| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353 |
- from flask import Blueprint, render_template, redirect, url_for, request, current_app, flash, abort
- from flask_wtf import FlaskForm
- from wtforms import (EmailField,
- PasswordField,
- BooleanField,
- SubmitField,
- ValidationError)
- from wtforms.validators import DataRequired, Length, Regexp, EqualTo
- from flask_login import current_user, login_user, logout_user, login_required
- from urllib.parse import urljoin
- from sqlalchemy.exc import IntegrityError
- from .db import db, User, Role, Follow
- from .logger import Logger
- from .mail import send_msg
- auth = Blueprint("auth", __name__)
- class AuthField(FlaskForm):
- @staticmethod
- def email_field(name: str, description: str):
- """ 提前定义 email 字段的生成函数,供下文调用 """
- return EmailField(name, description=description,
- validators=[
- DataRequired(f"必须填写{name}"),
- Length(1, 32, message=f"{name}长度1-32个字符"),
- Regexp(r"^[a-zA-Z0-9_\.\-]+@[a-zA-Z0-9_\-]+(\.[a-zA-Z0-9_\.]+)+$",
- message=f"{name}不满足正则表达式")])
- @staticmethod
- def passwd_field(name: str, description: str):
- """ 提前定义 passwd 字段的生成函数,供下文调用 """
- return PasswordField(name, description=description,
- validators=[
- DataRequired(f"必须填写{name}"),
- Length(8, 32, message=f"{name}长度为8-32位")])
- @staticmethod
- def passwd_again_field(name: str, description: str, passwd: str = "passwd"):
- """ 提前定义 passwd again 字段的生成函数,供下文调用 """
- return PasswordField(f"重复{name}", description=description,
- validators=[
- DataRequired(message=f"必须再次填写{name}"),
- EqualTo(passwd, message=f"两次输入的{name}不相同")])
- class EmailPasswd(AuthField):
- email = AuthField.email_field("邮箱", "用户邮箱")
- passwd = AuthField.passwd_field("密码", "用户密码")
- class PasswdLoginForm(EmailPasswd):
- remember = BooleanField("记住我")
- submit = SubmitField("登录")
- class EmailLoginForm(AuthField):
- email = AuthField.email_field("邮箱", "用户邮箱")
- remember = BooleanField("记住我")
- submit = SubmitField("登录")
- class RegisterForm(EmailPasswd):
- passwd_again = AuthField.passwd_again_field("密码", "用户密码")
- submit = SubmitField("注册")
- def validate_email(self, field):
- """ 检验email是否合法 """
- if User.query.filter_by(email=field.data).first():
- raise ValidationError("邮箱已被注册")
- class ChangePasswdForm(AuthField):
- old_passwd = AuthField.passwd_field("旧密码", "用户原密码")
- passwd = AuthField.passwd_field("新密码", "用户新密码")
- passwd_again = AuthField.passwd_again_field("新密码", "用户新密码")
- submit = SubmitField("修改密码")
- def validate_passwd(self, field):
- """ 检验新旧密码是否相同 """
- if field.data == self.old_passwd.data:
- raise ValidationError("新旧密码不能相同")
- def __load_login_page(passwd_login_form=None, email_login_form=None, register_form=None,
- on_passwd_login=True, on_email_login=False, on_register=False):
- if not passwd_login_form:
- passwd_login_form = PasswdLoginForm()
- if not email_login_form:
- email_login_form = EmailLoginForm()
- if not register_form:
- register_form = RegisterForm()
- return render_template("auth/login.html",
- passwd_login_form=passwd_login_form,
- email_login_form=email_login_form,
- register_form=register_form,
- on_passwd_login=on_passwd_login,
- on_email_login=on_email_login,
- on_register=on_register)
- @auth.route("/")
- def auth_page():
- if current_user.is_authenticated: # 用户已经成功登陆
- return render_template("auth/yours.html")
- return __load_login_page()
- @auth.route('/login/passwd', methods=["GET", "POST"])
- def passwd_login_page():
- if current_user.is_authenticated: # 用户已经成功登陆
- Logger.print_user_not_allow_opt_log("passwd-login.txt")
- return redirect(url_for("auth.auth_page"))
- form = PasswdLoginForm()
- if form.validate_on_submit():
- user = User.query.filter_by(email=form.email.data).first()
