Forgot and reset password
This commit is contained in:
parent
981192ad69
commit
cb257cb443
52
handler.py
52
handler.py
@ -18,6 +18,8 @@ import modules.public.register as public_register
|
|||||||
import modules.public.notme as public_notme
|
import modules.public.notme as public_notme
|
||||||
import modules.public.verify as public_verify
|
import modules.public.verify as public_verify
|
||||||
import modules.public.login as public_login
|
import modules.public.login as public_login
|
||||||
|
import modules.public.forgot as public_forgot
|
||||||
|
import modules.public.reset as public_reset
|
||||||
|
|
||||||
import modules.api.auth as api_auth
|
import modules.api.auth as api_auth
|
||||||
|
|
||||||
@ -69,6 +71,24 @@ def index():
|
|||||||
}
|
}
|
||||||
return public_login.login().html(params)
|
return public_login.login().html(params)
|
||||||
|
|
||||||
|
@app.route('/forgot')
|
||||||
|
def index():
|
||||||
|
params = {
|
||||||
|
"mako" : {
|
||||||
|
"website" : template_public.main(directory.page["public"], "forgot")
|
||||||
|
}
|
||||||
|
}
|
||||||
|
return public_forgot.forgot().html(params)
|
||||||
|
|
||||||
|
@app.route('/reset', method='GET')
|
||||||
|
def index():
|
||||||
|
params = {
|
||||||
|
"mako" : {
|
||||||
|
"website" : template_public.main(directory.page["public"], "reset")
|
||||||
|
}
|
||||||
|
}
|
||||||
|
return public_reset.reset().html(params)
|
||||||
|
|
||||||
@app.route('/api/auth/register/<roles>', method=['OPTIONS', 'POST'])
|
@app.route('/api/auth/register/<roles>', method=['OPTIONS', 'POST'])
|
||||||
def index(roles):
|
def index(roles):
|
||||||
try:
|
try:
|
||||||
@ -136,6 +156,38 @@ def index():
|
|||||||
print(str(e),flush=True)
|
print(str(e),flush=True)
|
||||||
return json.dumps({}, indent = 2).encode()
|
return json.dumps({}, indent = 2).encode()
|
||||||
|
|
||||||
|
@app.route('/api/auth/forgot', method=['OPTIONS', 'POST'])
|
||||||
|
def index():
|
||||||
|
try:
|
||||||
|
if request.method == 'OPTIONS':
|
||||||
|
return None
|
||||||
|
else:
|
||||||
|
response.content_type = 'application/json'
|
||||||
|
params = request.json
|
||||||
|
params["mako" ] = {
|
||||||
|
"email" : template_email.main(directory.page["email"], "reset")
|
||||||
|
}
|
||||||
|
return json.dumps(api_auth.auth().forgot(params), indent = 2).encode()
|
||||||
|
except Exception as e:
|
||||||
|
print(str(e),flush=True)
|
||||||
|
return json.dumps({}, indent = 2).encode()
|
||||||
|
|
||||||
|
@app.route('/api/auth/reset', method=['OPTIONS', 'POST'])
|
||||||
|
def index():
|
||||||
|
try:
|
||||||
|
if request.method == 'OPTIONS':
|
||||||
|
return None
|
||||||
|
else:
|
||||||
|
response.content_type = 'application/json'
|
||||||
|
params = request.json
|
||||||
|
params["mako" ] = {
|
||||||
|
"email" : template_email.main(directory.page["email"], "message")
|
||||||
|
}
|
||||||
|
return json.dumps(api_auth.auth().reset(params), indent = 2).encode()
|
||||||
|
except Exception as e:
|
||||||
|
print(str(e),flush=True)
|
||||||
|
return json.dumps({}, indent = 2).encode()
|
||||||
|
|
||||||
@app.route('/api/auth/login', method=['OPTIONS', 'POST'])
|
@app.route('/api/auth/login', method=['OPTIONS', 'POST'])
|
||||||
def index():
|
def index():
|
||||||
try:
|
try:
|
||||||
|
|||||||
@ -169,6 +169,7 @@ class auth:
|
|||||||
response["status" ] = "success"
|
response["status" ] = "success"
|
||||||
response["desc" ] = "Thanks for your report. Now your data will be deleted from our system."
