darkhelm/notifications-admin
1
0
Fork 0
mirror of https://github.com/GSA/notifications-admin.git synced 2026-02-11 13:54:03 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
403e133b80bb46292ea141efcb2f3bd39f3b70a1
notifications-admin/app/main/forms.py

519 lines
15 KiB
Python
Raw Normal View History

Add a component for picking the time to send a job Users need to pick a time in the next 24hrs, or send a file immediately. Rationale for this is a bit lost in time-before-holiday, but generally: ‘Now’ and ‘later’ as the inital choices makes it really clear what this feature is about conceptually. The choice of times is absolute, eg ‘1pm’ not ‘in 3 hours’
2016-08-07 09:17:49 +01:00
import pytz
108536490: Initial effort to implement log in Add endpoint for post to /sign-in Initialise role data
2015-11-27 09:47:29 +00:00
from flask_wtf import Form
Add a component for picking the time to send a job Users need to pick a time in the next 24hrs, or send a file immediately. Rationale for this is a bit lost in time-before-holiday, but generally: ‘Now’ and ‘later’ as the inital choices makes it really clear what this feature is about conceptually. The choice of times is absolute, eg ‘1pm’ not ‘in 3 hours’
2016-08-07 09:17:49 +01:00
from datetime import datetime, timedelta
Updated notifications_utils version and associated code. Added email subject formatting for placeholders.
2016-04-14 12:00:55 +01:00
from notifications_utils.recipients import (
Update the service name validation in the ServiceNameForm and AddServiceForm to check the email_safe version of the name against a list of all service email_from fields. Update find_all_service_names to find_all_service_email_from, which returns the email_from of all services.
2016-03-31 15:17:05 +01:00
validate_phone_number,
InvalidPhoneError
)
resolve merge conflicts
2016-01-12 10:43:23 +00:00
from wtforms import (
Added provider management pages in. - see priority - change priority
2016-05-11 09:43:55 +01:00
validators,
resolve merge conflicts
2016-01-12 10:43:23 +00:00
StringField,
PasswordField,
ValidationError,
TextAreaField,
Mapped template actions to the api and mocked tests.
2016-01-19 15:54:12 +00:00
FileField,
[WIP] New user can now accept invite and will be made to register. On succesful register and verfication they will be added to service and forwarded to dashboard. Nothing is done yet with the permissions requested in the invite to the user.
2016-03-02 15:25:04 +00:00
BooleanField,
Added provider management pages in. - see priority - change priority
2016-05-11 09:43:55 +01:00
HiddenField,
Add radio buttons for choosing the API key type Best-guess wording for what the labels and question should be. Adds a macro for rendering radio buttons from a WTForms field.
2016-06-29 17:10:49 +01:00
IntegerField,
Add a page to manage a service’s whitelist Services who are in alpha or building prototypes need a way of sending to any email address or phone number without having to sign the MOU. This commit adds a page where they can whitelist up to 5 email addresses and 5 phone numbers. It uses the ‘list entry’ UI pattern from the Digital Marketplace frontend toolkit [1] [2] [3]. I had to do some modification: - of the Javascript, to make it work with the GOV.UK Module pattern - of the template to make it work with WTForms - of the content security policy, because the list entry pattern uses Hogan[1], which needs to use `eval()` (this should be fine if we’re only allowing it for scripts that we serve) - of our SASS lint config, to allow browser-targeting mixins to come after normal rules (so that they can override them) This commit also adds a new form class to validate and populate the two whitelists. The validation is fairly rudimentary at the moment, and doesn’t highlight which item in the list has the error, but it’s probably good enough. The list can only be updated all-at-once, this is how it’s possible to remove items from the list without having to make multiple `POST` requests. 1. https://github.com/alphagov/digitalmarketplace-frontend-toolkit/blob/434ad307913651ecb041ab94bdee748ebe066d1a/toolkit/templates/forms/list-entry.html 2. https://github.com/alphagov/digitalmarketplace-frontend-toolkit/blob/434ad307913651ecb041ab94bdee748ebe066d1a/toolkit/scss/forms/_list-entry.scss 3. https://github.com/alphagov/digitalmarketplace-frontend-toolkit/blob/434ad307913651ecb041ab94bdee748ebe066d1a/toolkit/javascripts/list-entry.js 4. http://twitter.github.io/hogan.js/
2016-09-20 12:30:00 +01:00
RadioField,
FieldList
Users can set a value that appears as the sender of a text message. It can be up to eleven characters alpha numeric, no special characters allowed.
2016-07-01 13:47:22 +01:00
)
Use correct HTML 5 input types These give devices a hint (although don’t mandate them) to use a numeric keypad, or a keypad with the `@` symbol visible when entering phone numbers or email addresses.
2016-02-15 13:13:57 +00:00
from wtforms.fields.html5 import EmailField, TelField
Add a page to manage a service’s whitelist Services who are in alpha or building prototypes need a way of sending to any email address or phone number without having to sign the MOU. This commit adds a page where they can whitelist up to 5 email addresses and 5 phone numbers. It uses the ‘list entry’ UI pattern from the Digital Marketplace frontend toolkit [1] [2] [3]. I had to do some modification: - of the Javascript, to make it work with the GOV.UK Module pattern - of the template to make it work with WTForms - of the content security policy, because the list entry pattern uses Hogan[1], which needs to use `eval()` (this should be fine if we’re only allowing it for scripts that we serve) - of our SASS lint config, to allow browser-targeting mixins to come after normal rules (so that they can override them) This commit also adds a new form class to validate and populate the two whitelists. The validation is fairly rudimentary at the moment, and doesn’t highlight which item in the list has the error, but it’s probably good enough. The list can only be updated all-at-once, this is how it’s possible to remove items from the list without having to make multiple `POST` requests. 1. https://github.com/alphagov/digitalmarketplace-frontend-toolkit/blob/434ad307913651ecb041ab94bdee748ebe066d1a/toolkit/templates/forms/list-entry.html 2. https://github.com/alphagov/digitalmarketplace-frontend-toolkit/blob/434ad307913651ecb041ab94bdee748ebe066d1a/toolkit/scss/forms/_list-entry.scss 3. https://github.com/alphagov/digitalmarketplace-frontend-toolkit/blob/434ad307913651ecb041ab94bdee748ebe066d1a/toolkit/javascripts/list-entry.js 4. http://twitter.github.io/hogan.js/
2016-09-20 12:30:00 +01:00
from wtforms.validators import (DataRequired, Email, Length, Regexp, Optional)
First slice of csv upload of phone numbers for sending messages. At the moment the file contents are not persisted by checked in memory. The first and last three records are show if all are valid. If there are invalid rows, they are reported and the user is prompted to go back and sort out upload file. The storing of upload result (i.e. validation of file) in session will be removed in next story which is about persisting of file for later processing.
2016-01-11 15:00:51 +00:00
Refactor to use a cleaner and lean regex
2016-10-28 10:45:05 +01:00
from app.main.validators import (Blacklist, CsvFileValidator, ValidGovEmail, NoCommasInPlaceHolders)
Moved mobile validation to utils module for use in csv upload as well. This could be moved to shared utils code base at some point.
