canaille-globuzma/canaille/forms.py

import wtforms
import wtforms.form
from flask import current_app
from flask_babel import lazy_gettext as _
from flask_wtf import FlaskForm
from flask_wtf.file import FileField, FileAllowed
from .models import User, Group


def unique_login(form, field):
    if User.get(field.data):
        raise wtforms.ValidationError(
            _("The login '{login}' already exists").format(login=field.data)
        )


def unique_email(form, field):
    if User.get(filter=f"(mail={field.data})"):
        raise wtforms.ValidationError(
            _("The email '{email}' already exists").format(email=field.data)
        )


def unique_group(form, field):
    if Group.get(field.data):
        raise wtforms.ValidationError(
            _("The group '{group}' already exists").format(group=field.data)
        )


def existing_login(form, field):
    if current_app.config.get("HIDE_INVALID_LOGINS", False) and not User.get(
        field.data
    ):
        raise wtforms.ValidationError(
            _("The login '{login}' does not exist").format(login=field.data)
        )


class LoginForm(FlaskForm):
    login = wtforms.StringField(
        _("Login"),
        validators=[wtforms.validators.DataRequired(), existing_login],
        render_kw={
            "placeholder": _("jane@doe.com"),
            "spellcheck": "false",
            "autocorrect": "off",
            "inputmode": "email",
        },
    )


class PasswordForm(FlaskForm):
    password = wtforms.PasswordField(
        _("Password"),
        validators=[wtforms.validators.DataRequired()],
    )


class FullLoginForm(LoginForm, PasswordForm):
    pass


class ForgottenPasswordForm(FlaskForm):
    login = wtforms.StringField(
        _("Login"),
        validators=[wtforms.validators.DataRequired(), existing_login],
        render_kw={
            "placeholder": _("jane@doe.com"),
            "spellcheck": "false",
            "autocorrect": "off",
        },
    )


class PasswordResetForm(FlaskForm):
    password = wtforms.PasswordField(
        _("Password"), validators=[wtforms.validators.DataRequired()]
    )
    confirmation = wtforms.PasswordField(
        _("Password confirmation"),
        validators=[
            wtforms.validators.EqualTo(
                "password", _("Password and confirmation do not match.")
            ),
        ],
    )


PROFILE_FORM_FIELDS = dict(
    uid=wtforms.StringField(
        _("Username"),
        render_kw={"placeholder": _("jdoe")},
        validators=[wtforms.validators.DataRequired()],
    ),
    cn=wtforms.StringField(_("Name")),
    givenName=wtforms.StringField(
        _("Given name"),
        render_kw={
            "placeholder": _("John"),
            "spellcheck": "false",
            "autocorrect": "off",
        },
    ),
    sn=wtforms.StringField(
        _("Family Name"),
        render_kw={
            "placeholder": _("Doe"),
            "spellcheck": "false",
            "autocorrect": "off",
        },
    ),
    mail=wtforms.EmailField(
        _("Email address"),
        validators=[wtforms.validators.DataRequired(), wtforms.validators.Email()],
        render_kw={
            "placeholder": _("jane@doe.com"),
            "spellcheck": "false",
            "autocorrect": "off",
        },
    ),
    telephoneNumber=wtforms.TelField(
        _("Phone number"), render_kw={"placeholder": _("555-000-555")}
    ),
    jpegPhoto=FileField(
        _("Photo"),
        validators=[FileAllowed(["jpg", "jpeg"])],
        render_kw={"accept": "image/jpg, image/jpeg"},
    ),
    jpegPhoto_delete=wtforms.BooleanField(_("Delete the photo")),
    password1=wtforms.PasswordField(
        _("Password"),
        validators=[wtforms.validators.Optional(), wtforms.validators.Length(min=8)],
    ),
    password2=wtforms.PasswordField(
        _("Password confirmation"),
        validators=[
            wtforms.validators.EqualTo(
                "password1", message=_("Password and confirmation do not match.")
            )
        ],
    ),
    employeeNumber=wtforms.StringField(
        _("Number"),
        render_kw={
            "placeholder": _("1234"),
        },
    ),
)


