This repository has been archived on 2024-05-31. You can view files and clone it, but cannot push or open issues or pull requests.
authentik/passbook/admin/views/users.py

106 lines
3.3 KiB
Python
Raw Normal View History

2018-12-14 13:24:04 +00:00
"""passbook User administration"""
from django.contrib import messages
from django.contrib.auth.mixins import LoginRequiredMixin
2019-12-31 11:51:16 +00:00
from django.contrib.auth.mixins import (
PermissionRequiredMixin as DjangoPermissionRequiredMixin,
)
2018-12-14 13:24:04 +00:00
from django.contrib.messages.views import SuccessMessageMixin
from django.shortcuts import redirect
from django.urls import reverse, reverse_lazy
2018-12-14 13:24:04 +00:00
from django.utils.translation import ugettext as _
from django.views.generic import DeleteView, DetailView, ListView, UpdateView
from guardian.mixins import (
PermissionListMixin,
PermissionRequiredMixin,
get_anonymous_user,
)
2018-12-14 13:24:04 +00:00
from passbook.admin.forms.users import UserForm
from passbook.core.models import Nonce, User
from passbook.lib.views import CreateAssignPermView
2018-12-14 13:24:04 +00:00
class UserListView(LoginRequiredMixin, PermissionListMixin, ListView):
2018-12-14 13:24:04 +00:00
"""Show list of all users"""
model = User
2019-12-31 11:51:16 +00:00
permission_required = "passbook_core.view_user"
ordering = "username"
paginate_by = 40
2019-12-31 11:51:16 +00:00
template_name = "administration/user/list.html"
2018-12-14 13:24:04 +00:00
def get_queryset(self):
return super().get_queryset().exclude(pk=get_anonymous_user().pk)
2018-12-14 13:24:04 +00:00
2019-12-31 11:51:16 +00:00
class UserCreateView(
SuccessMessageMixin,
LoginRequiredMixin,
DjangoPermissionRequiredMixin,
CreateAssignPermView,
):
2019-10-08 09:27:19 +00:00
"""Create user"""
model = User
form_class = UserForm
2019-12-31 11:51:16 +00:00
permission_required = "passbook_core.add_user"
2019-10-08 09:27:19 +00:00
2019-12-31 11:51:16 +00:00
template_name = "generic/create.html"
success_url = reverse_lazy("passbook_admin:users")
success_message = _("Successfully created User")
2019-10-08 09:27:19 +00:00
2019-12-31 11:51:16 +00:00
class UserUpdateView(
SuccessMessageMixin, LoginRequiredMixin, PermissionRequiredMixin, UpdateView
):
2018-12-14 13:24:04 +00:00
"""Update user"""
model = User
form_class = UserForm
2019-12-31 11:51:16 +00:00
permission_required = "passbook_core.change_user"
2018-12-14 13:24:04 +00:00
2019-12-05 13:31:44 +00:00
# By default the object's name is user which is used by other checks
2019-12-31 11:51:16 +00:00
context_object_name = "object"
template_name = "generic/update.html"
success_url = reverse_lazy("passbook_admin:users")
success_message = _("Successfully updated User")
2018-12-14 13:24:04 +00:00
2019-12-31 11:51:16 +00:00
class UserDeleteView(
SuccessMessageMixin, LoginRequiredMixin, PermissionRequiredMixin, DeleteView
):
2018-12-14 13:24:04 +00:00
"""Delete user"""
model = User
2019-12-31 11:51:16 +00:00
permission_required = "passbook_core.delete_user"
# By default the object's name is user which is used by other checks
context_object_name = "object"
2019-12-31 11:51:16 +00:00
template_name = "generic/delete.html"
success_url = reverse_lazy("passbook_admin:users")
success_message = _("Successfully deleted User")
def delete(self, request, *args, **kwargs):
messages.success(self.request, self.success_message)
return super().delete(request, *args, **kwargs)
class UserPasswordResetView(LoginRequiredMixin, PermissionRequiredMixin, DetailView):
"""Get Password reset link for user"""
model = User
2019-12-31 11:51:16 +00:00
permission_required = "passbook_core.reset_user_password"
def get(self, request, *args, **kwargs):
"""Create nonce for user and return link"""
super().get(request, *args, **kwargs)
2020-05-10 22:49:48 +00:00
# TODO: create plan for user, get token
nonce = Nonce.objects.create(user=self.object)
2019-12-31 11:51:16 +00:00
link = request.build_absolute_uri(
2020-05-10 22:49:48 +00:00
reverse("passbook_flows:default-recovery", kwargs={"nonce": nonce.uuid})
2019-12-31 11:51:16 +00:00
)
messages.success(
request, _("Password reset link: <pre>%(link)s</pre>" % {"link": link})
)
return redirect("passbook_admin:users")