2016-02-01 16:57:40 +00:00
108536490: Initial effort to implement log in Add endpoint for post to /sign-in Initialise role data
2015-11-27 09:47:29 +00:00
Add a component for picking the time to send a job Users need to pick a time in the next 24hrs, or send a file immediately. Rationale for this is a bit lost in time-before-holiday, but generally: ‘Now’ and ‘later’ as the inital choices makes it really clear what this feature is about conceptually. The choice of times is absolute, eg ‘1pm’ not ‘in 3 hours’
2016-08-07 09:17:49 +01:00
def get_time_value_and_label(future_time):
return (
future_time.replace(tzinfo=None).isoformat(),
Allow a job to be scheduled any time in next 96hrs If you want to send a job on Monday morning, you should be able to schedule it on Friday. You shouldn’t need to work on the weekend. 96 hours is a full 4 days, so you can schedule a job at any time on Friday for any time on Monday. We’ve checked with the information assurance people, and they’re OK with us holding the data for this extra amount of time. This commit changes the choose time form from showing one radio button for each of the next 24 hours to one for each of the next 96 hours. It changes the labels from ‘9am’ to ‘Monday at 9am’ so it’s clear which day you’re choosing.
2016-10-11 14:11:10 +01:00
'{} at {}'.format(
get_human_day(future_time.astimezone(pytz.timezone('Europe/London'))),
get_human_time(future_time.astimezone(pytz.timezone('Europe/London')))
)
Add a component for picking the time to send a job Users need to pick a time in the next 24hrs, or send a file immediately. Rationale for this is a bit lost in time-before-holiday, but generally: ‘Now’ and ‘later’ as the inital choices makes it really clear what this feature is about conceptually. The choice of times is absolute, eg ‘1pm’ not ‘in 3 hours’
2016-08-07 09:17:49 +01:00
)
def get_human_time(time):
return {
Allow a job to be scheduled any time in next 96hrs If you want to send a job on Monday morning, you should be able to schedule it on Friday. You shouldn’t need to work on the weekend. 96 hours is a full 4 days, so you can schedule a job at any time on Friday for any time on Monday. We’ve checked with the information assurance people, and they’re OK with us holding the data for this extra amount of time. This commit changes the choose time form from showing one radio button for each of the next 24 hours to one for each of the next 96 hours. It changes the labels from ‘9am’ to ‘Monday at 9am’ so it’s clear which day you’re choosing.
2016-10-11 14:11:10 +01:00
'0': 'midnight',
'12': 'midday'
Add a component for picking the time to send a job Users need to pick a time in the next 24hrs, or send a file immediately. Rationale for this is a bit lost in time-before-holiday, but generally: ‘Now’ and ‘later’ as the inital choices makes it really clear what this feature is about conceptually. The choice of times is absolute, eg ‘1pm’ not ‘in 3 hours’
2016-08-07 09:17:49 +01:00
}.get(
time.strftime('%-H'),
time.strftime('%-I%p').lower()
)
Make it say later today Categories before: > Now, today, tomorrow, Friday… Categories after: > Now, later today, tomorrow Friday… This reduces the ambiguity of ‘now’ vs ‘today’, and keeping the word ‘later’ suggests what this features is about. This implementation here is a bit hacky, but it works…
2016-10-11 17:59:09 +01:00
def get_human_day(time, prefix_today_with='T'):
Allow a job to be scheduled any time in next 96hrs If you want to send a job on Monday morning, you should be able to schedule it on Friday. You shouldn’t need to work on the weekend. 96 hours is a full 4 days, so you can schedule a job at any time on Friday for any time on Monday. We’ve checked with the information assurance people, and they’re OK with us holding the data for this extra amount of time. This commit changes the choose time form from showing one radio button for each of the next 24 hours to one for each of the next 96 hours. It changes the labels from ‘9am’ to ‘Monday at 9am’ so it’s clear which day you’re choosing.
2016-10-11 14:11:10 +01:00
# Add 1 hour to get midnight today instead of midnight tomorrow
time = (time - timedelta(hours=1)).strftime('%A')
if time == datetime.utcnow().strftime('%A'):
Make it say later today Categories before: > Now, today, tomorrow, Friday… Categories after: > Now, later today, tomorrow Friday… This reduces the ambiguity of ‘now’ vs ‘today’, and keeping the word ‘later’ suggests what this features is about. This implementation here is a bit hacky, but it works…
2016-10-11 17:59:09 +01:00
return '{}oday'.format(prefix_today_with)
Allow a job to be scheduled any time in next 96hrs If you want to send a job on Monday morning, you should be able to schedule it on Friday. You shouldn’t need to work on the weekend. 96 hours is a full 4 days, so you can schedule a job at any time on Friday for any time on Monday. We’ve checked with the information assurance people, and they’re OK with us holding the data for this extra amount of time. This commit changes the choose time form from showing one radio button for each of the next 24 hours to one for each of the next 96 hours. It changes the labels from ‘9am’ to ‘Monday at 9am’ so it’s clear which day you’re choosing.
2016-10-11 14:11:10 +01:00
if time == (datetime.utcnow() + timedelta(days=1)).strftime('%A'):
return 'Tomorrow'
return time
def get_furthest_possible_scheduled_time():
return (datetime.utcnow() + timedelta(days=4)).replace(hour=0)
def get_next_hours_until(until):
now = datetime.utcnow()
hours = int((until - now).total_seconds() / (60 * 60))
Add a component for picking the time to send a job Users need to pick a time in the next 24hrs, or send a file immediately. Rationale for this is a bit lost in time-before-holiday, but generally: ‘Now’ and ‘later’ as the inital choices makes it really clear what this feature is about conceptually. The choice of times is absolute, eg ‘1pm’ not ‘in 3 hours’
2016-08-07 09:17:49 +01:00
return [
(now + timedelta(hours=i)).replace(minute=0, second=0).replace(tzinfo=pytz.utc)
for i in range(1, hours + 1)
]
Allow a job to be scheduled any time in next 96hrs If you want to send a job on Monday morning, you should be able to schedule it on Friday. You shouldn’t need to work on the weekend. 96 hours is a full 4 days, so you can schedule a job at any time on Friday for any time on Monday. We’ve checked with the information assurance people, and they’re OK with us holding the data for this extra amount of time. This commit changes the choose time form from showing one radio button for each of the next 24 hours to one for each of the next 96 hours. It changes the labels from ‘9am’ to ‘Monday at 9am’ so it’s clear which day you’re choosing.
2016-10-11 14:11:10 +01:00
def get_next_days_until(until):
now = datetime.utcnow()
days = int((until - now).total_seconds() / (60 * 60 * 24))
return [
Make it say later today Categories before: > Now, today, tomorrow, Friday… Categories after: > Now, later today, tomorrow Friday… This reduces the ambiguity of ‘now’ vs ‘today’, and keeping the word ‘later’ suggests what this features is about. This implementation here is a bit hacky, but it works…
2016-10-11 17:59:09 +01:00
get_human_day(
(now + timedelta(days=i)).replace(tzinfo=pytz.utc),
prefix_today_with='Later t'
)
Allow a job to be scheduled any time in next 96hrs If you want to send a job on Monday morning, you should be able to schedule it on Friday. You shouldn’t need to work on the weekend. 96 hours is a full 4 days, so you can schedule a job at any time on Friday for any time on Monday. We’ve checked with the information assurance people, and they’re OK with us holding the data for this extra amount of time. This commit changes the choose time form from showing one radio button for each of the next 24 hours to one for each of the next 96 hours. It changes the labels from ‘9am’ to ‘Monday at 9am’ so it’s clear which day you’re choosing.
2016-10-11 14:11:10 +01:00
for i in range(0, days + 1)
]
Update forgotten password to allow non-gov with test
2016-10-26 14:01:01 +01:00
def email_address(label='Email address', gov_user=True):
validators = [
Take out the Canadian politeness. Make the error message more consistent. Extracted common fields for the forms.
