U hnh™Nã@sdZddlZddlmZddlmZmZmZddlm Z m Z ddl mZddlmZddlmZmZdd lmZdd lmZdd lmZdd lmZdd lmZddlmZddl m!Z!ddl"m#Z#ddl$m%Z%ddl&m'Z'ddl(m)Z)ddl*m+Z+ddl,m-Z-m.Z.m/Z/ddl0m1Z1ddl2m3Z3m4Z4m5Z5m6Z6m7Z7ddl8m9Z9m:Z:m;Z;mZ>m?Z?Gdd„de/ƒZ@Gdd„de1e-ƒZAGdd„de/ƒZBGd d!„d!e/ƒZCGd"d#„d#e/ƒZDGd$d%„d%e1e-ƒZEe@ F¡ZGeA F¡ZHeB F¡ZIeC F¡ZJeD F¡ZKeE F¡ZLed&d'„ƒZMed(d)„ƒZNed*d+„ƒZOdS),aÏ Adtlas Authentication Views Enhanced authentication views for the Adtlas DAI Management System. Includes login, registration, password reset, and profile management. Features: - Enhanced login with remember me functionality - User registration with email verification - Password reset with secure tokens - Profile management - Activity logging and session management Author: Adtlas Development Team Version: 2.0.0 Last Updated: 2025-07-09 éN)Ú timedelta)ÚrenderÚredirectÚget_object_or_404)ÚloginÚlogout)Úlogin_required)Úmessages)Ú JsonResponseÚ HttpResponse)Útimezone)ÚValidationError)Ú transaction)Úrequire_http_methods)Ú csrf_protect)Ú never_cache)Úvalidate_password)Ú Paginator)ÚQ)Úsettings)Úreverse)Úmethod_decorator)ÚViewÚ TemplateViewÚFormView)ÚLoginRequiredMixiné)Ú LoginFormÚUserRegistrationFormÚPasswordResetRequestFormÚPasswordResetConfirmFormÚ ProfileForm)ÚUserÚProfileÚ UserSessionÚ UserActivityÚPasswordResetTokenÚRoleÚUserRolecsPeZdZdZdZeZ‡fdd„Z‡fdd„Zdd„Z ‡fd d „Z d d „Z ‡Z S) Ú LoginViewzS Enhanced login view with remember me functionality and security features. zaccounts/login.htmlcs$|jjrtdƒStƒj|f|ž|ŽS©z< Redirect authenticated users to dashboard. úcore:dashboard©ÚuserZis_authenticatedrÚsuperÚdispatch©ÚselfÚrequestÚargsÚkwargs©Ú __class__©ú src/apps/authentication/views.pyr/;szLoginView.dispatchcstƒ ¡}|j|d<|S)z: Pass request to form for authentication. r2)r.Úget_form_kwargsr2©r1r4r5r7r8r9Cs  zLoginView.get_form_kwargsc Cs<| ¡}t|j|ƒ|j d¡r0|jj d¡n|jj d¡t ¡|_ t ¡|_ |j ddgdt j j|d| ¡|jj dd ¡|j dd ¡d d œd tj j||jjj| ¡|jj dd ¡t ¡t ¡t|j d¡rÚdnddddœdt |jd| ¡›d¡|jj d¡p$|jj d¡}|r4t|ƒStdƒS)z* Handle successful login. Ú remember_mei'rÚ last_loginÚ last_activity)Z update_fieldsrÚHTTP_USER_AGENTÚFZemail_password)r;Z login_method©r-ÚactionÚ ip_addressÚ user_agentÚdetailsér)ZdaysT)rBrCr=Z expires_atÚ is_active)r-Ú session_keyÚdefaultszWelcome back, ú!Únextr+)Zget_userÚ auth_loginr2Ú cleaned_dataÚgetÚsessionZ set_expiryr Znowr<r=Úsaver%ÚobjectsÚcreateÚ get_client_ipÚMETAr$Zupdate_or_createrGrr ÚsuccessZget_short_nameÚGETÚPOSTr)r1Úformr-Znext_urlr7r7r8Ú form_validKsF     þû  ûý þzLoginView.form_validc sJ|j d¡}|r>tjjdd| ¡|jj dd¡|dddœd tƒ  |¡S) z. Handle failed login attempt. ÚemailNrr>r?ZfailedzInvalid credentials)rYÚstatusÚerrorr@) rLrMr%rPrQrRr2rSr.