This repository has been archived on 2024-05-31. You can view files and clone it, but cannot push or open issues or pull requests.
authentik/passbook/admin/views/users.py

169 lines
5.1 KiB
Python
Raw Normal View History

2018-12-14 13:24:04 +00:00
"""passbook User administration"""
from django.contrib import messages
from django.contrib.auth.mixins import LoginRequiredMixin
2019-12-31 11:51:16 +00:00
from django.contrib.auth.mixins import (
PermissionRequiredMixin as DjangoPermissionRequiredMixin,
)
2018-12-14 13:24:04 +00:00
from django.contrib.messages.views import SuccessMessageMixin
from django.http import HttpRequest, HttpResponse
from django.http.response import HttpResponseRedirect
from django.shortcuts import redirect
from django.urls import reverse, reverse_lazy
from django.utils.http import urlencode
2020-09-11 21:21:11 +00:00
from django.utils.translation import gettext as _
from django.views.generic import DetailView, ListView, UpdateView
from guardian.mixins import (
PermissionListMixin,
PermissionRequiredMixin,
get_anonymous_user,
)
2018-12-14 13:24:04 +00:00
from passbook.admin.forms.users import UserForm
from passbook.admin.views.utils import (
BackSuccessUrlMixin,
DeleteMessageView,
SearchListMixin,
UserPaginateListMixin,
)
2020-05-16 14:11:53 +00:00
from passbook.core.models import Token, User
from passbook.lib.views import CreateAssignPermView
2018-12-14 13:24:04 +00:00
class UserListView(
LoginRequiredMixin,
PermissionListMixin,
UserPaginateListMixin,
SearchListMixin,
ListView,
):
2018-12-14 13:24:04 +00:00
"""Show list of all users"""
model = User
2019-12-31 11:51:16 +00:00
permission_required = "passbook_core.view_user"
ordering = "username"
template_name = "administration/user/list.html"
search_fields = ["username", "name", "attributes"]
2018-12-14 13:24:04 +00:00
def get_queryset(self):
return super().get_queryset().exclude(pk=get_anonymous_user().pk)
2018-12-14 13:24:04 +00:00
2019-12-31 11:51:16 +00:00
class UserCreateView(
SuccessMessageMixin,
BackSuccessUrlMixin,
2019-12-31 11:51:16 +00:00
LoginRequiredMixin,
DjangoPermissionRequiredMixin,
CreateAssignPermView,
):
2019-10-08 09:27:19 +00:00
"""Create user"""
model = User
form_class = UserForm
2019-12-31 11:51:16 +00:00
permission_required = "passbook_core.add_user"
2019-10-08 09:27:19 +00:00
2019-12-31 11:51:16 +00:00
template_name = "generic/create.html"
success_url = reverse_lazy("passbook_admin:users")
success_message = _("Successfully created User")
2019-10-08 09:27:19 +00:00
2019-12-31 11:51:16 +00:00
class UserUpdateView(
SuccessMessageMixin,
BackSuccessUrlMixin,
LoginRequiredMixin,
PermissionRequiredMixin,
UpdateView,
2019-12-31 11:51:16 +00:00
):
2018-12-14 13:24:04 +00:00
"""Update user"""
model = User
form_class = UserForm
2019-12-31 11:51:16 +00:00
permission_required = "passbook_core.change_user"
2018-12-14 13:24:04 +00:00
2019-12-05 13:31:44 +00:00
# By default the object's name is user which is used by other checks
2019-12-31 11:51:16 +00:00
context_object_name = "object"
template_name = "generic/update.html"
success_url = reverse_lazy("passbook_admin:users")
success_message = _("Successfully updated User")
2018-12-14 13:24:04 +00:00
class UserDeleteView(LoginRequiredMixin, PermissionRequiredMixin, DeleteMessageView):
2018-12-14 13:24:04 +00:00
"""Delete user"""
model = User
2019-12-31 11:51:16 +00:00
permission_required = "passbook_core.delete_user"
# By default the object's name is user which is used by other checks
context_object_name = "object"
2019-12-31 11:51:16 +00:00
template_name = "generic/delete.html"
success_url = reverse_lazy("passbook_admin:users")
success_message = _("Successfully deleted User")
class UserDisableView(
LoginRequiredMixin, PermissionRequiredMixin, BackSuccessUrlMixin, DeleteMessageView
):
"""Disable user"""
object: User
model = User
permission_required = "passbook_core.update_user"
# By default the object's name is user which is used by other checks
context_object_name = "object"
template_name = "administration/user/disable.html"
success_url = reverse_lazy("passbook_admin:users")
success_message = _("Successfully disabled User")
def delete(self, request: HttpRequest, *args, **kwargs) -> HttpResponse:
self.object: User = self.get_object()
success_url = self.get_success_url()
self.object.is_active = False
self.object.save()
return HttpResponseRedirect(success_url)
class UserEnableView(
LoginRequiredMixin, PermissionRequiredMixin, BackSuccessUrlMixin, DetailView
):
"""Enable user"""
object: User
model = User
permission_required = "passbook_core.update_user"
# By default the object's name is user which is used by other checks
context_object_name = "object"
success_url = reverse_lazy("passbook_admin:users")
success_message = _("Successfully enabled User")
def get(self, request: HttpRequest, *args, **kwargs):
self.object: User = self.get_object()
success_url = self.get_success_url()
self.object.is_active = True
self.object.save()
return HttpResponseRedirect(success_url)
class UserPasswordResetView(LoginRequiredMixin, PermissionRequiredMixin, DetailView):
"""Get Password reset link for user"""
model = User
2019-12-31 11:51:16 +00:00
permission_required = "passbook_core.reset_user_password"
def get(self, request: HttpRequest, *args, **kwargs) -> HttpResponse:
2020-05-16 14:11:53 +00:00
"""Create token for user and return link"""
super().get(request, *args, **kwargs)
token, _ = Token.objects.get_or_create(
identifier="password-reset-temp", user=self.object
)
querystring = urlencode({"token": token.key})
2019-12-31 11:51:16 +00:00
link = request.build_absolute_uri(
reverse("passbook_flows:default-recovery") + f"?{querystring}"
2019-12-31 11:51:16 +00:00
)
messages.success(
request, _("Password reset link: <pre>%(link)s</pre>" % {"link": link})
)
return redirect("passbook_admin:users")