U uhe@s|dZddlZddlmZddlmZddlmZddlm Z ddl m Z Gdd d e Z Gd d d e Z Gd d d e ZdS)a" Core Models for Stream Processor Application This module contains abstract base models and shared functionality that is used across multiple applications in the Stream Processor project. These models provide common fields and methods that promote consistency and reduce code duplication. N)models)timezone)User) timedelta)TimestampedModelc@s$eZdZdZejeejddZej ddddZ ej dd d Z ej ed d Zejd d d ZejddddZejddddZejddddZej ddd Zejddd Zejddd ZGdddZddZedddZd+edd d!d"Zddd#d$Z ddd%d&Z!ddd'd(Z"edd)d*Z#dS), UserProfilez Extended user profile with security features. This model extends the Django User model with additional security and authentication features including 2FA, session tracking, and account security settings. Zsecurity_profile) on_delete related_name TzTOTP secret key for 2FA) max_lengthblank help_textFz$Whether 2FA is enabled for this user)defaultr zBackup codes for 2FA recoveryrz+Number of consecutive failed login attemptszAccount lockout expiration time)nullr r z#IP address of last successful loginz!Timestamp of last password changez.Whether user must reset password on next loginz-Maximum number of concurrent sessions allowedizSession timeout in minutesc@seZdZdZdZdS)zUserProfile.MetazUser Security ProfilezUser Security ProfilesN)__name__ __module__ __qualname__ verbose_nameverbose_name_pluralrr?/var/www/html/StreamProcessor/src/apps/authentication/models.pyMeta\srcCsd|jjS)NzSecurity Profile for )userusernameselfrrr__str__`szUserProfile.__str__)returncCs|js dSt|jkS)z Check if the account is currently locked. Returns: bool: True if account is locked, False otherwise F)account_locked_untilrnowrrrris_account_lockedcszUserProfile.is_account_lockedN)duration_minutesrcCs&tt|d|_|jdgddS)z Lock the account for a specified duration. Args: duration_minutes: How long to lock the account )minutesr update_fieldsN)rr rrsave)rr#rrr lock_accountnszUserProfile.lock_accountcCs d|_d|_|jddgddS)zE Unlock the account and reset failed login attempts. Nrrfailed_login_attemptsr%)rr)r'rrrrunlock_accountxszUserProfile.unlock_accountcCs4|jd7_|jdkr"|d|jdgddS)zX Increment failed login attempts and lock account if threshold reached. r"r)r%N)r)r(r'rrrrincrement_failed_attemptss  z%UserProfile.increment_failed_attemptscCsd|_|jdgddS)z6 Reset failed login attempts counter. rr)r%N)r)r'rrrrreset_failed_attemptssz!UserProfile.reset_failed_attemptscCs|jS)z Check if the user needs to change their password. Returns: bool: True if password change is required, False otherwise )password_reset_requiredrrrrneeds_password_changesz!UserProfile.needs_password_change)r")$rrr__doc__r OneToOneFieldrCASCADEr CharFieldZ totp_secret BooleanFieldZis_2fa_enabled JSONFieldlistZ backup_codesPositiveIntegerFieldr) DateTimeFieldrGenericIPAddressFieldZ last_login_ipZlast_password_changer/Zmax_concurrent_sessionsZsession_timeout_minutesrrboolr!intr(r*r-r.r0rrrrrst   rc@s\eZdZdZejddZeZej ddZ e Z ejdddZ Gdd d Zd d Zd S) LoginAttemptz7 Track login attempts for security monitoring. )r Tr d)r r c@seZdZdZdZdgZdS)zLoginAttempt.Metaz Login AttemptzLogin Attemptsz -created_atNrrrrrorderingrrrrrsrcCs&|jr dnd}|jd|d|jS)NZSuccessFailed - )successr ip_address)rstatusrrrrszLoginAttempt.__str__N)rrrr1rr4rr:rF TextField user_agentr5rEZfailure_reasonrrrrrrr=s  r=c@speZdZdZejeejdZej dddZ e Z ej ddZejddZejddZGd d d Zd d Zd S) UserSessionz% Track active user sessions. )r(T)r uniquer?)r)auto_nowc@seZdZdZdZdgZdS)zUserSession.Metaz User Sessionz User Sessionsz-last_activityNrArrrrrsrcCs|jjd|jdddS)NrDz...)rr session_keyrrrrrszUserSession.__str__N)rrrr1r ForeignKeyrr3rr4rOr:rFrHrIr5 is_activer9Z last_activityrrrrrrrJs   rJ)r1uuid django.dbr django.utilsrdjango.contrib.auth.modelsrdatetimerZapps.core.modelsrrr=rJrrrrs