o >dhv@sdZddlmZmZmZddlmZddlmZm Z ddl m Z m Z ddl mZddlmZddlmZdd lmZdd lmZdd lmZmZmZmZmZmZmZm Z dd l!m"Z"m#Z#m$Z$m%Z%dd l&m'Z'm(Z(ddl)m*Z*ddl+m,Z,ddl-m.Z.m/Z/m0Z0ddl1m2Z2ddl3m4Z4ddl5m6Z6ddl7m8Z8ddl9m:Z:ddl;mZ>m?Z?ddl@mAZAmBZBddlCmDZDddlEmFZFddlGmHZHddlIZIddlJZJddlKmLZLmMZMmNZNddlOmPZPmQZQmRZRmSZSmTZTdd lUmVZVmWZWmXZXdd!lYmZZZm[Z[m\Z\dd"l]m^Z^eZMeJ_e`ZaGd#d$d$eZbGd%d&d&e eZcGd'd(d(e eZdGd)d*d*e e eZeGd+d,d,e e eZfGd-d.d.e e eZgee d/d0d1d2d3ZhGd4d5d5eFZiGd6d7d7eFZje>d8ge?eAeBgd9d:ZkGd;d<dd>e eZmdS)?z Accounts Views Module This module contains views for user management, roles, and permissions including user registration, profile management, role assignment, and user administration. Author: Senior Django Developer Date: 2024 )renderredirectget_object_or_404)get_user_model)login_requiredpermission_required)LoginRequiredMixinPermissionRequiredMixin)messages) send_mail)settings) gettext_lazy)timezone)View TemplateViewFormViewListView DetailView CreateView UpdateView DeleteView) JsonResponse HttpResponseHttpResponseRedirectHttp404) reverse_lazyreverse)render_to_string) strip_tags)QCountPrefetch) Paginator) csrf_exempt)require_http_methods)method_decorator)UserCreationFormstatus)api_viewpermission_classes)IsAuthenticated IsAdminUser)Response)APIView) timedeltaN)RoleUserProfile)UserRegistrationForm ProfileFormUserUpdateFormRoleFormUserRoleAssignmentForm)UserSerializerProfileSerializerRoleSerializer) get_client_ipget_user_agent_infolog_security_event)EmailVerificationTokencsPeZdZdZdZeZedZfddZ fddZ fdd Z d d Z Z S) UserRegistrationViewz User registration view with email verification. Features: - User account creation - Email verification token generation - Welcome email sending - Security logging zaccounts/register.htmlzaccounts:registration_completecs*|jjrtdStj|g|Ri|S)a' Redirect authenticated users to dashboard. Args: request: HTTP request object *args: Variable length argument list **kwargs: Arbitrary keyword arguments Returns: HttpResponse: Response object zcore:dashboardN)useris_authenticatedrsuperdispatchselfrequestargskwargs __class__GC:\Users\vibe-look\OneDrive\Desktop\Adtlas_V\src\apps\accounts\views.pyrD_s zUserRegistrationView.dispatchc s.tjdi|}td|d<td|d<|S) Add additional context data to the template. Args: **kwargs: Arbitrary keyword arguments Returns: dict: Context data for template zCreate AccounttitlezJoin us today and get startedpage_descriptionNrLrCget_context_data_rFrIcontextrJrLrMrRps  z%UserRegistrationView.get_context_datacs|jdd}d|_d|_|tjj|t|jd}|||t d|t|j|jj dd|j dd t |jtd t|S) z Handle valid form submission. Args: form: Valid registration form Returns: HttpResponse: Response object F)commitT)rA requested_ipZuser_registrationHTTP_USER_AGENT) user_agentemailrA ip_addressdetailszMAccount created successfully! Please check your email to verify your account.N)save is_active is_verifiedr?objectscreater<rGsend_verification_emailr>METAgetr[r successrSrC form_valid)rFformrAverification_tokenrJrLrMrhs,    