portal/registrationview.py

   1 import os.path, re
   2 import json
   3 from random     import randint
   4 from hashlib    import md5
   5
   6 from django.views.generic       import View
   7 from django.template.loader     import render_to_string
   8 from django.shortcuts           import render
   9 from django.contrib.auth        import get_user_model
  10 from django.contrib.sites.models import Site
  11
  12 from unfold.page                import Page
  13 from unfold.loginrequired       import FreeAccessView
  14 from ui.topmenu                 import topmenu_items_live
  15
  16 from manifoldapi.manifoldapi    import execute_admin_query
  17 from manifold.core.query        import Query
  18
  19 from portal.models              import PendingUser
  20 from portal.actions             import create_pending_user
  21
  22 from myslice.theme import ThemeView
  23
  24 # since we inherit from FreeAccessView we cannot redefine 'dispatch'
  25 # so let's override 'get' and 'post' instead
  26 #
  27 class RegistrationView (FreeAccessView, ThemeView):
  28     template_name = 'registration_view.html'
  29
  30     def post (self, request):
  31         return self.get_or_post (request, 'POST')
  32
  33     def get (self, request):
  34         return self.get_or_post (request, 'GET')
  35
  36     def get_or_post(self, wsgi_request, method):
  37         """
  38         """
  39         errors = []
  40
  41         authorities_query = Query.get('authority').select('name', 'authority_hrn')
  42         authorities = execute_admin_query(wsgi_request, authorities_query)
  43         if authorities is not None:
  44             authorities = sorted(authorities)
  45
  46         # Page rendering
  47         page = Page(wsgi_request)
  48         page.add_js_files  ( [ "js/jquery.validate.js", "js/my_account.register.js", "js/jquery.qtip.min.js" ] )
  49         page.add_css_files ( [ "css/onelab.css", "css/registration.css", "css/jquery.qtip.min.css" ] )
  50         page.add_css_files ( [ "https://code.jquery.com/ui/1.10.3/themes/smoothness/jquery-ui.css" ] )
  51
  52         if method == 'POST':
  53             # The form has been submitted
  54
  55             # get the domain url
  56             current_site = Site.objects.get_current()
  57             current_site = current_site.domain
  58
  59             authorities_query = Query.get('authority').select('name', 'authority_hrn')
  60             authorities = execute_admin_query(wsgi_request, authorities_query)
  61
  62             for authority in authorities:
  63                 if authority['name'] == wsgi_request.POST.get('org_name', ''):
  64                     authority_hrn = authority['authority_hrn']
  65
  66             post_email = wsgi_request.POST.get('email','').lower()
  67             salt = randint(1,100000)
  68             email_hash = md5(str(salt)+post_email).hexdigest()
  69             #email_hash = md5(post_email).digest().encode('base64')[:-1]
  70             user_request = {
  71                 'first_name'    : wsgi_request.POST.get('firstname',     ''),
  72                 'last_name'     : wsgi_request.POST.get('lastname',      ''),
  73                 'organization'  : wsgi_request.POST.get('org_name', ''),
  74                 'authority_hrn' : authority_hrn,
  75                 'email'         : post_email,
  76                 'password'      : wsgi_request.POST.get('password',      ''),
  77                 'current_site'  : current_site,
  78                 'email_hash'    : email_hash,
  79                 'validation_link': 'http://' + current_site + '/portal/email_activation/'+ email_hash
  80             }
  81
  82             # Construct user_hrn from email (XXX Should use common code)
  83             split_email = user_request['email'].split("@")[0]
  84             split_email = split_email.replace(".", "_")
  85             user_request['user_hrn'] = user_request['authority_hrn'] \
  86                      + '.' + split_email
  87
  88             # Validate input
  89             UserModel = get_user_model()
  90             if (re.search(r'^[\w+\s.@+-]+$', user_request['first_name']) == None):
  91                 errors.append('First Name may contain only letters, numbers, spaces and @/./+/-/_ characters.')
  92             if (re.search(r'^[\w+\s.@+-]+$', user_request['last_name']) == None):
  93                 errors.append('Last Name may contain only letters, numbers, spaces and @/./+/-/_ characters.')
  94             # checking in django_db !!
  95             if PendingUser.objects.filter(email__iexact = user_request['email']):
  96                 errors.append('Email is pending for validation. Please provide a new email address.')
  97             if UserModel._default_manager.filter(email__iexact = user_request['email']):
  98                 errors.append('This email is not usable. Please contact the administrator or try with another email.')
  99             # Does the user exist in Manifold?
 100             user_query  = Query().get('local:user').select('user_id','email')
 101             user_details = execute_admin_query(wsgi_request, user_query)
 102             for user_detail in user_details:
 103                 if user_detail['email'] == user_request['email']:
 104                     errors.append('Email already registered in Manifold. Please provide a new email address.')
 105             # Does the user exist in sfa? [query is very slow!!]
 106             #user_query  = Query().get('user').select('user_hrn','user_email')
 107             # XXX Test based on the user_hrn is quick
 108             user_query  = Query().get('user').select('user_hrn','user_email').filter_by('user_hrn','==',user_request['user_hrn'])
 109             user_details_sfa = execute_admin_query(wsgi_request, user_query)
 110
 111             for user in user_details_sfa:
 112                 if user['user_email'] == user_request['email']:
 113                     errors.append('Email already registered in SFA registry. Please use another email.')
 114                 if user['user_hrn'] == user_request['user_hrn']:
 115                     # add random number if user_hrn already exists in the registry
 116                     user_request['user_hrn'] = user_request['authority_hrn'] \
 117                             + '.' + split_email + str(randint(1,1000000))
 118
 119             # XXX TODO: Factorize with portal/accountview.py
 120             if 'generate' in wsgi_request.POST['question']:
 121                 user_request['auth_type'] = 'managed'
 122
 123                 # XXX Common code, dependency ?
 124                 from Crypto.PublicKey import RSA
 125                 private = RSA.generate(1024)
 126
 127                 # Example: private_key = '-----BEGIN RSA PRIVATE KEY-----\nMIIC...'
 128                 # Example: public_key = 'ssh-rsa AAAAB3...'
 129                 user_request['private_key'] = private.exportKey()
 130                 user_request['public_key']  = private.publickey().exportKey(format='OpenSSH')
 131
 132             else:
 133                 user_request['auth_type'] = 'user'
 134
 135                 up_file        = wsgi_request.FILES['user_public_key']
 136
 137                 file_content   = up_file.read().strip()
 138                 file_name      = up_file.name
 139                 file_extension = os.path.splitext(file_name)[1]
 140
 141                 ALLOWED_EXTENSIONS =  ['.pub','.txt']
 142                 if file_extension not in ALLOWED_EXTENSIONS or not re.search(r'ssh-rsa',file_content):
 143                     errors.append('Please upload a valid RSA public key.')
 144
 145                 user_request['private_key'] = None
 146                 user_request['public_key']  = file_content
 147
 148             if not errors:
 149                 create_pending_user(wsgi_request, user_request, user_detail)
 150                 self.template_name = 'user_register_complete.html'
 151                 return render(wsgi_request, self.template, {'theme': self.theme})
 152
 153         else:
 154             user_request = {}
 155
 156         template_env = {
 157           'topmenu_items': topmenu_items_live('Register', page),
 158           'errors': errors,
 159           'authorities': authorities,
 160           'theme': self.theme
 161           }
 162         template_env.update(user_request)
 163         template_env.update(page.prelude_env ())
 164         return render(wsgi_request, self.template,template_env)