210 Commits

Author SHA1 Message Date
Elrond
9047b254f3 Dot-Notation for Users.pw_hash 2011-12-05 21:08:57 +01:00
Elrond
809cbfc5ab Dot-Notation for Users.email 2011-12-05 21:08:57 +01:00
Elrond
5a4e3ff1e2 Dot-Notation for Users.username 2011-12-05 21:08:57 +01:00
Jef van Schendel
0d6e5dddeb Add show-password checkbox and make it work 2011-12-02 23:48:40 +01:00
Elrond
5dbeda8a0f Fix redirect to logical path
redirects should in nearly all cases go to a logical path
like 'mediagoblin.auth.login' and not to an absolute path
like "/auth/login".
2011-11-20 20:15:21 +01:00
Elrond
e51af0e620 Merge remote branch 'remotes/aaronw/bug614_verification_crash'
* remotes/aaronw/bug614_verification_crash:
  Update english translation file.
  Reverse order of sanity checks: check email_verified after making sure there's a user in the request.
  Make sure user isn't already verified before resending verification.
  Check request.user to determine if user is logged in.
  Regenerated English .po file to include new string.
  Display and error and redirect to login page if unauthenticated user tries to access resend_verification.

Conflicts:
	mediagoblin/i18n/en/LC_MESSAGES/mediagoblin.po
2011-11-20 20:00:08 +01:00
Jef van Schendel
5ab3855e1f Slight change to error wording 2011-11-20 01:46:21 +01:00
Elrond
eabe6b678a Dot-Notation for "_id"
Note: Migrations can't use "Dot Notation"!