zUserRegistrationView.form_validcCsb|jtdd|jid}td||ttdd|jd}t|}t t d|tj |j g|d d d S) z Send email verification email to user. Args: user: User instance verification_token: EmailVerificationToken instance zauthentication:verify_emailtoken)rIz'accounts/emails/email_verification.html SITE_NAMEzOur Site)rAverification_url site_name expires_atzVerify Your Email AddressF)subjectmessage from_emailrecipient_list html_message fail_silentlyN) rGbuild_absolute_urirrkrgetattrr rorr rSDEFAULT_FROM_EMAILr[)rFrArjrmrt plain_messagerLrLrMrds,    z,UserRegistrationView.send_verification_email)__name__ __module__ __qualname____doc__ template_namer4 form_classr success_urlrDrRrhrd __classcell__rLrLrJrMr@Ps    ,r@cs6eZdZdZeZdZdZd ddZfddZ Z S) ProfileViewz User profile view for displaying user information. Shows user details, profile information, and account statistics. zaccounts/profile.htmlZ profile_userNcCsD|jd}|r|jjjs|jjdstdtt|dS|jjS)z Get the user object to display. Args: queryset: Optional queryset to use Returns: User: User instance user_idaccounts.view_userz.You don't have permission to view this profileidN) rIrfrGrAis_staffhas_permrrr2)rFquerysetrrLrLrM get_objects    zProfileView.get_objectc sjtjdi|}|}td|d<||jjk|d<|j|d<|j|j |j |j |j d|d<|S) rNz User ProfilerOZis_own_profileZ user_roles)Z member_since last_loginZ total_rolesrar`Z profile_statsNrL) rCrRrrSrGrArolesall date_joinedrcountrar`)rFrIrUrArJrLrMrRs   zProfileView.get_context_dataN) rzr{r|r}r2modelr~context_object_namerrRrrLrLrJrMrs rcsJeZdZdZeZeZdZd ddZ fddZ fdd Z d d Z Z S) ProfileUpdateViewz User profile update view for editing user information. Allows users to update their profile information and settings. zaccounts/profile_edit.htmlNcCstt|jjdS)z Get the user profile object to edit. Args: queryset: Optional queryset to use Returns: Profile: Profile instance )rAN)rr3rGrA)rFrrLrLrMrs zProfileUpdateView.get_objectc s4tjdi|}td|d<t|jjd|d<|S)rNz Edit ProfilerOinstance user_formNrL)rCrRrSr6rGrArTrJrLrMrR&s z"ProfileUpdateView.get_context_datacsft|jj|jjd}|r|td|jjt|jdt|j idt |jt dt |S)z Handle valid form submission. Args: form: Valid profile form Returns: HttpResponse: Response object rZprofile_updateZupdated_fieldsr\zProfile updated successfully!N)r6rGPOSTrAis_validr_r>r<list changed_datar rgrSrCrh)rFrirrJrLrMrh5s$    zProfileUpdateView.form_validcCstdS)z Get the URL to redirect to after successful form submission. Returns: str: Success URL zaccounts:profileN)rrFrLrLrMget_success_urlYsz!ProfileUpdateView.get_success_urlr)rzr{r|r}r3rr5rr~rrRrhrrrLrLrJrMrs  $rcs<eZdZdZeZdZdZdZdZ ddZ fdd Z Z S) UserListViewzw User list view for administrators. Displays a paginated list of all users with search and filtering. zaccounts/user_list.htmlusersrcCstjdd}|jjdd}|r*|t|dt|dBt|dBt|dB}|jjd d}|r:|j|d }|jjd d}|d krM|jd d}n |dkrX|jdd}n|dkrc|jd d}n |dkrm|jdd}|jjdd}|dvr~| |}|S)z~ Get the queryset of users to display. Returns: QuerySet: Filtered