IdHub/idhub/mixins.py

from django.contrib.auth.mixins import LoginRequiredMixin
from django.utils.translation import gettext_lazy as _
from django.contrib.auth import views as auth_views
from django.core.exceptions import PermissionDenied
from django.urls import reverse_lazy, resolve
from django.shortcuts import redirect
from django.core.cache import cache


class Http403(PermissionDenied):
    status_code = 403
    default_detail = _('Permission denied. User is not authenticated')
    default_code = 'forbidden'

    def __init__(self, detail=None, code=None):
        if detail is not None:
            self.detail = details or self.default_details
        if code is not None:
            self.code = code or self.default_code


class UserView(LoginRequiredMixin):
    login_url = "/login/"
    wallet = False
    path_terms = [
        'admin_terms_and_conditions',
        'user_terms_and_conditions',
        'user_gdpr',
    ]

    def get(self, request, *args, **kwargs):
        self.admin_validated = cache.get("KEY_DIDS")
        response = super().get(request, *args, **kwargs)
        url = self.check_gdpr()

        return url or response
        
    def post(self, request, *args, **kwargs):
        self.admin_validated = cache.get("KEY_DIDS")
        response = super().post(request, *args, **kwargs)
        url = self.check_gdpr()

        return url or response

    def get_context_data(self, **kwargs):
        context = super().get_context_data(**kwargs)
        context.update({
            'title': self.title,
            'subtitle': self.subtitle,
            'icon': self.icon,
            'section': self.section,
            'path': resolve(self.request.path).url_name,
            'user': self.request.user,
            'wallet': self.wallet,
            'admin_validated': True if self.admin_validated else False
        })
        return context

    def check_gdpr(self):
        if not self.request.user.accept_gdpr:
            url = reverse_lazy("idhub:user_terms_and_conditions")
            if self.request.user.is_admin:
                url = reverse_lazy("idhub:admin_terms_and_conditions")
            if resolve(self.request.path).url_name not in self.path_terms:
                return redirect(url)


class AdminView(UserView):

    def get(self, request, *args, **kwargs):
        self.check_valid_user()
        return super().get(request, *args, **kwargs)

    def post(self, request, *args, **kwargs):
        self.check_valid_user()
        return super().post(request, *args, **kwargs)

    def check_valid_user(self):
        if not self.request.user.is_admin:
            raise Http403()

        if self.request.session.get("2fauth"):
            raise Http403()
refactory 2023-10-09 09:44:26 +00:00			`from django.contrib.auth.mixins import LoginRequiredMixin`
resolve conflict 2024-01-20 14:28:42 +00:00			`from django.utils.translation import gettext_lazy as _`
refactory 2023-10-09 09:44:26 +00:00			`from django.contrib.auth import views as auth_views`
resolve conflict 2024-01-20 14:28:42 +00:00			`from django.core.exceptions import PermissionDenied`
creating user sections base 2023-10-09 11:43:34 +00:00			`from django.urls import reverse_lazy, resolve`
refactory 2023-10-09 09:44:26 +00:00			`from django.shortcuts import redirect`
filter request credentials if admin is not validated 2024-01-18 17:36:41 +00:00			`from django.core.cache import cache`
refactory 2023-10-09 09:44:26 +00:00

add 403 exception for bad access 2024-01-20 11:26:19 +00:00			`class Http403(PermissionDenied):`
			`status_code = 403`
			`default_detail = _('Permission denied. User is not authenticated')`
			`default_code = 'forbidden'`

			`def __init__(self, detail=None, code=None):`
			`if detail is not None:`
			`self.detail = details or self.default_details`
			`if code is not None:`
			`self.code = code or self.default_code`
refactory 2023-10-09 09:44:26 +00:00

add form for editing profile 2023-10-11 07:52:05 +00:00			`class UserView(LoginRequiredMixin):`
refactory 2023-10-09 09:44:26 +00:00			`login_url = "/login/"`
fix accordion wallet 2023-10-09 16:38:28 +00:00			`wallet = False`
first page for accept terms and conditions 2024-01-20 14:06:30 +00:00			`path_terms = [`
			`'admin_terms_and_conditions',`
			`'user_terms_and_conditions',`
			`'user_gdpr',`
			`]`

