| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271 |
- from flask import Flask, Blueprint, render_template, redirect, flash, url_for, request, abort
- from flask_login import login_required, login_user, current_user, logout_user
- from flask_mail import Mail
- from flask_wtf import FlaskForm
- from wtforms import StringField, PasswordField, BooleanField, SubmitField, ValidationError
- from wtforms.validators import DataRequired, Length, EqualTo
- from typing import Optional
- from view.base import App
- from core.user import User, load_user_by_email
- from send_email import send_msg
- auth = Blueprint("auth", __name__)
- app: Optional[Flask] = None
- mail: Optional[Mail] = None
- class LoginForm(FlaskForm):
- email = StringField("邮箱", validators=[DataRequired(), Length(1, 32)])
- passwd = PasswordField("密码", validators=[DataRequired(), Length(8, 32)])
- remember = BooleanField("记住我")
- submit = SubmitField("登录")
- class RegisterForm(FlaskForm):
- email = StringField("邮箱", validators=[DataRequired(), Length(1, 32)])
- passwd = PasswordField("密码", validators=[DataRequired(),
- EqualTo("passwd_again", message="两次输入密码不相同"),
- Length(8, 32)])
- passwd_again = PasswordField("重复密码", validators=[DataRequired()])
- submit = SubmitField("注册")
- def validate_email(self, field):
- if load_user_by_email(field.data) is not None:
- raise ValidationError("邮箱已被注册")
- class ChangePasswdForm(FlaskForm):
- old_passwd = PasswordField("旧密码", validators=[DataRequired()])
- passwd = PasswordField("新密码", validators=[DataRequired(),
- EqualTo("passwd_again", message="两次输入密码不相同"),
- Length(8, 32)])
- passwd_again = PasswordField("重复密码", validators=[DataRequired()])
- submit = SubmitField("修改密码")
- class DeleteUserForm(FlaskForm):
- email = StringField("邮箱", validators=[DataRequired(), Length(1, 32)])
- submit = SubmitField("删除用户")
- def validate_email(self, field):
- if load_user_by_email(field.data) is None:
- raise ValidationError("邮箱用户不存在")
- class CreateRoleForm(FlaskForm):
- name = StringField("角色名称", validators=[DataRequired(), Length(1, 20)])
- authority = StringField("权限", validators=[Length(0, 100)])
- submit = SubmitField("创建角色")
- class DeleteRoleForm(FlaskForm):
- name = StringField("角色名称", validators=[DataRequired(), Length(1, 20)])
- submit = SubmitField("删除角色")
- class SetRoleForm(FlaskForm):
- email = StringField("邮箱", validators=[DataRequired(), Length(1, 32)])
- name = StringField("角色名称", validators=[DataRequired(), Length(1, 20)])
- submit = SubmitField("设置角色")
- @auth.route('/yours')
- @login_required
- def yours_page():
- msg_count, comment_count, blog_count = current_user.count_info()
- return render_template("auth/yours.html", msg_count=msg_count, comment_count=comment_count, blog_count=blog_count)
- @auth.route('/login', methods=["GET", "POST"])
- def login_page():
- if current_user.is_authenticated:
- return redirect(url_for("auth.yours_page"))
- form = LoginForm()
- if form.validate_on_submit():
- user = load_user_by_email(form.email.data)
- if user is not None and user.check_passwd(form.passwd.data):
- login_user(user, form.remember.data)
- next_page = request.args.get("next")
- if next_page is None or not next_page.startswith('/'):
- next_page = url_for('base.index_page')
- flash("登陆成功")
- return redirect(next_page)
- flash("账号或密码错误")
- return redirect(url_for("auth.login_page"))
- return render_template("auth/login.html", form=form)
- @auth.route('/register', methods=["GET", "POST"])
- def register_page():
- if current_user.is_authenticated:
- return redirect(url_for("auth.yours_page"))
- form = RegisterForm()
- if form.validate_on_submit():
- token = User.creat_token(form.email.data, form.passwd.data)
- register_url = url_for("auth.confirm_page", token=token, _external=True)