user queryset profilersearchrYZemail__icontainsZfirst_name__icontainsZlast_name__icontains)Z profile__phone_number__icontainsrole)Z roles__idr(activeTr`inactiveFverifiedraZ unverifiedorder_by -date_joined) r[z-email first_namez -first_name last_namez -last_namerrrz -last_loginN) r2rbselect_relatedprefetch_relatedrGGETrffilterrr)rFr search_queryZ role_filterZ status_filterrrLrLrM get_querysetps8   zUserListView.get_querysetc stjdi|}td|d<|jjdd|d<|jjdd|d<|jjdd|d <|jjd d |d <tj|d <t j t jj dd t jj dd t jj dd d|d<|S)rNzUser ManagementrOrrYrrZ current_roler(Zcurrent_statusrrZ current_orderZavailable_rolesTrrr) total_users active_usersverified_users staff_usersZ user_statsNrL) rCrRrSrGrrfr1rbrr2rrrTrJrLrMrRs  zUserListView.get_context_data) rzr{r|r}r2rr~r paginate_byrrrRrrLrLrJrMrcs,rcs8eZdZdZeZdZdZdZddZ fddZ Z S) RoleManagementViewzl Role management view for administrators. Displays and manages user roles and permissions. zaccounts/role_management.htmlrzaccounts.view_rolecCstjjtdddS)z Get the queryset of roles to display. Returns: QuerySet: Role queryset with user counts r)Z user_countnameN)r1rbannotater rrrLrLrMrs zRoleManagementView.get_querysetc sXtjd i|}td|d<|jjd|d<|jjd|d<|jjd|d<|S) rNzRole ManagementrOzaccounts.add_roleZ can_add_rolezaccounts.change_roleZcan_change_rolezaccounts.delete_roleZcan_delete_roleNrL)rCrRrSrGrArrTrJrLrMrRs  z#RoleManagementView.get_context_data) rzr{r|r}r1rr~rrrrRrrLrLrJrMrs rcsLeZdZdZdZeZdZfddZfddZ fdd Z d d Z Z S) UserRoleAssignmentViewz| User role assignment view for administrators. Allows administrators to assign or remove roles from users. z"accounts/user_role_assignment.htmlaccounts.change_usercs,tt|dd|_tj|g|Ri|S)a% Get the user object for role assignment. Args: request: HTTP request object *args: Variable length argument list **kwargs: Arbitrary keyword arguments Returns: HttpResponse: Response object rrN)rr2user_objrCrDrErJrLrMrDs zUserRoleAssignmentView.dispatchcst}|j|d<|S)zk Add user instance to form kwargs. Returns: dict: Form kwargs rAN)rCget_form_kwargsr)rFrIrJrLrMrs  z&UserRoleAssignmentView.get_form_kwargsc s<tjdi|}td|d<|j|d<|jj|d<|S)rNz Assign RolesrO target_user current_rolesNrL)rCrRrSrrrrTrJrLrMrRs   z'UserRoleAssignmentView.get_context_datac Cs|jd}t|jj}t|}||}||}|jj||s$|rDtd|jjt|j|jj |jj dd|Ddd|Dddt |jt dtd S) z Handle valid form submission. Args: form: Valid role assignment form Returns: HttpResponse: Response object rZrole_assignment_changecSg|]}|jqSrLr.0rrLrLrM 8z5UserRoleAssignmentView.form_valid..cSrrLrrrLrLrMr9r)target_user_idtarget_user_email added_roles removed_rolesr\z User roles updated successfully!accounts:user_listN) cleaned_datasetrrrr>rGrAr<rr[r rgrSr)rFriZselected_rolesrZ new_rolesrrrLrLrMrhs,    z!UserRoleAssignmentView.form_valid) rzr{r|r}r~r8rrrDrrRrhrrLrLrJrMrs   rrT)raise_exceptionc Cstt|d}||jkrt|tdtdS|j |_|jdgdt d|jt ||j |j |jr3dndd d |jr@td ntd }t |td |j d|dtdS)z Toggle user active status (activate/deactivate). Args: