canaille-globuzma/canaille/forms.py

import math

import wtforms.form
from flask import current_app
from flask import g
from flask_babel import lazy_gettext as _
from flask_wtf import FlaskForm
from flask_wtf.file import FileAllowed
from flask_wtf.file import FileField

from .i18n import native_language_name_from_code
from .models import Group
from .models import User


def unique_login(form, field):
    if User.get(field.data) and (
        not getattr(form, "user", None) or form.user.uid[0] != field.data
    ):
        raise wtforms.ValidationError(
            _("The login '{login}' already exists").format(login=field.data)
        )


def unique_email(form, field):
    if User.get(mail=field.data) and (
        not getattr(form, "user", None) or form.user.mail[0] != field.data
    ):
        raise wtforms.ValidationError(
            _("The email '{email}' is already used").format(email=field.data)
        )


def unique_group(form, field):
    if Group.get(field.data):
        raise wtforms.ValidationError(
            _("The group '{group}' already exists").format(group=field.data)
        )


def existing_login(form, field):
    if not current_app.config.get("HIDE_INVALID_LOGINS", True) and not User.get(
        field.data
    ):
        raise wtforms.ValidationError(
            _("The login '{login}' does not exist").format(login=field.data)
        )


class TableForm(FlaskForm):
    def __init__(self, cls=None, page_size=25, fields=None, filter=None, **kwargs):
        filter = filter or {}
        super().__init__(**kwargs)
        if self.query.data:
            self.items = cls.fuzzy(self.query.data, fields, **filter)
        else:
            self.items = cls.query(**filter)

        self.page_size = page_size
        self.nb_items = len(self.items)
        self.page_max = max(1, math.ceil(self.nb_items / self.page_size))
        first_item = (self.page.data - 1) * self.page_size
        last_item = min((self.page.data) * self.page_size, self.nb_items)
        self.items_slice = self.items[first_item:last_item]

    page = wtforms.IntegerField(default=1)
    query = wtforms.StringField(default="")

    def validate_page(self, field):
        if field.data < 1 or field.data > self.page_max:
            raise wtforms.validators.ValidationError(_("The page number is not valid"))


class LoginForm(FlaskForm):
    login = wtforms.StringField(
        _("Login"),
        validators=[wtforms.validators.DataRequired(), existing_login],
        render_kw={
            "placeholder": _("jane@doe.com"),
            "spellcheck": "false",
            "autocorrect": "off",
            "inputmode": "email",
        },
    )


class PasswordForm(FlaskForm):
    password = wtforms.PasswordField(
        _("Password"),
        validators=[wtforms.validators.DataRequired()],
    )


class FullLoginForm(LoginForm, PasswordForm):
    pass


class ForgottenPasswordForm(FlaskForm):
    login = wtforms.StringField(
        _("Login"),
        validators=[wtforms.validators.DataRequired(), existing_login],
        render_kw={
            "placeholder": _("jane@doe.com"),
            "spellcheck": "false",
            "autocorrect": "off",
        },
    )


class PasswordResetForm(FlaskForm):
    password = wtforms.PasswordField(
        _("Password"),
        validators=[wtforms.validators.DataRequired()],
        render_kw={
            "autocomplete": "new-password",
        },
    )
    confirmation = wtforms.PasswordField(
        _("Password confirmation"),
        validators=[
            wtforms.validators.EqualTo(
                "password", _("Password and confirmation do not match.")
            ),
        ],
        render_kw={
            "autocomplete": "new-password",
        },
    )


class FirstLoginForm(FlaskForm):
    pass


def available_language_choices():
    languages = [
        (lang_code, native_language_name_from_code(lang_code))
        for lang_code in g.available_language_codes
    ]
    languages.sort()
    return [("auto", _("Automatic"))] + languages


