-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathuser.py
More file actions
94 lines (71 loc) · 3.38 KB
/
user.py
File metadata and controls
94 lines (71 loc) · 3.38 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
import functools
import typing
from core.serializer.json_schema_serializer import JsonSchemaSerializer
from core.serializer.read_only_serializer import ReadOnlyModelSerializer
from rest_framework import serializers
from user.models import UserExt
class UserAdminSerializer(JsonSchemaSerializer, serializers.ModelSerializer):
str_repr = serializers.CharField(source="__str__", read_only=True)
class Meta:
model = UserExt
fields = (
"id",
"is_active",
"username",
"nickname_ko",
"nickname_en",
"email",
"is_superuser",
"str_repr",
"date_joined",
"last_login",
)
extra_kwargs = {
"id": {"read_only": True},
"date_joined": {"read_only": True},
"last_login": {"read_only": True},
}
class UserAdminSignInSerializerData(typing.TypedDict):
identity: str
password: str
class UserAdminSignInSerializer(JsonSchemaSerializer, ReadOnlyModelSerializer):
identity = serializers.CharField(max_length=150, required=True)
password = serializers.CharField(write_only=True, required=True)
class Meta:
fields = ("identity", "password")
@functools.cached_property
def user(self) -> UserExt | None:
identity = typing.cast(UserAdminSignInSerializerData, self.initial_data)["identity"].strip()
field = "username" if identity.startswith("@") or "@" not in identity else "email"
return UserExt.objects.filter(**{field: identity, "is_active": True}).first()
def validate(self, attrs: UserAdminSignInSerializerData) -> UserAdminSignInSerializerData:
if not (self.user and self.user.check_password(attrs["password"])):
raise serializers.ValidationError("User not found or inactive or wrong password.")
if not self.user.is_superuser:
raise serializers.PermissionDenied("Only permissioned users can sign in using this route.")
return attrs
class UserAdminPasswordChangeSerializerData(typing.TypedDict):
old_password: str
new_password: str
new_password_confirm: str
class UserAdminPasswordChangeSerializer(JsonSchemaSerializer, ReadOnlyModelSerializer):
old_password = serializers.CharField(write_only=True, required=True)
new_password = serializers.CharField(write_only=True, required=True)
new_password_confirm = serializers.CharField(write_only=True, required=True)
class Meta:
model = UserExt
fields = ("old_password", "new_password", "new_password_confirm")
def validate(self, attrs: UserAdminPasswordChangeSerializerData) -> UserAdminPasswordChangeSerializerData:
user: UserExt = self.instance
if not user.check_password(attrs["old_password"]):
raise serializers.ValidationError("Old password is incorrect.")
if attrs["old_password"] == attrs["new_password"]:
raise serializers.ValidationError("New password cannot be the same as the old password.")
if attrs["new_password"] != attrs["new_password_confirm"]:
raise serializers.ValidationError("New password and confirmation do not match.")
return attrs
def save(self, **kwargs: typing.Any) -> UserExt:
user: UserExt = self.instance
user.set_password(self.validated_data["new_password"])
user.save(update_fields=["password"])
return user