2016-01-08 12:00:52 +00:00
Length(min=5, max=255),
Make form error messages consistent We were using a bunch of different styles for form error messages, including: - having the name of the field in the error, or not - can not/cannot/can’t (GDS content styleguide recommends using contractions)
2016-04-04 10:42:04 +01:00
DataRequired(message='Cant be empty'),
Update forgotten password to allow non-gov with test
2016-10-26 14:01:01 +01:00
Email(message='Enter a valid email address')
]
if gov_user:
Refactor to use a cleaner and lean regex
2016-10-28 10:45:05 +01:00
validators.append(ValidGovEmail())
Update forgotten password to allow non-gov with test
2016-10-26 14:01:01 +01:00
return EmailField(label, validators)
Take out the Canadian politeness. Make the error message more consistent. Extracted common fields for the forms.
2016-01-08 12:00:52 +00:00
Use correct HTML 5 input types These give devices a hint (although don’t mandate them) to use a numeric keypad, or a keypad with the `@` symbol visible when entering phone numbers or email addresses.
2016-02-15 13:13:57 +00:00
class UKMobileNumber(TelField):
Add form field for a UK mobile phone number This field does two things: - validates the format of the phone number - outputs a consistent representation of the phone number Because of this I think it’s better represented as a new field type, rather than individual validators. I also think that it’s better to do this without regular expression(s), because it makes returning the specific error easier. This commit also adds basic pass/fail test for a series of valid/invalid phone numbers.
2016-01-12 18:10:16 +00:00
def pre_validate(self, form):
Moved mobile validation to utils module for use in csv upload as well. This could be moved to shared utils code base at some point.
2016-02-01 16:57:40 +00:00
try:
Store phone number as the user entered it It’s confusing to the user to have their phone number played back to them in a format that they didn’t enter it. We’ve seen multiple times that people enter 0781… and then don’t recognise their own phone number when it’s played back as +44781… The API can handle phone numbers in any format as of https://github.com/alphagov/notifications-api/pull/134 So there is no need to reformat the user’s phone number before storing it now.
2016-03-08 07:17:39 +00:00
validate_phone_number(self.data)
Moved mobile validation to utils module for use in csv upload as well. This could be moved to shared utils code base at some point.
2016-02-01 16:57:40 +00:00
except InvalidPhoneError as e:
raise ValidationError(e.message)
Add form field for a UK mobile phone number This field does two things: - validates the format of the phone number - outputs a consistent representation of the phone number Because of this I think it’s better represented as a new field type, rather than individual validators. I also think that it’s better to do this without regular expression(s), because it makes returning the specific error easier. This commit also adds basic pass/fail test for a series of valid/invalid phone numbers.
2016-01-12 18:10:16 +00:00
Take out the Canadian politeness. Make the error message more consistent. Extracted common fields for the forms.
2016-01-08 12:00:52 +00:00
def mobile_number():
Change wording of form hints on register page We’ve seen in research that people can be reticent to give their real phone number. Telling them that it will be used for something should help (ie we’re not just collecting it for marketing). This also rewords the other form hints on this page to be less computery because we haven’t looked at them in aaaages.
2016-04-07 14:12:40 +01:00
return UKMobileNumber('Mobile number',
Make form error messages consistent We were using a bunch of different styles for form error messages, including: - having the name of the field in the error, or not - can not/cannot/can’t (GDS content styleguide recommends using contractions)
2016-04-04 10:42:04 +01:00
validators=[DataRequired(message='Cant be empty')])
Take out the Canadian politeness. Make the error message more consistent. Extracted common fields for the forms.
2016-01-08 12:00:52 +00:00
Change wording of form hints on register page We’ve seen in research that people can be reticent to give their real phone number. Telling them that it will be used for something should help (ie we’re not just collecting it for marketing). This also rewords the other form hints on this page to be less computery because we haven’t looked at them in aaaages.
2016-04-07 14:12:40 +01:00
def password(label='Password'):
Add confirmation of password for important changes This commit adds an extra page or field for confirming your current password when making important changes Name | Email address | Mobile number | Password ---------------------|-------------------|-------------------|------------ No password required | As second page | As second page | On same page as new password
2016-01-12 11:25:46 +00:00
return PasswordField(label,
Make form error messages consistent We were using a bunch of different styles for form error messages, including: - having the name of the field in the error, or not - can not/cannot/can’t (GDS content styleguide recommends using contractions)
2016-04-04 10:42:04 +01:00
validators=[DataRequired(message='Cant be empty'),
Reduce minimum password length to 8 characters We see over and over in research that people are tripped up by the 10 character requirement because it’s longer than they are used to. Most sites require 6 or 8 characters for a password. It goes against the CESG advice which is to not try increasing password strength by increasing the burden on the user: > Traditionally, organisations impose rules on the length and complexity > of passwords. However, people then tend to use predictable strategies > to generate passwords, so the security benefit is marginal while the > user burden is high. https://www.cesg.gov.uk/guidance/password-guidance-simplifying-your-approach Instead we should be relying on: - [x] two factor authentication - [x] blacklisting common passwords - [ ] locking out users after a number of failed logins (not sure this is working)
2016-09-26 09:29:50 +01:00
Length(8, 255, message='Must be at least 8 characters'),
Give better error message for blacklisted password Telling the user what to do, rather than the mistake they’ve made is usually better.
2016-09-27 11:37:20 +01:00
Blacklist(message='Choose a password thats harder to guess')])
Take out the Canadian politeness. Make the error message more consistent. Extracted common fields for the forms.
2016-01-08 12:00:52 +00:00
def sms_code():
verify_code = '^\d{5}$'
Fix wording
2016-02-02 15:41:54 +00:00
return StringField('Text message code',
Make form error messages consistent We were using a bunch of different styles for form error messages, including: - having the name of the field in the error, or not - can not/cannot/can’t (GDS content styleguide recommends using contractions)
2016-04-04 10:42:04 +01:00
validators=[DataRequired(message='Cant be empty'),
Take out the Canadian politeness. Make the error message more consistent. Extracted common fields for the forms.
2016-01-08 12:00:52 +00:00
Regexp(regex=verify_code,
Make form error messages consistent We were using a bunch of different styles for form error messages, including: - having the name of the field in the error, or not - can not/cannot/can’t (GDS content styleguide recommends using contractions)
2016-04-04 10:42:04 +01:00
message='Must be 5 digits')])
Take out the Canadian politeness. Make the error message more consistent. Extracted common fields for the forms.
2016-01-08 12:00:52 +00:00
def email_code():
verify_code = '^\d{5}$'
Fix wording
2016-02-02 15:41:54 +00:00
return StringField("Email code",
Make form error messages consistent We were using a bunch of different styles for form error messages, including: - having the name of the field in the error, or not - can not/cannot/can’t (GDS content styleguide recommends using contractions)
2016-04-04 10:42:04 +01:00
validators=[DataRequired(message='Cant be empty'),
Regexp(regex=verify_code, message='Must be 5 digits')])
Take out the Canadian politeness. Make the error message more consistent. Extracted common fields for the forms.
2016-01-08 12:00:52 +00:00
108536490: Initial effort to implement log in Add endpoint for post to /sign-in Initialise role data
2015-11-27 09:47:29 +00:00
class LoginForm(Form):
email_address = StringField('Email address', validators=[
108536490: Adding the login manager and csrf token. Still need to figure out how to override the load_user method, currently it is not working.
2015-11-27 16:25:56 +00:00
Length(min=5, max=255),
Make form error messages consistent We were using a bunch of different styles for form error messages, including: - having the name of the field in the error, or not - can not/cannot/can’t (GDS content styleguide recommends using contractions)
2016-04-04 10:42:04 +01:00
DataRequired(message='Cant be empty'),
Take out the Canadian politeness. Make the error message more consistent. Extracted common fields for the forms.
