API tools faq
paste
Guest User

Untitled

a guest
Mar 27th, 2018
94
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 6.73 KB | None | 0 0
raw download clone embed print report
  1. # -*- coding: utf-8 -*-
  2. from flask import Flask, redirect, url_for, flash, render_template, g, current_app, request
  3. import base64
  4. from io import BytesIO
  5. from werkzeug.security import generate_password_hash, check_password_hash
  6.  
  7. from flask_wtf import FlaskForm, validators
  8. from wtforms import StringField, PasswordField, SubmitField, SelectField
  9. from flask_sqlalchemy import SQLAlchemy
  10. from wtforms.validators import Required, Length, EqualTo
  11. from flask_bootstrap import Bootstrap
  12. from flask_login import LoginManager, UserMixin, login_user, logout_user,
  13. current_user
  14.  
  15. # AUTH
  16. from flask_sqlalchemy import BaseQuery
  17. from flask_principal import Principal, RoleNeed, UserNeed, Permission, Identity, identity_changed, identity_loaded, AnonymousIdentity
  18. from werkzeug.utils import cached_property
  19.  
  20. app = Flask(__name__)
  21. app.config.update(
  22. SQLALCHEMY_DATABASE_URI = 'sqlite:///2028.sqlite',
  23. DEBUG = True,
  24. SECRET_KEY = 'secret'
  25. )
  26. app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False
  27.  
  28. # initialize extensions
  29. bootstrap = Bootstrap(app)
  30. db = SQLAlchemy(app)
  31. lm = LoginManager(app)
  32. Principal(app)
  33.  
  34. # User Information providers
  35. @identity_loaded.connect_via(app)
  36. def on_identity_loaded(sender, identity):
  37. g.user = User.query.from_identity(identity)
  38.  
  39. # Permission
  40. admin = Permission(RoleNeed('admin'))
  41. member = Permission(RoleNeed('member'))
  42.  
  43. # MODELS
  44. class UserQuery(BaseQuery):
  45.  
  46. def from_identity(self):
  47. try:
  48. user = self.get(int(identity))
  49. except ValueError:
  50. user = current_user
  51.  
  52. if user:
  53. identity.provides.update(user.provides)
  54.  
  55. identity.user = user
  56.  
  57. return user
  58.  
  59. class User(UserMixin, db.Model):
  60.  
  61. query_class = UserQuery
  62.  
  63. MEMBER = 100
  64. ADMIN = 300
  65.  
  66. __tablename__ = 'user'
  67. id = db.Column(db.Integer, unique=True, nullable=False, primary_key=True)
  68. username = db.Column(db.String(80), unique=True, nullable=False)
  69. password_hash = db.Column(db.String(80))
  70. role = db.Column(db.Integer, default=100)
  71. player = db.Column(db.String, default=100)
  72.  
  73. @property
  74. def password(self):
  75. raise AttributeError('password is not a readable attribute')
  76.  
  77. @password.setter
  78. def password(self, password):
  79. self.password_hash = generate_password_hash(password)
  80.  
  81. def verify_password(self, password):
  82. return check_password_hash(self.password_hash, password)
  83.  
  84. @cached_property
  85. def permissions(self):
  86. return self.Permissions(self)
  87.  
  88. @cached_property
  89. def provides(self):
  90. needs = [RoleNeed('authenticated'), UserNeed(self.id)]
  91.  
  92. if self.is_member:
  93. needs.append(RoleNeed('member'))
  94.  
  95. if self.is_admin:
  96. needs.append(RoleNeed('admin'))
  97.  
  98. return needs
  99.  
  100. @property
  101. def is_member(self):
  102. return self.role == self.MEMBER
  103.  
  104. @property
  105. def is_admin(self):
  106. return self.role == self.ADMIN
  107.  
  108. @lm.user_loader
  109. def load_user(user_id):
  110. """User loader callback for Flask-Login."""
  111. return User.query.get(int(user_id))
  112.  