def profile_form(write_field_names, readonly_field_names):
    if "userPassword" in write_field_names:
        write_field_names |= {"password1", "password2"}

    if "jpegPhoto" in write_field_names:
        write_field_names |= {"jpegPhoto_delete"}

    fields = {
        name: PROFILE_FORM_FIELDS.get(name)
        for name in write_field_names | readonly_field_names
        if PROFILE_FORM_FIELDS.get(name)
    }

    if (
        "groups" in write_field_names | readonly_field_names
        and Group.available_groups()
    ):
        fields["groups"] = wtforms.SelectMultipleField(
            _("Groups"),
            choices=[(group[1], group[0]) for group in Group.available_groups()],
            render_kw={},
        )

    form = wtforms.form.BaseForm(fields)
    for field in form:
        if field.name in readonly_field_names - write_field_names:
            field.render_kw["readonly"] = "true"

    return form


class GroupForm(FlaskForm):
    name = wtforms.StringField(
        _("Name"),
        validators=[wtforms.validators.DataRequired(), unique_group],
        render_kw={
            "placeholder": _("group"),
        },
    )


class InvitationForm(FlaskForm):
    uid = wtforms.StringField(
        _("Username"),
        render_kw={"placeholder": _("jdoe")},
        validators=[wtforms.validators.DataRequired(), unique_login],
    )
    mail = wtforms.EmailField(
        _("Email address"),
        validators=[
            wtforms.validators.DataRequired(),
            wtforms.validators.Email(),
            unique_email,
        ],
        render_kw={
            "placeholder": _("jane@doe.com"),
            "spellcheck": "false",
            "autocorrect": "off",
        },
    )
    groups = wtforms.SelectMultipleField(
        _("Groups"),
        choices=lambda: [(group[1], group[0]) for group in Group.available_groups()],
        render_kw={},
    )
Admin login 2020-08-19 14:20:57 +00:00			`import wtforms`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`import wtforms.form`
Customizable error message for invalid login. Fixes #48 2020-12-31 18:55:30 +00:00			`from flask import current_app`
Fixed form translations. Closes #19 2020-10-28 14:49:14 +00:00			`from flask_babel import lazy_gettext as _`
Admin login 2020-08-19 14:20:57 +00:00			`from flask_wtf import FlaskForm`
jpegPhoto profile form 2021-12-08 17:06:50 +00:00			`from flask_wtf.file import FileField, FileAllowed`
Issue 12 groups 2021-06-03 13:00:11 +00:00			`from .models import User, Group`
Admin login 2020-08-19 14:20:57 +00:00

invitation links 2021-12-01 11:19:28 +00:00			`def unique_login(form, field):`
			`if User.get(field.data):`
			`raise wtforms.ValidationError(`
			`_("The login '{login}' already exists").format(login=field.data)`
			`)`


			`def unique_email(form, field):`
			`if User.get(filter=f"(mail={field.data})"):`
			`raise wtforms.ValidationError(`
			`_("The email '{email}' already exists").format(email=field.data)`
			`)`


Minor refactoring 2021-12-07 18:41:20 +00:00			`def unique_group(form, field):`
			`if Group.get(field.data):`
			`raise wtforms.ValidationError(`
			`_("The group '{group}' already exists").format(group=field.data)`
			`)`


			`def existing_login(form, field):`
			`if current_app.config.get("HIDE_INVALID_LOGINS", False) and not User.get(`
			`field.data`
			`):`
			`raise wtforms.ValidationError(`
			`_("The login '{login}' does not exist").format(login=field.data)`
			`)`


