portal/registrationview.py

   1 import os.path, re
   2 import json
   3
   4 from django.core.mail           import send_mail
   5
   6 from django.views.generic       import View
   7 from django.template.loader     import render_to_string
   8 from django.shortcuts           import render
   9
  10 from unfold.page                import Page
  11 from unfold.loginrequired       import FreeAccessView
  12 from ui.topmenu                 import topmenu_items
  13
  14 from manifold.manifoldapi       import execute_admin_query
  15 from manifold.core.query        import Query
  16
  17 from portal.models              import PendingUser
  18 from portal.actions             import authority_get_pi_emails, manifold_add_user,manifold_add_account
  19
  20 # since we inherit from FreeAccessView we cannot redefine 'dispatch'
  21 # so let's override 'get' and 'post' instead
  22 #
  23 class RegistrationView (FreeAccessView):
  24
  25     def post (self, request):
  26         return self.get_or_post (request, 'POST')
  27
  28     def get (self, request):
  29         return self.get_or_post (request, 'GET')
  30
  31     def get_or_post  (self, request, method):
  32         errors = []
  33
  34         #authorities_query = Query.get('authority').\
  35         #    select('name', 'authority_hrn')
  36
  37         #onelab_enabled_query = Query.get('local:platform').filter_by('platform', '==', 'ple').filter_by('disabled', '==', 'False')
  38         #onelab_enabled = not not execute_admin_query(request, onelab_enabled_query)
  39         #if onelab_enabled:
  40         #if True:
  41         #    print "ONELAB ENABLED"
  42         #    authorities_query = Query.get('ple:authority').select('name', 'authority_hrn').filter_by('authority_hrn', 'included', ['ple.inria', 'ple.upmc', 'ple.ibbtple', 'ple.nitos'])
  43         #else:
  44         #    print "FIREXP ENABLED"
  45
  46         #authorities = execute_admin_query(request, authorities_query)
  47         # xxx tocheck - if authorities is empty, it's no use anyway
  48         # (users won't be able to validate the form anyway)
  49
  50         page = Page(request)
  51         page.add_js_files  ( [ "js/jquery.validate.js", "js/my_account.register.js" ] )
  52         page.add_css_files ( [ "css/onelab.css", "css/registration.css" ] )
  53
  54         print 'registration view, method',method
  55
  56         if method == 'POST':
  57             # We shall use a form here
  58
  59             #get_email = PendingUser.objects.get(email)
  60             reg_fname  = request.POST.get('firstname', '')
  61             reg_lname  = request.POST.get('lastname', '')
  62             #reg_aff   = request.POST.get('affiliation','')
  63             reg_auth   = request.POST.get('authority_hrn', '')
  64             reg_login  = request.POST.get('login', '')
  65             reg_email  = request.POST.get('email','').lower()
  66             #prepare user_hrn
  67             split_email = reg_email.split("@")[0]
  68             split_email = split_email.replace(".", "_")
  69             user_hrn = reg_auth + '.' + split_email
  70
  71             #POST value validation
  72             if (re.search(r'^[\w+\s.@+-]+$', reg_fname)==None):
  73                 errors.append('First Name may contain only letters, numbers, spaces and @/./+/-/_ characters.')
  74             if (re.search(r'^[\w+\s.@+-]+$', reg_lname) == None):
  75                 errors.append('Last Name may contain only letters, numbers, spaces and @/./+/-/_ characters.')
  76             # XXX validate authority hrn !!
  77             if PendingUser.objects.filter(email__iexact=reg_email):
  78                 errors.append('Email already registered.Please provide a new email address.')
