app/main/views/verify.py

from flask import (
    render_template,
    redirect,
    jsonify,
    session,
    url_for
)

from flask_login import login_user

from app.main import main
from app.main.dao import users_dao, verify_codes_dao
from app.main.forms import VerifyForm


@main.route('/verify', methods=['GET', 'POST'])
def verify():
    # TODO there needs to be a way to regenerate a session id
    # or handle gracefully.
    user_id = session['user_details']['id']
    codes = verify_codes_dao.get_codes(user_id)
    form = VerifyForm(codes)
    if form.validate_on_submit():
        verify_codes_dao.use_code_for_user_and_type(user_id=user_id, code_type='email')
        verify_codes_dao.use_code_for_user_and_type(user_id=user_id, code_type='sms')

        # TODO complete verify and login flow
        # users_dao.activate_user(user.id)
        # login_user(user)

        return redirect(url_for('.add_service', first='first'))
    return render_template('views/verify.html', form=form)
Refactor for code_not_received, sign_in, two_factor and verify. 2016-01-05 17:08:50 +00:00			`from flask import (`
User registration now creates user via api. Verification flow is still to be completed. Foreign key constraint on verify codes to user table removed. 2016-01-19 22:47:42 +00:00			`render_template,`
			`redirect,`
			`jsonify,`
			`session,`
			`url_for`
			`)`
Adding logging. Raise ValidationError for validate_codes rather than returning a true or false. 2016-01-05 13:13:06 +00:00
109526520: Implement verify flow When a person registers with a valid mobile number and email address, a code will be sent to each. That person can enter the verify codes and continue to the add-service page. 2015-12-07 16:08:30 +00:00			`from flask_login import login_user`
109526520: render verify template with VerifyForm 2015-12-04 16:21:01 +00:00
109526520: Implement verify flow When a person registers with a valid mobile number and email address, a code will be sent to each. That person can enter the verify codes and continue to the add-service page. 2015-12-07 16:08:30 +00:00			`from app.main import main`
109526036: Fix bug. If one of the codes was invalid and one was valid on the verify page the valid code would be marked as used. 2015-12-10 16:34:29 +00:00			`from app.main.dao import users_dao, verify_codes_dao`
109526520: render verify template with VerifyForm 2015-12-04 16:21:01 +00:00			`from app.main.forms import VerifyForm`


Refactor for code_not_received, sign_in, two_factor and verify. 2016-01-05 17:08:50 +00:00			`@main.route('/verify', methods=['GET', 'POST'])`
			`def verify():`
			`# TODO there needs to be a way to regenerate a session id`
Merge conflicts with master. 2016-01-05 17:24:13 +00:00			`# or handle gracefully.`
User registration now creates user via api. Verification flow is still to be completed. Foreign key constraint on verify codes to user table removed. 2016-01-19 22:47:42 +00:00			`user_id = session['user_details']['id']`
			`codes = verify_codes_dao.get_codes(user_id)`
Fix for security hole with setting session['user_id'] before second factor of authentication has been authorised. 2016-01-07 12:43:10 +00:00			`form = VerifyForm(codes)`
Merge conflicts with master. 2016-01-05 17:24:13 +00:00			`if form.validate_on_submit():`
User registration now creates user via api. Verification flow is still to be completed. Foreign key constraint on verify codes to user table removed. 2016-01-19 22:47:42 +00:00			`verify_codes_dao.use_code_for_user_and_type(user_id=user_id, code_type='email')`
			`verify_codes_dao.use_code_for_user_and_type(user_id=user_id, code_type='sms')`

			`# TODO complete verify and login flow`
			`# users_dao.activate_user(user.id)`
			`# login_user(user)`

Page for adding a new service This page is exactly the same as the page for adding your first service, save the heading text. So all this commit does is: - set up two routes (`/add-service`, `/add-service/first`) for each of the two journeys and change the existing journeys to use the `/add-service/first` route - add logic to show different heading text depending on the journey - add a link to the new (`/add-service`) route in the service chooser dropdown 2016-01-18 10:47:53 +00:00			`return redirect(url_for('.add_service', first='first'))`
Merge conflicts with master. 2016-01-05 17:24:13 +00:00			`return render_template('views/verify.html', form=form)`