nielsperetzke
/
healthchecks
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 32 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1141 Commits
2 Branches
15 MiB
Tree: be286518b7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'be286518b7'
${ noResults }
healthchecks/hc/accounts/views.py

493 lines
15 KiB
Raw Normal View History

Adding an option to send daily or hourly reminders if any check is down. Fixes #48
7 years ago
Initial commit
10 years ago
REGISTRATION_OPEN setting. superuser accounts by default have team access enabled. Fixes #97 and #113
8 years ago
Code to send monthly reports (but no management command yet to actually send them)
9 years ago
Organize imports using isort.
9 years ago
logout, unified login
10 years ago
Code to send monthly reports (but no management command yet to actually send them)
9 years ago
Initial commit
10 years ago
Code to send monthly reports (but no management command yet to actually send them)
9 years ago
Source formatted with Black
6 years ago
Test cases for adding project, removing project and leaving project.
6 years ago
Adding an option to send daily or hourly reminders if any check is down. Fixes #48
7 years ago
Fix after-login redirects to "Check Details" and other pages.
6 years ago
Report unsubscribe link works with POST. Include "X-Bounce-Url" header in report emails.
6 years ago
"Close Account" section in Settings page. Fixes #95
8 years ago
Source formatted with Black
6 years ago
Project model. cc: #183
6 years ago
Rate limiting for the "Log In" emails
6 years ago
Send monthly reports on 1st of every month, not randomly during the month
5 years ago
"Close Account" section in Settings page. Fixes #95
8 years ago
Initial commit
10 years ago
Source formatted with Black
6 years ago
Fix after-login redirects to "Check Details" and other pages.
6 years ago
Fix after-login redirects for users landing in the "Add Slack" page
6 years ago
Initial commit
10 years ago
Don't create default projects for invited users.
6 years ago
Revert deterministic username generation feature – it causes problems when users change their email address. See #290 for details.
5 years ago
logout, unified login
10 years ago
Store the one time login token in profile so user.password can be used for regular passwords.
9 years ago
logout, unified login
10 years ago
Account creation
10 years ago
Don't create default projects for invited users.
6 years ago
Project model. cc: #183
6 years ago
REGISTRATION_OPEN setting. superuser accounts by default have team access enabled. Fixes #97 and #113
8 years ago
Project model. cc: #183
6 years ago
Team Access, test cleanup
9 years ago
Demo checks shown on welcome page are not saved to database. User's first check is created when creating the user.
7 years ago
Better welcome page.
10 years ago
Fix after-login redirects for users landing in the "Add Slack" page
6 years ago
Fix after-login redirects to "Check Details" and other pages.
6 years ago
Fix after-login redirects for users landing in the "Add Slack" page
6 years ago
If user has a single project, _redirect_after_login redirects to it.
6 years ago
"My Projects" page.
6 years ago
Fix after-login redirects for users landing in the "Add Slack" page
6 years ago
Improved layout & style, fixed hamburger menu in login page.
6 years ago
Rate limit login-with-password attempts.
6 years ago
Improved layout & style, fixed hamburger menu in login page.
6 years ago
Source formatted with Black
6 years ago
Improved layout & style, fixed hamburger menu in login page.
6 years ago
Rate limit login-with-password attempts.
6 years ago
Improved layout & style, fixed hamburger menu in login page.
6 years ago
Fix after-login redirects for users landing in the "Add Slack" page
6 years ago
Improved layout & style, fixed hamburger menu in login page.
6 years ago
Rate limit login-with-password attempts.
6 years ago
Improved layout & style, fixed hamburger menu in login page.
6 years ago
Fix after-login redirects for users landing in the "Add Slack" page
6 years ago
Rate limiting for the "Log In" emails
6 years ago
Fix after-login redirects for users landing in the "Add Slack" page
6 years ago
Rate limit login-with-password attempts.
6 years ago
Rate limiting for the "Log In" emails
6 years ago
Prevent email clients from opening the one-time login links. Fixes #255
6 years ago
Initial commit
10 years ago
check token redirect to login on bad token
9 years ago
Users can add passwords to their accounts. Fixes #6
9 years ago
Improved layout & style, fixed hamburger menu in login page.
6 years ago
Users can add passwords to their accounts. Fixes #6
9 years ago
Improved layout & style, fixed hamburger menu in login page.
6 years ago
Source formatted with Black
6 years ago
Don't show the "Sign Up" link in the login page if registration is closed. Fixes #280
