app/main/views/new_password.py

import json
from datetime import datetime

from flask import (
    current_app,
    flash,
    redirect,
    render_template,
    session,
    url_for,
)
from itsdangerous import SignatureExpired
from notifications_utils.url_safe_token import check_token

from app import user_api_client
from app.main import main
from app.main.forms import NewPasswordForm
from app.main.views.two_factor import log_in_user


@main.route('/new-password/<path:token>', methods=['GET', 'POST'])
def new_password(token):
    try:
        token_data = check_token(token, current_app.config['SECRET_KEY'], current_app.config['DANGEROUS_SALT'],
                                 current_app.config['EMAIL_EXPIRY_SECONDS'])
    except SignatureExpired:
        flash('The link in the email we sent you has expired. Enter your email address to resend.')
        return redirect(url_for('.forgot_password'))

    email_address = json.loads(token_data)['email']
    user = user_api_client.get_user_by_email(email_address)
    if user.password_changed_at and datetime.strptime(user.password_changed_at, '%Y-%m-%d %H:%M:%S.%f') > \
            datetime.strptime(json.loads(token_data)['created_at'], '%Y-%m-%d %H:%M:%S.%f'):
        flash('The link in the email has already been used')
        return redirect(url_for('main.index'))

    form = NewPasswordForm()

    if form.validate_on_submit():
        user_api_client.reset_failed_login_count(user.id)
        session['user_details'] = {
            'id': user.id,
            'email': user.email_address,
            'password': form.new_password.data}
        if user.auth_type == 'email_auth':
            # they've just clicked an email link, so have done an email auth journey anyway. Just log them in.
            return log_in_user(user.id)
        else:
            # send user a 2fa sms code
            user_api_client.send_verify_code(user.id, 'sms', user.mobile_number)
            return redirect(url_for('main.two_factor'))
    else:
        return render_template('views/new-password.html', token=token, form=form, user=user)
Re-implement forgot password 2016-03-07 18:18:52 +00:00			`import json`
Enforce order and style of imports Done using isort[1], with the following command: ``` isort -rc ./app ./tests ``` Adds linting to the `run_tests.sh` script to stop badly-sorted imports getting re-introduced. Chosen style is ‘Vertical Hanging Indent’ with trailing commas, because I think it gives the cleanest diffs, eg: ``` from third_party import ( lib1, lib2, lib3, lib4, ) ``` 1. https://pypi.python.org/pypi/isort 2018-02-20 11:22:17 +00:00			`from datetime import datetime`
Re-implement forgot password 2016-03-07 18:18:52 +00:00
Enforce order and style of imports Done using isort[1], with the following command: ``` isort -rc ./app ./tests ``` Adds linting to the `run_tests.sh` script to stop badly-sorted imports getting re-introduced. Chosen style is ‘Vertical Hanging Indent’ with trailing commas, because I think it gives the cleanest diffs, eg: ``` from third_party import ( lib1, lib2, lib3, lib4, ) ``` 1. https://pypi.python.org/pypi/isort 2018-02-20 11:22:17 +00:00			`from flask import (`
			`current_app,`
			`flash,`
			`redirect,`
			`render_template,`
			`session,`
			`url_for,`
			`)`
Re-implement forgot password 2016-03-07 18:18:52 +00:00			`from itsdangerous import SignatureExpired`
don't hit API when checking new account email-token we currently store new account email verify tokens in the database, and check against that to work out if they've expired. But we don't need to do that, tokens have their own timing mechanism. So lets just use that, and free up the database to do other things. Also, standardised the forgot password, change email, and new account email verification timeouts to all be an hour, from the config val 'EMAIL_EXPIRY_SECONDS' 2017-11-01 14:39:14 +00:00			`from notifications_utils.url_safe_token import check_token`
Completion of forgot-password endpoints. Start implementation for new-password endpoints. Created PasswordResetToken model ToDo: create and save token, send valid url to user, check validity of token, update user's password, redirect to /two-factor. 2016-01-05 17:52:09 +00:00
don't hit API when checking new account email-token we currently store new account email verify tokens in the database, and check against that to work out if they've expired. But we don't need to do that, tokens have their own timing mechanism. So lets just use that, and free up the database to do other things. Also, standardised the forgot password, change email, and new account email verification timeouts to all be an hour, from the config val 'EMAIL_EXPIRY_SECONDS' 2017-11-01 14:39:14 +00:00			`from app import user_api_client`
Completion of forgot-password endpoints. Start implementation for new-password endpoints. Created PasswordResetToken model ToDo: create and save token, send valid url to user, check validity of token, update user's password, redirect to /two-factor. 2016-01-05 17:52:09 +00:00			`from app.main import main`
New-password endpoints are implemented. There should be a better way to validate the token. 2016-01-06 17:37:07 +00:00			`from app.main.forms import NewPasswordForm`
ensure that email auth users dont get 2fa codes when resetting passwords 2017-11-28 15:25:29 +00:00			`from app.main.views.two_factor import log_in_user`
New-password endpoints are implemented. There should be a better way to validate the token. 2016-01-06 17:37:07 +00:00
Completion of forgot-password endpoints. Start implementation for new-password endpoints. Created PasswordResetToken model ToDo: create and save token, send valid url to user, check validity of token, update user's password, redirect to /two-factor. 2016-01-05 17:52:09 +00:00
New-password endpoints are implemented. There should be a better way to validate the token. 2016-01-06 17:37:07 +00:00			`@main.route('/new-password/<path:token>', methods=['GET', 'POST'])`
			`def new_password(token):`
Re-implement forgot password 2016-03-07 18:18:52 +00:00			`try:`
			`token_data = check_token(token, current_app.config['SECRET_KEY'], current_app.config['DANGEROUS_SALT'],`
don't hit API when checking new account email-token we currently store new account email verify tokens in the database, and check against that to work out if they've expired. But we don't need to do that, tokens have their own timing mechanism. So lets just use that, and free up the database to do other things. Also, standardised the forgot password, change email, and new account email verification timeouts to all be an hour, from the config val 'EMAIL_EXPIRY_SECONDS' 2017-11-01 14:39:14 +00:00			`current_app.config['EMAIL_EXPIRY_SECONDS'])`
Re-implement forgot password 2016-03-07 18:18:52 +00:00			`except SignatureExpired:`
Fix wording Changed forgot-password so that it does not expose to the user that the email address does not exist. 2016-01-08 16:47:34 +00:00			`flash('The link in the email we sent you has expired. Enter your email address to resend.')`
Removed exceptions, found a better way to handle them. Refactored the forms so that fields like email_address can be used in multiple forms. Refactored form validation so that a query function is passed into the form to be run, this way the form is not exposed to the dao layer and the query is more efficient. This PR still requires some frontend attention. Will work with Chris to update the templates. 2016-01-08 15:12:14 +00:00			`return redirect(url_for('.forgot_password'))`