Admin login 2020-08-19 14:20:57 +00:00			`class LoginForm(FlaskForm):`
			`login = wtforms.StringField(`
Simple profile edition form 2020-10-20 09:44:45 +00:00			`_("Login"),`
Minor refactoring 2021-12-07 18:41:20 +00:00			`validators=[wtforms.validators.DataRequired(), existing_login],`
Input mode fixed and spellcheck disable for most forms. Fixes #2 2020-10-21 10:05:21 +00:00			`render_kw={`
Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00			`"placeholder": _("jane@doe.com"),`
Input mode fixed and spellcheck disable for most forms. Fixes #2 2020-10-21 10:05:21 +00:00			`"spellcheck": "false",`
			`"autocorrect": "off",`
			`"inputmode": "email",`
			`},`
Admin login 2020-08-19 14:20:57 +00:00			`)`
Simple profile edition form 2020-10-20 09:44:45 +00:00

Two-steps signin. Fixes #49 2021-01-23 21:30:43 +00:00			`class PasswordForm(FlaskForm):`
			`password = wtforms.PasswordField(`
black 2021-10-29 12:20:06 +00:00			`_("Password"),`
			`validators=[wtforms.validators.DataRequired()],`
Two-steps signin. Fixes #49 2021-01-23 21:30:43 +00:00			`)`


			`class FullLoginForm(LoginForm, PasswordForm):`
			`pass`


Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00			`class ForgottenPasswordForm(FlaskForm):`
			`login = wtforms.StringField(`
			`_("Login"),`
Minor refactoring 2021-12-07 18:41:20 +00:00			`validators=[wtforms.validators.DataRequired(), existing_login],`
Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00			`render_kw={`
			`"placeholder": _("jane@doe.com"),`
			`"spellcheck": "false",`
			`"autocorrect": "off",`
			`},`
			`)`


			`class PasswordResetForm(FlaskForm):`
			`password = wtforms.PasswordField(`
			`_("Password"), validators=[wtforms.validators.DataRequired()]`
			`)`
			`confirmation = wtforms.PasswordField(`
			`_("Password confirmation"),`
			`validators=[`
			`wtforms.validators.EqualTo(`
			`"password", _("Password and confirmation do not match.")`
			`),`
			`],`
			`)`


Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`PROFILE_FORM_FIELDS = dict(`
			`uid=wtforms.StringField(`
Simple profile edition form 2020-10-20 09:44:45 +00:00			`_("Username"),`
Minor profile form improvement 2020-10-30 19:22:31 +00:00			`render_kw={"placeholder": _("jdoe")},`
User admin page. Fixes #8 2020-11-01 10:33:56 +00:00			`validators=[wtforms.validators.DataRequired()],`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`),`
			`cn=wtforms.StringField(_("Name")),`
			`givenName=wtforms.StringField(`
Input mode fixed and spellcheck disable for most forms. Fixes #2 2020-10-21 10:05:21 +00:00			`_("Given name"),`
			`render_kw={`
			`"placeholder": _("John"),`
			`"spellcheck": "false",`
			`"autocorrect": "off",`
			`},`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`),`
			`sn=wtforms.StringField(`
Input mode fixed and spellcheck disable for most forms. Fixes #2 2020-10-21 10:05:21 +00:00			`_("Family Name"),`
			`render_kw={`
			`"placeholder": _("Doe"),`
			`"spellcheck": "false",`
			`"autocorrect": "off",`
			`},`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`),`
			`mail=wtforms.EmailField(`
Email check on user profile form 2020-10-21 07:52:02 +00:00			`_("Email address"),`
			`validators=[wtforms.validators.DataRequired(), wtforms.validators.Email()],`
Input mode fixed and spellcheck disable for most forms. Fixes #2 2020-10-21 10:05:21 +00:00			`render_kw={`
			`"placeholder": _("jane@doe.com"),`
			`"spellcheck": "false",`
			`"autocorrect": "off",`
			`},`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`),`
			`telephoneNumber=wtforms.TelField(`
Email check on user profile form 2020-10-21 07:52:02 +00:00			`_("Phone number"), render_kw={"placeholder": _("555-000-555")}`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`),`
jpegPhoto profile form 2021-12-08 17:06:50 +00:00			`jpegPhoto=FileField(`
			`_("Photo"),`
			`validators=[FileAllowed(["jpg", "jpeg"])],`
			`render_kw={"accept": "image/jpg, image/jpeg"},`
			`),`
			`jpegPhoto_delete=wtforms.BooleanField(_("Delete the photo")),`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`password1=wtforms.PasswordField(`
Password edition in user profile 2020-10-21 08:26:31 +00:00			`_("Password"),`
			`validators=[wtforms.validators.Optional(), wtforms.validators.Length(min=8)],`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`),`
			`password2=wtforms.PasswordField(`
Password edition in user profile 2020-10-21 08:26:31 +00:00			`_("Password confirmation"),`
Use wtforms validators instead of custom ones 2020-11-25 19:21:18 +00:00			`validators=[`
			`wtforms.validators.EqualTo(`
			`"password1", message=_("Password and confirmation do not match.")`
			`)`
			`],`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`),`
			`employeeNumber=wtforms.StringField(`
black 2021-10-29 12:20:06 +00:00			`_("Number"),`
			`render_kw={`
			`"placeholder": _("1234"),`
			`},`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`),`
			`)`