PROFILE_FORM_FIELDS = dict(
    uid=wtforms.StringField(
        _("Username"),
        render_kw={"placeholder": _("jdoe")},
        validators=[wtforms.validators.DataRequired(), unique_login],
    ),
    cn=wtforms.StringField(_("Name")),
    title=wtforms.StringField(
        _("Title"), render_kw={"placeholder": _("Vice president")}
    ),
    givenName=wtforms.StringField(
        _("Given name"),
        render_kw={
            "placeholder": _("John"),
            "spellcheck": "false",
            "autocorrect": "off",
        },
    ),
    sn=wtforms.StringField(
        _("Family Name"),
        validators=[wtforms.validators.DataRequired()],
        render_kw={
            "placeholder": _("Doe"),
            "spellcheck": "false",
            "autocorrect": "off",
        },
    ),
    displayName=wtforms.StringField(
        _("Display Name"),
        validators=[wtforms.validators.Optional()],
        render_kw={
            "placeholder": _("Johnny"),
            "spellcheck": "false",
            "autocorrect": "off",
        },
    ),
    mail=wtforms.EmailField(
        _("Email address"),
        validators=[
            wtforms.validators.DataRequired(),
            wtforms.validators.Email(),
            unique_email,
        ],
        description=_(
            "This email will be used as a recovery address to reset the password if needed"
        ),
        render_kw={
            "placeholder": _("jane@doe.com"),
            "spellcheck": "false",
            "autocorrect": "off",
        },
    ),
    telephoneNumber=wtforms.TelField(
        _("Phone number"), render_kw={"placeholder": _("555-000-555")}
    ),
    postalAddress=wtforms.StringField(
        _("Address"),
        render_kw={
            "placeholder": _("132, Foobar Street, Gotham City 12401, XX"),
        },
    ),
    street=wtforms.StringField(
        _("Street"),
        render_kw={
            "placeholder": _("132, Foobar Street"),
        },
    ),
    postalCode=wtforms.StringField(
        _("Postal Code"),
        render_kw={
            "placeholder": "12401",
        },
    ),
    l=wtforms.StringField(
        _("Locality"),
        render_kw={
            "placeholder": _("Gotham City"),
        },
    ),
    st=wtforms.StringField(
        _("Region"),
        render_kw={
            "placeholder": _("North Pole"),
        },
    ),
    jpegPhoto=FileField(
        _("Photo"),
        validators=[FileAllowed(["jpg", "jpeg"])],
        render_kw={"accept": "image/jpg, image/jpeg"},
    ),
    jpegPhoto_delete=wtforms.BooleanField(_("Delete the photo")),
    password1=wtforms.PasswordField(
        _("Password"),
        validators=[wtforms.validators.Optional(), wtforms.validators.Length(min=8)],
        render_kw={
            "autocomplete": "new-password",
        },
    ),
    password2=wtforms.PasswordField(
        _("Password confirmation"),
        validators=[
            wtforms.validators.EqualTo(
                "password1", message=_("Password and confirmation do not match.")
            )
        ],
        render_kw={
            "autocomplete": "new-password",
        },
    ),
    employeeNumber=wtforms.StringField(
        _("Employee number"),
        render_kw={
            "placeholder": _("1234"),
        },
    ),
    departmentNumber=wtforms.StringField(
        _("Department number"),
        render_kw={
            "placeholder": _("1234"),
        },
    ),
    o=wtforms.StringField(
        _("Organization"),
        render_kw={
            "placeholder": _("Cogip LTD."),
        },
    ),
    labeledURI=wtforms.URLField(
        _("Website"),
        render_kw={
            "placeholder": _("https://mywebsite.tld"),
        },
    ),
    preferredLanguage=wtforms.SelectField(
        _("Preferred language"),
        choices=available_language_choices,
    ),
    groups=wtforms.SelectMultipleField(
        _("Groups"),
        choices=lambda: [(group.id, group.display_name) for group in Group.query()],
        render_kw={"placeholder": _("users, admins …")},
    ),
)


def profile_form(write_field_names, readonly_field_names, user=None):
    if "userPassword" in write_field_names:
        write_field_names |= {"password1", "password2"}

    if "jpegPhoto" in write_field_names:
        write_field_names |= {"jpegPhoto_delete"}

    fields = {
        name: PROFILE_FORM_FIELDS.get(name)
        for name in write_field_names | readonly_field_names
        if PROFILE_FORM_FIELDS.get(name)
    }

    if "groups" in fields and not Group.query():
        del fields["groups"]

    form = wtforms.form.BaseForm(fields)
    form.user = user
    for field in form:
        if field.name in readonly_field_names - write_field_names:
            field.render_kw["readonly"] = "true"