request: HTTP request object user_id: ID of the user to toggle Returns: HttpResponse: Response object rz'You cannot deactivate your own account.rr`) update_fieldsZuser_status_changerr)rrZ new_statusr\ activatedZ deactivatedzUser z has been .N)rr2rAr errorrSrr`r_r>r<rr[rg)rGrrA status_textrLrLrMtoggle_user_statusEs0    rc@s eZdZdZeegZddZdS)UserListAPIViewz^ API view for listing users. Provides REST API endpoint for user management. c Cstjdd}|jdd}|r$|t|dt|dBt|dB}tt |jdd d }t |jd d }t ||}| |}t |j d d}t|j|j|j|j||ddS)z Get list of users. Args: request: HTTP request object Returns: Response: API response with user list rrrrYrrr page_sizerdpager0T)many)Z current_pageZ total_pages total_counthas_next has_previous)r paginationN)r2rbrrrrfrrminintr"get_pager9 object_listr-datanumber num_pagesrrr) rFrGrrrr paginatorpage_obj serializerrLrLrMrfs0   zUserListAPIView.getN)rzr{r|r}r+r,r*rfrLrLrLrMrxs rc@seZdZdZegZddZdS)UserDetailAPIViewzh API view for user details. Provides REST API endpoint for individual user management. cCs|||jjkr|jjstdditjdSztjd dj |d}t |}t|j WStj y=tdditjdYSw) z Get user details. Args: request: HTTP request object user_id: ID of the user to retrieve Returns: Response: API response with user details rzPermission deniedr'rrrzUser not foundN)rArrr-r(HTTP_403_FORBIDDENr2rbrrrfr9r DoesNotExistHTTP_404_NOT_FOUND)rFrGrrArrLrLrMrfs   zUserDetailAPIView.getN)rzr{r|r}r+r*rfrLrLrLrMrs rrc Csltjtjjddtjjddtjjddtjjttdddtjd}t|S) z API endpoint for user statistics. Args: request: HTTP request object Returns: Response: API response with user statistics Trrr)days)Zdate_joined__gte)rrrrZrecent_registrationsZ roles_countN) r2rbrrrnowr/r1r-)rGstatsrLrLrMapi_user_statss  rc$eZdZdZdZfddZZS)RegistrationCompleteViewz2 Registration complete confirmation view. z#accounts/registration_complete.htmlc s"tjdi|}td|d<|S)rNzRegistration CompleterONrLrQrTrJrLrMrRs z)RegistrationCompleteView.get_context_datarzr{r|r}r~rRrrLrLrJrMrrcr)AccountSettingsViewz5 Account settings view for user preferences. zaccounts/settings.htmlc s0tjdi|}td|d<|jjj|d<|S)rNzAccount SettingsrOZ user_profileNrL)rCrRrSrGrArrTrJrLrMrR s z$AccountSettingsView.get_context_datarrLrLrJrMrrr)nr}django.shortcutsrrrdjango.contrib.authrdjango.contrib.auth.decoratorsrrdjango.contrib.auth.mixinsrr django.contribr django.core.mailr django.confr django.utils.translationr rS django.utilsrdjango.views.genericrrrrrrrr django.httprrrr django.urlsrrdjango.template.loaderrdjango.utils.htmlrdjango.db.modelsrr r!django.core.paginatorr"django.views.decorators.csrfr#django.views.decorators.httpr$django.utils.decoratorsr%django.contrib.auth.formsr&rest_frameworkr(rest_framework.decoratorsr)r*Zrest_framework.permissionsr+r,rest_framework.responser-rest_framework.viewsr.datetimer/jsonloggingmodelsr1r2r3formsr4r5r6r7r8 serializersr9r:r;Zapps.authentication.utilsr<r=r>Zapps.authentication.modelsr? getLoggerrzloggerr@rrrrrrrrrrrrLrLrLrMsj      (             =TV)c  14&