Ú form_invalid)r1rWrYr5r7r8r\†s ýû zLoginView.form_invalidcCs4|jj d¡}|r"| d¡d}n|jj d¡}|S©z( Get client IP address. ZHTTP_X_FORWARDED_FORú,rZ REMOTE_ADDR©r2rSrMÚsplit©r1Zx_forwarded_forZipr7r7r8rR›s zLoginView.get_client_ip) Ú__name__Ú __module__Ú __qualname__Ú__doc__Ú template_namerÚ form_classr/r9rXr\rRÚ __classcell__r7r7r5r8r)4s  ; r)c@s(eZdZdZdd„Zdd„Zdd„ZdS) Ú LogoutViewz4 Enhanced logout view with session cleanup. cCs | |¡S)z( Handle logout request. )Úpost)r1r2r7r7r8rM¬szLogoutView.getcCsŠ|j}tjj|d| ¡|j dd¡ddidz(tjj||jj dd}d |_ |  ¡Wntj k rlYnXt |ƒt |d ¡td ƒS) z, Handle logout and cleanup. rr>r?Z logout_methodZuser_initiatedr@T)r-rGrFFz&You have been successfully logged out.úauthentication:login)r-r%rPrQrRrSrMr$rNrGrFrOÚ DoesNotExistÚ auth_logoutr rTr)r1r2r-Z user_sessionr7r7r8rj²s* û ý  zLogoutView.postcCs4|jj d¡}|r"| d¡d}n|jj d¡}|Sr]r_rar7r7r8rRÓs zLogoutView.get_client_ipN)rbrcrdrerMrjrRr7r7r7r8ri§s!rics8eZdZdZdZeZ‡fdd„Zdd„Zdd„Z ‡Z S) Ú RegisterViewz7 User registration view with profile creation. zaccounts/register.htmlcs$|jjrtdƒStƒj|f|ž|ŽSr*r,r0r5r7r8r/æszRegisterView.dispatchc Cs°t ¡Œ| ¡}z(tjjddd}tjj||dddWntjk rPYnXt jj|ddt |j ƒt |ƒ|  ¡|j j dd ¡d |jd œd W5QRXt |j d ¡tdƒS)z1 Handle successful registration. T)Z is_defaultrFNz)Default role assigned during registration)r-ÚroleZ assigned_byZnotesrQr"r>r?Z email_form)Zregistration_methodZemail_verified©r-rAÚ object_typeÚ object_idÚ object_reprrBrCrDzMAccount created successfully! Please check your email to verify your account.rk)rÚatomicrOr'rPrMr(rQrlr%ÚstrÚidrRr2rSZ is_verifiedr rTr)r1rWr-Z default_roler7r7r8rXîs: ü þøþzRegisterView.form_validcCs4|jj d¡}|r"| d¡d}n|jj d¡}|Sr]r_rar7r7r8rRs zRegisterView.get_client_ip) rbrcrdrerfrrgr/rXrRrhr7r7r5r8rnßs  +rnc@s(eZdZdZdZeZdd„Zdd„ZdS)ÚPasswordResetRequestViewz& Password reset request view. z$accounts/password_reset_request.htmlc Cs^| ¡}t |jd¡|rVtjj|jddt|j ƒt|ƒ|  ¡|jj   dd¡ddidt d ƒS) z0 Handle password reset request. z`If the email address exists in our system, you will receive password reset instructions shortly.Úadminr&r>r?rAZpassword_reset_requestedrprk)rOr rTr2r%rPrQr-rurvrRrSrMr)r1rWÚ reset_tokenr7r7r8rX,s"þø z#PasswordResetRequestView.form_validcCs4|jj d¡}|r"| d¡d}n|jj d¡}|Sr]r_rar7r7r8rRHs z&PasswordResetRequestView.get_client_ipN) rbrcrdrerfrrgrXrRr7r7r7r8rw%s rwcsDeZdZdZdZeZ‡fdd„Z‡fdd„Zdd„Z d d „Z ‡Z S) ÚPasswordResetConfirmViewz+ Password reset confirmation view. z$accounts/password_reset_confirm.htmlcsŽ| d¡|_zBtjj|jdd|_|j ¡rBt |d¡tdƒWS|jj |_ Wn*tj k rxt |d¡tdƒYSXt ƒj |f|ž|ŽS)z; Validate reset token before showing form. ÚtokenF)r{Úis_usedz:Password reset link has expired. Please request a new one.z%authentication:password_reset_requestz6Invalid password reset link. Please request a new one.) rMr{r&rPryZ is_expiredr r[rr-rlr.r/r0r5r7r8r/[s þ    z!PasswordResetConfirmView.dispatchcstƒ ¡}|j|d<|S)z$ Pass user to form. r-)r.r9r-r:r5r7r8r9ss  z(PasswordResetConfirmView.get_form_kwargsc Cs~t ¡Z| ¡}d|j_|j ¡tjj|ddt|j ƒt|ƒ|  ¡|j j   dd¡ddidW5QRXt |j d ¡td ƒS) z3 Handle successful password reset. TÚupdater"r>r?rAZpassword_reset_completedrpzBPassword reset successfully! Please log in with your