    return form


class CreateGroupForm(FlaskForm):
    display_name = wtforms.StringField(
        _("Name"),
        validators=[wtforms.validators.DataRequired(), unique_group],
        render_kw={
            "placeholder": _("group"),
        },
    )
    description = wtforms.StringField(
        _("Description"),
        validators=[wtforms.validators.Optional()],
    )


class EditGroupForm(FlaskForm):
    display_name = wtforms.StringField(
        _("Name"),
        validators=[wtforms.validators.DataRequired()],
        render_kw={
            "readonly": "true",
        },
    )
    description = wtforms.StringField(
        _("Description"),
        validators=[wtforms.validators.Optional()],
    )


class InvitationForm(FlaskForm):
    uid = wtforms.StringField(
        _("Username"),
        render_kw={"placeholder": _("jdoe")},
        validators=[wtforms.validators.DataRequired(), unique_login],
    )
    uid_editable = wtforms.BooleanField(_("Username editable by the invitee"))
    mail = wtforms.EmailField(
        _("Email address"),
        validators=[
            wtforms.validators.DataRequired(),
            wtforms.validators.Email(),
            unique_email,
        ],
        render_kw={
            "placeholder": _("jane@doe.com"),
            "spellcheck": "false",
            "autocorrect": "off",
        },
    )
    groups = wtforms.SelectMultipleField(
        _("Groups"),
        choices=lambda: [(group.id, group.display_name) for group in Group.query()],
        render_kw={},
    )
Every list of items is paginated server-side. 2023-02-25 17:11:19 +00:00			`import math`

Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`import wtforms.form`
Customizable error message for invalid login. Fixes #48 2020-12-31 18:55:30 +00:00			`from flask import current_app`
LDAP 'preferredLanguage' attribute support 2022-11-20 21:12:18 +00:00			`from flask import g`
Fixed form translations. Closes #19 2020-10-28 14:49:14 +00:00			`from flask_babel import lazy_gettext as _`
Admin login 2020-08-19 14:20:57 +00:00			`from flask_wtf import FlaskForm`
pre-commit tox test 2021-12-20 22:57:27 +00:00			`from flask_wtf.file import FileAllowed`
			`from flask_wtf.file import FileField`

LDAP 'preferredLanguage' attribute support 2022-11-20 21:12:18 +00:00			`from .i18n import native_language_name_from_code`
pre-commit tox test 2021-12-20 22:57:27 +00:00			`from .models import Group`
			`from .models import User`
Admin login 2020-08-19 14:20:57 +00:00

invitation links 2021-12-01 11:19:28 +00:00			`def unique_login(form, field):`
Fixed user uid and email unicity at creation 2023-03-27 21:16:32 +00:00			`if User.get(field.data) and (`
			`not getattr(form, "user", None) or form.user.uid[0] != field.data`
			`):`
invitation links 2021-12-01 11:19:28 +00:00			`raise wtforms.ValidationError(`
			`_("The login '{login}' already exists").format(login=field.data)`
			`)`


			`def unique_email(form, field):`
Fixed user uid and email unicity at creation 2023-03-27 21:16:32 +00:00			`if User.get(mail=field.data) and (`
			`not getattr(form, "user", None) or form.user.mail[0] != field.data`
			`):`
invitation links 2021-12-01 11:19:28 +00:00			`raise wtforms.ValidationError(`
Unique email form validator wording 2023-03-29 17:34:17 +00:00			`_("The email '{email}' is already used").format(email=field.data)`
invitation links 2021-12-01 11:19:28 +00:00			`)`


Minor refactoring 2021-12-07 18:41:20 +00:00			`def unique_group(form, field):`
			`if Group.get(field.data):`
			`raise wtforms.ValidationError(`
			`_("The group '{group}' already exists").format(group=field.data)`
			`)`


			`def existing_login(form, field):`
Fixed documentation about HIDE_INVALID_LOGINS 2022-04-06 15:32:11 +00:00			`if not current_app.config.get("HIDE_INVALID_LOGINS", True) and not User.get(`
Minor refactoring 2021-12-07 18:41:20 +00:00			`field.data`
			`):`
			`raise wtforms.ValidationError(`
			`_("The login '{login}' does not exist").format(login=field.data)`
			`)`


