python-gallery/onlylegs/auth.py

"""
OnlyLegs - Authentication
User registration, login and logout and locking access to pages behind a login
"""
import re
import logging

from flask import Blueprint, flash, redirect, request, url_for, abort, jsonify
from werkzeug.security import check_password_hash, generate_password_hash

from flask_login import login_user, logout_user, login_required

from onlylegs.extensions import db
from onlylegs.models import User


blueprint = Blueprint("auth", __name__, url_prefix="/auth")


@blueprint.route("/login", methods=["POST"])
def login():
    """
    Log in a registered user by adding the user id to the session
    """
    error = []

    username = request.form["username"].strip()
    password = request.form["password"].strip()
    remember = bool(request.form["remember-me"])

    user = User.query.filter_by(username=username).first()

    if not user or not check_password_hash(user.password, password):
        logging.error("Login attempt from %s", request.remote_addr)
        error.append("Username or Password is incorrect!")

    if error:
        abort(403)

    login_user(user, remember=remember)

    logging.info("User %s logged in from %s", username, request.remote_addr)
    flash(["Logged in successfully!", "4"])
    return "ok", 200


@blueprint.route("/register", methods=["POST"])
def register():
    """
    Register a new user
    """
    error = []

    # Thanks Fennec for reminding me to strip out the whitespace lol
    username = request.form["username"].strip()
    email = request.form["email"].strip()
    password = request.form["password"].strip()
    password_repeat = request.form["password-repeat"].strip()

    email_regex = re.compile(r"\b[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\.[A-Z|a-z]{2,}\b")
    username_regex = re.compile(r"\b[A-Za-z0-9._-]+\b")

    # Validate the form
    if not username or not username_regex.match(username):
        error.append("Username is invalid!")

    if not email or not email_regex.match(email):
        error.append("Email is invalid!")

    if not password:
        error.append("Password is empty!")
    elif len(password) < 8:
        error.append("Password is too short! Longer than 8 characters pls")

    if not password_repeat:
        error.append("Enter password again!")
    elif password_repeat != password:
        error.append("Passwords do not match!")

    user_exists = User.query.filter_by(username=username).first()
    if user_exists:
        error.append("User already exists!")

    # If there are errors, return them
    if error:
        print(error)
        return jsonify(error), 400

    register_user = User(
        username=username,
        email=email,
        password=generate_password_hash(password, method="sha256"),
    )
    db.session.add(register_user)
    db.session.commit()

    logging.info("User %s registered", username)
    return "ok", 200


@blueprint.route("/logout")
@login_required
def logout():
    """
    Clear the current session, including the stored user id
    """
    logout_user()
    flash(["Goodbye!!!", "4"])
    return redirect(url_for("gallery.index"))
Submitted to PyLints needs :3 2023-03-04 13:45:26 +00:00			`"""`
Add ALT text to images Correct static methods Tidy up code 2023-03-11 22:14:03 +00:00			`OnlyLegs - Authentication`
Submitted to PyLints needs :3 2023-03-04 13:45:26 +00:00			`User registration, login and logout and locking access to pages behind a login`
			`"""`
			`import re`
			`import logging`

Linting 2023-04-04 14:00:00 +00:00			`from flask import Blueprint, flash, redirect, request, url_for, abort, jsonify`
Update to reccommended file structure Use reccommended database structure Switch to SQLite and update scheme along with it 2023-01-10 12:39:29 +00:00			`from werkzeug.security import check_password_hash, generate_password_hash`
Added settings page Added logging to a .log file Fixed Images loosing colour and rotation on thumbnail generation Added more info to README 2023-03-01 23:29:34 +00:00
Switch to Flask_Login for user/session management 2023-04-03 18:04:49 +00:00			`from flask_login import login_user, logout_user, login_required`
Submitted to PyLints needs :3 2023-03-04 13:45:26 +00:00
Rename the gallery to onlylegs in the files Im sorry 2023-04-12 16:58:13 +00:00			`from onlylegs.extensions import db`
			`from onlylegs.models import User`
Submitted to PyLints needs :3 2023-03-04 13:45:26 +00:00

Format code with Black 2023-04-07 12:35:30 +00:00			`blueprint = Blueprint("auth", __name__, url_prefix="/auth")`
Added settings page Added logging to a .log file Fixed Images loosing colour and rotation on thumbnail generation Added more info to README 2023-03-01 23:29:34 +00:00