new password.rk)rrtrOryr|r%rPrQrurvrRr2rSrMr rTr)r1rWr-r7r7r8rX{s&  ø þz#PasswordResetConfirmView.form_validcCs4|jj d¡}|r"| d¡d}n|jj d¡}|Sr]r_rar7r7r8rRšs z&PasswordResetConfirmView.get_client_ip) rbrcrdrerfr rgr/r9rXrRrhr7r7r5r8rzTs  rzc@s,eZdZdZdZdd„Zdd„Zdd„Zd S) Ú ProfileViewz+ User profile view and management. zaccounts/profile.htmlc CsŽtjj|jd\}}t||jd}tjj|jdd d¡}tjj|jd  d¡dd…}t jj|jdd  d ¡}|||||d œ}t ||j |ƒS) z' Display user profile. ©r-©Úinstancer-T©r-rFroú -created_atNé ú-last_activity©rWÚprofileÚ user_rolesÚrecent_activitiesÚactive_sessions) r#rPÚ get_or_creater-r!r(ÚfilterÚselect_relatedr%Úorder_byr$rrf© r1r2r‡ZcreatedrWrˆr‰rŠÚcontextr7r7r8rM¬s8þýÿþþþýûzProfileView.getc Cstjj|jd\}}t|j|j||jd}| ¡r¢t  ¡N|  ¡t jj |jddt |jƒt |ƒ| ¡|j dd¡dt|jƒidW5QRXt |d ¡td ƒStjj|jd d  d ¡}t jj|jd d¡dd…}tjj|jd d  d¡}|||||dœ}t||j|ƒS)z( Handle profile update. rr€r}r#r>r?Zupdated_fieldsrpzProfile updated successfully!zauthentication:profileTr‚rorƒNr„r…r†)r#rPr‹r-r!rVZFILESZis_validrrtrOr%rQrurvrRrSrMÚlistZ changed_datar rTrr(rŒrrŽr$rrfrr7r7r8rjÑsV   ø þýÿþþþýûzProfileView.postcCs4|jj d¡}|r"| d¡d}n|jj d¡}|Sr]r_rar7r7r8rRs zProfileView.get_client_ipN)rbrcrdrerfrMrjrRr7r7r7r8r~¦s %3r~cCsJ|j dd¡ ¡ ¡}|s(tdddœƒStjj|d ¡}t| |dœƒS)z7 Check if email is available for registration. rYr?FzEmail is required)Ú availabler[)rY)r’rY) rUrMÚlowerÚstripr r"rPrŒÚexists)r2rYr•r7r7r8Úcheck_email_availabilitysþr–cCsº|jdkrtddiddSzvtjj||jdd}|j|jjkrNtdd d œƒWSd|_|  ¡t jj |jd d t |j ƒt |ƒd didtddiƒWStjk r´tddd œƒYSXdS)z, Terminate a specific user session. rVr[zMethod not allowedi•)rZT)rvr-rFFz Cannot terminate current session)rTr[rxr$rAZsession_terminated)r-rArqrrrsrDrTzSession not foundN)Úmethodr r$rPrMr-rGrNrFrOr%rQrurvrl)r2Z session_idrNr7r7r8Úterminate_session.s: ýþ ú þr˜c Cs¾tjj|jd d¡}|j d¡}|r2|j|d}t|j dd¡ƒ}t|j dd¡ƒ}t||ƒ}|  |¡}g}|D],}|  |j |j |j |j|j ¡|jd œ¡qrt||j|j||jd œd œƒS) z; API endpoint for user activities with pagination. rrƒrA)rAÚpagerÚper_pager„)rvrArqrsÚ created_atrD)r™ZpagesršZtotal)Ú activitiesZ pagination)r%rPrŒr-rŽrUrMÚintrZget_pageÚappendrvrArqrsr›Z isoformatrDr ZnumberZ num_pagesÚcount) r2rœZ action_filterr™ršZ paginatorZpage_objZactivities_dataZactivityr7r7r8Úuser_activities_api[s<ÿþ    ú üþr )PreZuuidZdatetimerZdjango.shortcutsrrrZdjango.contrib.authrrKrrmZdjango.contrib.auth.decoratorsrZdjango.contribr Z django.httpr r Z django.utilsr Zdjango.core.exceptionsr Z django.dbrZdjango.views.decorators.httprZdjango.views.decorators.csrfrZdjango.views.decorators.cacherZ'django.contrib.auth.password_validationrZdjango.core.paginatorrZdjango.db.modelsrZ django.confrZ django.urlsrZdjango.utils.decoratorsrZdjango.views.genericrrrZdjango.contrib.auth.mixinsrZformsrrrr r!Zapps.accounts.modelsr"r#r$r%r&r'r(r)rirnrwrzr~Zas_viewZ login_viewZ logout_viewZ register_viewZpassword_reset_request_viewZpassword_reset_confirm_viewZ profile_viewr–r˜r r7r7r7r8ÚsR                $s8F/Rk  ,