portal/registrationview.py

   1 import os.path, re
   2 import json
   3 from random import randint
   4
   5 from django.core.mail           import send_mail
   6 from django.views.generic       import View
   7 from django.template.loader     import render_to_string
   8 from django.shortcuts           import render
   9 from django.contrib.auth        import get_user_model
  10
  11 from unfold.page                import Page
  12 from unfold.loginrequired       import FreeAccessView
  13 from ui.topmenu                 import topmenu_items_live
  14
  15 from manifoldapi.manifoldapi    import execute_admin_query
  16 from manifold.core.query        import Query
  17
  18 from portal.models              import PendingUser
  19 from portal.actions             import create_pending_user
  20
  21 from theme import ThemeView
  22
  23 # since we inherit from FreeAccessView we cannot redefine 'dispatch'
  24 # so let's override 'get' and 'post' instead
  25 #
  26 class RegistrationView (FreeAccessView, ThemeView):
  27     template_name = 'registration_view.html'
  28
  29     def post (self, request):
  30         return self.get_or_post (request, 'POST')
  31
  32     def get (self, request):
  33         return self.get_or_post (request, 'GET')
  34
  35     def get_or_post(self, wsgi_request, method):
  36         """
  37         """
  38         errors = []
  39
  40         authorities_query = Query.get('authority').select('name', 'authority_hrn')
  41         authorities = execute_admin_query(wsgi_request, authorities_query)
  42         if authorities is not None:
  43             authorities = sorted(authorities)
  44
  45         # Page rendering
  46         page = Page(wsgi_request)
  47         page.add_js_files  ( [ "js/jquery.validate.js", "js/my_account.register.js" ] )
  48         page.add_css_files ( [ "css/onelab.css", "css/registration.css" ] )
  49         page.add_css_files ( [ "http://code.jquery.com/ui/1.10.3/themes/smoothness/jquery-ui.css" ] )
  50
  51         if method == 'POST':
  52             # The form has been submitted
  53
  54             user_request = {
  55                 'first_name'    : wsgi_request.POST.get('firstname',     ''),
  56                 'last_name'     : wsgi_request.POST.get('lastname',      ''),
  57                 'authority_hrn' : wsgi_request.POST.get('authority_hrn', ''),
  58                 'email'         : wsgi_request.POST.get('email',         '').lower(),
  59                 'password'      : wsgi_request.POST.get('password',      ''),
  60             }
  61
  62             # Construct user_hrn from email (XXX Should use common code)
  63             split_email = user_request['email'].split("@")[0]
  64             split_email = split_email.replace(".", "_")
  65             user_request['user_hrn'] = user_request['authority_hrn'] \
  66                      + '.' + split_email
  67
  68             # Validate input
  69             UserModel = get_user_model()
  70             if (re.search(r'^[\w+\s.@+-]+$', user_request['first_name']) == None):
  71                 errors.append('First Name may contain only letters, numbers, spaces and @/./+/-/_ characters.')
  72             if (re.search(r'^[\w+\s.@+-]+$', user_request['last_name']) == None):
  73                 errors.append('Last Name may contain only letters, numbers, spaces and @/./+/-/_ characters.')
  74             # checking in django_db !!
  75             if PendingUser.objects.filter(email__iexact = user_request['email']):
  76                 errors.append('Email is pending for validation. Please provide a new email address.')
  77             if UserModel._default_manager.filter(email__iexact = user_request['email']):
  78                 errors.append('This email is not usable. Please contact the administrator or try with another email.')
  79             # Does the user exist in Manifold?
  80             user_query  = Query().get('local:user').select('user_id','email')
  81             user_details = execute_admin_query(wsgi_request, user_query)
  82             for user_detail in user_details:
  83                 if user_detail['email'] == user_request['email']:
  84                     errors.append('Email already registered in Manifold. Please provide a new email address.')
  85             # Does the user exist in sfa? [query is very slow!!]
  86             user_query  = Query().get('user').select('user_hrn','user_email')
  87             user_details_sfa = execute_admin_query(wsgi_request, user_query)
  88             for user in user_details_sfa:
  89                 if user['user_email'] == user_request['email']:
  90                     errors.append('Email already registered in SFA registry. Please use another email.')
  91                 if user['user_hrn'] == user_request['user_hrn']:
  92                     # add random number if user_hrn already exists in the registry
  93                     user_request['user_hrn'] = user_request['authority_hrn'] \
  94                             + '.' + split_email + str(randint(1,1000000))
  95
  96             # XXX TODO: Factorize with portal/accountview.py
  97             if 'generate' in wsgi_request.POST['question']:
  98                 user_request['auth_type'] = 'managed'
  99
 100                 # XXX Common code, dependency ?
 101                 from Crypto.PublicKey import RSA
 102                 private = RSA.generate(1024)
 103
 104                 # Example: private_key = '-----BEGIN RSA PRIVATE KEY-----\nMIIC...'
 105                 # Example: public_key = 'ssh-rsa AAAAB3...'
 106                 user_request['private_key'] = private.exportKey()
 107                 user_request['public_key']  = private.publickey().exportKey(format='OpenSSH')
 108
 109             else:
 110                 user_request['auth_type'] = 'user'
 111
 112                 up_file        = wsgi_request.FILES['user_public_key']
 113
 114                 file_content   = up_file.read().strip()
 115                 file_name      = up_file.name
 116                 file_extension = os.path.splitext(file_name)[1]
 117
 118                 ALLOWED_EXTENSIONS =  ['.pub','.txt']
 119                 if file_extension not in ALLOWED_EXTENSIONS or not re.search(r'ssh-rsa',file_content):
 120                     errors.append('Please upload a valid RSA public key.')
 121
 122                 user_request['private_key'] = None
 123                 user_request['public_key']  = file_content
 124
 125             if not errors:
 126                 create_pending_user(wsgi_request, user_request, user_detail)
 127                 self.template_name = 'user_register_complete.html'
 128                 return render(wsgi_request, self.template, {'theme': self.theme})
 129
 130         else:
 131             user_request = {}
 132
 133         template_env = {
 134           'topmenu_items': topmenu_items_live('Register', page),
 135           'errors': errors,
 136           'authorities': authorities,
 137           'theme': self.theme
 138           }
 139         template_env.update(user_request)
 140         template_env.update(page.prelude_env ())
 141         return render(wsgi_request, self.template,template_env)