portal/registrationview.py

   1 import os.path, re
   2 import json
   3 from random import randint
   4
   5 from django.views.generic       import View
   6 from django.template.loader     import render_to_string
   7 from django.shortcuts           import render
   8 from django.contrib.auth        import get_user_model
   9
  10 from unfold.page                import Page
  11 from unfold.loginrequired       import FreeAccessView
  12 from ui.topmenu                 import topmenu_items_live
  13
  14 from manifoldapi.manifoldapi    import execute_admin_query
  15 from manifold.core.query        import Query
  16
  17 from portal.models              import PendingUser
  18 from portal.actions             import create_pending_user
  19
  20 from myslice.theme import ThemeView
  21
  22 # since we inherit from FreeAccessView we cannot redefine 'dispatch'
  23 # so let's override 'get' and 'post' instead
  24 #
  25 class RegistrationView (FreeAccessView, ThemeView):
  26     template_name = 'registration_view.html'
  27
  28     def post (self, request):
  29         return self.get_or_post (request, 'POST')
  30
  31     def get (self, request):
  32         return self.get_or_post (request, 'GET')
  33
  34     def get_or_post(self, wsgi_request, method):
  35         """
  36         """
  37         errors = []
  38
  39         authorities_query = Query.get('authority').select('name', 'authority_hrn')
  40         authorities = execute_admin_query(wsgi_request, authorities_query)
  41         if authorities is not None:
  42             authorities = sorted(authorities)
  43
  44         # Page rendering
  45         page = Page(wsgi_request)
  46         page.add_js_files  ( [ "js/jquery.validate.js", "js/my_account.register.js" ] )
  47         page.add_css_files ( [ "css/onelab.css", "css/registration.css" ] )
  48         page.add_css_files ( [ "http://code.jquery.com/ui/1.10.3/themes/smoothness/jquery-ui.css" ] )
  49
  50         if method == 'POST':
  51             # The form has been submitted
  52
  53             user_request = {
  54                 'first_name'    : wsgi_request.POST.get('firstname',     ''),
  55                 'last_name'     : wsgi_request.POST.get('lastname',      ''),
  56                 'authority_hrn' : wsgi_request.POST.get('authority_hrn', ''),
  57                 'email'         : wsgi_request.POST.get('email',         '').lower(),
  58                 'password'      : wsgi_request.POST.get('password',      ''),
  59             }
  60
  61             # Construct user_hrn from email (XXX Should use common code)
  62             split_email = user_request['email'].split("@")[0]
  63             split_email = split_email.replace(".", "_")
  64             user_request['user_hrn'] = user_request['authority_hrn'] \
  65                      + '.' + split_email
  66
  67             # Validate input
  68             UserModel = get_user_model()
  69             if (re.search(r'^[\w+\s.@+-]+$', user_request['first_name']) == None):
  70                 errors.append('First Name may contain only letters, numbers, spaces and @/./+/-/_ characters.')
  71             if (re.search(r'^[\w+\s.@+-]+$', user_request['last_name']) == None):
  72                 errors.append('Last Name may contain only letters, numbers, spaces and @/./+/-/_ characters.')
  73             # checking in django_db !!
  74             if PendingUser.objects.filter(email__iexact = user_request['email']):
  75                 errors.append('Email is pending for validation. Please provide a new email address.')
  76             if UserModel._default_manager.filter(email__iexact = user_request['email']):
  77                 errors.append('This email is not usable. Please contact the administrator or try with another email.')
  78             # Does the user exist in Manifold?
  79             user_query  = Query().get('local:user').select('user_id','email')
  80             user_details = execute_admin_query(wsgi_request, user_query)
  81             for user_detail in user_details:
  82                 if user_detail['email'] == user_request['email']:
  83                     errors.append('Email already registered in Manifold. Please provide a new email address.')
  84             # Does the user exist in sfa? [query is very slow!!]
  85             user_query  = Query().get('user').select('user_hrn','user_email')
  86             user_details_sfa = execute_admin_query(wsgi_request, user_query)
  87             for user in user_details_sfa:
  88                 if user['user_email'] == user_request['email']:
  89                     errors.append('Email already registered in SFA registry. Please use another email.')
  90                 if user['user_hrn'] == user_request['user_hrn']:
  91                     # add random number if user_hrn already exists in the registry
  92                     user_request['user_hrn'] = user_request['authority_hrn'] \
  93                             + '.' + split_email + str(randint(1,1000000))
  94
  95             # XXX TODO: Factorize with portal/accountview.py
  96             if 'generate' in wsgi_request.POST['question']:
  97                 user_request['auth_type'] = 'managed'
  98
  99                 # XXX Common code, dependency ?
 100                 from Crypto.PublicKey import RSA
 101                 private = RSA.generate(1024)
 102
 103                 # Example: private_key = '-----BEGIN RSA PRIVATE KEY-----\nMIIC...'
 104                 # Example: public_key = 'ssh-rsa AAAAB3...'
 105                 user_request['private_key'] = private.exportKey()
 106                 user_request['public_key']  = private.publickey().exportKey(format='OpenSSH')
 107
 108             else:
 109                 user_request['auth_type'] = 'user'
 110
 111                 up_file        = wsgi_request.FILES['user_public_key']
 112
 113                 file_content   = up_file.read().strip()
 114                 file_name      = up_file.name
 115                 file_extension = os.path.splitext(file_name)[1]
 116
 117                 ALLOWED_EXTENSIONS =  ['.pub','.txt']
 118                 if file_extension not in ALLOWED_EXTENSIONS or not re.search(r'ssh-rsa',file_content):
 119                     errors.append('Please upload a valid RSA public key.')
 120
 121                 user_request['private_key'] = None
 122                 user_request['public_key']  = file_content
 123
 124             if not errors:
 125                 create_pending_user(wsgi_request, user_request, user_detail)
 126                 self.template_name = 'user_register_complete.html'
 127                 return render(wsgi_request, self.template, {'theme': self.theme})
 128
 129         else:
 130             user_request = {}
 131
 132         template_env = {
 133           'topmenu_items': topmenu_items_live('Register', page),
 134           'errors': errors,
 135           'authorities': authorities,
 136           'theme': self.theme
 137           }
 138         template_env.update(user_request)
 139         template_env.update(page.prelude_env ())
 140         return render(wsgi_request, self.template,template_env)