Merge remote-tracking branch 'upstream/master' into auth

Conflicts: mediagoblin/app.py mediagoblin/auth/forms.py mediagoblin/auth/tools.py mediagoblin/db/migrations.py mediagoblin/db/models.py mediagoblin/edit/views.py mediagoblin/plugins/basic_auth/tools.py mediagoblin/tests/test_edit.py
2013-06-25 13:37:21 -07:00
parent 5a1be074c0 7fa4e19fc4
commit af4414a85f
80 changed files with 4233 additions and 5536 deletions
--- a/mediagoblin/auth/forms.py
+++ b/mediagoblin/auth/forms.py
@@ -30,9 +30,6 @@ class ForgotPassForm(wtforms.Form):
 class ChangePassForm(wtforms.Form):
    password = wtforms.PasswordField(
        'Password')
-    userid = wtforms.HiddenField(
-        '',
-        [wtforms.validators.Required()])
    token = wtforms.HiddenField(
        '',
        [wtforms.validators.Required()])
--- a/mediagoblin/auth/tools.py
+++ b/mediagoblin/auth/tools.py
@@ -18,6 +18,7 @@ import logging
 import wtforms

 from mediagoblin import mg_globals
+from mediagoblin.tools.crypto import get_timed_signer_url
 from mediagoblin.db.models import User
 from mediagoblin.tools.mail import (normalize_email, send_email,
                                    email_debug_message)
@@ -60,11 +61,12 @@ def normalize_user_or_email_field(allow_email=True, allow_user=True):


 EMAIL_VERIFICATION_TEMPLATE = (
-    u"http://{host}{uri}?"
-    u"userid={userid}&token={verification_key}")
+    u"{uri}?"
+    u"token={verification_key}")


-def send_verification_email(user, request):
+def send_verification_email(user, request, email=None,
+                            rendered_email=None):
    """
    Send the verification email to users to activate their accounts.

@@ -72,19 +74,24 @@ def send_verification_email(user, request):
    - user: a user object
    - request: the request
    """
-    rendered_email = render_template(
-        request, 'mediagoblin/auth/verification_email.txt',
-        {'username': user.username,
-         'verification_url': EMAIL_VERIFICATION_TEMPLATE.format(
-                host=request.host,
-                uri=request.urlgen('mediagoblin.auth.verify_email'),
-                userid=unicode(user.id),
-                verification_key=user.verification_key)})
+    if not email:
+        email = user.email
+
+    if not rendered_email:
+        verification_key = get_timed_signer_url('mail_verification_token') \
+                .dumps(user.id)
+        rendered_email = render_template(
+            request, 'mediagoblin/auth/verification_email.txt',
+            {'username': user.username,
+            'verification_url': EMAIL_VERIFICATION_TEMPLATE.format(
+                    uri=request.urlgen('mediagoblin.auth.verify_email',
+                                       qualified=True),
+                    verification_key=verification_key)})

    # TODO: There is no error handling in place
    send_email(
        mg_globals.app_config['email_sender_address'],
-        [user.email],
+        [email],
        # TODO
        # Due to the distributed nature of GNU MediaGoblin, we should
        # find a way to send some additional information about the
--- a/mediagoblin/auth/views.py
+++ b/mediagoblin/auth/views.py
@@ -15,10 +15,11 @@
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.

 import uuid
-import datetime
+from itsdangerous import BadSignature

 from mediagoblin import messages, mg_globals
 from mediagoblin.db.models import User
+from mediagoblin.tools.crypto import get_timed_signer_url
 from mediagoblin.tools.response import render_to_response, redirect, render_404
 from mediagoblin.tools.translate import pass_to_ugettext as _
 from mediagoblin.tools.mail import email_debug_message
@@ -136,16 +137,28 @@ def verify_email(request):
    you are lucky :)
    """
    # If we don't have userid and token parameters, we can't do anything; 404
-    if not 'userid' in request.GET or not 'token' in request.GET:
+    if not 'token' in request.GET:
        return render_404(request)

-    user = User.query.filter_by(id=request.args['userid']).first()
+    # Catch error if token is faked or expired
+    try:
+        token = get_timed_signer_url("mail_verification_token") \
+                .loads(request.GET['token'], max_age=10*24*3600)
+    except BadSignature:
+        messages.add_message(
+            request,
+            messages.ERROR,
+            _('The verification key or user id is incorrect.'))