- send_msg("注册确认", mail, form.email.data, "register", register_url=register_url)
- flash("注册提交成功, 请进入邮箱点击确认注册链接")
- return redirect(url_for("base.index_page"))
- return render_template("auth/register.html", RegisterForm=form)
- @auth.route('/confirm')
- def confirm_page():
- token = request.args.get("token", None)
- if token is None:
- abort(404)
- return
- token = User.load_token(token)
- if token is None:
- abort(404)
- return
- if load_user_by_email(token[0]) is not None:
- abort(404)
- return
- User(token[0], token[1], None, None).create()
- flash(f"用户{token[0]}认证完成")
- return redirect(url_for("base.index_page"))
- @auth.route('/logout')
- def logout_page():
- logout_user()
- flash("退出登录成功")
- return redirect(url_for("base.index_page"))
- @auth.route('/passwd', methods=['GET', 'POST'])
- @login_required
- def change_passwd_page():
- form = ChangePasswdForm()
- if form.validate_on_submit():
- if not current_user.check_passwd(form.old_passwd.data):
- flash("旧密码错误")
- return redirect(url_for("auth.change_passwd_page"))
- if current_user.change_passwd(form.passwd.data):
- flash("密码修改成功")
- else:
- flash("密码修改失败")
- return redirect(url_for("auth.yours_page"))
- return render_template("auth/passwd.html", ChangePasswdForm=form)
- @auth.route('/delete', methods=['GET', 'POST'])
- @login_required
- def delete_user_page():
- if not current_user.check_role("DeleteUser"):
- abort(403)
- return
- form = DeleteUserForm()
- if form.validate_on_submit():
- user = load_user_by_email(form.email.data)
- if user is None:
- abort(404)
- return
- if user.delete():
- flash("用户删除成功")
- else:
- flash("用户删除失败")
- return redirect(url_for("auth.delete_user_page"))
- return render_template("auth/delete.html", DeleteUserForm=form)
- @auth.route('/role', methods=['GET'])
- @login_required
- def role_page():
- if not current_user.check_role("ConfigureSystem"):
- abort(403)
- return
- return render_template("auth/role.html",
- CreateRoleForm=CreateRoleForm(),
- DeleteRoleForm=DeleteRoleForm(),
- SetRoleForm=SetRoleForm())
- @auth.route('/role-create', methods=['POST'])
- @login_required
- def role_create_page():
- form = CreateRoleForm()
- if form.validate_on_submit():
- if not current_user.check_role("ConfigureSystem"):
- abort(403)
- return
- if User.create_role(form.name.data, form.authority.data.replace(" ", "").split(";")):
- flash("角色创建成功")
- else:
- flash("角色创建失败")
- return redirect(url_for("auth.role_page"))
- abort(404)
- return
- @auth.route('/role-delete', methods=['POST'])
- @login_required
- def role_delete_page():
- form = DeleteRoleForm()
- if form.validate_on_submit():
- if not current_user.check_role("ConfigureSystem"):
- abort(403)
- return
- if User.delete_role(form.name.data):
- flash("角色删除成功")
- else:
- flash("角色删除失败")
- return redirect(url_for("auth.role_page"))
- abort(404)
- return
- @auth.route('/role-set', methods=['POST'])
- @login_required
- def role_set_page():
- form = SetRoleForm()
- if form.validate_on_submit():
- if not current_user.check_role("ConfigureSystem"):
- abort(403)
- return
- user = load_user_by_email(form.email.data)
- if user is not None:
- if user.set_user_role(form.name.data):
- flash("角色设置成功")
- else:
- flash("角色设置失败")
- else:
- flash("邮箱未注册")
- return redirect(url_for("auth.role_page"))
- abort(404)
- return
- @auth.context_processor
- def inject_base():
- return {"top_nav": ["", "", "", "", "", "active"]}
- class AuthApp(App):
- def __init__(self, import_name):
- super(AuthApp, self).__init__(import_name)
- global app, mail
- app = self._app
- mail = self.mail
- app.register_blueprint(auth, url_prefix="/auth")
- self.login_manager.login_view = "auth.login_page"
- @self.login_manager.user_loader
- def user_loader(email: str):
- return load_user_by_email(email)
|