Format code with Black 2023-04-07 12:35:30 +00:00			`@blueprint.route("/login", methods=["POST"])`
Switch to Flask_Login for user/session management 2023-04-03 18:04:49 +00:00			`def login():`
Submitted to PyLints needs :3 2023-03-04 13:45:26 +00:00			`"""`
Switch to Flask_Login for user/session management 2023-04-03 18:04:49 +00:00			`Log in a registered user by adding the user id to the session`
Submitted to PyLints needs :3 2023-03-04 13:45:26 +00:00			`"""`
Switch to Flask_Login for user/session management 2023-04-03 18:04:49 +00:00			`error = []`
Linting 2023-04-04 14:00:00 +00:00
Format code with Black 2023-04-07 12:35:30 +00:00			`username = request.form["username"].strip()`
			`password = request.form["password"].strip()`
			`remember = bool(request.form["remember-me"])`
Submitted to PyLints needs :3 2023-03-04 13:45:26 +00:00
Update database Correctly link user to their posts and groups Change the table names to Group, Post and User Remove unused Bans and Logs table, possibly will return later 2023-04-12 15:16:43 +00:00			`user = User.query.filter_by(username=username).first()`
Update to reccommended file structure Use reccommended database structure Switch to SQLite and update scheme along with it 2023-01-10 12:39:29 +00:00
Change database structure Update naming to something more useful Date filled in automatically 2023-04-05 16:35:59 +00:00			`if not user or not check_password_hash(user.password, password):`
Format code with Black 2023-04-07 12:35:30 +00:00			`logging.error("Login attempt from %s", request.remote_addr)`
			`error.append("Username or Password is incorrect!")`
Update to reccommended file structure Use reccommended database structure Switch to SQLite and update scheme along with it 2023-01-10 12:39:29 +00:00
Switch to Flask_Login for user/session management 2023-04-03 18:04:49 +00:00			`if error:`
			`abort(403)`
Update to reccommended file structure Use reccommended database structure Switch to SQLite and update scheme along with it 2023-01-10 12:39:29 +00:00
Add remember me option to login page 2023-04-04 17:46:07 +00:00			`login_user(user, remember=remember)`
Added settings page Added logging to a .log file Fixed Images loosing colour and rotation on thumbnail generation Added more info to README 2023-03-01 23:29:34 +00:00
Format code with Black 2023-04-07 12:35:30 +00:00			`logging.info("User %s logged in from %s", username, request.remote_addr)`
			`flash(["Logged in successfully!", "4"])`
			`return "ok", 200`
Submitted to PyLints needs :3 2023-03-04 13:45:26 +00:00
Update to reccommended file structure Use reccommended database structure Switch to SQLite and update scheme along with it 2023-01-10 12:39:29 +00:00
Format code with Black 2023-04-07 12:35:30 +00:00			`@blueprint.route("/register", methods=["POST"])`
Update to reccommended file structure Use reccommended database structure Switch to SQLite and update scheme along with it 2023-01-10 12:39:29 +00:00			`def register():`
Submitted to PyLints needs :3 2023-03-04 13:45:26 +00:00			`"""`
			`Register a new user`
			`"""`
Switch to Flask_Login for user/session management 2023-04-03 18:04:49 +00:00			`error = []`
Linting 2023-04-04 14:00:00 +00:00
Clean up theme compiler and thumbnail generation Fix signup not clearning blanks - Thanks to Fennec 2023-04-01 16:59:17 +00:00			`# Thanks Fennec for reminding me to strip out the whitespace lol`
Format code with Black 2023-04-07 12:35:30 +00:00			`username = request.form["username"].strip()`
			`email = request.form["email"].strip()`
			`password = request.form["password"].strip()`
			`password_repeat = request.form["password-repeat"].strip()`
Submitted to PyLints needs :3 2023-03-04 13:45:26 +00:00
Format code with Black 2023-04-07 12:35:30 +00:00			`email_regex = re.compile(r"\b[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\.[A-Z\|a-z]{2,}\b")`
			`username_regex = re.compile(r"\b[A-Za-z0-9._-]+\b")`
Submitted to PyLints needs :3 2023-03-04 13:45:26 +00:00
Switch to Flask_Login for user/session management 2023-04-03 18:04:49 +00:00			`# Validate the form`
Submitted to PyLints needs :3 2023-03-04 13:45:26 +00:00			`if not username or not username_regex.match(username):`
Format code with Black 2023-04-07 12:35:30 +00:00			`error.append("Username is invalid!")`
Added settings page Added logging to a .log file Fixed Images loosing colour and rotation on thumbnail generation Added more info to README 2023-03-01 23:29:34 +00:00