|
response["desc" ] = "Thanks for your report. Now your data will be deleted from our system."
|
||||||
except Exception as e:
|
except Exception as e:
|
||||||
|
loggorilla.prcss(APIADDR, "Rollback")
|
||||||
self.cursor.execute("ROLLBACK;")
|
self.cursor.execute("ROLLBACK;")
|
||||||
loggorilla.error(APIADDR, str(e) )
|
loggorilla.error(APIADDR, str(e) )
|
||||||
response["status" ] = "failed"
|
response["status" ] = "failed"
|
||||||
@ -427,7 +428,7 @@ class auth:
|
|||||||
}
|
}
|
||||||
else:
|
else:
|
||||||
loggorilla.prcss(APIADDR, "Updating")
|
loggorilla.prcss(APIADDR, "Updating")
|
||||||
self.cursor.execute("UPDATE `auth` SET `password` = %s, `when_update` = NOW() WHERE `token` = %s", (hashed, token) )
|
self.cursor.execute("UPDATE `auth` SET `password` = %s WHERE `token` = %s", (hashed, token) )
|
||||||
loggorilla.prcss(APIADDR, "Sending email")
|
loggorilla.prcss(APIADDR, "Sending email")
|
||||||
webmail_data = {}
|
webmail_data = {}
|
||||||
result_webmail = procedure_webmail.webmail().changed(APIADDR, params, webmail_data)
|
result_webmail = procedure_webmail.webmail().changed(APIADDR, params, webmail_data)
|
||||||
|
|||||||
35
modules/public/forgot.py
Normal file
35
modules/public/forgot.py
Normal file
@ -0,0 +1,35 @@
|
|||||||
|
from mako.template import Template
|
||||||
|
from config import globalvar
|
||||||
|
from scripts import loggorilla
|
||||||
|
|
||||||
|
import procedure.validation as procedure_validation
|
||||||
|
|
||||||
|
class forgot:
|
||||||
|
|
||||||
|
def __init__(self):
|
||||||
|
pass
|
||||||
|
|
||||||
|
def html(self, params):
|
||||||
|
APIADDR = "/forgot"
|
||||||
|
|
||||||
|
loggorilla.prcss(APIADDR, "Define page parameters")
|
||||||
|
active_page = "Forgot"
|
||||||
|
allowed_roles = [0]
|
||||||
|
|
||||||
|
loggorilla.prcss(APIADDR, "Account validation")
|
||||||
|
user_validation = procedure_validation.validation().account(APIADDR, allowed_roles)
|
||||||
|
user = user_validation['data']
|
||||||
|
|
||||||
|
return Template(params["mako"]["website"]['index']).render(
|
||||||
|
title = globalvar.title,
|
||||||
|
header = globalvar.header,
|
||||||
|
navbar = Template(params["mako"]["website"]['navbar']).render(
|
||||||
|
menu = globalvar.menu['public']['navbar'],
|
||||||
|
user_roles = user['profile']['roles'],
|
||||||
|
active_page = active_page
|
||||||
|
),
|
||||||
|
footer = Template(params["mako"]["website"]['footer']).render(
|
||||||
|
copyright = globalvar.copyright,
|
||||||
|
),
|
||||||
|
container = Template(params["mako"]["website"]['container']).render()
|
||||||
|
)
|
||||||
35
modules/public/reset.py
Normal file
35
modules/public/reset.py
Normal file
@ -0,0 +1,35 @@
|
|||||||
|
from mako.template import Template
|
||||||
|
from config import globalvar
|
||||||
|
from scripts import loggorilla
|
||||||
|
|
||||||
|
import procedure.validation as procedure_validation
|
||||||
|
|
||||||
|
class reset:
|
||||||
|
|
||||||
|
def __init__(self):
|
||||||
|
pass
|
||||||
|
|
||||||
|
def html(self, params):
|
||||||
|
APIADDR = "/reset"
|
||||||
|
|
||||||
|
loggorilla.prcss(APIADDR, "Define page parameters")
|
||||||
|
active_page = "Reset"
|
||||||
|
allowed_roles = [0]
|
||||||
|
|
||||||
|
loggorilla.prcss(APIADDR, "Account validation")
|
||||||
|
user_validation = procedure_validation.validation().account(APIADDR, allowed_roles)