Every list of items is paginated server-side. 2023-02-25 17:11:19 +00:00			`class TableForm(FlaskForm):`
Users can only search other users based on the fields they can read or write 2023-03-12 18:04:39 +00:00			`def __init__(self, cls=None, page_size=25, fields=None, filter=None, **kwargs):`
Every list of items is paginated server-side. 2023-02-25 17:11:19 +00:00			`filter = filter or {}`
			`super().__init__(**kwargs)`
Table search implementation 2023-03-07 17:29:18 +00:00			`if self.query.data:`
Users can only search other users based on the fields they can read or write 2023-03-12 18:04:39 +00:00			`self.items = cls.fuzzy(self.query.data, fields, **filter)`
Table search implementation 2023-03-07 17:29:18 +00:00			`else:`
			`self.items = cls.query(**filter)`

Every list of items is paginated server-side. 2023-02-25 17:11:19 +00:00			`self.page_size = page_size`
			`self.nb_items = len(self.items)`
			`self.page_max = max(1, math.ceil(self.nb_items / self.page_size))`
			`first_item = (self.page.data - 1) * self.page_size`
			`last_item = min((self.page.data) * self.page_size, self.nb_items)`
			`self.items_slice = self.items[first_item:last_item]`

			`page = wtforms.IntegerField(default=1)`
Table search implementation 2023-03-07 17:29:18 +00:00			`query = wtforms.StringField(default="")`
Every list of items is paginated server-side. 2023-02-25 17:11:19 +00:00
			`def validate_page(self, field):`
			`if field.data < 1 or field.data > self.page_max:`
			`raise wtforms.validators.ValidationError(_("The page number is not valid"))`


Admin login 2020-08-19 14:20:57 +00:00			`class LoginForm(FlaskForm):`
			`login = wtforms.StringField(`
Simple profile edition form 2020-10-20 09:44:45 +00:00			`_("Login"),`
Minor refactoring 2021-12-07 18:41:20 +00:00			`validators=[wtforms.validators.DataRequired(), existing_login],`
Input mode fixed and spellcheck disable for most forms. Fixes #2 2020-10-21 10:05:21 +00:00			`render_kw={`
Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00			`"placeholder": _("jane@doe.com"),`
Input mode fixed and spellcheck disable for most forms. Fixes #2 2020-10-21 10:05:21 +00:00			`"spellcheck": "false",`
			`"autocorrect": "off",`
			`"inputmode": "email",`
			`},`
Admin login 2020-08-19 14:20:57 +00:00			`)`
Simple profile edition form 2020-10-20 09:44:45 +00:00

Two-steps signin. Fixes #49 2021-01-23 21:30:43 +00:00			`class PasswordForm(FlaskForm):`
			`password = wtforms.PasswordField(`
black 2021-10-29 12:20:06 +00:00			`_("Password"),`
			`validators=[wtforms.validators.DataRequired()],`
Two-steps signin. Fixes #49 2021-01-23 21:30:43 +00:00			`)`


			`class FullLoginForm(LoginForm, PasswordForm):`
			`pass`


Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00			`class ForgottenPasswordForm(FlaskForm):`
			`login = wtforms.StringField(`
			`_("Login"),`
Minor refactoring 2021-12-07 18:41:20 +00:00			`validators=[wtforms.validators.DataRequired(), existing_login],`
Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00			`render_kw={`
			`"placeholder": _("jane@doe.com"),`
			`"spellcheck": "false",`
			`"autocorrect": "off",`
			`},`
			`)`


			`class PasswordResetForm(FlaskForm):`
			`password = wtforms.PasswordField(`
Avoid browser password autofilling when defining new passwords 2023-03-29 17:03:28 +00:00			`_("Password"),`
			`validators=[wtforms.validators.DataRequired()],`
			`render_kw={`
			`"autocomplete": "new-password",`
			`},`
Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00			`)`
			`confirmation = wtforms.PasswordField(`
			`_("Password confirmation"),`
			`validators=[`
			`wtforms.validators.EqualTo(`
			`"password", _("Password and confirmation do not match.")`
			`),`
			`],`
Avoid browser password autofilling when defining new passwords 2023-03-29 17:03:28 +00:00			`render_kw={`
			`"autocomplete": "new-password",`
			`},`
Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00			`)`


first login page has its own forms 2022-12-20 23:20:20 +00:00			`class FirstLoginForm(FlaskForm):`
			`pass`