5 years ago
Users can add passwords to their accounts. Fixes #6
9 years ago
Initial commit
10 years ago
logout, unified login
10 years ago
Separate sign up and login forms.
6 years ago
Don't set CSRF cookie on first visit. Signup is exempt from CSRF protection.
5 years ago
Separate sign up and login forms.
6 years ago
Signup form sets the "auto-login" cookie to avoid an extra click during first login
5 years ago
Separate sign up and login forms.
6 years ago
Initial commit
10 years ago
Users can update their email addresses. Fixes #105
7 years ago
Users can add passwords to their accounts. Fixes #6
9 years ago
Login works, stubbed out canary index page
10 years ago
Django 1.10
8 years ago
redirect already logged in user
9 years ago
Fix after-login redirects for users landing in the "Add Slack" page
6 years ago
redirect already logged in user
9 years ago
A work around for email servers that open our one-time login links.
8 years ago
Prevent email clients from opening the one-time login links. Fixes #255
6 years ago
A work around for email servers that open our one-time login links.
8 years ago
More content in docs section
9 years ago
Prevent email clients from opening the one-time login links. Fixes #255
6 years ago
A work around for email servers that open our one-time login links.
8 years ago
Fix after-login redirects for users landing in the "Add Slack" page
6 years ago
A work around for email servers that open our one-time login links.
8 years ago
Login works, stubbed out canary index page
10 years ago
A work around for email servers that open our one-time login links.
8 years ago
Code to send monthly reports (but no management command yet to actually send them)
9 years ago
Cleanup in hc.accounts.views
7 years ago
Code to send monthly reports (but no management command yet to actually send them)
9 years ago
Source formatted with Black
6 years ago
Users can update their email addresses. Fixes #105
7 years ago
Code to send monthly reports (but no management command yet to actually send them)
9 years ago
Users can update their email addresses. Fixes #105
7 years ago
Users can add passwords to their accounts. Fixes #6
9 years ago
Users can update their email addresses. Fixes #105
7 years ago
Users can create and remove Projects -- WIP
6 years ago
Source formatted with Black
6 years ago
Users can create and remove Projects -- WIP
6 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Users can create and remove Projects -- WIP
6 years ago
"My Projects" page.
6 years ago
Users can create and remove Projects -- WIP
6 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Show "Badges" and "Settings" in top navigation. Fixes #234
6 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Show "Badges" and "Settings" in top navigation. Fixes #234
6 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Users can create and remove Projects -- WIP
6 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Show "Badges" and "Settings" in top navigation. Fixes #234
6 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Source formatted with Black
6 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Drop Profile.api_key and Profile.api_key_readonly (both are stored with Project now)
6 years ago
Prepare for the removal of Profile.api_key
6 years ago
Project model. cc: #183
6 years ago
Add read-only API key support
6 years ago
Users can update their email addresses. Fixes #105
7 years ago
Add read-only API key support
6 years ago
Prepare for the removal of Profile.api_key
6 years ago
Project model. cc: #183
6 years ago
Add read-only API key support
6 years ago
Users can update their email addresses. Fixes #105
7 years ago
Add read-only API key support
6 years ago
Team access WIP
9 years ago
Show "Badges" and "Settings" in top navigation. Fixes #234
6 years ago
Access rights checks for team access stuff in profile page.
9 years ago
Team access WIP
9 years ago
Rate limit team invites to 20/day
6 years ago
Team access WIP
9 years ago
Don't create default projects for invited users.
6 years ago
Team access WIP
9 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Users can update their email addresses. Fixes #105
7 years ago
Team access WIP
9 years ago
Show "Badges" and "Settings" in top navigation. Fixes #234
6 years ago
Team access WIP
9 years ago
Check membership before removing project member.
6 years ago
Team access WIP
9 years ago
Project model. cc: #183
6 years ago
Tests for team access.
9 years ago
Source formatted with Black
6 years ago
Tests for team access.
9 years ago
Check membership before removing project member.
6 years ago
Users can update their email addresses. Fixes #105
7 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Team Access, test cleanup
9 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Project model. cc: #183
6 years ago