|
||||||
|
user = user_validation['data']
|
||||||
|
|
||||||
|
return Template(params["mako"]["website"]['index']).render(
|
||||||
|
title = globalvar.title,
|
||||||
|
header = globalvar.header,
|
||||||
|
navbar = Template(params["mako"]["website"]['navbar']).render(
|
||||||
|
menu = globalvar.menu['public']['navbar'],
|
||||||
|
user_roles = user['profile']['roles'],
|
||||||
|
active_page = active_page
|
||||||
|
),
|
||||||
|
footer = Template(params["mako"]["website"]['footer']).render(
|
||||||
|
copyright = globalvar.copyright,
|
||||||
|
),
|
||||||
|
container = Template(params["mako"]["website"]['container']).render()
|
||||||
|
)
|
||||||
15
pages/public/forgot.html
Normal file
15
pages/public/forgot.html
Normal file
@ -0,0 +1,15 @@
|
|||||||
|
<h1>Forgot Password</h1>
|
||||||
|
|
||||||
|
<script type="text/javascript" src="/js/carrack.js"></script>
|
||||||
|
|
||||||
|
<!-- FORM -->
|
||||||
|
<input required type="email" id="form-email" placeholder="Email"> <br>
|
||||||
|
|
||||||
|
<button onclick="onSubmit()">Submit</button>
|
||||||
|
|
||||||
|
<!-- RESPONSE -->
|
||||||
|
<div id="alert-response" role="alert">
|
||||||
|
<b id="alert-status">Loading...</b> <span id="alert-desc">Please wait...</span>
|
||||||
|
</div>
|
||||||
|
|
||||||
|
<script type="text/javascript" src="/js/auth/forgot.js"></script>
|
||||||
16
pages/public/reset.html
Normal file
16
pages/public/reset.html
Normal file
@ -0,0 +1,16 @@
|
|||||||
|
<h1>Reset Password</h1>
|
||||||
|
|
||||||
|
<script type="text/javascript" src="/js/carrack.js"></script>
|
||||||
|
|
||||||
|
<!-- FORM -->
|
||||||
|
<div id="form">
|
||||||
|
<input required type="password" id="form-password" placeholder="New Password"> <br>
|
||||||
|
<button onclick="onSubmit()">Submit</button>
|
||||||
|
</div>
|
||||||
|
|
||||||
|
<!-- RESPONSE -->
|
||||||
|
<div id="alert-response" role="alert">
|
||||||
|
<b id="alert-status">Loading...</b> <span id="alert-desc">Please wait...</span>
|
||||||
|
</div>
|
||||||
|
|
||||||
|
<script type="text/javascript" src="/js/auth/reset.js"></script>
|
||||||
42
static/js/auth/forgot.js
Normal file
42
static/js/auth/forgot.js
Normal file
@ -0,0 +1,42 @@
|
|||||||
|
function flushResponse() {
|
||||||
|
document.getElementById("alert-response" ).style.display = 'none';
|
||||||
|
document.getElementById("alert-response" ).classList.remove('alert-success' );
|
||||||
|
document.getElementById("alert-response" ).classList.remove('alert-danger' );
|
||||||
|
document.getElementById("alert-response" ).classList.remove('alert-primary' );
|
||||||
|
}
|
||||||
|
|
||||||
|
function loadingResponse() {
|
||||||
|
flushResponse();
|
||||||
|
document.getElementById("alert-status" ).innerHTML = "Loading...";
|
||||||
|
document.getElementById("alert-desc" ).innerHTML = "Please wait...";
|
||||||
|
document.getElementById("alert-response").classList.add('alert-primary');
|
||||||
|
document.getElementById("alert-response").style.display = 'block';
|
||||||
|
}
|
||||||
|
|
||||||
|
function responseAlert(response) {
|
||||||
|
flushResponse();
|
||||||
|
const obj = JSON.parse(response);
|
||||||
|
if (obj.status == "success" ) document.getElementById("alert-response").classList.add('alert-success' );
|
||||||
|