- if user and user.check_passwd(form.passwd.data) and user.role.has_permission(Role.USABLE):
- login_user(user, form.remember.data)
- next_page = request.args.get("next")
- if next_page is None or not next_page.startswith('/'):
- next_page = url_for('base.index_page')
- flash("登陆成功")
- Logger.print_user_opt_success_log(f"passwd login.txt {form.email.data}")
- return redirect(next_page)
- flash("账号或密码错误")
- Logger.print_user_opt_fail_log(f"passwd login.txt {form.email.data}")
- return redirect(url_for("auth.passwd_login_page"))
- return __load_login_page(passwd_login_form=form, on_passwd_login=True)
- @auth.route('/login/email', methods=["GET", "POST"])
- def email_login_page():
- if current_user.is_authenticated: # 用户已经成功登陆
- Logger.print_user_not_allow_opt_log("email-login.txt")
- return redirect(url_for("auth.auth_page"))
- form = EmailLoginForm()
- if form.validate_on_submit():
- user = User.query.filter_by(email=form.email.data).first()
- if user and user.role.has_permission(Role.USABLE):
- token = user.login_creat_token(form.remember.data)
- login_url = urljoin(request.host_url, url_for("auth.email_login_confirm_page", token=token))
- send_msg("登录确认", user.email, "login", login_url=login_url)
- flash("登录确认邮件已发送至邮箱")
- Logger.print_user_opt_success_log(f"email login.txt {form.email.data}")
- return redirect(url_for("base.index_page"))
- flash("账号不存在")
- Logger.print_user_opt_fail_log(f"email login.txt {form.email.data}")
- return redirect(url_for("auth.passwd_login_page"))
- return __load_login_page(passwd_login_form=form, on_passwd_login=True)
- @auth.route('/register', methods=["GET", "POST"])
- def register_page():
- if current_user.is_authenticated:
- Logger.print_user_not_allow_opt_log("register.txt")
- return redirect(url_for("auth.auth_page"))
- form = RegisterForm()
- if form.validate_on_submit():
- token = User.register_creat_token(form.email.data, form.passwd.data)
- register_url = urljoin(request.host_url, url_for("auth.register_confirm_page", token=token))
- send_msg("注册确认", form.email.data, "register", register_url=register_url)
- flash("注册提交成功, 请进入邮箱点击确认注册链接")
- Logger.print_import_user_opt_success_log(f"register.txt {form.email.data}")
- return redirect(url_for("base.index_page"))
- return __load_login_page(register_form=form, on_register=True, on_passwd_login=False)
- @auth.route('/confirm/register')
- def register_confirm_page():
- token = request.args.get("token", None)
- if token is None:
- Logger.print_user_opt_fail_log(f"Confirm (bad token)")
- return abort(404)
- token = User.register_load_token(token)
- if token is None:
- Logger.print_user_opt_fail_log(f"Confirm (bad token)")
- return abort(404)
- if User.query.filter_by(email=token[0]).first():
- Logger.print_user_opt_fail_log(f"Confirm (bad token)")
- return abort(404)
- if User.query.limit(1).first(): # 不是第一个用户
- new_user = User(email=token[0], passwd_hash=User.get_passwd_hash(token[1]))
- else:
- admin = Role.query.filter_by(name="admin").first()
- if admin is None:
- Logger.print_user_opt_fail_log(f"Role admin not found")
- return abort(500)
- new_user = User(email=token[0], passwd_hash=User.get_passwd_hash(token[1]), role=admin)
- db.session.add(new_user)
- db.session.commit()
- Logger.print_import_user_opt_success_log(f"confirm {token[0]} success")
- flash(f"用户{token[0]}认证完成")
- return redirect(url_for("base.index_page"))
- @auth.route('/confirm/login')
- def email_login_confirm_page():
- token = request.args.get("token", None)
- if token is None:
- Logger.print_user_opt_fail_log(f"Confirm (bad token)")
- return abort(404)
- token = User.login_load_token(token)
- if token is None:
- Logger.print_user_opt_fail_log(f"Confirm (bad token)")
- return abort(404)
