2017-06-13 18:11:13 +01:00
|
|
|
from random import (SystemRandom)
|
2016-01-21 17:29:24 +00:00
|
|
|
from datetime import (datetime, timedelta)
|
2018-03-13 13:07:02 +00:00
|
|
|
|
2016-05-20 13:43:31 +01:00
|
|
|
from sqlalchemy import func
|
2018-03-13 13:07:02 +00:00
|
|
|
from sqlalchemy.orm import joinedload
|
|
|
|
|
|
2016-01-07 17:31:17 +00:00
|
|
|
from app import db
|
2016-01-21 17:29:24 +00:00
|
|
|
from app.models import (User, VerifyCode)
|
2017-06-13 18:11:13 +01:00
|
|
|
|
2016-01-21 17:29:24 +00:00
|
|
|
|
2016-11-07 17:42:39 +00:00
|
|
|
def _remove_values_for_keys_if_present(dict, keys):
|
|
|
|
|
for key in keys:
|
|
|
|
|
dict.pop(key, None)
|
|
|
|
|
|
|
|
|
|
|
2016-01-21 17:29:24 +00:00
|
|
|
def create_secret_code():
|
2017-06-13 18:11:13 +01:00
|
|
|
return ''.join(map(str, [SystemRandom().randrange(10) for i in range(5)]))
|
2016-01-07 17:31:17 +00:00
|
|
|
|
|
|
|
|
|
2016-11-07 17:42:39 +00:00
|
|
|
def save_user_attribute(usr, update_dict={}):
|
|
|
|
|
db.session.query(User).filter_by(id=usr.id).update(update_dict)
|
|
|
|
|
db.session.commit()
|
|
|
|
|
|
|
|
|
|
|
2016-01-28 11:41:21 +00:00
|
|
|
def save_model_user(usr, update_dict={}, pwd=None):
|
|
|
|
|
if pwd:
|
|
|
|
|
usr.password = pwd
|
2016-05-11 10:56:24 +01:00
|
|
|
usr.password_changed_at = datetime.utcnow()
|
2016-01-11 17:19:06 +00:00
|
|
|
if update_dict:
|
2016-11-07 17:42:39 +00:00
|
|
|
_remove_values_for_keys_if_present(update_dict, ['id', 'password_changed_at'])
|
2016-01-11 17:19:06 +00:00
|
|
|
db.session.query(User).filter_by(id=usr.id).update(update_dict)
|
|
|
|
|
else:
|
|
|
|
|
db.session.add(usr)
|
2016-01-07 17:31:17 +00:00
|
|
|
db.session.commit()
|
|
|
|
|
|
|
|
|
|
|
2016-01-21 17:29:24 +00:00
|
|
|
def create_user_code(user, code, code_type):
|
|
|
|
|
verify_code = VerifyCode(code_type=code_type,
|
2017-02-14 14:04:11 +00:00
|
|
|
expiry_datetime=datetime.utcnow() + timedelta(minutes=30),
|
2016-01-21 17:29:24 +00:00
|
|
|
user=user)
|
|
|
|
|
verify_code.code = code
|
|
|
|
|
db.session.add(verify_code)
|
|
|
|
|
db.session.commit()
|
|
|
|
|
return verify_code
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
def get_user_code(user, code, code_type):