LDAP 'preferredLanguage' attribute support 2022-11-20 21:12:18 +00:00			`def available_language_choices():`
Sort the languages dropdown alphabetically 2023-03-12 15:55:28 +00:00			`languages = [`
LDAP 'preferredLanguage' attribute support 2022-11-20 21:12:18 +00:00			`(lang_code, native_language_name_from_code(lang_code))`
			`for lang_code in g.available_language_codes`
			`]`
Sort the languages dropdown alphabetically 2023-03-12 15:55:28 +00:00			`languages.sort()`
			`return [("auto", _("Automatic"))] + languages`
LDAP 'preferredLanguage' attribute support 2022-11-20 21:12:18 +00:00

Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`PROFILE_FORM_FIELDS = dict(`
			`uid=wtforms.StringField(`
Simple profile edition form 2020-10-20 09:44:45 +00:00			`_("Username"),`
Minor profile form improvement 2020-10-30 19:22:31 +00:00			`render_kw={"placeholder": _("jdoe")},`
Fixed user uid and email unicity at creation 2023-03-27 21:16:32 +00:00			`validators=[wtforms.validators.DataRequired(), unique_login],`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`),`
			`cn=wtforms.StringField(_("Name")),`
title was a TelField 2023-03-13 12:47:15 +00:00			`title=wtforms.StringField(`
			`_("Title"), render_kw={"placeholder": _("Vice president")}`
			`),`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`givenName=wtforms.StringField(`
Input mode fixed and spellcheck disable for most forms. Fixes #2 2020-10-21 10:05:21 +00:00			`_("Given name"),`
			`render_kw={`
			`"placeholder": _("John"),`
			`"spellcheck": "false",`
			`"autocorrect": "off",`
			`},`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`),`
			`sn=wtforms.StringField(`
Input mode fixed and spellcheck disable for most forms. Fixes #2 2020-10-21 10:05:21 +00:00			`_("Family Name"),`
surname is required when the user is created or updated 2022-01-07 14:19:05 +00:00			`validators=[wtforms.validators.DataRequired()],`
Input mode fixed and spellcheck disable for most forms. Fixes #2 2020-10-21 10:05:21 +00:00			`render_kw={`
			`"placeholder": _("Doe"),`
			`"spellcheck": "false",`
			`"autocorrect": "off",`
			`},`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`),`
Users can choose their favourite display name 2022-12-02 17:47:16 +00:00			`displayName=wtforms.StringField(`
			`_("Display Name"),`
			`validators=[wtforms.validators.Optional()],`
			`render_kw={`
			`"placeholder": _("Johnny"),`
			`"spellcheck": "false",`
			`"autocorrect": "off",`
			`},`
			`),`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`mail=wtforms.EmailField(`
Email check on user profile form 2020-10-21 07:52:02 +00:00			`_("Email address"),`
Fixed user uid and email unicity at creation 2023-03-27 21:16:32 +00:00			`validators=[`
			`wtforms.validators.DataRequired(),`
			`wtforms.validators.Email(),`
			`unique_email,`
			`],`
pre-commit tox test 2021-12-20 22:57:27 +00:00			`description=_(`
			`"This email will be used as a recovery address to reset the password if needed"`
			`),`
Input mode fixed and spellcheck disable for most forms. Fixes #2 2020-10-21 10:05:21 +00:00			`render_kw={`
			`"placeholder": _("jane@doe.com"),`
			`"spellcheck": "false",`
			`"autocorrect": "off",`
			`},`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`),`
			`telephoneNumber=wtforms.TelField(`
Email check on user profile form 2020-10-21 07:52:02 +00:00			`_("Phone number"), render_kw={"placeholder": _("555-000-555")}`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`),`
Added support for a postalAddress field 2022-07-07 12:35:17 +00:00			`postalAddress=wtforms.StringField(`
			`_("Address"),`
			`render_kw={`