			`def get(self, request, args, *kwargs):`
fix duplicated functions 2024-01-20 14:53:10 +00:00			`self.admin_validated = cache.get("KEY_DIDS")`
first page for accept terms and conditions 2024-01-20 14:06:30 +00:00			`response = super().get(request, args, *kwargs)`
			`url = self.check_gdpr()`

fix duplicated functions 2024-01-20 14:53:10 +00:00			`return url or response`
first page for accept terms and conditions 2024-01-20 14:06:30 +00:00
			`def post(self, request, args, *kwargs):`
fix duplicated functions 2024-01-20 14:53:10 +00:00			`self.admin_validated = cache.get("KEY_DIDS")`
first page for accept terms and conditions 2024-01-20 14:06:30 +00:00			`response = super().post(request, args, *kwargs)`
			`url = self.check_gdpr()`
filter request credentials if admin is not validated 2024-01-18 17:36:41 +00:00
fix duplicated functions 2024-01-20 14:53:10 +00:00			`return url or response`
filter request credentials if admin is not validated 2024-01-18 17:36:41 +00:00
refactory 2023-10-09 09:44:26 +00:00			`def get_context_data(self, **kwargs):`
			`context = super().get_context_data(**kwargs)`
			`context.update({`
			`'title': self.title,`
creating user sections base 2023-10-09 11:43:34 +00:00			`'subtitle': self.subtitle,`
			`'icon': self.icon,`
			`'section': self.section,`
			`'path': resolve(self.request.path).url_name,`
fix accordion wallet 2023-10-09 16:38:28 +00:00			`'user': self.request.user,`
			`'wallet': self.wallet,`
filter request credentials if admin is not validated 2024-01-18 17:36:41 +00:00			`'admin_validated': True if self.admin_validated else False`
refactory 2023-10-09 09:44:26 +00:00			`})`
			`return context`

first page for accept terms and conditions 2024-01-20 14:06:30 +00:00			`def check_gdpr(self):`
			`if not self.request.user.accept_gdpr:`
			`url = reverse_lazy("idhub:user_terms_and_conditions")`
			`if self.request.user.is_admin:`
			`url = reverse_lazy("idhub:admin_terms_and_conditions")`
			`if resolve(self.request.path).url_name not in self.path_terms:`
			`return redirect(url)`

refactory 2023-10-09 09:44:26 +00:00
			`class AdminView(UserView):`

add admin view user 2023-10-11 16:08:20 +00:00			`def get(self, request, args, *kwargs):`
add 403 exception for bad access 2024-01-20 11:26:19 +00:00			`self.check_valid_user()`
add admin view user 2023-10-11 16:08:20 +00:00			`return super().get(request, args, *kwargs)`
refactory 2023-10-09 09:44:26 +00:00
add 403 exception for bad access 2024-01-20 11:26:19 +00:00			`def post(self, request, args, *kwargs):`
			`self.check_valid_user()`
			`return super().post(request, args, *kwargs)`
admin2fauth 2024-01-19 09:59:35 +00:00
add 403 exception for bad access 2024-01-20 11:26:19 +00:00			`def check_valid_user(self):`
			`if not self.request.user.is_admin:`
first page for accept terms and conditions 2024-01-20 14:06:30 +00:00			`raise Http403()`
add 403 exception for bad access 2024-01-20 11:26:19 +00:00
			`if self.request.session.get("2fauth"):`
first page for accept terms and conditions 2024-01-20 14:06:30 +00:00			`raise Http403()`
add 403 exception for bad access 2024-01-20 11:26:19 +00:00