X-Git-Url: http://git.onelab.eu/?a=blobdiff_plain;f=portal%2Fviews.py;h=7805dd539a20b1345cafacd294f96244b9b4ad15;hb=52089da7b7878734cc5f5c26e188909c5ee25b39;hp=9aa479e94ef360abbb774b3bf3710558ad819c79;hpb=1f92a901985650da63f023930dd069cc671c2c74;p=myslice.git diff --git a/portal/views.py b/portal/views.py index 9aa479e9..7805dd53 100644 --- a/portal/views.py +++ b/portal/views.py @@ -42,7 +42,9 @@ from manifold.core.query import Query from unfold.page import Page from myslice.viewutils import topmenu_items, the_user from django.http import HttpResponseRedirect, HttpResponse -import os.path, re + +from M2Crypto import Rand, RSA, BIO +import os, re class DashboardView(TemplateView): template_name = "dashboard.html" @@ -510,8 +512,8 @@ def acc_process(request): get_user.save() return HttpResponse('Success: Password Changed!!') elif 'generate' in request.POST: - import os - from M2Crypto import Rand, RSA, BIO + #import os + #from M2Crypto import Rand, RSA, BIO KEY_LENGTH = 2048 @@ -535,9 +537,10 @@ def acc_process(request): private_key = pri_mem.getvalue() # Saving to DB keypair = '{"user_public_key":"'+ public_key + '", "user_private_key":"'+ private_key + '"}' - #keypair = re.sub("\r", "", keypair) - #keypair = re.sub("\n", "\\n", keypair) - keypair = keypair.rstrip('\r\n') + keypair = re.sub("\r", "", keypair) + keypair = re.sub("\n", "\\n", keypair) + #keypair = keypair.rstrip('\r\n') + keypair = ''.join(keypair.split()) get_user.keypair = keypair get_user.save() return HttpResponse('Success: New Keypair Generated! %s' % keypair) @@ -548,15 +551,16 @@ def acc_process(request): file_name = up_file.name file_extension = os.path.splitext(file_name)[1] allowed_extension = ['.pub','.txt'] - if file_extension in allowed_extension: + if file_extension in allowed_extension and re.search(r'ssh-rsa',file_content): file_content = '{"user_public_key":"'+ file_content +'"}' file_content = re.sub("\r", "", file_content) file_content = re.sub("\n", "\\n",file_content) + file_content = ''.join(file_content.split()) get_user.keypair = file_content get_user.save() return HttpResponse('Success: Publickey uploaded! Old records overwritten') else: - return HttpResponse('Please upload a valid public key.') + return HttpResponse('Please upload a valid RSA public key [.txt or .pub].') else: message = 'You submitted an empty form.' @@ -567,7 +571,70 @@ def register_4m_f4f(request): def reg_4m_f4f_process(request): if 'submit' in request.POST: - return HttpResponse('Registration Successful. Please wait for account validation') + #get_email = PendingUser.objects.get(email) + reg_fname = request.POST['firstname'] + reg_lname = request.POST['lastname'] + reg_aff = request.POST['affiliation'] + reg_email = request.POST['email'].lower() + + #POST value validation + if (re.search(r'^[\w+\s.@+-]+$', reg_fname)==None): + return HttpResponse("Only Letters, Numbers, - and _ allowd in First Name") + if (re.search(r'^[\w+\s.@+-]+$', reg_lname) == None): + return HttpResponse("Only Letters, Numbers, - and _ is allowed in Last name") + if (re.search(r'^[\w+\s.@+-]+$', reg_aff) == None): + return HttpResponse("Only Letters, Numbers and _ is allowed in Affiliation") + if PendingUser.objects.filter(email__iexact=reg_email): + return HttpResponse("Email Already exists") + if 'generate' in request.POST['question']: + #import os + #from M2Crypto import Rand, RSA, BIO + + KEY_LENGTH = 2048 + + def blank_callback(): + "Replace the default dashes" + return + + # Random seed + Rand.rand_seed (os.urandom (KEY_LENGTH)) + # Generate key pair + key = RSA.gen_key (KEY_LENGTH, 65537, blank_callback) + # Create memory buffers + pri_mem = BIO.MemoryBuffer() + pub_mem = BIO.MemoryBuffer() + # Save keys to buffers + key.save_key_bio(pri_mem, None) + key.save_pub_key_bio(pub_mem) + # Get keys + public_key = pub_mem.getvalue() + private_key = pri_mem.getvalue() + # Saving to DB + keypair = '{"user_public_key":"'+ public_key + '", "user_private_key":"'+ private_key + '"}' + keypair = re.sub("\r", "", keypair) + keypair = re.sub("\n", "\\n", keypair) + #keypair = keypair.rstrip('\r\n') + keypair = ''.join(keypair.split()) + #return HttpResponse(keypair) + else: + up_file = request.FILES['user_public_key'] + file_content = up_file.read() + file_name = up_file.name + file_extension = os.path.splitext(file_name)[1] + allowed_extension = ['.pub','.txt'] + if file_extension in allowed_extension and re.search(r'ssh-rsa',file_content): + keypair = '{"user_public_key":"'+ file_content +'"}' + keypair = re.sub("\r", "", keypair) + keypair = re.sub("\n", "\\n",keypair) + keypair = ''.join(keypair.split()) + else: + return HttpResponse('Please upload a valid RSA public key [.txt or .pub].') + + b = PendingUser(first_name=reg_fname, last_name=reg_lname, affiliation=reg_aff, + email=reg_email, password=request.POST['password'], keypair=keypair) + b.save() + + return HttpResponse('Registration Successful. Please wait for account validation.')