Address edition support (but not in the OIDC claims yet) 2023-03-11 19:11:55 +00:00			`"placeholder": _("132, Foobar Street, Gotham City 12401, XX"),`
			`},`
			`),`
			`street=wtforms.StringField(`
			`_("Street"),`
			`render_kw={`
			`"placeholder": _("132, Foobar Street"),`
			`},`
			`),`
			`postalCode=wtforms.StringField(`
			`_("Postal Code"),`
			`render_kw={`
			`"placeholder": "12401",`
			`},`
			`),`
			`l=wtforms.StringField(`
			`_("Locality"),`
			`render_kw={`
			`"placeholder": _("Gotham City"),`
			`},`
			`),`
			`st=wtforms.StringField(`
			`_("Region"),`
			`render_kw={`
Fixed region placeholder 2023-03-11 21:37:53 +00:00			`"placeholder": _("North Pole"),`
Added support for a postalAddress field 2022-07-07 12:35:17 +00:00			`},`
			`),`
jpegPhoto profile form 2021-12-08 17:06:50 +00:00			`jpegPhoto=FileField(`
			`_("Photo"),`
			`validators=[FileAllowed(["jpg", "jpeg"])],`
			`render_kw={"accept": "image/jpg, image/jpeg"},`
			`),`
			`jpegPhoto_delete=wtforms.BooleanField(_("Delete the photo")),`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`password1=wtforms.PasswordField(`
Password edition in user profile 2020-10-21 08:26:31 +00:00			`_("Password"),`
			`validators=[wtforms.validators.Optional(), wtforms.validators.Length(min=8)],`
Avoid browser password autofilling when defining new passwords 2023-03-29 17:03:28 +00:00			`render_kw={`
			`"autocomplete": "new-password",`
			`},`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`),`
			`password2=wtforms.PasswordField(`
Password edition in user profile 2020-10-21 08:26:31 +00:00			`_("Password confirmation"),`
Use wtforms validators instead of custom ones 2020-11-25 19:21:18 +00:00			`validators=[`
			`wtforms.validators.EqualTo(`
			`"password1", message=_("Password and confirmation do not match.")`
			`)`
			`],`
Avoid browser password autofilling when defining new passwords 2023-03-29 17:03:28 +00:00			`render_kw={`
			`"autocomplete": "new-password",`
			`},`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`),`
			`employeeNumber=wtforms.StringField(`
departmentNumber edition support #129 2023-03-11 11:52:36 +00:00			`_("Employee number"),`
			`render_kw={`
			`"placeholder": _("1234"),`
			`},`
			`),`
			`departmentNumber=wtforms.StringField(`
			`_("Department number"),`
black 2021-10-29 12:20:06 +00:00			`render_kw={`
			`"placeholder": _("1234"),`
			`},`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`),`
Organization field support 2023-03-17 16:35:05 +00:00			`o=wtforms.StringField(`
			`_("Organization"),`
			`render_kw={`
			`"placeholder": _("Cogip LTD."),`
			`},`
			`),`
Manage user websites 2021-12-13 22:04:34 +00:00			`labeledURI=wtforms.URLField(`
			`_("Website"),`
			`render_kw={`
			`"placeholder": _("https://mywebsite.tld"),`
			`},`
			`),`
LDAP 'preferredLanguage' attribute support 2022-11-20 21:12:18 +00:00			`preferredLanguage=wtforms.SelectField(`
			`_("Preferred language"),`
			`choices=available_language_choices,`
			`),`
Split the profile page in two 2023-03-16 17:39:28 +00:00			`groups=wtforms.SelectMultipleField(`
			`_("Groups"),`
			`choices=lambda: [(group.id, group.display_name) for group in Group.query()],`
			`render_kw={"placeholder": _("users, admins …")},`
			`),`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`)`


Fixed user uid and email unicity at creation 2023-03-27 21:16:32 +00:00			`def profile_form(write_field_names, readonly_field_names, user=None):`
Permissions overhaul 2021-12-02 17:23:14 +00:00			`if "userPassword" in write_field_names:`
			`write_field_names \|= {"password1", "password2"}`

jpegPhoto profile form 2021-12-08 17:06:50 +00:00			`if "jpegPhoto" in write_field_names:`
			`write_field_names \|= {"jpegPhoto_delete"}`

Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`fields = {`
			`name: PROFILE_FORM_FIELDS.get(name)`
Permissions overhaul 2021-12-02 17:23:14 +00:00			`for name in write_field_names \| readonly_field_names`
Profile editable fields are configurable 2020-11-26 14:29:14 +00:00			`if PROFILE_FORM_FIELDS.get(name)`
			`}`
Permissions overhaul 2021-12-02 17:23:14 +00:00
Split the profile page in two 2023-03-16 17:39:28 +00:00			`if "groups" in fields and not Group.query():`
			`del fields["groups"]`
Permissions overhaul 2021-12-02 17:23:14 +00:00
			`form = wtforms.form.BaseForm(fields)`
Fixed user uid and email unicity at creation 2023-03-27 21:16:32 +00:00			`form.user = user`
Permissions overhaul 2021-12-02 17:23:14 +00:00			`for field in form:`
			`if field.name in readonly_field_names - write_field_names:`
Groups can be read-only instead of disabled 2021-12-07 14:09:55 +00:00			`field.render_kw["readonly"] = "true"`
Permissions overhaul 2021-12-02 17:23:14 +00:00
			`return form`
Show groups and enable group creation 2021-07-01 16:21:20 +00:00

groups minor refactoring 2022-12-27 20:32:21 +00:00			`class CreateGroupForm(FlaskForm):`
Renamed group attributes to match SCIM naming convention 2023-02-05 18:39:52 +00:00			`display_name = wtforms.StringField(`
Show groups and enable group creation 2021-07-01 16:21:20 +00:00			`_("Name"),`
groups minor refactoring 2022-12-27 20:32:21 +00:00			`validators=[wtforms.validators.DataRequired(), unique_group],`
black 2021-10-29 12:20:06 +00:00			`render_kw={`
			`"placeholder": _("group"),`
			`},`
Show groups and enable group creation 2021-07-01 16:21:20 +00:00			`)`
Group description 2021-12-10 16:08:43 +00:00			`description = wtforms.StringField(`
			`_("Description"),`
			`validators=[wtforms.validators.Optional()],`
			`)`
Valid group name at creation and redirect to newly created group if valid 2021-07-29 14:00:21 +00:00
invitation links 2021-12-01 11:19:28 +00:00
groups minor refactoring 2022-12-27 20:32:21 +00:00			`class EditGroupForm(FlaskForm):`
Renamed group attributes to match SCIM naming convention 2023-02-05 18:39:52 +00:00			`display_name = wtforms.StringField(`
groups minor refactoring 2022-12-27 20:32:21 +00:00			`_("Name"),`
			`validators=[wtforms.validators.DataRequired()],`
			`render_kw={`
			`"readonly": "true",`
			`},`
			`)`
			`description = wtforms.StringField(`
			`_("Description"),`
			`validators=[wtforms.validators.Optional()],`
			`)`


invitation links 2021-12-01 11:19:28 +00:00			`class InvitationForm(FlaskForm):`
			`uid = wtforms.StringField(`
			`_("Username"),`
			`render_kw={"placeholder": _("jdoe")},`
			`validators=[wtforms.validators.DataRequired(), unique_login],`
			`)`
Invited users can choose their uid 2022-01-01 17:41:04 +00:00			`uid_editable = wtforms.BooleanField(_("Username editable by the invitee"))`
invitation links 2021-12-01 11:19:28 +00:00			`mail = wtforms.EmailField(`
			`_("Email address"),`
			`validators=[`
			`wtforms.validators.DataRequired(),`
			`wtforms.validators.Email(),`
			`unique_email,`
			`],`
			`render_kw={`
			`"placeholder": _("jane@doe.com"),`
			`"spellcheck": "false",`
			`"autocorrect": "off",`
			`},`
			`)`
			`groups = wtforms.SelectMultipleField(`
			`_("Groups"),`
Renamed group attributes to match SCIM naming convention 2023-02-05 18:39:52 +00:00			`choices=lambda: [(group.id, group.display_name) for group in Group.query()],`
invitation links 2021-12-01 11:19:28 +00:00			`render_kw={},`
			`)`