|
|
|
|
|
# Get the most recent codes to try and reduce the
|
|
|
|
|
# time searching for the correct code.
|
|
|
|
|
codes = VerifyCode.query.filter_by(
|
|
|
|
|
user=user, code_type=code_type).order_by(
|
2017-02-15 17:41:07 +00:00
|
|
|
VerifyCode.created_at.desc())
|
2017-11-03 09:51:50 +00:00
|
|
|
return next((x for x in codes if x.check_code(code)), None)
|
2016-01-21 17:29:24 +00:00
|
|
|
|
|
|
|
|
|
2016-03-09 17:46:01 +00:00
|
|
|
def delete_codes_older_created_more_than_a_day_ago():
|
|
|
|
|
deleted = db.session.query(VerifyCode).filter(
|
|
|
|
|
VerifyCode.created_at < datetime.utcnow() - timedelta(hours=24)
|
|
|
|
|
).delete()
|
|
|
|
|
db.session.commit()
|
|
|
|
|
return deleted
|
|
|
|
|
|
|
|
|
|
|
2016-01-21 17:29:24 +00:00
|
|
|
def use_user_code(id):
|
|
|
|
|
verify_code = VerifyCode.query.get(id)
|
|
|
|
|
verify_code.code_used = True
|
|
|
|
|
db.session.add(verify_code)
|
|
|
|
|
db.session.commit()
|
|
|
|
|
|
|
|
|
|
|
2016-01-12 10:39:49 +00:00
|
|
|
def delete_model_user(user):
|
|
|
|
|
db.session.delete(user)
|
|
|
|
|
db.session.commit()
|
|
|
|
|
|
|
|
|
|
|
2016-05-06 11:07:11 +01:00
|
|
|
def delete_user_verify_codes(user):
|
|
|
|
|
VerifyCode.query.filter_by(user=user).delete()
|
|
|
|
|
db.session.commit()
|
|
|
|
|
|
|
|
|
|
|
2017-02-15 16:18:05 +00:00
|
|
|
def count_user_verify_codes(user):
|
2017-02-16 12:44:40 +00:00
|
|
|
query = VerifyCode.query.filter(
|
|
|
|
|
VerifyCode.user == user,
|
|
|
|
|
VerifyCode.expiry_datetime > datetime.utcnow(),
|
|
|
|
|
VerifyCode.code_used.is_(False)
|
|
|
|
|
)
|
|
|
|
|
return query.count()
|
2017-02-15 16:18:05 +00:00
|
|
|
|
|
|
|
|
|
2016-11-07 17:42:39 +00:00
|
|
|
def get_user_by_id(user_id=None):
|
2016-01-07 17:31:17 +00:00
|
|
|
if user_id:
|
2016-03-11 12:39:55 +00:00
|
|
|
return User.query.filter_by(id=user_id).one()
|
2016-01-07 17:31:17 +00:00
|
|
|
return User.query.filter_by().all()
|
2016-01-25 11:14:23 +00:00
|
|
|
|
|
|
|
|
|
2016-02-23 11:03:59 +00:00
|
|
|
def get_user_by_email(email):
|
2016-05-20 13:43:31 +01:00
|
|
|
return User.query.filter(func.lower(User.email_address) == func.lower(email)).one()
|
2016-02-23 11:03:59 +00:00
|
|
|
|
|
|
|
|
|
2018-07-09 17:25:13 +01:00
|
|
|
def get_users_by_partial_email(email):
|
|
|
|
|
return User.query.filter(User.email_address.ilike("\%{}\%".format(email))).all()
|
|
|
|
|
|
|
|
|
|
|
2016-01-25 11:14:23 +00:00
|
|
|
def increment_failed_login_count(user):
|
|
|
|
|
user.failed_login_count += 1
|
|
|
|
|
db.session.add(user)
|
|
|
|
|
db.session.commit()
|
2016-01-28 11:32:46 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
def reset_failed_login_count(user):
|
|
|
|
|
if user.failed_login_count > 0:
|
|
|
|
|
user.failed_login_count = 0
|
|
|
|
|
db.session.add(user)
|
|
|
|
|
db.session.commit()
|
2017-02-07 11:05:15 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
def update_user_password(user, password):
|
2017-02-16 15:20:30 +00:00
|
|
|
# reset failed login count - they've just reset their password so should be fine
|
2017-02-07 11:05:15 +00:00
|
|
|
user.password = password
|
|
|
|
|
user.password_changed_at = datetime.utcnow()
|
|
|
|
|
db.session.add(user)
|
|
|
|
|
db.session.commit()
|
2018-03-13 13:07:02 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
def get_user_and_accounts(user_id):
|
|
|
|
|
return User.query.filter(
|
|
|
|
|
User.id == user_id
|
|
|
|
|
).options(
|
|
|
|
|
# eagerly load the user's services and organisations, and also the service's org and vice versa
|
|
|
|
|
# (so we can see if the user knows about it)
|
|
|
|
|
joinedload('services'),
|
|
|
|
|
joinedload('organisations'),
|
|
|
|
|
joinedload('organisations.services'),
|
|
|
|
|
joinedload('services.organisation'),
|
|
|
|
|
).one()
|