  79
  80 # XXX TODO: Factorize with portal/accountview.py
  81             if 'generate' in request.POST['question']:
  82                 from Crypto.PublicKey import RSA
  83                 private = RSA.generate(1024)
  84                 private_key = json.dumps(private.exportKey())
  85                 public  = private.publickey()
  86                 public_key = json.dumps(public.exportKey(format='OpenSSH'))
  87
  88 #                # Generate public and private keys using SFA Library
  89 #                from sfa.trust.certificate  import Keypair
  90 #                k = Keypair(create=True)
  91 #                public_key = k.get_pubkey_string()
  92 #                private_key = k.as_pem()
  93 #                private_key = ''.join(private_key.split())
  94 #                public_key = "ssh-rsa " + public_key
  95                 # Saving to DB
  96                 keypair = '{"user_public_key":'+ public_key + ', "user_private_key":'+ private_key + ', "user_hrn":"'+ user_hrn + '"}'
  97                 auth_type = 'managed'
  98                 #keypair = re.sub("\r", "", keypair)
  99                 #keypair = re.sub("\n", "\\n", keypair)
 100                 #keypair = keypair.rstrip('\r\n')
 101                 #keypair = ''.join(keypair.split())
 102             else:
 103                 up_file = request.FILES['user_public_key']
 104                 file_content =  up_file.read()
 105                 file_name = up_file.name
 106                 file_extension = os.path.splitext(file_name)[1]
 107                 allowed_extension =  ['.pub','.txt']
 108                 if file_extension in allowed_extension and re.search(r'ssh-rsa',file_content):
 109                     keypair = '{"user_public_key":"'+ file_content + '", "user_hrn":"'+ user_hrn +'"}'
 110                     keypair = re.sub("\r", "", keypair)
 111                     keypair = re.sub("\n", "\\n",keypair)
 112                     keypair = ''.join(keypair.split())
 113                     auth_type = 'user'
 114                     # for sending email
 115                     public_key = file_content
 116                 else:
 117                     errors.append('Please upload a valid RSA public key [.txt or .pub].')
 118
 119             #b = PendingUser(first_name=reg_fname, last_name=reg_lname, affiliation=reg_aff,
 120             #                email=reg_email, password=request.POST['password'], keypair=keypair)
 121             #b.save()
 122             #saving to django db 'portal_pendinguser' table
 123             if not errors:
 124                 b = PendingUser(
 125                     first_name    = reg_fname,
 126                     last_name     = reg_lname,
 127                     #affiliation  = reg_aff,
 128                     authority_hrn = reg_auth,
 129                     login         = reg_login,
 130                     email         = reg_email,
 131                     password      = request.POST['password'],
 132                     keypair       = keypair,
 133                 )
 134                 b.save()
 135                 #saving to manifold
 136                 config = '{"firstname":'+ reg_fname + ', "lastname":'+ reg_lname + ', "authority":"'+ reg_auth + '"}'
 137                 user_params = {'email': reg_email, 'password': request.POST['password'], 'config': config}
 138                 manifold_add_user(request,user_params)
 139                 # Send email
 140                 ctx = {
 141                     'first_name'    : reg_fname,
 142                     'last_name'     : reg_lname,
 143                     'authority_hrn' : reg_auth,
 144                     'email'         : reg_email,
 145                     'user_hrn'      : user_hrn,
 146                     'keypair'       : 'Public Key :' + public_key,
 147                     'cc_myself'     : True # form.cleaned_data['cc_myself']
 148                     }
 149                 recipients = authority_get_pi_emails(request,reg_auth)
 150
 151                 if ctx['cc_myself']:
 152                     recipients.append(ctx['email'])
 153
 154                 msg = render_to_string('user_request_email.txt', ctx)
 155                 send_mail("Onelab New User request for %s submitted"%reg_email, msg, reg_email, recipients)
 156
 157                 #return render(request, 'user_register_complete.html')
 158
 159             #creating local:account in manifold
 160             user_query  = Query().get('local:user').select('user_id','email')
 161             user_details = execute_admin_query(self.request, user_query)
 162
 163             for user_detail in user_details:
 164                 if user_detail['email']==reg_email:
 165                     user_id = user_detail['user_id']
 166                     #print "test"
 167                     #print user_id
 168             user_params = {'platform_id': 5, 'user_id': user_id, 'auth_type': auth_type, 'config': keypair}
 169             manifold_add_account(request,user_params)
 170             return render(request, 'user_register_complete.html')
 171
 172         template_env = {
 173           'topmenu_items': topmenu_items('Register', request),
 174           'errors': errors,
 175           'firstname': request.POST.get('firstname', ''),
 176           'lastname': request.POST.get('lastname', ''),
 177           #'affiliation': request.POST.get('affiliation', ''),
 178           'authority_hrn': request.POST.get('authority_hrn', ''),
 179           'email': request.POST.get('email', ''),
 180           'password': request.POST.get('password', ''),
 181           #'authorities': authorities,
 182           }
 183         template_env.update(page.prelude_env ())
 184         return render(request, 'registration_view.html',template_env)