2016-01-08 12:00:52 +00:00
Email(message='Enter a valid email address')
108536490: Initial effort to implement log in Add endpoint for post to /sign-in Initialise role data
2015-11-27 09:47:29 +00:00
])
Amend name & password labels
2015-12-02 15:23:03 +00:00
password = PasswordField('Password', validators=[
Take out the Canadian politeness. Make the error message more consistent. Extracted common fields for the forms.
2016-01-08 12:00:52 +00:00
DataRequired(message='Enter your password')
108536490: Initial effort to implement log in Add endpoint for post to /sign-in Initialise role data
2015-11-27 09:47:29 +00:00
])
108536366: Implement register flow Includes validation for gov.uk email address, mobile number with +44, password at least 10 char. Form validation errors will be added to template in a later story. User is created when form validates.
2015-12-01 13:23:54 +00:00
class RegisterUserForm(Form):
Amend name & password labels
2015-12-02 15:23:03 +00:00
name = StringField('Full name',
Make form error messages consistent We were using a bunch of different styles for form error messages, including: - having the name of the field in the error, or not - can not/cannot/can’t (GDS content styleguide recommends using contractions)
2016-04-04 10:42:04 +01:00
validators=[DataRequired(message='Cant be empty')])
Take out the Canadian politeness. Make the error message more consistent. Extracted common fields for the forms.
2016-01-08 12:00:52 +00:00
email_address = email_address()
mobile_number = mobile_number()
password = password()
109526520: render verify template with VerifyForm
2015-12-04 16:21:01 +00:00
[WIP] New user can now accept invite and will be made to register. On succesful register and verfication they will be added to service and forwarded to dashboard. Nothing is done yet with the permissions requested in the invite to the user.
2016-03-02 15:25:04 +00:00
class RegisterUserFromInviteForm(Form):
name = StringField('Full name',
Make form error messages consistent We were using a bunch of different styles for form error messages, including: - having the name of the field in the error, or not - can not/cannot/can’t (GDS content styleguide recommends using contractions)
2016-04-04 10:42:04 +01:00
validators=[DataRequired(message='Cant be empty')])
[WIP] New user can now accept invite and will be made to register. On succesful register and verfication they will be added to service and forwarded to dashboard. Nothing is done yet with the permissions requested in the invite to the user.
2016-03-02 15:25:04 +00:00
mobile_number = mobile_number()
password = password()
service = HiddenField('service')
Revert the disabled email field on the register-invited-user page, the email address is not being submitted on the form when registering
2016-03-08 16:29:05 +00:00
email_address = HiddenField('email_address')
[WIP] New user can now accept invite and will be made to register. On succesful register and verfication they will be added to service and forwarded to dashboard. Nothing is done yet with the permissions requested in the invite to the user.
2016-03-02 15:25:04 +00:00
Set permissions with checkboxes, not yes/no inputs The yes/no pattern didn’t work too well, because: - it didn’t read naturally as a question and answer - often users left them completely unclicked if they didn’t want to set the permission (rather than clicking no) This commit changes both the invite and edit user pages to use checkboxes to set permissions. If also rewords these pages to read more naturally, and explain what the permissions mean. This meant changing some of the view logic around invites and persmissions, and I ended up refactoring a bunch of it because I found it hard to understand what was going on.
2016-03-22 13:18:06 +00:00
class PermissionsForm(Form):
send_messages = BooleanField("Send messages from existing templates")
manage_service = BooleanField("Modify this service, its team, and its templates")
manage_api_keys = BooleanField("Create and revoke API keys")
Updated form and fixed existing tests.
2016-03-03 13:00:12 +00:00
Add pages to invite, edit, and delete users This takes the original prototype version of this page, and, using the same fake data (ie nothing is wired up): - adds an invite users page - adds an edit (and delete) user page Both these pages allow the user to set another user’s permissions. This commit adds images for the ticks and crosses, so we have control over their appearance.
2016-02-19 15:02:13 +00:00
Set permissions with checkboxes, not yes/no inputs The yes/no pattern didn’t work too well, because: - it didn’t read naturally as a question and answer - often users left them completely unclicked if they didn’t want to set the permission (rather than clicking no) This commit changes both the invite and edit user pages to use checkboxes to set permissions. If also rewords these pages to read more naturally, and explain what the permissions mean. This meant changing some of the view logic around invites and persmissions, and I ended up refactoring a bunch of it because I found it hard to understand what was going on.
2016-03-22 13:18:06 +00:00
class InviteUserForm(PermissionsForm):
Update forgotten password to allow non-gov with test
2016-10-26 14:01:01 +01:00
email_address = email_address(gov_user=False)
Added validation to ensure user can't invite themselves. Refactored Invited user form into permissions and invite forms for use in invite and edit permissions. Added template for edit permissions.
2016-03-09 13:00:52 +00:00
def __init__(self, invalid_email_address, *args, **kwargs):
super(InviteUserForm, self).__init__(*args, **kwargs)
self.invalid_email_address = invalid_email_address.lower()
def validate_email_address(self, field):
if field.data.lower() == self.invalid_email_address:
Make form error messages consistent We were using a bunch of different styles for form error messages, including: - having the name of the field in the error, or not - can not/cannot/can’t (GDS content styleguide recommends using contractions)
2016-04-04 10:42:04 +01:00
raise ValidationError("You cant send an invitation to yourself")
Added validation to ensure user can't invite themselves. Refactored Invited user form into permissions and invite forms for use in invite and edit permissions. Added template for edit permissions.
2016-03-09 13:00:52 +00:00
109638656: Initial implementation for two-factor
2015-12-07 16:56:11 +00:00
class TwoFactorForm(Form):
Working tests, hopefully all code changes done.
2016-01-27 12:22:32 +00:00
def __init__(self, validate_code_func, *args, **kwargs):
Fix for security hole with setting session['user_id'] before second factor of authentication has been authorised.
2016-01-07 12:43:10 +00:00
'''
Keyword arguments:
Working tests, hopefully all code changes done.
2016-01-27 12:22:32 +00:00
validate_code_func -- Validates the code with the API.
Fix for security hole with setting session['user_id'] before second factor of authentication has been authorised.
2016-01-07 12:43:10 +00:00
'''
Working tests, hopefully all code changes done.
2016-01-27 12:22:32 +00:00
self.validate_code_func = validate_code_func
Fix for security hole with setting session['user_id'] before second factor of authentication has been authorised.
2016-01-07 12:43:10 +00:00
super(TwoFactorForm, self).__init__(*args, **kwargs)
Take out the Canadian politeness. Make the error message more consistent. Extracted common fields for the forms.
2016-01-08 12:00:52 +00:00
sms_code = sms_code()
109638656: Implement two factor verify flow When user enters valid sms code they are redirected to the dashboard. Otherwise, form errors are present.
2015-12-08 12:36:54 +00:00
Working tests, hopefully all code changes done.
2016-01-27 12:22:32 +00:00
def validate_sms_code(self, field):
is_valid, reason = self.validate_code_func(field.data)
if not is_valid:
raise ValidationError(reason)
109638656: Initial implementation for two-factor
2015-12-07 16:56:11 +00:00
109898688: Implementation of text-not-received and email-not-received
2015-12-15 15:35:30 +00:00
class EmailNotReceivedForm(Form):
Take out the Canadian politeness. Make the error message more consistent. Extracted common fields for the forms.
2016-01-08 12:00:52 +00:00
email_address = email_address()
109898688: Implementation of text-not-received and email-not-received
2015-12-15 15:35:30 +00:00
class TextNotReceivedForm(Form):
Take out the Canadian politeness. Make the error message more consistent. Extracted common fields for the forms.
