When user clicks on verification link but doesn't complete

verification, if they try to use link again the code will have been used. Therefore they will need a new email with new link to use for verification.
2026-02-05 02:42:26 -05:00 · 2016-03-22 13:38:35 +00:00
parent 10de99e97f
commit 8fc154d3d2
2 changed files with 66 additions and 5 deletions
--- a/app/main/views/verify.py
+++ b/app/main/views/verify.py
@@ -55,17 +55,19 @@ def verify_email(token):

        token_data = json.loads(token_data)
        verified = user_api_client.check_verify_code(token_data['user_id'], token_data['secret_code'], 'email')
-
        if verified[0]:
            user = user_api_client.get_user(token_data['user_id'])
            user_api_client.send_verify_code(user.id, 'sms', user.mobile_number)
            session['user_details'] = {"email": user.email_address, "id": user.id}
            return redirect('verify')
        else:
-            message = "There was a problem verifying your account. Error message: '{}'".format(verified[1])
-            flash(message)
-            # TODO could this ask for a resend instead?
-            return redirect(url_for('main.index'))
+            if verified[1] == 'Code has expired':
+                flash("The link in the email we sent you has expired. We've sent you a new one.")
+                return redirect(url_for('main.resend_email_verification'))
+            else:
+                message = "There was a problem verifying your account. Error message: '{}'".format(verified[1])
+                flash(message)
+                return redirect(url_for('main.index'))

    except SignatureExpired:
        flash('The link in the email we sent you has expired')