-    if user and user.verification_key == unicode(request.GET['token']):
+        return redirect(
+            request,
+            'index')
+
+    user = User.query.filter_by(id=int(token)).first()
+
+    if user and user.email_verified is False:
        user.status = u'active'
        user.email_verified = True
-        user.verification_key = None
-
        user.save()

        messages.add_message(
@@ -187,9 +200,6 @@ def resend_activation(request):

        return redirect(request, "mediagoblin.user_pages.user_home", user=request.user['username'])

-    request.user.verification_key = unicode(uuid.uuid4())
-    request.user.save()
-
    email_debug_message(request)
    send_verification_email(request.user, request)

@@ -259,11 +269,6 @@ def forgot_password(request):

    # SUCCESS. Send reminder and return to login page
    if user:
-        user.fp_verification_key = unicode(uuid.uuid4())
-        user.fp_token_expire = datetime.datetime.now() + \
-                               datetime.timedelta(days=10)
-        user.save()
-
        email_debug_message(request)
        send_fp_verification_email(user, request)

@@ -278,31 +283,44 @@ def verify_forgot_password(request):
    """
    # get form data variables, and specifically check for presence of token
    formdata = _process_for_token(request)
-    if not formdata['has_userid_and_token']:
+    if not formdata['has_token']:
        return render_404(request)

-    formdata_token = formdata['vars']['token']
-    formdata_userid = formdata['vars']['userid']
    formdata_vars = formdata['vars']

-    # check if it's a valid user id
-    user = User.query.filter_by(id=formdata_userid).first()
-    if not user:
-        return render_404(request)
+    # Catch error if token is faked or expired
+    try:
+        token = get_timed_signer_url("mail_verification_token") \
+                .loads(formdata_vars['token'], max_age=10*24*3600)
+    except BadSignature:
+        messages.add_message(
+            request,
+            messages.ERROR,
+            _('The verification key or user id is incorrect.'))

-    # check if we have a real user and correct token
-    if ((user and user.fp_verification_key and
-         user.fp_verification_key == unicode(formdata_token) and
-         datetime.datetime.now() < user.fp_token_expire
-         and user.email_verified and user.status == 'active')):
+        return redirect(
+            request,
+            'index')
+
+    # check if it's a valid user id
+    user = User.query.filter_by(id=int(token)).first()
+
+    # no user in db
+    if not user:
+        messages.add_message(
+            request, messages.ERROR,
+            _('The user id is incorrect.'))
+        return redirect(
+            request, 'index')
+
+    # check if user active and has email verified
+    if user.email_verified and user.status == 'active':

        cp_form = auth_forms.ChangePassForm(formdata_vars)

        if request.method == 'POST' and cp_form.validate():
            user.pw_hash = auth.gen_password_hash(
                cp_form.password.data)
-            user.fp_verification_key = None
-            user.fp_token_expire = None
            user.save()

            messages.add_message(
@@ -316,10 +334,20 @@ def verify_forgot_password(request):
                'mediagoblin/auth/change_fp.html',
                {'cp_form': cp_form,})

-    # in case there is a valid id but no user with that id in the db
-    # or the token expired
-    else:
-        return render_404(request)
+    if not user.email_verified:
+        messages.add_message(
+            request, messages.ERROR,
+            _('You need to verify your email before you can reset your'
+              ' password.'))
+
+    if not user.status == 'active':
+        messages.add_message(
+            request, messages.ERROR,
+            _('You are no longer an active user. Please contact the system'
+              ' admin to reactivate your accoutn.'))
+
+    return redirect(
+        request, 'index')


 def _process_for_token(request):
@@ -337,7 +365,6 @@ def _process_for_token(request):

    formdata = {
        'vars': formdata_vars,
-        'has_userid_and_token':
-            'userid' in formdata_vars and 'token' in formdata_vars}
+        'has_token': 'token' in formdata_vars}

    return formdata