  113. # FORMS
  114. class CMSignupForm(FlaskForm):
  115. player = SelectField(validators=[Required()],
  116. choices=[("CM", "CM"),
  117. ("CA", "CA")])
  118. username = StringField('Username', validators=[Required(), Length(1, 9)])
  119. password = PasswordField("Password", validators=[Required(), Length(1, 9)])
  120. password_again = PasswordField('Password again',
  121. validators=[Required(), EqualTo('password')])
  122. submit = SubmitField("Signup")
  123.  
  124. class CASignupForm(FlaskForm):
  125. player = SelectField(validators=[Required()],
  126. choices=[("CM", "CM"),
  127. ("CA", "CA")])
  128. username = StringField('Username', validators=[Required(), Length(1, 9)])
  129. password = PasswordField("Password", validators=[Required(), Length(1, 9)])
  130. password_again = PasswordField('Password again',
  131. validators=[Required(), EqualTo('password')])
  132. submit = SubmitField("Signup")
  133.  
  134. class LoginForm(FlaskForm):
  135. username = StringField('Username', validators=[Required(), Length(1, 9)])
  136. password = PasswordField("Password", validators=[Required(), Length(1, 9)])
  137. submit = SubmitField("Login")
  138.  
  139. # VIEWS
  140. @app.route('/')
  141. def index():
  142. user = User.query.all()
  143. return render_template('index.html', user=user)
  144.  
  145. @app.route('/signup', methods=('GET', 'POST'))
  146. def cmsignup():
  147. if current_user.is_authenticated:
  148. # if user is logged in we get out of here
  149. return redirect(url_for('index'))
  150.  
  151. form = CMSignupForm()
  152.  
  153. if form.validate_on_submit():
  154. user = User()
  155. form.populate_obj(user)
  156.  
  157. db.session.add(user)
  158. db.session.commit()
  159.  
  160. flash('Signup Success %s' % user.username, 'success')
  161.  
  162. return redirect(url_for('login'))
  163.  
  164. return render_template('cmsignup.html', form=form)
  165.  
  166. @app.route('/signup', methods=('GET', 'POST'))
  167. def casignup():
  168. if current_user.is_authenticated:
  169. # if user is logged in we get out of here
  170. return redirect(url_for('index'))
  171.  
  172. form = CASignupForm()
  173.  
  174. if form.validate_on_submit():
  175. user = User()
  176. form.populate_obj(user)
  177.  
  178. db.session.add(user)
  179. db.session.commit()
  180.  
  181. flash('Signup Success %s' % user.username, 'success')
  182.  
  183. return redirect(url_for('login'))
  184.  
  185. return render_template('casignup.html', form=form)
  186.  
  187. @app.route('/login', methods=('GET', 'POST',))
  188. def login():
  189. """User login route."""
  190. if current_user.is_authenticated:
  191. # if user is logged in we get out of here
  192. return redirect(url_for('index'))
  193.  
  194. form = LoginForm()
  195.  
  196. if form.validate_on_submit():
  197. user = User.query.filter_by(username=form.username.data).first()
  198. if user is None or not user.verify_password(form.password.data):
  199. flash('ooo!')
  200.  
  201. identity_changed.send(current_app._get_current_object(), identity=Identity(user.id))
  202. flash('ooo, %s' % user.username)
  203.  
  204. return redirect(url_for('index'))
  205.  
  206. login_user(user)
  207. flash('You are now logged in!')
  208. return redirect(url_for('cm_e_11a'))
  209.  
  210. return render_template('login.html', form=form)
  211.  
  212. @app.route('/logout')
  213. def logout():
  214. identity_changed.send(current_app._get_current_object(), identity=AnonymousIdentity())
  215. flash('oooo!')
  216.  
  217. return redirect(url_for('index'))
  218.  
  219. @app.route('/page')
  220. @admin.require(401)
  221. def page():
  222. return render_template('page.html')
  223.  
  224. @app.errorhandler(401)
  225. def unauthorized(error):
  226. flash('Please login to see this page', 'error')
  227. return redirect(url_for('login', next=request.path))
  228.  
  229. db.create_all()
  230.  
  231. if __name__ == '__main__':
  232. app.run()
  233.  
  234. File "/home/ubuntu/workspace/pb/auth.py", line 201, in login
  235. identity_changed.send(current_app._get_current_object(), identity=Identity(user.id))
  236. AttributeError: 'NoneType' object has no attribute 'id'
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!