Show overall project status in the top navigation menu and in the "Select Project" page. cc: #183
6 years ago
Split "Account Settings" page into subpages.
8 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Split "Account Settings" page into subpages.
8 years ago
Cleanup in hc.accounts.views
7 years ago
Split "Account Settings" page into subpages.
8 years ago
Source formatted with Black
6 years ago
Nicer "your settings have been updated" message.
7 years ago
Split "Account Settings" page into subpages.
8 years ago
Adding an option to send daily or hourly reminders if any check is down. Fixes #48
7 years ago
Send monthly reports on 1st of every month, not randomly during the month
5 years ago
Adding an option to send daily or hourly reminders if any check is down. Fixes #48
7 years ago
Split "Account Settings" page into subpages.
8 years ago
Nicer "your settings have been updated" message.
7 years ago
Split "Account Settings" page into subpages.
8 years ago
Users can add passwords to their accounts. Fixes #6
9 years ago
Cleanup in hc.accounts.views
7 years ago
Users can add passwords to their accounts. Fixes #6
9 years ago
Cleanup in hc.accounts.views
7 years ago
Users can add passwords to their accounts. Fixes #6
9 years ago
Support for "Add to Slack" button
8 years ago
Users can add passwords to their accounts. Fixes #6
9 years ago
First stab at API, POST /api/v1/checks
9 years ago
Users can add passwords to their accounts. Fixes #6
9 years ago
Users can update their email addresses. Fixes #105
7 years ago
Cleanup in hc.accounts.views
7 years ago
Users can update their email addresses. Fixes #105
7 years ago
Cleanup in hc.accounts.views
7 years ago
Users can update their email addresses. Fixes #105
7 years ago
Report unsubscribe link works with POST. Include "X-Bounce-Url" header in report emails.
6 years ago
Auto-submit the unsubscribe confirmation form only if signature is more than 5 minutes old. Idea from https://stackoverflow.com/questions/59281750/strategies-to-prevent-email-scanners-from-activating-unsubscribe-links/59381066#59381066
5 years ago
Remove obsolete signature checking code in accounts.views.unsubscribe_reports
7 years ago
Auto-submit the unsubscribe confirmation form only if signature is more than 5 minutes old. Idea from https://stackoverflow.com/questions/59281750/strategies-to-prevent-email-scanners-from-activating-unsubscribe-links/59381066#59381066
5 years ago
Remove obsolete signature checking code in accounts.views.unsubscribe_reports
7 years ago
Auto-submit the unsubscribe confirmation form only if signature is more than 5 minutes old. Idea from https://stackoverflow.com/questions/59281750/strategies-to-prevent-email-scanners-from-activating-unsubscribe-links/59381066#59381066
5 years ago
Remove obsolete signature checking code in accounts.views.unsubscribe_reports
7 years ago
Code to send monthly reports (but no management command yet to actually send them)
9 years ago
Auto-submit the unsubscribe confirmation form only if signature is more than 5 minutes old. Idea from https://stackoverflow.com/questions/59281750/strategies-to-prevent-email-scanners-from-activating-unsubscribe-links/59381066#59381066
5 years ago
Unsubscribe links serve a form, and require HTTP POST to actually unsubscribe
5 years ago
Auto-submit the unsubscribe confirmation form only if signature is more than 5 minutes old. Idea from https://stackoverflow.com/questions/59281750/strategies-to-prevent-email-scanners-from-activating-unsubscribe-links/59381066#59381066
5 years ago
A workaround for some email agents automatically opening "Unsubscribe" links
6 years ago
Code to send monthly reports (but no management command yet to actually send them)
9 years ago
Cleanup in hc.accounts.views
7 years ago
Clear out `Profile.next_report_date` and `Profile.next_nag_date` when unsubscribing from reports.
7 years ago
Adding an option to send daily or hourly reminders if any check is down. Fixes #48
7 years ago
Clear out `Profile.next_report_date` and `Profile.next_nag_date` when unsubscribing from reports.
7 years ago
Cleanup in hc.accounts.views
7 years ago
Code to send monthly reports (but no management command yet to actually send them)
9 years ago
Team Access, test cleanup
9 years ago
"Close Account" section in Settings page. Fixes #95
8 years ago
Delete customer from Braintree when closing account.
5 years ago
"Close Account" section in Settings page. Fixes #95
8 years ago
Adding on_delete keywords, more to come.
8 years ago
"Close Account" section in Settings page. Fixes #95
8 years ago
Users can create and remove Projects -- WIP
6 years ago
Test cases for adding project, removing project and leaving project.
6 years ago
Users can create and remove Projects -- WIP
6 years ago
Test cases for adding project, removing project and leaving project.
6 years ago
 