if (obj.status == "failed" ) document.getElementById("alert-response").classList.add('alert-danger' );
|
||||||
|
document.getElementById("alert-status" ).innerHTML = obj.status;
|
||||||
|
document.getElementById("alert-desc" ).innerHTML = obj.desc;
|
||||||
|
document.getElementById("alert-response").style.display = 'block';
|
||||||
|
}
|
||||||
|
|
||||||
|
function onSubmit() {
|
||||||
|
loadingResponse();
|
||||||
|
var email = document.getElementById("form-email" ).value;
|
||||||
|
var url = "/api/auth/forgot";
|
||||||
|
var payload = {
|
||||||
|
"email" : email
|
||||||
|
};
|
||||||
|
sendHttpRequest(url, "POST", payload, function (error, response) {
|
||||||
|
if (error) console.error("Error:", error);
|
||||||
|
else {
|
||||||
|
console.log("JSON Response:", response);
|
||||||
|
responseAlert(response);
|
||||||
|
}
|
||||||
|
}, "application/json");
|
||||||
|
}
|
||||||
|
|
||||||
|
flushResponse();
|
||||||
49
static/js/auth/reset.js
Normal file
49
static/js/auth/reset.js
Normal file
@ -0,0 +1,49 @@
|
|||||||
|
function flushResponse() {
|
||||||
|
document.getElementById("alert-response" ).style.display = 'none';
|
||||||
|
document.getElementById("alert-response" ).classList.remove('alert-success' );
|
||||||
|
document.getElementById("alert-response" ).classList.remove('alert-danger' );
|
||||||
|
document.getElementById("alert-response" ).classList.remove('alert-primary' );
|
||||||
|
}
|
||||||
|
|
||||||
|
function loadingResponse() {
|
||||||
|
flushResponse();
|
||||||
|
document.getElementById("alert-status" ).innerHTML = "Loading...";
|
||||||
|
document.getElementById("alert-desc" ).innerHTML = "Please wait...";
|
||||||
|
document.getElementById("alert-response").classList.add('alert-primary');
|
||||||
|
document.getElementById("alert-response").style.display = 'block';
|
||||||
|
}
|
||||||
|
|
||||||
|
function responseAlert(response) {
|
||||||
|
flushResponse();
|
||||||
|
const obj = JSON.parse(response);
|
||||||
|
if (obj.status == "success" ) {
|
||||||
|
document.getElementById("form").style.display = 'none';
|
||||||
|
document.getElementById("alert-response").classList.add('alert-success' );
|
||||||
|
}
|
||||||
|
if (obj.status == "failed" ) document.getElementById("alert-response").classList.add('alert-danger' );
|
||||||
|
document.getElementById("alert-status" ).innerHTML = obj.status;
|
||||||
|
document.getElementById("alert-desc" ).innerHTML = obj.desc;
|
||||||
|
document.getElementById("alert-response").style.display = 'block';
|
||||||
|
}
|
||||||
|
|
||||||
|
function onSubmit() {
|
||||||
|
loadingResponse();
|
||||||
|
const queryString = window.location.search;
|
||||||
|
const urlParams = new URLSearchParams(queryString);
|
||||||
|
const token = urlParams.get('token')
|
||||||
|
var password = document.getElementById("form-password").value;
|
||||||
|
var url = "/api/auth/reset";
|
||||||
|
var payload = {
|
||||||
|
"token" : token,
|
||||||
|
"password" : password
|
||||||
|
};
|
||||||
|
sendHttpRequest(url, "POST", payload, function (error, response) {
|
||||||
|
if (error) console.error("Error:", error);
|
||||||
|
else {
|
||||||
|
console.log("JSON Response:", response);
|
||||||
|
responseAlert(response);
|
||||||
|
}
|
||||||
|
}, "application/json");
|
||||||
|
}
|
||||||
|
|
||||||
|
flushResponse();
|
||||||
Loading…
Reference in New Issue
Block a user