2016-01-08 12:00:52 +00:00
mobile_number = mobile_number()
109898688: Implementation of text-not-received and email-not-received
2015-12-15 15:35:30 +00:00
110067722: Added endpoints for add-service Post is not complete as of yet.
2015-12-14 17:12:28 +00:00
class AddServiceForm(Form):
Test add service completed.
2016-01-15 16:10:24 +00:00
def __init__(self, names_func, *args, **kwargs):
"""
Keyword arguments:
names_func -- Returns a list of unique service_names already registered
on the system.
"""
self._names_func = names_func
Refactor add-service form such that the dao is not exposed in the forms.
2016-01-04 15:31:50 +00:00
super(AddServiceForm, self).__init__(*args, **kwargs)
Merge with master.
2016-01-19 09:49:01 +00:00
name = StringField(
Page for adding a new service This page is exactly the same as the page for adding your first service, save the heading text. So all this commit does is: - set up two routes (`/add-service`, `/add-service/first`) for each of the two journeys and change the existing journeys to use the `/add-service/first` route - add logic to show different heading text depending on the journey - add a link to the new (`/add-service`) route in the service chooser dropdown
2016-01-18 10:47:53 +00:00
'Service name',
validators=[
Make form error messages consistent We were using a bunch of different styles for form error messages, including: - having the name of the field in the error, or not - can not/cannot/can’t (GDS content styleguide recommends using contractions)
2016-04-04 10:42:04 +01:00
DataRequired(message='Cant be empty')
Page for adding a new service This page is exactly the same as the page for adding your first service, save the heading text. So all this commit does is: - set up two routes (`/add-service`, `/add-service/first`) for each of the two journeys and change the existing journeys to use the `/add-service/first` route - add logic to show different heading text depending on the journey - add a link to the new (`/add-service`) route in the service chooser dropdown
2016-01-18 10:47:53 +00:00
]
)
110067722: Add form validation for duplicate service name.
2015-12-15 10:17:43 +00:00
Working service integration.
2016-01-18 17:35:28 +00:00
def validate_name(self, a):
Update the service name validation in the ServiceNameForm and AddServiceForm to check the email_safe version of the name against a list of all service email_from fields. Update find_all_service_names to find_all_service_email_from, which returns the email_from of all services.
2016-03-31 15:17:05 +01:00
from app.utils import email_safe
# make sure the email_from will be unique to all services
if email_safe(a.data) in self._names_func():
Reword the add service page Without the preview service name we probably have to go back to communicating a bit more on the add service page. This commit brings back the two bullet points about where the service name will appear, and tries to tie it into the nice words that Matt Sheret wrote for us.
2016-02-26 10:46:49 +00:00
raise ValidationError('This service name is already in use')
Add endpoints for forgot-password.
2016-01-04 14:00:39 +00:00
Add a WTForms-compatible textbox macro This macro: - accepts a WTForm form field as a parameter - renders a form field which follows the GOV.UK Elements patterns, both visually and in markup terms It then changes any page which uses either: - the old, non-WTForms macro or - the old, WTFforms `render_field` macro …to use this new macro and removes both of the old ones. It also adds the option to display hint text above the textbox.
2016-01-11 13:15:10 +00:00
class ServiceNameForm(Form):
Service name uniqueness handled in all cases and tests passing.
2016-03-10 14:29:31 +00:00
def __init__(self, names_func, *args, **kwargs):
"""
Keyword arguments:
names_func -- Returns a list of unique service_names already registered
on the system.
"""
self._names_func = names_func
super(ServiceNameForm, self).__init__(*args, **kwargs)
name = StringField(
Tidy up ‘change service name’ page - Make service name repopulate in textbox - More spacing between sections of the page
2016-06-20 13:33:29 +01:00
u'Service name',
Service name uniqueness handled in all cases and tests passing.
2016-03-10 14:29:31 +00:00
validators=[
Make form error messages consistent We were using a bunch of different styles for form error messages, including: - having the name of the field in the error, or not - can not/cannot/can’t (GDS content styleguide recommends using contractions)
2016-04-04 10:42:04 +01:00
DataRequired(message='Cant be empty')
Service name uniqueness handled in all cases and tests passing.
2016-03-10 14:29:31 +00:00
])
def validate_name(self, a):
Update the service name validation in the ServiceNameForm and AddServiceForm to check the email_safe version of the name against a list of all service email_from fields. Update find_all_service_names to find_all_service_email_from, which returns the email_from of all services.
2016-03-31 15:17:05 +01:00
from app.utils import email_safe
# make sure the email_from will be unique to all services
if email_safe(a.data) in self._names_func():
Service name uniqueness handled in all cases and tests passing.
2016-03-10 14:29:31 +00:00
raise ValidationError('This service name is already in use')
Add a WTForms-compatible textbox macro This macro: - accepts a WTForm form field as a parameter - renders a form field which follows the GOV.UK Elements patterns, both visually and in markup terms It then changes any page which uses either: - the old, non-WTForms macro or - the old, WTFforms `render_field` macro …to use this new macro and removes both of the old ones. It also adds the option to display hint text above the textbox.
2016-01-11 13:15:10 +00:00
class ConfirmPasswordForm(Form):
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
def __init__(self, validate_password_func, *args, **kwargs):
self.validate_password_func = validate_password_func
super(ConfirmPasswordForm, self).__init__(*args, **kwargs)
Add a WTForms-compatible textbox macro This macro: - accepts a WTForm form field as a parameter - renders a form field which follows the GOV.UK Elements patterns, both visually and in markup terms It then changes any page which uses either: - the old, non-WTForms macro or - the old, WTFforms `render_field` macro …to use this new macro and removes both of the old ones. It also adds the option to display hint text above the textbox.
2016-01-11 13:15:10 +00:00
password = PasswordField(u'Enter password')
Added check for password on service change page, work in progress.
2016-01-22 16:34:36 +00:00
def validate_password(self, field):
if not self.validate_password_func(field.data):
raise ValidationError('Invalid password')
Add a WTForms-compatible textbox macro This macro: - accepts a WTForm form field as a parameter - renders a form field which follows the GOV.UK Elements patterns, both visually and in markup terms It then changes any page which uses either: - the old, non-WTForms macro or - the old, WTFforms `render_field` macro …to use this new macro and removes both of the old ones. It also adds the option to display hint text above the textbox.
2016-01-11 13:15:10 +00:00
Add basic flow for adding email _or_ sms templates Templates now have: - a type (email or sms) - a subject (if they are email templates) We don’t want two completely separate view files for email and SMS, because they would have an enormous amount of repetition. So this commit adds - different templates for SMS and email templates - different form objects for SMS and email templates …and wires them up.
2016-02-22 14:45:13 +00:00
class SMSTemplateForm(Form):
Mapped template actions to the api and mocked tests.
2016-01-19 15:54:12 +00:00
name = StringField(
u'Template name',
Make form error messages consistent We were using a bunch of different styles for form error messages, including: - having the name of the field in the error, or not - can not/cannot/can’t (GDS content styleguide recommends using contractions)
2016-04-04 10:42:04 +01:00
validators=[DataRequired(message="Cant be empty")])
Make ‘template type’ radio buttons not `<select>` Because burn your select tags[1] This commit hard codes the markup for the time being until I can work out how to get WTForms outputting the markup I want. 1. https://www.youtube.com/watch?v=CUkMCQR4TpY
2016-01-22 12:19:15 +00:00
Rename `content` to `template` content WTForms sets the `id` of a `textarea` element to the variable name to which the form control is assigned. This conflicts with the page container, which is styled by targeting `#content`.