  1. from datetime import timedelta as td
  2. import uuid
  3. 

  4. from django.conf import settings
  5. from django.contrib import messages
  6. from django.contrib.auth import login as auth_login
  7. from django.contrib.auth import logout as auth_logout
  8. from django.contrib.auth import authenticate
  9. from django.contrib.auth.decorators import login_required
  10. from django.contrib.auth.models import User
  11. from django.core import signing
  12. from django.http import (
  13.     HttpResponseForbidden,
  14.     HttpResponseBadRequest,
  15.     HttpResponseNotFound,
  16. )
  17. from django.shortcuts import get_object_or_404, redirect, render
  18. from django.utils.timezone import now
  19. from django.urls import resolve, Resolver404
  20. from django.views.decorators.csrf import csrf_exempt
  21. from django.views.decorators.http import require_POST
  22. from hc.accounts.forms import (
  23.     ChangeEmailForm,
  24.     PasswordLoginForm,
  25.     InviteTeamMemberForm,
  26.     RemoveTeamMemberForm,
  27.     ReportSettingsForm,
  28.     SetPasswordForm,
  29.     ProjectNameForm,
  30.     AvailableEmailForm,
  31.     EmailLoginForm,
  32. )
  33. from hc.accounts.models import Profile, Project, Member
  34. from hc.api.models import Channel, Check, TokenBucket
  35. from hc.lib.date import choose_next_report_date
  36. from hc.payments.models import Subscription
  37. 

  38. NEXT_WHITELIST = (
  39.     "hc-checks",
  40.     "hc-details",
  41.     "hc-log",
  42.     "hc-channels",
  43.     "hc-add-slack",
  44.     "hc-add-pushover",
  45. )
  46. 

  47. 

  48. def _is_whitelisted(path):
  49.     try:
  50.         match = resolve(path)
  51.     except Resolver404:
  52.         return False
  53. 

  54.     return match.url_name in NEXT_WHITELIST
  55. 

  56. 

  57. def _make_user(email, with_project=True):
  58.     username = str(uuid.uuid4())[:30]
  59.     user = User(username=username, email=email)
  60.     user.set_unusable_password()
  61.     user.save()
  62. 

  63.     project = None
  64.     if with_project:
  65.         project = Project(owner=user)
  66.         project.badge_key = user.username
  67.         project.save()
  68. 

  69.         check = Check(project=project)
  70.         check.name = "My First Check"
  71.         check.save()
  72. 

  73.         channel = Channel(project=project)
  74.         channel.kind = "email"
  75.         channel.value = email
  76.         channel.email_verified = True
  77.         channel.save()
  78. 

  79.         channel.checks.add(check)
  80. 

  81.     # Ensure a profile gets created
  82.     profile = Profile.objects.for_user(user)
  83.     profile.current_project = project
  84.     profile.save()
  85. 

  86.     return user
  87. 

  88. 

  89. def _redirect_after_login(request):
  90.     """ Redirect to the URL indicated in ?next= query parameter. """
  91. 

  92.     redirect_url = request.GET.get("next")
  93.     if _is_whitelisted(redirect_url):
  94.         return redirect(redirect_url)
  95. 

  96.     if request.user.project_set.count() == 1:
  97.         project = request.user.project_set.first()
  98.         return redirect("hc-checks", project.code)
  99. 

  100.     return redirect("hc-index")
  101. 

  102. 

  103. def login(request):
  104.     form = PasswordLoginForm()
  105.     magic_form = EmailLoginForm()
  106. 

  107.     if request.method == "POST":
  108.         if request.POST.get("action") == "login":
  109.             form = PasswordLoginForm(request.POST)
  110.             if form.is_valid():
  111.                 auth_login(request, form.user)
  112.                 return _redirect_after_login(request)
  113. 

  114.         else:
  115.             magic_form = EmailLoginForm(request.POST)
  116.             if magic_form.is_valid():
  117.                 redirect_url = request.GET.get("next")
  118.                 if not _is_whitelisted(redirect_url):
  119.                     redirect_url = None
  120. 

  121.                 profile = Profile.objects.for_user(magic_form.user)
  122.                 profile.send_instant_login_link(redirect_url=redirect_url)
  123.                 response = redirect("hc-login-link-sent")
  124. 

  125.                 # check_token_submit looks for this cookie to decide if
  126.                 # it needs to do the extra POST step.
  127.                 response.set_cookie("auto-login", "1", max_age=300, httponly=True)
  128.                 return response
  129. 