Submitted to PyLints needs :3 2023-03-04 13:45:26 +00:00			`if not email or not email_regex.match(email):`
Format code with Black 2023-04-07 12:35:30 +00:00			`error.append("Email is invalid!")`
Added settings page Added logging to a .log file Fixed Images loosing colour and rotation on thumbnail generation Added more info to README 2023-03-01 23:29:34 +00:00
Unifying style of the gallery Fixed HTML and Sass layout Moved upload and login pages to popups Added deletion confirmation 2023-01-25 15:13:56 +00:00			`if not password:`
Format code with Black 2023-04-07 12:35:30 +00:00			`error.append("Password is empty!")`
Unifying style of the gallery Fixed HTML and Sass layout Moved upload and login pages to popups Added deletion confirmation 2023-01-25 15:13:56 +00:00			`elif len(password) < 8:`
Format code with Black 2023-04-07 12:35:30 +00:00			`error.append("Password is too short! Longer than 8 characters pls")`
Added settings page Added logging to a .log file Fixed Images loosing colour and rotation on thumbnail generation Added more info to README 2023-03-01 23:29:34 +00:00
Unifying style of the gallery Fixed HTML and Sass layout Moved upload and login pages to popups Added deletion confirmation 2023-01-25 15:13:56 +00:00			`if not password_repeat:`
Format code with Black 2023-04-07 12:35:30 +00:00			`error.append("Enter password again!")`
Unifying style of the gallery Fixed HTML and Sass layout Moved upload and login pages to popups Added deletion confirmation 2023-01-25 15:13:56 +00:00			`elif password_repeat != password:`
Format code with Black 2023-04-07 12:35:30 +00:00			`error.append("Passwords do not match!")`
Linting 2023-04-04 14:00:00 +00:00
Update database Correctly link user to their posts and groups Change the table names to Group, Post and User Remove unused Bans and Logs table, possibly will return later 2023-04-12 15:16:43 +00:00			`user_exists = User.query.filter_by(username=username).first()`
Switch to Flask_Login for user/session management 2023-04-03 18:04:49 +00:00			`if user_exists:`
Format code with Black 2023-04-07 12:35:30 +00:00			`error.append("User already exists!")`
Unifying style of the gallery Fixed HTML and Sass layout Moved upload and login pages to popups Added deletion confirmation 2023-01-25 15:13:56 +00:00
Switch to Flask_Login for user/session management 2023-04-03 18:04:49 +00:00			`# If there are errors, return them`
Submitted to PyLints needs :3 2023-03-04 13:45:26 +00:00			`if error:`
Change database structure Update naming to something more useful Date filled in automatically 2023-04-05 16:35:59 +00:00			`print(error)`
			`return jsonify(error), 400`
Submitted to PyLints needs :3 2023-03-04 13:45:26 +00:00
Update database Correctly link user to their posts and groups Change the table names to Group, Post and User Remove unused Bans and Logs table, possibly will return later 2023-04-12 15:16:43 +00:00			`register_user = User(`
Format code with Black 2023-04-07 12:35:30 +00:00			`username=username,`
			`email=email,`
			`password=generate_password_hash(password, method="sha256"),`
			`)`
Switch to Flask-SQLAlchemy Add FLask-Migrate for next step in the Migration :wink: 2023-04-09 19:12:35 +00:00			`db.session.add(register_user)`
			`db.session.commit()`
Submitted to PyLints needs :3 2023-03-04 13:45:26 +00:00
Format code with Black 2023-04-07 12:35:30 +00:00			`logging.info("User %s registered", username)`
			`return "ok", 200`
Unifying style of the gallery Fixed HTML and Sass layout Moved upload and login pages to popups Added deletion confirmation 2023-01-25 15:13:56 +00:00

Format code with Black 2023-04-07 12:35:30 +00:00			`@blueprint.route("/logout")`
Switch to Flask_Login for user/session management 2023-04-03 18:04:49 +00:00			`@login_required`
Update to reccommended file structure Use reccommended database structure Switch to SQLite and update scheme along with it 2023-01-10 12:39:29 +00:00			`def logout():`
Submitted to PyLints needs :3 2023-03-04 13:45:26 +00:00			`"""`
			`Clear the current session, including the stored user id`
			`"""`
Switch to Flask_Login for user/session management 2023-04-03 18:04:49 +00:00			`logout_user()`
Format code with Black 2023-04-07 12:35:30 +00:00			`flash(["Goodbye!!!", "4"])`
			`return redirect(url_for("gallery.index"))`