U 45hH@s"dZddlmZddlmZddlmZddlmZddl m Z ddl m Z ddl mZmZdd lmZdd lmZmZdd lmZmZmZmZmZmZdd lmZdd l m!Z!ddl"m#Z#ddl$m%Z%ddl m&Z&ddl'm(Z(m)Z)m*Z*m+Z+ddl,m-Z-m.Z.m/Z/m0Z0m1Z1ddl2m3Z3ddl4m5Z5ddl6m7Z7GdddeZ8GdddeeZ9GdddeZ:GdddeZ;GdddeZGd d!d!eZGd&d'd'eZ?Gd(d)d)eZ@Gd*d+d+e&ZAGd,d-d-e&ZBGd.d/d/eZCGd0d1d1eZDGd2d3d3eZEd4S)5a Adtlas Authentication Views Enhanced authentication views for the Adtlas DAI Management System. Includes login, registration, password reset, and profile management. Features: - Enhanced login with remember me functionality - User registration with email verification - Password reset with secure tokens - Profile management - Activity logging and session management Author: Adtlas Development Team Version: 2.0.0 Last Updated: 2025-07-09 ) timedelta)timezone) transaction)messages) JsonResponse)redirect)ViewFormView)LoginRequiredMixin)loginlogout)PasswordChangeViewPasswordChangeDoneViewPasswordResetViewPasswordResetDoneViewPasswordResetConfirmViewPasswordResetCompleteView)default_token_generator)urlsafe_base64_decode) force_str) reverse_lazy) TemplateView) LoginFormUserRegistrationFormPasswordResetRequestFormPasswordResetConfirmForm)User UserSessionRoleUserRolePasswordResetToken)Activity) get_client_ip)log_user_activitycsHeZdZdZdZeZfddZfddZddZ fd d Z Z S) LoginViewzS Enhanced login view with remember me functionality and security features. zauthentication/login.htmlcs$|jjrtdStj|f||Sz< Redirect authenticated users to dashboard. core:dashboarduseris_authenticatedrsuperdispatchselfrequestargskwargs __class__4/var/www/html/Focus/src/apps/authentication/views.pyr+>szLoginView.dispatchcst}|j|d<|S)z: Pass request to form for authentication. r.)r*get_form_kwargsr.r-r0r1r3r4r5Fs  zLoginView.get_form_kwargsc CsV|}t|j||jdr0|jjdn|jjdt|_ t|_ |j ddgdt j |dd|rv|jnd d |jt|j|jjd d |jdd dddtjj||jjjt|j|jjd d ttt|jdrdndddddt|jd|d|jjdp>|jjd}|rNt|StdS)z* Handle successful login. remember_mei'r last_login last_activity) update_fieldsr User Systemz performed loginHTTP_USER_AGENTFZemail_password)r7 login_methodr(action descriptionr. ip_address user_agentmetadata)daysT)rCrDr9 expires_at is_active)r( session_keydefaultszWelcome back, !nextr&)get_user auth_loginr. cleaned_datagetsession set_expiryrnowr8r9saver! log_activityemailr"METArobjectsupdate_or_createrKrrsuccessget_short_nameGETPOSTr)r-formr(next_urlr3r3r4 form_validNsJ       zLoginView.form_validcs|r(|D]}t|jt|q|jD]N\}}|dkr2|j|jp\| dd }|D]}t|j|d|qbq2|jst|jd|j d}|rt |S)zR Handle failed login attempt and convert form errors to messages. __all___ : z&Please check your input and try again.rX)non_field_errorsrerrorr.strerrorsitemsfieldslabelreplacetitlerQrRr* form_invalid)r-r`rhfieldrj field_namerXr1r3r4rps  zLoginView.form_invalid) __name__ __module__ __qualname____doc__ template_namer form_classr+r5rbrp __classcell__r3r3r1r4r$7s  =r$c@s eZdZdZddZddZdS) LogoutViewz4 