  130.     bad_link = request.session.pop("bad_link", None)
  131.     ctx = {
  132.         "page": "login",
  133.         "form": form,
  134.         "magic_form": magic_form,
  135.         "bad_link": bad_link,
  136.         "registration_open": settings.REGISTRATION_OPEN,
  137.     }
  138.     return render(request, "accounts/login.html", ctx)
  139. 

  140. 

  141. def logout(request):
  142.     auth_logout(request)
  143.     return redirect("hc-index")
  144. 

  145. 

  146. @require_POST
  147. @csrf_exempt
  148. def signup(request):
  149.     if not settings.REGISTRATION_OPEN:
  150.         return HttpResponseForbidden()
  151. 

  152.     ctx = {}
  153.     form = AvailableEmailForm(request.POST)
  154.     if form.is_valid():
  155.         email = form.cleaned_data["identity"]
  156.         user = _make_user(email)
  157.         profile = Profile.objects.for_user(user)
  158.         profile.send_instant_login_link()
  159.         ctx["created"] = True
  160.     else:
  161.         ctx = {"form": form}
  162. 

  163.     response = render(request, "accounts/signup_result.html", ctx)
  164.     if ctx.get("created"):
  165.         response.set_cookie("auto-login", "1", max_age=300, httponly=True)
  166. 

  167.     return response
  168. 

  169. 

  170. def login_link_sent(request):
  171.     return render(request, "accounts/login_link_sent.html")
  172. 

  173. 

  174. def link_sent(request):
  175.     return render(request, "accounts/link_sent.html")
  176. 

  177. 

  178. def check_token(request, username, token):
  179.     if request.user.is_authenticated and request.user.username == username:
  180.         # User is already logged in
  181.         return _redirect_after_login(request)
  182. 

  183.     # Some email servers open links in emails to check for malicious content.
  184.     # To work around this, we sign user in if the method is POST
  185.     # *or* if the browser presents a cookie we had set when sending the login link.
  186.     #
  187.     # If the method is GET, we instead serve a HTML form and a piece
  188.     # of Javascript to automatically submit it.
  189. 

  190.     if request.method == "POST" or "auto-login" in request.COOKIES:
  191.         user = authenticate(username=username, token=token)
  192.         if user is not None and user.is_active:
  193.             user.profile.token = ""
  194.             user.profile.save()
  195.             auth_login(request, user)
  196. 

  197.             return _redirect_after_login(request)
  198. 

  199.         request.session["bad_link"] = True
  200.         return redirect("hc-login")
  201. 

  202.     return render(request, "accounts/check_token_submit.html")
  203. 

  204. 

  205. @login_required
  206. def profile(request):
  207.     profile = request.profile
  208. 

  209.     ctx = {"page": "profile", "profile": profile, "my_projects_status": "default"}
  210. 

  211.     if request.method == "POST":
  212.         if "change_email" in request.POST:
  213.             profile.send_change_email_link()
  214.             return redirect("hc-link-sent")
  215.         elif "set_password" in request.POST:
  216.             profile.send_set_password_link()
  217.             return redirect("hc-link-sent")
  218.         elif "leave_project" in request.POST:
  219.             code = request.POST["code"]
  220.             try:
  221.                 project = Project.objects.get(code=code, member__user=request.user)
  222.             except Project.DoesNotExist:
  223.                 return HttpResponseBadRequest()
  224. 

  225.             if profile.current_project == project:
  226.                 profile.current_project = None
  227.                 profile.save()
  228. 

  229.             Member.objects.filter(project=project, user=request.user).delete()
  230. 

  231.             ctx["left_project"] = project
  232.             ctx["my_projects_status"] = "info"
  233. 

  234.     # Retrieve projects right before rendering the template--
  235.     # The list of the projects might have *just* changed
  236.     ctx["projects"] = list(profile.projects())
  237.     return render(request, "accounts/profile.html", ctx)
  238. 

  239. 

  240. @login_required
  241. @require_POST
  242. def add_project(request):
  243.     form = ProjectNameForm(request.POST)
  244.     if not form.is_valid():
  245.         return HttpResponseBadRequest()
  246. 

  247.     project = Project(owner=request.user)
  248.     project.code = project.badge_key = str(uuid.uuid4())
  249.     project.name = form.cleaned_data["name"]
  250.     project.save()
  251. 

