U eCh5@sdZddlmZddlmZmZddlmZddlm Z ddl m Z ddl mZddlmZd d lmZmZGd d d eZGd ddejZGdddeZGdddejZGdddejZGdddejZGdddejZdS)aa Enhanced Authentication Forms for Stream Processor This module provides forms for enhanced authentication features including: - Enhanced login form with 2FA support - Password change form with strength validation - 2FA setup and management forms - User profile security settings Author: Stream Processor Development Team Version: 1.0.0 Created: 2025 )forms)AuthenticationFormPasswordChangeForm)User)ValidationError) gettext_lazy) authenticate)validate_password) UserProfilevalidate_strong_passwordcseZdZdZejdejddddddd Zejejd d d dddd Z ej dej ddiddZ dfdd Z ddZZS)EnhancedLoginFormz/ Enhanced login form with 2FA support. zappearance-none rounded-none relative block w-full px-3 py-2 border border-gray-300 placeholder-gray-500 text-gray-900 rounded-t-md focus:outline-none focus:ring-primary-500 focus:border-primary-500 focus:z-10 sm:text-smZUsernameusernameT)class placeholder autocompleterequiredattrs) max_lengthwidgetzappearance-none rounded-none relative block w-full px-3 py-2 border border-gray-300 placeholder-gray-500 text-gray-900 rounded-b-md focus:outline-none focus:ring-primary-500 focus:border-primary-500 focus:z-10 sm:text-smPasswordcurrent-password)rFrGh-4 w-4 text-primary-600 focus:ring-primary-500 border-gray-300 rounded)rrNcs$tj|f||||_d|_dSN)super__init__request user_cache)selfrargskwargs __class__>/var/www/html/StreamProcessor/src/apps/authentication/forms.pyr:szEnhancedLoginForm.__init__cCs|jd}|jd}|dk r|rztjj|d}tjj|d\}}|r^ttdddt |j ||d|_ |j dkrttd d d|j j sttd d d| rttd ddWn&tjk rttd d dYnX|jS)Nrpassword)ruserz\Account is temporarily locked due to multiple failed login attempts. Please try again later.Zaccount_locked)code)rr'zZPlease enter a correct username and password. Note that both fields may be case-sensitive. invalid_loginzThis account is inactive.inactivez old_passwordr\ new_password2r^r%r%r%r&rUs:   rUc sZeZdZdZejddedejdddddd d d ed d ZfddZ ddZ Z S) Setup2FAFormz" Form for setting up 2FA. rDzVerification Codemt-1 block w-full px-3 py-2 border border-gray-300 rounded-md shadow-sm focus:outline-none focus:ring-primary-500 focus:border-primary-500 sm:text-sm text-centerrErFrGrHT)rrrIrJrKrrzCEnter the 6-digit code from your authenticator app to verify setup.rrLrXrr[cstj||||_dSrrMrNr#r%r&rszSetup2FAForm.__init__cCs|jd}|sttd|s0ttdz*tjj|jd}||sXttdWn"tj k r|ttdYnX|S)Nverification_tokenz#Please enter the verification code.z+Verification code must contain only digits.r(zMInvalid verification code. Please check your authenticator app and try again.z:2FA setup not found. Please start the setup process again.rQrSr%r%r&clean_verification_tokens    z%Setup2FAForm.clean_verification_token) r8r9r:r;rr<r2r=rdrrerBr%r%r#r&ras" racspeZdZdZejeddejddddedd Zej ed ej d d idd dZ fddZ ddZ ZS)Disable2FAFormz! Form for disabling 2FA. zCurrent PasswordFrVrrWrz+Enter your current password to disable 2FA.rZz@I understand that disabling 2FA will make my account less securerrT)rXrrcstj||||_dSrrMrNr#r%r&rszDisable2FAForm.__init__cCs(|jd}|j|s$ttd|S)Nr'zIncorrect password.)r-r.r)check_passwordrr2r]r%r%r&clean_passwords   zDisable2FAForm.clean_password)r8r9r:r;rr<r2r>r'r?r@Z confirmationrrhrBr%r%r#r&rfs(  rfc@s.eZdZdZGdddZddZddZdS) SecuritySettingsFormz3 Form for managing user security settings. c@sfeZdZeZddgZejdddddejddd ddd Ze d e d d Z e d e dd Z dS)zSecuritySettingsForm.Metamax_concurrent_sessionssession_timeout_minutesrV110)rminmaxrZ30Z1440)rjrkzMaximum Concurrent SessionszSession Timeout (minutes)z4Maximum number of simultaneous login sessions (1-10)z@How long sessions stay active without activity (30-1440 minutes)N) r8r9r:r modelfieldsr NumberInputwidgetsr2labels help_textsr%r%r%r&Meta%s& rvcCs,|jd}|dks|dkr(ttd|S)Nrjr z"Must be between 1 and 10 sessions.r-r.rr2r valuer%r%r&clean_max_concurrent_sessions=s  z2SecuritySettingsForm.clean_max_concurrent_sessionscCs,|jd}|dks|dkr(ttd|S)Nrkiz$Must be between 30 and 1440 minutes.rxryr%r%r&clean_session_timeout_minutesCs  z2SecuritySettingsForm.clean_session_timeout_minutesN)r8r9r:r;rvr{r}r%r%r%r&ri sric sXeZdZdZejddedejdddddd d ed d Zfd dZ ddZ Z S)BackupCodesFormz. Form for using backup codes for 2FA. z Backup CoderbZXXXXXXXXztext-transform: uppercase;8T)rrstylerKrrzEnter one of your backup codes.rccstj||||_dSrrMrNr#r%r&r]szBackupCodesForm.__init__cCst|jdd}|s"ttdz*tjj|jd}||jkrJttdWn"tj k rnttdYnX|S)N backup_codezPlease enter a backup code.r(zInvalid backup code.rP) r-r.upperrr2r r/r) backup_codesr4)r r*r5r%r%r&clean_backup_codeas  z!BackupCodesForm.clean_backup_code) r8r9r:r;rr<r2r=rrrrBr%r%r#r&r~Js  r~N)r;djangordjango.contrib.auth.formsrrdjango.contrib.auth.modelsrdjango.core.exceptionsrdjango.utils.translationrr2django.contrib.authr'django.contrib.auth.password_validationr authenticationr r r FormrCrUrarf ModelFormrir~r%r%r%r&s      Y+1,$*