2016-01-22 12:15:47 +00:00
template_content = TextAreaField(
Give the textbox on edit template a better label ‘Message content’ is very much _our_ name for the thing. ‘Message’ is more human-friendly.
2016-06-20 11:37:42 +01:00
u'Message',
Don’t allow commas in placeholders > If a user tries to save a template containing something like > ((name,date)) we should give a validation error. This is because it causes havoc with the column headers in CSV files. https://www.pivotaltracker.com/story/show/117043389
2016-04-07 16:02:06 +01:00
validators=[
DataRequired(message="Cant be empty"),
NoCommasInPlaceHolders()
]
)
Add a WTForms-compatible textbox macro This macro: - accepts a WTForm form field as a parameter - renders a form field which follows the GOV.UK Elements patterns, both visually and in markup terms It then changes any page which uses either: - the old, non-WTForms macro or - the old, WTFforms `render_field` macro …to use this new macro and removes both of the old ones. It also adds the option to display hint text above the textbox.
2016-01-11 13:15:10 +00:00
Add basic flow for adding email _or_ sms templates Templates now have: - a type (email or sms) - a subject (if they are email templates) We don’t want two completely separate view files for email and SMS, because they would have an enormous amount of repetition. So this commit adds - different templates for SMS and email templates - different form objects for SMS and email templates …and wires them up.
2016-02-22 14:45:13 +00:00
class EmailTemplateForm(SMSTemplateForm):
Make subject a textarea In order for subject lines to have their fields highlighted they have to be textboxes. This is because the highlighting script only works with textboxes that don’t scroll, either horizontally, vertically, or be keying through them.
2016-04-14 14:04:41 +01:00
subject = TextAreaField(
Add basic flow for adding email _or_ sms templates Templates now have: - a type (email or sms) - a subject (if they are email templates) We don’t want two completely separate view files for email and SMS, because they would have an enormous amount of repetition. So this commit adds - different templates for SMS and email templates - different form objects for SMS and email templates …and wires them up.
2016-02-22 14:45:13 +00:00
u'Subject',
Make form error messages consistent We were using a bunch of different styles for form error messages, including: - having the name of the field in the error, or not - can not/cannot/can’t (GDS content styleguide recommends using contractions)
2016-04-04 10:42:04 +01:00
validators=[DataRequired(message="Cant be empty")])
Add basic flow for adding email _or_ sms templates Templates now have: - a type (email or sms) - a subject (if they are email templates) We don’t want two completely separate view files for email and SMS, because they would have an enormous amount of repetition. So this commit adds - different templates for SMS and email templates - different form objects for SMS and email templates …and wires them up.
2016-02-22 14:45:13 +00:00
Sprinkle `letter` throughout the app Let users create/edit/delete letter templates. Let them upload a CSV file or send a test against a letter template. Big assumption at the moment is that addresses only have one line, and therefore one column in the CSV file.
2016-11-08 13:12:07 +00:00
class LetterTemplateForm(EmailTemplateForm):
pass
Completion of forgot-password endpoints. Start implementation for new-password endpoints. Created PasswordResetToken model ToDo: create and save token, send valid url to user, check validity of token, update user's password, redirect to /two-factor.
2016-01-05 17:52:09 +00:00
class ForgotPasswordForm(Form):
Update forgotten password to allow non-gov with test
2016-10-26 14:01:01 +01:00
email_address = email_address(gov_user=False)
Add endpoints for forgot-password.
2016-01-04 14:00:39 +00:00
New-password endpoints are implemented. There should be a better way to validate the token.
2016-01-06 17:37:07 +00:00
class NewPasswordForm(Form):
Take out the Canadian politeness. Make the error message more consistent. Extracted common fields for the forms.
2016-01-08 12:00:52 +00:00
new_password = password()
First slice of csv upload of phone numbers for sending messages. At the moment the file contents are not persisted by checked in memory. The first and last three records are show if all are valid. If there are invalid rows, they are reported and the user is prompted to go back and sort out upload file. The storing of upload result (i.e. validation of file) in session will be removed in next story which is about persisting of file for later processing.
2016-01-11 15:00:51 +00:00
Add confirmation of password for important changes This commit adds an extra page or field for confirming your current password when making important changes Name | Email address | Mobile number | Password ---------------------|-------------------|-------------------|------------ No password required | As second page | As second page | On same page as new password
2016-01-12 11:25:46 +00:00
class ChangePasswordForm(Form):
Working tests, hopefully all code changes done.
2016-01-27 12:22:32 +00:00
def __init__(self, validate_password_func, *args, **kwargs):
self.validate_password_func = validate_password_func
super(ChangePasswordForm, self).__init__(*args, **kwargs)
Add confirmation of password for important changes This commit adds an extra page or field for confirming your current password when making important changes Name | Email address | Mobile number | Password ---------------------|-------------------|-------------------|------------ No password required | As second page | As second page | On same page as new password
2016-01-12 11:25:46 +00:00
old_password = password('Current password')
new_password = password('New password')
Working tests, hopefully all code changes done.
2016-01-27 12:22:32 +00:00
def validate_old_password(self, field):
if not self.validate_password_func(field.data):
raise ValidationError('Invalid password')
Add confirmation of password for important changes This commit adds an extra page or field for confirming your current password when making important changes Name | Email address | Mobile number | Password ---------------------|-------------------|-------------------|------------ No password required | As second page | As second page | On same page as new password
2016-01-12 11:25:46 +00:00
First slice of csv upload of phone numbers for sending messages. At the moment the file contents are not persisted by checked in memory. The first and last three records are show if all are valid. If there are invalid rows, they are reported and the user is prompted to go back and sort out upload file. The storing of upload result (i.e. validation of file) in session will be removed in next story which is about persisting of file for later processing.
2016-01-11 15:00:51 +00:00
class CsvUploadForm(Form):
Updates to ‘send SMS’ page Based on discussion with Pete. Make the blue banner an ‘important’ banner (copied from Register to Vote, used because it’s not as boxy and fits on the page better). Remove the back button because you haven’t changed any data yet. If you need to go back you can just press back or start again. Make the filename stand out more. Remove the ‘download example’ link. Will need to revist the best way of doing this. Make text messages consistently 2/3rd width.
2016-02-04 12:20:24 +00:00
file = FileField('Add recipients', validators=[DataRequired(
Added provider management pages in. - see priority - change priority
2016-05-11 09:43:55 +01:00
message='Please pick a file'), CsvFileValidator()])
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
class ChangeNameForm(Form):
new_name = StringField(u'Your name')
class ChangeEmailForm(Form):
Working tests, hopefully all code changes done.
2016-01-27 12:22:32 +00:00
def __init__(self, validate_email_func, *args, **kwargs):
self.validate_email_func = validate_email_func
super(ChangeEmailForm, self).__init__(*args, **kwargs)
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
email_address = email_address()
Working tests, hopefully all code changes done.
2016-01-27 12:22:32 +00:00
def validate_email_address(self, field):
is_valid = self.validate_email_func(field.data)
if not is_valid:
raise ValidationError("The email address is already in use")
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
class ChangeMobileNumberForm(Form):
mobile_number = mobile_number()
class ConfirmMobileNumberForm(Form):
Working tests, hopefully all code changes done.