  252.     return redirect("hc-checks", project.code)
  253. 

  254. 

  255. @login_required
  256. def project(request, code):
  257.     if request.user.is_superuser:
  258.         q = Project.objects
  259.     else:
  260.         q = request.profile.projects()
  261. 

  262.     try:
  263.         project = q.get(code=code)
  264.     except Project.DoesNotExist:
  265.         return HttpResponseNotFound()
  266. 

  267.     is_owner = project.owner_id == request.user.id
  268.     ctx = {
  269.         "page": "project",
  270.         "project": project,
  271.         "is_owner": is_owner,
  272.         "show_api_keys": "show_api_keys" in request.GET,
  273.         "project_name_status": "default",
  274.         "api_status": "default",
  275.         "team_status": "default",
  276.     }
  277. 

  278.     if request.method == "POST":
  279.         if "create_api_keys" in request.POST:
  280.             project.set_api_keys()
  281.             project.save()
  282. 

  283.             ctx["show_api_keys"] = True
  284.             ctx["api_keys_created"] = True
  285.             ctx["api_status"] = "success"
  286.         elif "revoke_api_keys" in request.POST:
  287.             project.api_key = ""
  288.             project.api_key_readonly = ""
  289.             project.save()
  290. 

  291.             ctx["api_keys_revoked"] = True
  292.             ctx["api_status"] = "info"
  293.         elif "show_api_keys" in request.POST:
  294.             ctx["show_api_keys"] = True
  295.         elif "invite_team_member" in request.POST:
  296.             if not is_owner or not project.can_invite():
  297.                 return HttpResponseForbidden()
  298. 

  299.             form = InviteTeamMemberForm(request.POST)
  300.             if form.is_valid():
  301.                 if not TokenBucket.authorize_invite(request.user):
  302.                     return render(request, "try_later.html")
  303. 

  304.                 email = form.cleaned_data["email"]
  305.                 try:
  306.                     user = User.objects.get(email=email)
  307.                 except User.DoesNotExist:
  308.                     user = _make_user(email, with_project=False)
  309. 

  310.                 project.invite(user)
  311.                 ctx["team_member_invited"] = email
  312.                 ctx["team_status"] = "success"
  313. 

  314.         elif "remove_team_member" in request.POST:
  315.             if not is_owner:
  316.                 return HttpResponseForbidden()
  317. 

  318.             form = RemoveTeamMemberForm(request.POST)
  319.             if form.is_valid():
  320.                 q = User.objects
  321.                 q = q.filter(email=form.cleaned_data["email"])
  322.                 q = q.filter(memberships__project=project)
  323.                 farewell_user = q.first()
  324.                 if farewell_user is None:
  325.                     return HttpResponseBadRequest()
  326. 

  327.                 farewell_user.profile.current_project = None
  328.                 farewell_user.profile.save()
  329. 

  330.                 Member.objects.filter(project=project, user=farewell_user).delete()
  331. 

  332.                 ctx["team_member_removed"] = form.cleaned_data["email"]
  333.                 ctx["team_status"] = "info"
  334.         elif "set_project_name" in request.POST:
  335.             form = ProjectNameForm(request.POST)
  336.             if form.is_valid():
  337.                 project.name = form.cleaned_data["name"]
  338.                 project.save()
  339. 

  340.                 if request.profile.current_project == project:
  341.                     request.profile.current_project.name = project.name
  342. 

  343.                 ctx["project_name_updated"] = True
  344.                 ctx["project_name_status"] = "success"
  345. 

  346.     # Count members right before rendering the template, in case
  347.     # we just invited or removed someone
  348.     ctx["num_members"] = project.member_set.count()
  349.     return render(request, "accounts/project.html", ctx)
  350. 

  351. 

  352. @login_required
  353. def notifications(request):
  354.     profile = request.profile
  355. 

  356.     ctx = {"status": "default", "page": "profile", "profile": profile}
  357. 

  358.     if request.method == "POST":
  359.         form = ReportSettingsForm(request.POST)
  360.         if form.is_valid():
  361.             if profile.reports_allowed != form.cleaned_data["reports_allowed"]:
  362.                 profile.reports_allowed = form.cleaned_data["reports_allowed"]
  363.                 if profile.reports_allowed:
  364.                     profile.next_report_date = choose_next_report_date()
  365.                 else:
  366.                     profile.next_report_date = None
  367. 