Enhanced logout view with session cleanup. cCs ||S)z( Handle logout request. )post)r-r.r3r3r4rRszLogoutView.getc Cs|j}tj|dd|r|jndd|t||jddddid z(tjj||j j d d }d |_ | Wntj k rYnXt|t|d tdS)z, Handle logout and cleanup. r r;r<z performed logoutr=r> logout_methodZuser_initiatedr@T)r(rKrJFz&You have been successfully logged out. auth:login)r(r!rWrXr"rYrRrrZrSrKrJrV DoesNotExist auth_logoutrr\r)r-r.r(Z user_sessionr3r3r4r{s.    zLogoutView.postN)rsrtrurvrRr{r3r3r3r4rzsrzcs<eZdZdZdZeZfddZddZfddZ Z S) RegisterViewz7 User registration view with profile creation. zauthentication/register.htmlcs$|jjrtdStj|f||Sr%r'r,r1r3r4r+szRegisterView.dispatchcCst|}z(tjjddd}tjj||dddWntjk rPYnXt j |dd|rf|j ndd |j d t |jt |t|j |j jd d d |jdd W5QRXt|j dtdS)z1 Handle successful registration. T) is_defaultrJNz)Default role assigned during registration)r(role assigned_bynotescreater;r<z performed createrr=r>Z email_form)Zregistration_methodZemail_verified r(rArBr. object_type object_id object_reprrCrDrEzMAccount created successfully! Please check your email to verify your account.r})ratomicrVrrZrRrrr~r!rWrXr.riidr"rY is_verifiedrr\r)r-r`r( default_roler3r3r4rbs>  zRegisterView.form_validcs|r(|D]}t|jt|q|jD]N\}}|dkr2|j|jp\| dd }|D]}t|j|d|qbq2t |S)zQ Handle failed registration and convert form errors to messages. rcrdrerf) rgrrhr.rirjrkrlrmrnror*rp)r-r`rhrqrjrrr1r3r4rps zRegisterView.form_invalid) rsrtrurvrwrrxr+rbrpryr3r3r1r4rs  -rc@s eZdZdZdZeZddZdS)PasswordResetRequestViewz& Password reset request view. z*authentication/password_reset_request.htmlc Csz|}t|jd|rrtj|jdd|jr4|jjndd|jdt|j t|t |j|jj ddd d id t d S) z0 Handle password reset request. z`If the email address exists in our system, you will receive password reset instructions shortly.adminr;r<z performed adminr r=r>rAZpassword_reset_requestedrr})rVrr\r.r!rWr(rXrirr"rYrRr)r-r` reset_tokenr3r3r4rb-s& z#PasswordResetRequestView.form_validN)rsrtrurvrwrrxrbr3r3r3r4r&srcs<eZdZdZdZeZfddZfddZddZ Z S) rz+ Password reset confirmation view. *authentication/password_reset_confirm.htmlcs|d|_zBtjj|jdd|_|jrBt|dtdWS|jj |_ Wn*tj k rxt|dtdYSXt j |f||S)z; Validate reset token before showing form. tokenF)ris_usedz:Password reset link has expired. Please request a new one.zauth:password_reset_requestz6Invalid password reset link. Please request a new one.) rRrr rZr is_expiredrrhrr(r~r*r+r,r1r3r4r+Ss     z!PasswordResetConfirmView.dispatchcst}|j|d<|S)z$ Pass user to form. r()r*r5r(r6r1r3r4r5ks  z(PasswordResetConfirmView.get_form_kwargscCstr|}d|j_|jtj|dd|r8|jndd|jdt |j t |t |j|jj ddd d id W5QRXt|jd td S)z3 Handle successful password reset. Tupdater;r<z performed updaterr=r>rAZpassword_reset_completedrzBPassword reset successfully! Please log in with your new password.r})rrrVrrr!rWrXr.rirr"rYrRrr\r)r-r`r(r3r3r4rbss*   z#PasswordResetConfirmView.form_valid) rsrtrurvrwrrxr+r5rbryr3r3r1r4rLs   