2016-01-27 12:22:32 +00:00
def __init__(self, validate_code_func, *args, **kwargs):
self.validate_code_func = validate_code_func
super(ConfirmMobileNumberForm, self).__init__(*args, **kwargs)
Add loops for changing each part of your profile This commit adds a page or series of pages for changing your: Name | Email address | Mobile number | Password ------------------|-------------------|-------------------|------------ Enter new value | Enter new value | Enter new value | Enter new value | Enter 2fa code | Enter 2fa code | Return to profile | Return to profile | Return to profile | Return to profile (each row is a page)
2016-01-12 10:28:14 +00:00
sms_code = sms_code()
Add pages for create/view/revoke API keys Copying what they’ve done on GOV.UK Pay, we should let users: - generate as many keys as they want - only see the key at time of creation - give keys a name - revoke any key at any time (this should be a one way operation) And based on discussions with @minglis and @servingUpAces, the keys should be used in conjunction with some kind of service ID, which gets encrypted with the key. In other words the secret itself never gets sent over the wire. This commit adds the UI (but not the underlying API integration) for doing the above.
2016-01-19 09:55:13 +00:00
Working tests, hopefully all code changes done.
2016-01-27 12:22:32 +00:00
def validate_sms_code(self, field):
is_valid, msg = self.validate_code_func(field.data)
if not is_valid:
raise ValidationError(msg)
Add pages for create/view/revoke API keys Copying what they’ve done on GOV.UK Pay, we should let users: - generate as many keys as they want - only see the key at time of creation - give keys a name - revoke any key at any time (this should be a one way operation) And based on discussions with @minglis and @servingUpAces, the keys should be used in conjunction with some kind of service ID, which gets encrypted with the key. In other words the secret itself never gets sent over the wire. This commit adds the UI (but not the underlying API integration) for doing the above.
2016-01-19 09:55:13 +00:00
Add a component for picking the time to send a job Users need to pick a time in the next 24hrs, or send a file immediately. Rationale for this is a bit lost in time-before-holiday, but generally: ‘Now’ and ‘later’ as the inital choices makes it really clear what this feature is about conceptually. The choice of times is absolute, eg ‘1pm’ not ‘in 3 hours’
2016-08-07 09:17:49 +01:00
class ChooseTimeForm(Form):
def __init__(self, *args, **kwargs):
super(ChooseTimeForm, self).__init__(*args, **kwargs)
self.scheduled_for.choices = [('', 'Now')] + [
Allow a job to be scheduled any time in next 96hrs If you want to send a job on Monday morning, you should be able to schedule it on Friday. You shouldn’t need to work on the weekend. 96 hours is a full 4 days, so you can schedule a job at any time on Friday for any time on Monday. We’ve checked with the information assurance people, and they’re OK with us holding the data for this extra amount of time. This commit changes the choose time form from showing one radio button for each of the next 24 hours to one for each of the next 96 hours. It changes the labels from ‘9am’ to ‘Monday at 9am’ so it’s clear which day you’re choosing.
2016-10-11 14:11:10 +01:00
get_time_value_and_label(hour) for hour in get_next_hours_until(
get_furthest_possible_scheduled_time()
)
Add a component for picking the time to send a job Users need to pick a time in the next 24hrs, or send a file immediately. Rationale for this is a bit lost in time-before-holiday, but generally: ‘Now’ and ‘later’ as the inital choices makes it really clear what this feature is about conceptually. The choice of times is absolute, eg ‘1pm’ not ‘in 3 hours’
2016-08-07 09:17:49 +01:00
]
Group choices for scheduling a job by day The options for scheduling a job by time should be grouped by day, because a long list of 96 options is not very usable. On the server side, this commit generates label for the next 4 days in a friendly format (ie today/tomorrow/Sunday/Monday) The Javascript component for choosing a time was built in a kind of old-school jQuery way, where it manipulated the elements on the page. The complexity of introducing groups of options was just too much for this pattern, because it involves storing a lot of state in the DOM. This commit completely rewrites the JS to: - read the initial options and groups from the HTML and store them in the object - use Hogan to completely re-render the UI from a series of Mustache templates, each of which represents a state of the UI and takes the inital options and groups - filter the choices to show when the today/tomorrow/… buttons are clicked
2016-10-11 14:17:29 +01:00
self.scheduled_for.categories = get_next_days_until(get_furthest_possible_scheduled_time())
Add a component for picking the time to send a job Users need to pick a time in the next 24hrs, or send a file immediately. Rationale for this is a bit lost in time-before-holiday, but generally: ‘Now’ and ‘later’ as the inital choices makes it really clear what this feature is about conceptually. The choice of times is absolute, eg ‘1pm’ not ‘in 3 hours’
2016-08-07 09:17:49 +01:00
scheduled_for = RadioField(
'When should Notify send these messages?',
default='',
validators=[
DataRequired()
]
)
Add pages for create/view/revoke API keys Copying what they’ve done on GOV.UK Pay, we should let users: - generate as many keys as they want - only see the key at time of creation - give keys a name - revoke any key at any time (this should be a one way operation) And based on discussions with @minglis and @servingUpAces, the keys should be used in conjunction with some kind of service ID, which gets encrypted with the key. In other words the secret itself never gets sent over the wire. This commit adds the UI (but not the underlying API integration) for doing the above.
2016-01-19 09:55:13 +00:00
class CreateKeyForm(Form):
Added a validator so that the key name is unique per service.
2016-01-21 14:15:36 +00:00
def __init__(self, existing_key_names=[], *args, **kwargs):
Validation on key name is case insenstive
2016-01-21 16:52:01 +00:00
self.existing_key_names = [x.lower() for x in existing_key_names]
Added a validator so that the key name is unique per service.
2016-01-21 14:15:36 +00:00
super(CreateKeyForm, self).__init__(*args, **kwargs)
Add radio buttons for choosing the API key type Best-guess wording for what the labels and question should be. Adds a macro for rendering radio buttons from a WTForms field.
2016-06-29 17:10:49 +01:00
key_type = RadioField(
'What should Notify do when you use this key?',
validators=[
DataRequired()
]
)
Added a validator so that the key name is unique per service.
2016-01-21 14:15:36 +00:00
key_name = StringField(u'Description of key', validators=[
DataRequired(message='You need to give the key a name')
])
def validate_key_name(self, key_name):
Validation on key name is case insenstive
2016-01-21 16:52:01 +00:00
if key_name.data.lower() in self.existing_key_names:
Added a validator so that the key name is unique per service.
2016-01-21 14:15:36 +00:00
raise ValidationError('A key with this name already exists')
Feedback page working with all tests passing. Updated to include team id. Give Feedback -> Give feedback
2016-04-19 13:51:16 +01:00
class Feedback(Form):
name = StringField('Name')
email_address = StringField('Email address')
feedback = TextAreaField(u'', validators=[DataRequired(message="Cant be empty")])
Put a form on the request to go live page This commit: - moves things around a bit on the request to go live page - sticks a textbox in there So when someone click the big green button, we will get a support ticket that looks something like: ``` From Test User <test@user.gov.uk> on behalf of Test Service (6ce466d0-fd6a-11e5-82f5-e0accb9d11a6) --- We’ll send about 1000 text messages in the first month, and then 10,000 text messages per month after that. Usage of our service is about 50% higher in March, at the end of the tax year. ```
2016-04-26 13:31:57 +01:00
class RequestToGoLiveForm(Form):
Make MOU a multiple choice question not a banner If we want someone to read something (ie that they need to have the MOU signed), then the best way is to make them interact with it. And if someone doesn’t have the MOU in place, then we need to know to send them a copy. The best way of them telling us this is in this form, rather than sending them to the generic contact form and have them compose a message saying ‘please send me the MOU thanks’, which we haven’t seen anyone actually do.
2016-11-01 11:31:39 +00:00
mou = RadioField(
(
'Has your organisation accepted the GOV.UK&nbsp;Notify data sharing and financial '
'agreement (Memorandum of Understanding)?'
),
choices=[
('yes', 'Yes'),
Use radio button desc. pattern on go live page Nicer than using en dashes.