  368.             if profile.nag_period != form.cleaned_data["nag_period"]:
  369.                 # Set the new nag period
  370.                 profile.nag_period = form.cleaned_data["nag_period"]
  371.                 # and schedule next_nag_date:
  372.                 if profile.nag_period:
  373.                     profile.next_nag_date = now() + profile.nag_period
  374.                 else:
  375.                     profile.next_nag_date = None
  376. 

  377.             profile.save()
  378.             ctx["status"] = "info"
  379. 

  380.     return render(request, "accounts/notifications.html", ctx)
  381. 

  382. 

  383. @login_required
  384. def set_password(request, token):
  385.     if not request.profile.check_token(token, "set-password"):
  386.         return HttpResponseBadRequest()
  387. 

  388.     if request.method == "POST":
  389.         form = SetPasswordForm(request.POST)
  390.         if form.is_valid():
  391.             password = form.cleaned_data["password"]
  392.             request.user.set_password(password)
  393.             request.user.save()
  394. 

  395.             request.profile.token = ""
  396.             request.profile.save()
  397. 

  398.             # Setting a password logs the user out, so here we
  399.             # log them back in.
  400.             u = authenticate(username=request.user.email, password=password)
  401.             auth_login(request, u)
  402. 

  403.             messages.success(request, "Your password has been set!")
  404.             return redirect("hc-profile")
  405. 

  406.     return render(request, "accounts/set_password.html", {})
  407. 

  408. 

  409. @login_required
  410. def change_email(request, token):
  411.     if not request.profile.check_token(token, "change-email"):
  412.         return HttpResponseBadRequest()
  413. 

  414.     if request.method == "POST":
  415.         form = ChangeEmailForm(request.POST)
  416.         if form.is_valid():
  417.             request.user.email = form.cleaned_data["email"]
  418.             request.user.set_unusable_password()
  419.             request.user.save()
  420. 

  421.             request.profile.token = ""
  422.             request.profile.save()
  423. 

  424.             return redirect("hc-change-email-done")
  425.     else:
  426.         form = ChangeEmailForm()
  427. 

  428.     return render(request, "accounts/change_email.html", {"form": form})
  429. 

  430. 

  431. def change_email_done(request):
  432.     return render(request, "accounts/change_email_done.html")
  433. 

  434. 

  435. @csrf_exempt
  436. def unsubscribe_reports(request, signed_username):
  437.     # Some email servers open links in emails to check for malicious content.
  438.     # To work around this, for GET requests we serve a confirmation form.
  439.     # If the signature is more than 5 minutes old, we also include JS code to
  440.     # auto-submit the form.
  441. 

  442.     ctx = {}
  443.     signer = signing.TimestampSigner(salt="reports")
  444.     # First, check the signature without looking at the timestamp:
  445.     try:
  446.         username = signer.unsign(signed_username)
  447.     except signing.BadSignature:
  448.         return render(request, "bad_link.html")
  449. 

  450.     # Check if timestamp is older than 5 minutes:
  451.     try:
  452.         username = signer.unsign(signed_username, max_age=300)
  453.     except signing.SignatureExpired:
  454.         ctx["autosubmit"] = True
  455. 

  456.     if request.method != "POST":
  457.         return render(request, "accounts/unsubscribe_submit.html", ctx)
  458. 

  459.     user = User.objects.get(username=username)
  460.     profile = Profile.objects.for_user(user)
  461.     profile.reports_allowed = False
  462.     profile.next_report_date = None
  463.     profile.nag_period = td()
  464.     profile.next_nag_date = None
  465.     profile.save()
  466. 

  467.     return render(request, "accounts/unsubscribed.html")
  468. 

  469. 

  470. @require_POST
  471. @login_required
  472. def close(request):
  473.     user = request.user
  474. 

  475.     # Subscription needs to be canceled before it is deleted:
  476.     sub = Subscription.objects.filter(user=user).first()
  477.     if sub:
  478.         sub.cancel(delete_customer=True)
  479. 

  480.     user.delete()
  481. 

  482.     # Deleting user also deletes its profile, checks, channels etc.
  483. 

  484.     request.session.flush()
  485.     return redirect("hc-index")
  486. 

  487. 

  488. @require_POST
  489. @login_required
  490. def remove_project(request, code):
  491.     project = get_object_or_404(Project, code=code, owner=request.user)
  492.     project.delete()
  493.     return redirect("hc-index")