Migrations run on pymongo, not mongokit.
So they can't use the "Dot Notation".
This isn't really a big issue, as migrations are anyway
quite mongo specific.
2011-11-15 11:32:13 +01:00
Christopher Allan Webber
ee91c2b88d Merge remote-tracking branch 'remotes/nyergler/pep8-ification'
Conflicts:
	mediagoblin/db/migrations.py
	mediagoblin/db/models.py
	mediagoblin/user_pages/views.py
	mediagoblin/util.py
2011-11-13 20:23:26 -06:00
Aaron Williamson
2fe6991660 Reverse order of sanity checks: check email_verified after making sure there's a user in the request. 2011-10-03 20:28:48 -04:00
Aaron Williamson
7903a14f98 Make sure user isn't already verified before resending verification. 2011-10-03 20:25:11 -04:00
Aaron Williamson
43199340a2 Fixed conflict in /auth/views.py. 2011-10-03 20:01:14 -04:00
Aaron Williamson
3b74ce94ff Check request.user to determine if user is logged in. 2011-10-03 19:59:28 -04:00
Aaron Williamson
84a7e7706c Display and error and redirect to login page if unauthenticated user tries to access resend_verification. 2011-10-01 19:49:56 -04:00
Nathan Yergler
285ffeddf3 has_key is deprecated, converting uses to use "in" operator. 2011-10-01 15:10:41 -07:00
Nathan Yergler
243c3843bd Whitespace and formatting cleanup.
* Removed trailing whitespace
* Line length < 80 where possible
* Honor conventions on number of blank lines
* Honor conventions about spaces around :, =
2011-10-01 15:10:02 -07:00
Aaron Williamson
91e42c467d Merge branch 'mediagoblin-upstream' into bug444_fix_utils_py_redux 2011-10-01 18:09:49 -04:00
Aaron Williamson
152a3bfaa3 Finished splitting util.py into separate files. 2011-10-01 18:05:44 -04:00
Aaron Williamson
ae3bc7fabf Moved common, translation, template, and url code out of util.py and into tools/[file].py 2011-10-01 09:31:42 -04:00
Elrond
bf33272f03 Give debug message in email debug mode
If the server is running in email debug mode (current
default), users have often asked where the mail is. So tell
them in the web browser that their mail is on the console.
2011-09-30 22:27:47 +02:00
Christopher Allan Webber
f373599bd7 Merge branch 'gullydwarf-cfdv-f357_lost_password_functionality'
Conflicts:
	mediagoblin/auth/routing.py
2011-09-08 08:12:43 -05:00
Christopher Allan Webber
f7ab66707c Renaming request.[GET|POST] as formdata instead of session; that's more accurate. 2011-09-08 08:10:27 -05:00
Christopher Allan Webber
961fe38163 Adding a small docstring 2011-09-07 23:51:41 -05:00
Christopher Allan Webber
4185e644f4 Keys in mongodb should be unicode, here... 2011-09-07 23:48:10 -05:00
Christopher Allan Webber
daf029646e Also nullify verification key after verifying in the email confirmation step 2011-09-07 23:46:41 -05:00
Christopher Allan Webber
a85a21103b If the user hasn't verified their email or account inactive give a special warning 2011-09-07 23:45:14 -05:00
Christopher Allan Webber
73fffbb8b0 Adding additional check that verification key exists, and updating indentation 2011-09-07 23:32:15 -05:00
Christopher Allan Webber
2c9e8184a4 Adjusting indentation a bit 2011-09-07 23:25:46 -05:00
Christopher Allan Webber
d1a6432645 Avoiding using '$or' query modifier since that's newer-mongo only. 2011-09-07 23:23:44 -05:00
Christopher Allan Webber
34fddf47f0 Resent verification email template and view aren't used anymore. Removing! 2011-09-07 19:42:56 -05:00
Christopher Allan Webber
daa26200c7 Changing the forgot password urls so they all start under /auth/forgot_password/ 2011-09-07 19:40:00 -05:00
Christopher Allan Webber
63bf10f9a6 Adjusting spacing between function arguments 2011-09-07 19:37:25 -05:00
Caleb Forbes Davis V
4bcaf9f32a for readability, and adds unit test for expired token 2011-09-05 18:57:06 -05:00
Caleb Forbes Davis V
8d1c9863b6 refactors verify_forgot_password 2011-09-05 14:06:01 -05:00
Christopher Allan Webber
6be33a7780 Removing description field cruft that mostly existed for testing purposes. :) 2011-09-04 22:26:57 -05:00
Will Kahn-Greene
12a100e4d8 508. Updates copyright/license information 2011-09-01 20:50:19 -04:00
Christopher Allan Webber
2886b340d3 Merge remote branch 'remotes/jwandborg/f403_ability_to_delete' 2011-08-30 20:16:47 -05:00
Christopher Allan Webber
04a7b06d61 Giving schendje some auth registration descriptions so he can style them! 2011-08-29 10:43:11 -05:00
Caleb Forbes Davis V
e1105f5dcb Generalizes error model for change password verification
- 404s instead of 'user not found' will limit leaking user profile
  information to the browser.
- Also fixed the wording on the login page to make it clear you are
  changing the password, not sending yourself your old one!
2011-08-29 00:19:54 -05:00
Caleb Forbes Davis V
24966c43bd Avoids informing browser whether the username or email is a match
- pretends to have sent the email with the URL to change the password
  regardless of whether or not the email was actually sent. This
  avoids leaking user information to the browser
2011-08-29 00:18:35 -05:00
Caleb Forbes Davis V
f85909c061 needed to access email_sender_address through mg_globals.app_config
instead of mg_globals.email_sender_address.
2011-08-28 21:41:42 -05:00
Alejandro Villanueva
25ba955e20 Adding fotgot password functionality 2011-08-28 20:08:14 -05:00
Mark Holmquist
08750772ea + 'confirm' section for confirmation dialogues
+ implemented delete functionality
* fixed several instances of 'must be an instance of unicode, not str'
2011-08-22 02:57:40 -07:00
Christopher Allan Webber
de12b4e773 Use render_404 EVERYWHERE! 2011-08-20 15:57:24 -05:00
Christopher Allan Webber
788272f300 PEP-8ing the keyword argument passing here 2011-08-11 22:44:47 -05:00
Christopher Allan Webber
e7f518cc94 Merge remote branch 'remotes/gullydwarf-cfdv/b488_email_validation_assumes_active_login' 2011-08-11 22:44:21 -05:00
Christopher Allan Webber
9f6ea47586 If both the username and the email checks fail, warn about both at the same time 2011-08-11 20:37:21 -05:00
Christopher Allan Webber
873e4e9d2d Also normalize user's emails to .lower() when we accept the user. 2011-08-11 20:34:12 -05:00
Alejandro Villanueva
0bf099d753 Checks if the email(lowercase) have been used before to register a user 2011-08-11 20:32:55 -05:00
Christopher Allan Webber
dc49cf600a Making the users_with_username function call in the register view slightly cleaner 2011-08-11 20:15:55 -05:00