- user = User.query.filter_by(email=token[0]).first()
- if not user:
- Logger.print_user_opt_fail_log(f"Confirm (bad token)")
- return abort(404)
- login_user(user, token[1])
- flash("登陆成功")
- Logger.print_user_opt_success_log(f"passwd login.txt {user.email}")
- return redirect(url_for("base.index_page"))
- @auth.route('/set/passwd', methods=['GET', 'POST'])
- @login_required
- def change_passwd_page():
- form = ChangePasswdForm()
- if form.validate_on_submit():
- if not current_user.check_passwd(form.old_passwd.data):
- Logger.print_user_opt_error_log(f"change passwd")
- flash("旧密码错误")
- else:
- current_user.passwd = form.passwd.data
- db.session.commit()
- Logger.print_user_opt_success_log(f"change passwd")
- flash("密码修改成功")
- logout_user()
- return redirect(url_for("auth.passwd_login_page"))
- return redirect(url_for("auth.change_passwd_page"))
- Logger.print_load_page_log("user change passwd")
- return render_template("auth/change_passwd.html", form=form)
- @auth.route('/logout')
- @login_required
- def logout_page():
- Logger.print_import_user_opt_success_log(f"logout")
- logout_user()
- flash("退出登录成功")
- return redirect(url_for("base.index_page"))
- @auth.route("/user")
- def user_page():
- user_id = request.args.get("user", -1, type=int)
- if user_id == -1:
- return abort(404)
- elif current_user.is_authenticated and current_user.id == user_id:
- return redirect(url_for("auth.auth_page"))
- user = User.query.filter_by(id=user_id).first()
- if not user:
- return abort(404)
- return render_template("auth/user.html", user=user)
- @auth.route("/follower/list")
- def follower_page():
- if current_user.follower_count == 0:
- return render_template("auth/no_follow.html", title="粉丝", msg="你暂时一个粉丝都没有哦。")
- page = request.args.get("page", 1, type=int)
- pagination = current_user.follower.paginate(page=page, per_page=8, error_out=False)
- return render_template("auth/follow.html",
- items=[i.follower for i in pagination.items],
- pagination=pagination,
- title="粉丝")
- @auth.route("/followed/list")
- def followed_page():
- if current_user.followed_count == 0:
- return render_template("auth/no_follow.html", title="关注", msg="你暂时未关注任何人。")
- page = request.args.get("page", 1, type=int)
- pagination = current_user.followed.paginate(page=page, per_page=8, error_out=False)
- return render_template("auth/follow.html",
- items=[i.followed for i in pagination.items],
- pagination=pagination,
- title="关注")
- @auth.route("/followed/follow")
- def set_follow_page():
- user_id = request.args.get("user", 1, type=int)
- if user_id == current_user.id:
- return abort(404)
- user = User.query.filter_by(id=user_id).first()
- if not user:
- return abort(404)
- try:
- db.session.add(Follow(follower=current_user, followed=user))
- db.session.commit()
- except IntegrityError:
- flash("不能重复关注用户")
- else:
- flash("关注用户成功")
- return redirect(url_for("auth.user_page", user=user_id))
- @auth.route("/followed/unfollow")
- def set_unfollow_page():
- user_id = request.args.get("user", 1, type=int)
- if user_id == current_user.id:
- return abort(404)
- user = User.query.filter_by(id=user_id).first()
- if not user:
- return abort(404)
- Follow.query.filter_by(follower=current_user, followed=user).delete()
- flash("取消关注用户成功")
- return redirect(url_for("auth.user_page", user=user_id))
- @auth.route("/block")
- def set_block_page():
- user_id = request.args.get("user", 1, type=int)
- if user_id == current_user.id:
- return abort(404)
- user = User.query.filter_by(id=user_id).first()
- if not user:
- return abort(404)
- block = Role.query.filter_by(name="block").first()
- if not block:
- return abort(500)
- user.role = block
- db.session.commit()
- return redirect(url_for("auth.user_page", user=user_id))
|
