app/main/views/verify.py

from flask import (
    render_template, redirect, jsonify, session, url_for)

from flask_login import login_user

from app.main import main
from app.main.dao import users_dao, verify_codes_dao
from app.main.forms import VerifyForm


@main.route('/verify', methods=['GET', 'POST'])
def verify():
    # TODO there needs to be a way to regenerate a session id
    # or handle gracefully.
    user = users_dao.get_user_by_email(session['user_email'])
    codes = verify_codes_dao.get_codes(user.id)
    form = VerifyForm(codes)
    if form.validate_on_submit():
        verify_codes_dao.use_code_for_user_and_type(user_id=user.id, code_type='email')
        verify_codes_dao.use_code_for_user_and_type(user_id=user.id, code_type='sms')
        users_dao.activate_user(user.id)
        login_user(user)
        return redirect(url_for('.add_service', first='first'))
    return render_template('views/verify.html', form=form)
Refactor for code_not_received, sign_in, two_factor and verify. 2016-01-05 17:08:50 +00:00			`from flask import (`
			`render_template, redirect, jsonify, session, url_for)`
Adding logging. Raise ValidationError for validate_codes rather than returning a true or false. 2016-01-05 13:13:06 +00:00
109526520: Implement verify flow When a person registers with a valid mobile number and email address, a code will be sent to each. That person can enter the verify codes and continue to the add-service page. 2015-12-07 16:08:30 +00:00			`from flask_login import login_user`
109526520: render verify template with VerifyForm 2015-12-04 16:21:01 +00:00
109526520: Implement verify flow When a person registers with a valid mobile number and email address, a code will be sent to each. That person can enter the verify codes and continue to the add-service page. 2015-12-07 16:08:30 +00:00			`from app.main import main`
109526036: Fix bug. If one of the codes was invalid and one was valid on the verify page the valid code would be marked as used. 2015-12-10 16:34:29 +00:00			`from app.main.dao import users_dao, verify_codes_dao`
109526520: render verify template with VerifyForm 2015-12-04 16:21:01 +00:00			`from app.main.forms import VerifyForm`


Refactor for code_not_received, sign_in, two_factor and verify. 2016-01-05 17:08:50 +00:00			`@main.route('/verify', methods=['GET', 'POST'])`
			`def verify():`
			`# TODO there needs to be a way to regenerate a session id`
Merge conflicts with master. 2016-01-05 17:24:13 +00:00			`# or handle gracefully.`
Fix for security hole with setting session['user_id'] before second factor of authentication has been authorised. 2016-01-07 12:43:10 +00:00			`user = users_dao.get_user_by_email(session['user_email'])`
			`codes = verify_codes_dao.get_codes(user.id)`
			`form = VerifyForm(codes)`
Merge conflicts with master. 2016-01-05 17:24:13 +00:00			`if form.validate_on_submit():`
			`verify_codes_dao.use_code_for_user_and_type(user_id=user.id, code_type='email')`
			`verify_codes_dao.use_code_for_user_and_type(user_id=user.id, code_type='sms')`
			`users_dao.activate_user(user.id)`
			`login_user(user)`
Page for adding a new service This page is exactly the same as the page for adding your first service, save the heading text. So all this commit does is: - set up two routes (`/add-service`, `/add-service/first`) for each of the two journeys and change the existing journeys to use the `/add-service/first` route - add logic to show different heading text depending on the journey - add a link to the new (`/add-service`) route in the service chooser dropdown 2016-01-18 10:47:53 +00:00			`return redirect(url_for('.add_service', first='first'))`
Merge conflicts with master. 2016-01-05 17:24:13 +00:00			`return render_template('views/verify.html', form=form)`