Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- class UserCreateView(CreateAPIView):
- serializer_class = UserCreateSerializer
- class UserLogoutView(RequestLogViewMixin, APIView):
- permission_classes = (IsAuthenticated,)
- authentication_classes = (SessionAuthentication,)
- def get(self, request, *args, **kwargs):
- logout(request)
- return Response({'logout': True}, status=200)
- class UserLoginView(APIView):
- serializer_class = UserLoginSerializer
- def post(self, request, *args, **kwargs):
- data = request.data
- serializer = UserLoginSerializer(data=data)
- if serializer.is_valid(raise_exception=True):
- user = authenticate(username=data['phone'], password=data['password'])
- if user is None:
- return Response({'message': 'Wrong login or password'}, status=403)
- else:
- self.confirm_login_allowed(user)
- login(request, user)
- new_data = serializer.data
- return Response(new_data, status=200)
- return Response(serializer.errors, status=400)
- def confirm_login_allowed(self, user):
- if not user.is_active:
- raise ValidationError("Пользователь не активен")
- class UserInfoView(RequestLogViewMixin, APIView):
- permission_classes = (IsAuthenticated,)
- def get(self, request):
- user = request.user
- serializer = UserSerializer(user)
- return Response(serializer.data)
- def put(self, request):
- data = request.data
- serializer = UserInfoUpdateSerializer(data=data)
- if serializer.is_valid():
- user = User.objects.get(pk=request.user.pk)
- serializer.update(user, data)
- user.save()
- return Response(serializer.data, status=201)
- return Response(serializer.errors, status=400)
- class ChangePasswordView(RequestLogViewMixin, UpdateAPIView):
- serializer_class = ChangePasswordSerializer
- model = User
- permission_classes = (IsAuthenticated,)
- def get_object(self, queryset=None):
- obj = self.request.user
- return obj
- def update(self, request, *args, **kwargs):
- self.object = self.get_object()
- serializer = self.get_serializer(data=request.data)
- if serializer.is_valid():
- if not self.object.check_password(serializer.data.get("old_password")):
- return Response({"old_password": ["Неправильный пароль"]}, status=400)
- new_password = serializer.data.get("new_password")
- new_password_2 = serializer.data.get("new_password_2")
- if new_password != new_password_2:
- return Response({"old_password": ["Пароли должны совпадать!"]}, status=400)
- self.object.set_password(new_password)
- self.object.save()
- return Response("Success.", status=200)
- return Response(serializer.errors, status=400)
- class AddressDetailedView(generics.RetrieveUpdateDestroyAPIView):
- permission_classes = (IsAuthenticated, IsOwner)
- serializer_class = AddressSerializer
- lookup_field = 'id'
- queryset = Address.objects.all()
- class RestorePasswordView(APIView):
- serializer_class = SMSRequestSerializer
- def post(self, request, *args, **kwargs):
- data = request.data
- serializer = SMSRequestSerializer(data=data)
- if serializer.is_valid(raise_exception=True):
- phone = serializer.data.get('phone')
- try:
- user = User.objects.get(username=phone)
- except User.DoesNotExist:
- return Response("Пользователь с данным номером не зарегистрирован", status=404)
- password = self.generate_code()
- sms_text = urllib_request.quote("Ваш новый пароль на сайте Durex: ")
- sms_text += password
- url = "http://sms.ru/sms/send?api_id=%s&from=%s&to=%s&msg=%s" % (SMS_API_ID, 'Durex', phone, sms_text)
- try:
- res = urlopen(url, timeout=10)
- print("GET: %s %s\nReply:\n%s" % (res.geturl(), res.msg, res.info()))
- user.set_password(password)
- user.save()
- except URLError as errstr:
- print("smssend[debug]: %s" % url)
- return Response('sms.ru failed', status=400)
- return Response('Password sent', status=200)
- return Response(serializer.errors, status=400)
- def generate_code(self):
- return ''.join(random.SystemRandom().choice(string.ascii_uppercase + string.digits) for _ in range(8))
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