Re-implement forgot password 2016-03-07 18:18:52 +00:00			`email_address = json.loads(token_data)['email']`
Merging conflict with two_factor.py Fixed merge mistake with two_factor.py. 2016-03-30 09:58:10 +01:00			`user = user_api_client.get_user_by_email(email_address)`
Re-implement forgot password 2016-03-07 18:18:52 +00:00			`if user.password_changed_at and datetime.strptime(user.password_changed_at, '%Y-%m-%d %H:%M:%S.%f') > \`
			`datetime.strptime(json.loads(token_data)['created_at'], '%Y-%m-%d %H:%M:%S.%f'):`
			`flash('The link in the email has already been used')`
			`return redirect(url_for('main.index'))`
Removed exceptions, found a better way to handle them. Refactored the forms so that fields like email_address can be used in multiple forms. Refactored form validation so that a query function is passed into the form to be run, this way the form is not exposed to the dao layer and the query is more efficient. This PR still requires some frontend attention. Will work with Chris to update the templates. 2016-01-08 15:12:14 +00:00
New-password endpoints are implemented. There should be a better way to validate the token. 2016-01-06 17:37:07 +00:00			`form = NewPasswordForm()`
Removed exceptions, found a better way to handle them. Refactored the forms so that fields like email_address can be used in multiple forms. Refactored form validation so that a query function is passed into the form to be run, this way the form is not exposed to the dao layer and the query is more efficient. This PR still requires some frontend attention. Will work with Chris to update the templates. 2016-01-08 15:12:14 +00:00
New-password endpoints are implemented. There should be a better way to validate the token. 2016-01-06 17:37:07 +00:00			`if form.validate_on_submit():`
Fix the user flow when the user account is locked. The user has 10 tries at the password, after which the account is locked. The same is true for the verify code, the user will have 10 tries before the user account is locked. 2017-02-28 14:41:31 +00:00			`user_api_client.reset_failed_login_count(user.id)`
All tests passing and merged with master. 2016-01-27 16:30:33 +00:00			`session['user_details'] = {`
			`'id': user.id,`
			`'email': user.email_address,`
			`'password': form.new_password.data}`
ensure that email auth users dont get 2fa codes when resetting passwords 2017-11-28 15:25:29 +00:00			`if user.auth_type == 'email_auth':`
			`# they've just clicked an email link, so have done an email auth journey anyway. Just log them in.`
			`return log_in_user(user.id)`
			`else:`
			`# send user a 2fa sms code`
			`user_api_client.send_verify_code(user.id, 'sms', user.mobile_number)`
			`return redirect(url_for('main.two_factor'))`
New-password endpoints are implemented. There should be a better way to validate the token. 2016-01-06 17:37:07 +00:00			`else:`
Removed exceptions, found a better way to handle them. Refactored the forms so that fields like email_address can be used in multiple forms. Refactored form validation so that a query function is passed into the form to be run, this way the form is not exposed to the dao layer and the query is more efficient. This PR still requires some frontend attention. Will work with Chris to update the templates. 2016-01-08 15:12:14 +00:00			`return render_template('views/new-password.html', token=token, form=form, user=user)`