Permissions overhaul 2021-12-02 17:23:14 +00:00			`def profile_form(write_field_names, readonly_field_names):`
			`if "userPassword" in write_field_names:`
			`write_field_names \|= {"password1", "password2"}`

jpegPhoto profile form 2021-12-08 17:06:50 +00:00			`if "jpegPhoto" in write_field_names:`
			`write_field_names \|= {"jpegPhoto_delete"}`

Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`fields = {`
			`name: PROFILE_FORM_FIELDS.get(name)`
Permissions overhaul 2021-12-02 17:23:14 +00:00			`for name in write_field_names \| readonly_field_names`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`if PROFILE_FORM_FIELDS.get(name)`
			`}`
Permissions overhaul 2021-12-02 17:23:14 +00:00
			`if (`
			`"groups" in write_field_names \| readonly_field_names`
			`and Group.available_groups()`
			`):`
Issue 12 groups 2021-06-03 13:00:11 +00:00			`fields["groups"] = wtforms.SelectMultipleField(`
			`_("Groups"),`
			`choices=[(group[1], group[0]) for group in Group.available_groups()],`
			`render_kw={},`
			`)`
Permissions overhaul 2021-12-02 17:23:14 +00:00
			`form = wtforms.form.BaseForm(fields)`
			`for field in form:`
			`if field.name in readonly_field_names - write_field_names:`
Groups can be read-only instead of disabled 2021-12-07 14:09:55 +00:00			`field.render_kw["readonly"] = "true"`
Permissions overhaul 2021-12-02 17:23:14 +00:00
			`return form`
Show groups and enable group creation 2021-07-01 16:21:20 +00:00

			`class GroupForm(FlaskForm):`
			`name = wtforms.StringField(`
			`_("Name"),`
Minor refactoring 2021-12-07 18:41:20 +00:00			`validators=[wtforms.validators.DataRequired(), unique_group],`
black 2021-10-29 12:20:06 +00:00			`render_kw={`
			`"placeholder": _("group"),`
			`},`
Show groups and enable group creation 2021-07-01 16:21:20 +00:00			`)`
Valid group name at creation and redirect to newly created group if valid 2021-07-29 14:00:21 +00:00
invitation links 2021-12-01 11:19:28 +00:00
			`class InvitationForm(FlaskForm):`
			`uid = wtforms.StringField(`
			`_("Username"),`
			`render_kw={"placeholder": _("jdoe")},`
			`validators=[wtforms.validators.DataRequired(), unique_login],`
			`)`
			`mail = wtforms.EmailField(`
			`_("Email address"),`
			`validators=[`
			`wtforms.validators.DataRequired(),`
			`wtforms.validators.Email(),`
			`unique_email,`
			`],`
			`render_kw={`
			`"placeholder": _("jane@doe.com"),`
			`"spellcheck": "false",`
			`"autocorrect": "off",`
			`},`
			`)`
			`groups = wtforms.SelectMultipleField(`
			`_("Groups"),`
			`choices=lambda: [(group[1], group[0]) for group in Group.available_groups()],`
			`render_kw={},`
			`)`