2016-11-02 15:46:22 +00:00
('no', 'No'),
('dont know', 'I dont know')
Make MOU a multiple choice question not a banner If we want someone to read something (ie that they need to have the MOU signed), then the best way is to make them interact with it. And if someone doesn’t have the MOU in place, then we need to know to send them a copy. The best way of them telling us this is in this form, rather than sending them to the generic contact form and have them compose a message saying ‘please send me the MOU thanks’, which we haven’t seen anyone actually do.
2016-11-01 11:31:39 +00:00
],
validators=[DataRequired()]
)
Use radio buttons not textboxes for multi-choice No need to make people type when they can click, and gives us consistent data.
2016-10-31 15:05:22 +00:00
channel = RadioField(
Reword questions to make sense with radio buttons
2016-10-31 15:21:29 +00:00
'What kind of messages will you be sending?',
Use radio buttons not textboxes for multi-choice No need to make people type when they can click, and gives us consistent data.
2016-10-31 15:05:22 +00:00
choices=[
('emails', 'Emails'),
('text messages', 'Text messages'),
('emails and text messages', 'Both')
],
validators=[DataRequired()]
Made the request to go live fields mandatory
2016-10-24 15:46:22 +01:00
)
start_date = StringField(
Updates: * Fix tests * Add tests for new message format
2016-10-24 16:10:41 +01:00
'When will you be ready to start sending messages?',
validators=[DataRequired(message='Cant be empty')]
Made the request to go live fields mandatory
2016-10-24 15:46:22 +01:00
)
Fix casing and multi-line stuff
2016-10-24 13:38:55 +01:00
start_volume = StringField(
Add hint text for volumes questions We’ve had some non-helpful answers to these questions, eg ‘3’. This commit adds examples of the kind of response we’re looking for, to help users write good answers.
2016-11-01 11:30:03 +00:00
'How many messages do you expect to send to start with?',
Updates: * Fix tests * Add tests for new message format
2016-10-24 16:10:41 +01:00
validators=[DataRequired(message='Cant be empty')]
Fix casing and multi-line stuff
2016-10-24 13:38:55 +01:00
)
peak_volume = StringField(
Add hint text for volumes questions We’ve had some non-helpful answers to these questions, eg ‘3’. This commit adds examples of the kind of response we’re looking for, to help users write good answers.
2016-11-01 11:30:03 +00:00
'Will the number of messages increase and when will that start?',
Updates: * Fix tests * Add tests for new message format
2016-10-24 16:10:41 +01:00
validators=[DataRequired(message='Cant be empty')]
Fix casing and multi-line stuff
2016-10-24 13:38:55 +01:00
)
Use radio buttons not textboxes for multi-choice No need to make people type when they can click, and gives us consistent data.
2016-10-31 15:05:22 +00:00
upload_or_api = RadioField(
Reword questions to make sense with radio buttons
2016-10-31 15:21:29 +00:00
'How are you going to send messages?',
Use radio buttons not textboxes for multi-choice No need to make people type when they can click, and gives us consistent data.
2016-10-31 15:05:22 +00:00
choices=[
('File upload', 'Upload a spreadsheet of recipients'),
('API', 'Integrate with the GOV.UK Notify API'),
('API and file upload', 'Both')
],
validators=[DataRequired()]
Fix casing and multi-line stuff
2016-10-24 13:38:55 +01:00
)
Added provider management pages in. - see priority - change priority
2016-05-11 09:43:55 +01:00
class ProviderForm(Form):
priority = IntegerField('Priority', [validators.NumberRange(min=1, max=100, message="Must be between 1 and 100")])
Admin app settings to save reply to email address for service.
2016-05-16 13:09:58 +01:00
class ServiceReplyToEmailFrom(Form):
Add some explaining to the email reply to page
2016-08-23 14:16:07 +01:00
email_address = email_address(label='Email reply to address')
Users can set a value that appears as the sender of a text message. It can be up to eleven characters alpha numeric, no special characters allowed.
2016-07-01 13:47:22 +01:00
class ServiceSmsSender(Form):
Add some explaining to the SMS sender page
2016-08-22 16:10:57 +01:00
sms_sender = StringField(
'Text message sender',
validators=[
Length(max=11, message="Enter fewer than 11 characters")
]
)
Users can set a value that appears as the sender of a text message. It can be up to eleven characters alpha numeric, no special characters allowed.
2016-07-01 13:47:22 +01:00
def validate_sms_sender(form, field):
import re
Can remove sms sender.
2016-07-01 16:32:21 +01:00
if field.data and not re.match('^[a-zA-Z0-9\s]+$', field.data):
Add some explaining to the SMS sender page
2016-08-22 16:10:57 +01:00
raise ValidationError('Use letters and numbers only')
Add a page to set organisation and branding option Platform admin only. Adds radio buttons to choose one of: - three hard-coded branding options - organisations from a list provided by the API
2016-08-08 10:28:40 +01:00
class ServiceBrandingOrg(Form):
def __init__(self, organisations=[], *args, **kwargs):
self.organisation.choices = organisations
super(ServiceBrandingOrg, self).__init__(*args, **kwargs)
branding_type = RadioField(
'Branding',
choices=[
('govuk', 'GOV.UK only'),
('both', 'GOV.UK and organisation'),
('org', 'Organisation only')
],
validators=[
DataRequired()
]
)
organisation = RadioField(
'Organisation',
validators=[
DataRequired()
]
)
Add a page to manage a service’s whitelist Services who are in alpha or building prototypes need a way of sending to any email address or phone number without having to sign the MOU. This commit adds a page where they can whitelist up to 5 email addresses and 5 phone numbers. It uses the ‘list entry’ UI pattern from the Digital Marketplace frontend toolkit [1] [2] [3]. I had to do some modification: - of the Javascript, to make it work with the GOV.UK Module pattern - of the template to make it work with WTForms - of the content security policy, because the list entry pattern uses Hogan[1], which needs to use `eval()` (this should be fine if we’re only allowing it for scripts that we serve) - of our SASS lint config, to allow browser-targeting mixins to come after normal rules (so that they can override them) This commit also adds a new form class to validate and populate the two whitelists. The validation is fairly rudimentary at the moment, and doesn’t highlight which item in the list has the error, but it’s probably good enough. The list can only be updated all-at-once, this is how it’s possible to remove items from the list without having to make multiple `POST` requests. 1. https://github.com/alphagov/digitalmarketplace-frontend-toolkit/blob/434ad307913651ecb041ab94bdee748ebe066d1a/toolkit/templates/forms/list-entry.html 2. https://github.com/alphagov/digitalmarketplace-frontend-toolkit/blob/434ad307913651ecb041ab94bdee748ebe066d1a/toolkit/scss/forms/_list-entry.scss 3. https://github.com/alphagov/digitalmarketplace-frontend-toolkit/blob/434ad307913651ecb041ab94bdee748ebe066d1a/toolkit/javascripts/list-entry.js 4. http://twitter.github.io/hogan.js/
2016-09-20 12:30:00 +01:00
class Whitelist(Form):
def populate(self, email_addresses, phone_numbers):
for form_field, existing_whitelist in (
(self.email_addresses, email_addresses),
(self.phone_numbers, phone_numbers)
):
for index, value in enumerate(existing_whitelist):
form_field[index].data = value
email_addresses = FieldList(
EmailField(
'',
validators=[
Optional(),
Email(message='Enter valid email addresses')
],
default=''
),
min_entries=5,
max_entries=5,
label="Email addresses"
)
phone_numbers = FieldList(
UKMobileNumber(
'',
validators=[
Optional()
],
default=''
),
min_entries=5,
max_entries=5,
label="Mobile numbers"
)
Reference in New Issue Copy Permalink