rc@s$eZdZdZdZdZdZedZdS)CustomPasswordResetViewz% Custom password reset view. z"authentication/password_reset.htmlz(authentication/password_reset_email.htmlz)authentication/password_reset_subject.txtzauth:password_reset_doneN) rsrtrurvrwemail_template_namesubject_template_namer success_urlr3r3r3r4rs rc@seZdZdZdZdS)CustomPasswordResetDoneViewz* Custom password reset done view. z'authentication/password_reset_done.htmlNrsrtrurvrwr3r3r3r4rsrc@seZdZdZdZedZdS)CustomPasswordResetConfirmViewz- Custom password reset confirm view. rzauth:password_reset_completeN)rsrtrurvrwrrr3r3r3r4rsrc@seZdZdZdZdS)CustomPasswordResetCompleteViewz. Custom password reset complete view. z+authentication/password_reset_complete.htmlNrr3r3r3r4rsrc@seZdZdZddZdS)AccountActivationViewz" Account activation view. c Csztt|}tjj|d}Wn"ttttjfk r@d}YnX|dk rt ||rd|_ d|_ | tj|dd|jd|dt|jt|t||jdd d d id t|d tdSt|dtdSdS)z, Handle account activation. )pkNTrr;z activated their accountrr=r>rAZaccount_activatedrz-Your account has been activated successfully!zauth:activation_completez*Activation link is invalid or has expired.r})rrrrZrR TypeError ValueError OverflowErrorr~r check_tokenrrJrVr!rWrXrirr"rYrr\rrh)r-r.uidb64ruidr(r3r3r4rRs2      zAccountActivationView.getNrsrtrurvrRr3r3r3r4rsrc@seZdZdZdZdS)ActivationSentViewz2 Activation email sent confirmation view. z#authentication/activation_sent.htmlNrr3r3r3r4rsrc@seZdZdZdZdS)ActivationCompleteViewz+ Account activation complete view. z'authentication/activation_complete.htmlNrr3r3r3r4rsrc@seZdZdZddZdS)CheckEmailAvailabilityViewz7 Check if email is available for registration. c CszZ|jdd}|s2tddddddWStjj|d }t| |d d ddWSt k r}z tdt |ddddWYSd }~XYnXd S) z? Check if email is available for registration. rXr>FzEmail is requiredrh) availablerhstatus)r)rXr\)rrXrN) r^rRlowerstriprrrZfilterexists Exceptionri)r-r.rXrer3r3r4rRs4zCheckEmailAvailabilityView.getNrr3r3r3r4rsrcs,eZdZdZdZedZfddZZS)CustomPasswordChangeViewzD Custom password change view with additional functionality. z"accounts/auth/password_change.htmlzaccounts:password_change_donecsHt|}t|jjdt|j|jjdd|jdt |jd|S)Npassword_changer=r>)r(rArCrDr.z,Your password has been changed successfully.) r*rbr#r.r(r"rYrRrr\)r-r`responser1r3r4rbs z#CustomPasswordChangeView.form_valid) rsrtrurvrwrrrbryr3r3r1r4rsrc@seZdZdZdZdS)CustomPasswordChangeDoneViewz+ Custom password change done view. z'accounts/auth/password_change_done.htmlNrr3r3r3r4r*srN)Frvdatetimer django.utilsr django.dbrdjango.contribr django.httprdjango.shortcutsrdjango.views.genericrr django.contrib.auth.mixinsr django.contrib.authr rPr rdjango.contrib.auth.viewsr rrrrrdjango.contrib.auth.tokensrdjango.utils.httprdjango.utils.encodingr django.urlsrrZapps.authentication.formsrrrrapps.accounts.modelsrrrrr apps.activities.modelsr!apps.common.utilsr"Zapps.activities.helpersr#r$rzrrrrrrrrrrrrr3r3r3r4sF                q/O&J ('