['name'])
-												Merge branch 'master' into error-handling

Conflicts:
	app/main/views/invites.py

											
										
										
											2016-03-10 15:03:21 +00:00
+								    if invited_user.status == 'accepted':
 								        session.pop('invited_user', None)
 								        return redirect(url_for('main.service_dashboard', service_id=invited_user.service))
-												Refactored register_errorhandlers so that it handles HTTPError
Remove most cases where we catch HTTPError

											
										
										
											2016-03-10 11:53:29 +00:00
+								    session['invited_user'] = invited_user.serialize()
-												    Do not throw 404 if email address is not found on sign in.

    https://www.pivotaltracker.com/story/show/115947639

											
										
										
											2016-03-21 11:48:16 +00:00
+								    existing_user = user_api_client.get_user_by_email_or_none(invited_user.email_address)
-												Additional check needed to see if user was already a user for the
service that they were invited to.

											
										
										
											2016-03-15 15:32:30 +00:00
+								    service_users = user_api_client.get_users_for_service(invited_user.service)
 								    if existing_user:
-												Change when invite gets marked as accepeted.

											
										
										
											2016-06-08 11:52:26 +01:00
+								        invite_api_client.accept_invite(invited_user.service, invited_user.id)
-												Additional check needed to see if user was already a user for the
service that they were invited to.

											
										
										
											2016-03-15 15:32:30 +00:00
+								        if existing_user in service_users:
 								            return redirect(url_for('main.service_dashboard', service_id=invited_user.service))
 								        else:
-												clean up logic around existing users accepting invites

* if the service issuing the invite does not have permission to edit
  auth types, don't let them do anything. This will stop them turning
  existing email_auth users back to sms auth
* if the user hasn't got a mobile number, but the invite is for sms
  login, don't do anything either. They won't have a phone number if
  they signed up via an email_auth invite previously.

in these cases, we accept the invite and add the user to the service
as normal, however, just don't update the user's auth type.

											
										
										
											2017-11-15 17:19:32 +00:00
+								            service = service_api_client.get_service(invited_user.service)['data']
 								            # if the service you're being added to can modify auth type, then check if this is relevant
 								            if 'email_auth' in service['permissions'] and (
 								                    # they have a phone number, we want them to start using it. if they dont have a mobile we just
 								                    # ignore that option of the invite
 								                    (existing_user.mobile_number and invited_user.auth_type == 'sms_auth') or
 								                    # we want them to start sending emails. it's always valid, so lets always update
 								                    invited_user.auth_type == 'email_auth'
 								            ):
-												fix logged in user not having auth type set from invite

											
										
										
											2017-11-15 14:59:03 +00:00
+								                user_api_client.update_user_attribute(existing_user.id, auth_type=invited_user.auth_type)
-												Additional check needed to see if user was already a user for the
service that they were invited to.

											
										
										
											2016-03-15 15:32:30 +00:00
+								            user_api_client.add_user_to_service(invited_user.service,
 								                                                existing_user.id,
 								                                                invited_user.permissions)
 								            return redirect(url_for('main.service_dashboard', service_id=invited_user.service))
-												Refactored register_errorhandlers so that it handles HTTPError
Remove most cases where we catch HTTPError

											
										
										
											2016-03-10 11:53:29 +00:00
+								    else:
 								        return redirect(url_for('main.register_from_invite'))
-												invite-team-members

											
										
										
											2018-02-19 16:53:29 +00:00
 								@main.route("/organisation-invitation/<token>")
 								def accept_org_invite(token):
 								    invited_org_user = org_invite_api_client.check_token(token)
 								    if not current_user.is_anonymous and current_user.email_address.lower() != invited_org_user.email_address.lower():
 								        message = Markup("""
 								            You’re signed in as {}.
 								            This invite is for another email address.
 								            <a href={}>Sign out</a> and click the link again to accept this invite.
 								            """.format(
 								            current_user.email_address,
 								            url_for("main.sign_out", _external=True)))
 								        flash(message=message)
 								        abort(403)
 								    if invited_org_user.status == 'cancelled':
 								        invited_by = user_api_client.get_user(invited_org_user.invited_by)
 								        organisation = organisations_client.get_organisation(invited_org_user.organisation)
 								        return render_template('views/cancelled-invitation.html',
 								                               from_user=invited_by.name,
 								                               organisation_name=organisation['name'])
 								    if invited_org_user.status == 'accepted':
 								        session.pop('invited_org_user', None)
 								        return redirect(url_for('main.organisation_dashboard', org_id=invited_org_user.organisation))
 								    session['invited_org_user'] = invited_org_user.serialize()
 								    existing_user = user_api_client.get_user_by_email_or_none(invited_org_user.email_address)
 								    organisation_users = user_api_client.get_users_for_organisation(invited_org_user.organisation)
 								    if existing_user:
 								        org_invite_api_client.accept_invite(invited_org_user.organisation, invited_org_user.id)
 								        if existing_user not in organisation_users:
 								            user_api_client.add_user_to_organisation(invited_org_user.organisation, existing_user.id)
 								        return redirect(url_for('main.organisation_dashboard', org_id=invited_org_user.organisation))
 								    else:
 								        return redirect(url_for('main.register_from_org_invite'))