o ˷eGW@snddlZddlZddlZddlmZddlmZddlmZddl m Z ddl m Z m Z mZmZddlmZddlmZdd lmZdd lmZmZdd lmZmZdd lmZdd l m!Z!ddl"m#Z#ddl$m%Z%ddl&m'Z'ddl(m)Z)ddl*m+Z+ddl,m-Z.ddl/m0Z0ddl1m2Z2ddl3m4Z4ddl5m6Z6m7Z7m8Z8m9Z9m:Z:ddl;mdddZ?dS)N) timedelta)forms)settings)messages) authenticate get_backendsloginlogout) AbstractUser)validate_password)get_current_site) EmailMessageEmailMultiAlternatives) HttpResponseHttpResponseRedirect) resolve_url)TemplateDoesNotExist)render_to_string)reverse)timezone)get_random_string force_str) gettext_lazy) ratelimit)signals)EmailVerificationMethod)build_absolute_uriemail_address_existsgenerate_unique_usernameget_user_modelimport_attribute) app_settingsc@seZdZedejdjdededdZdidd Zd d Z d d Z ddZ ddZ ddZ ddZddZdiddZddZddZddZd d!Zd"d#Zd$d%Zd&d'Zd(d)Zdid*d+Zdjd-d.Zdkd0d1Zd2d3Zdid4d5Zd6d7Z  8dld9d:Zdmd;d<Z d=d>Z!d?d@Z"dAdBZ#dCdDZ$dEdFZ%dGdHZ&dIdJZ'dKdLZ(dMdNZ)dOdPZ*dQdRZ+dSdTZ,dUdVZ-dWdXZ.dYdZZ/d[d\Z0d]d^Z1d_d`Z2dadbZ3dcddZ4dedfZ5dgdhZ6dS)nDefaultAccountAdapterz4Username can not be used. Please use other username.usernameuniquez0Too many failed login attempts. Try again later.z6A user is already registered with this e-mail address.)username_blacklistedusername_takentoo_many_login_attempts email_takenNcCs ||_dSNrequestselfr-r0N/var/www/ideatree/venv/lib/python3.10/site-packages/allauth/account/adapter.py__init__: zDefaultAccountAdapter.__init__cC||jd<dSNaccount_verified_emailsession)r/r-emailr0r0r1stash_verified_email=z*DefaultAccountAdapter.stash_verified_emailcCs|jd}d|jd<|Sr5)r8get)r/r-retr0r0r1unstash_verified_email@s  z,DefaultAccountAdapter.unstash_verified_emailcCr4N account_userr7r/r-userr0r0r1 stash_userEr;z DefaultAccountAdapter.stash_usercCs|jddSr?)r8popr.r0r0r1 unstash_userHr;z"DefaultAccountAdapter.unstash_usercCs(d}|jd}|r||k}|S)z Checks whether or not the email address is already verified beyond allauth scope, for example, by having accepted an invitation before signing up. Fr6)r8r<lower)r/r-r9r=verified_emailr0r0r1is_email_verifiedKs  z'DefaultAccountAdapter.is_email_verifiedcCs2tj}|durt|j}dj|jd}|t|S)Nz [{name}] )name)r#EMAIL_SUBJECT_PREFIXr r-formatrIr)r/subjectprefixsiter0r0r1format_email_subjectWs   z*DefaultAccountAdapter.format_email_subjectcCstjS)z This is a hook that can be overridden to programatically set the 'from' email address for sending emails )rDEFAULT_FROM_EMAILr/r0r0r1get_from_email^sz$DefaultAccountAdapter.get_from_emailc Cst|tr|gn|}td||}d|}||}|}i}dD]%} zd|| } t| ||j || <Wq(t yM| dkrK|sKYq(wd|vrkt ||d|||d} d|vri| |dd| St ||d|||d} d| _| S) z Renders an e-mail to `email`. `template_prefix` identifies the e-mail that is to be sent, e.g. "account/email/email_confirmation" z{0}_subject.txt )htmltxtz{0}_message.{1}rU)headersrTz text/html) isinstancestrrrKjoin splitlinesstriprOrRr-rrattach_alternativer content_subtype) r/template_prefixr9contextrVtorL from_emailbodiesext template_namemsgr0r0r1 render_mailes>    z!DefaultAccountAdapter.render_mailcCs||||}|dSr+)rfsend)r/r^r9r_rer0r0r1 send_mails zDefaultAccountAdapter.send_mailcC ttjSr+)rr#SIGNUP_REDIRECT_URLr.r0r0r1get_signup_redirect_urlr3z-DefaultAccountAdapter.get_signup_redirect_urlcCs>|jjsJttdd}|rtdtt|Stj}t|S)z Returns the default URL to redirect to after logging in. Note that URLs passed explicitly (e.g. by passing along a `next` GET parameter) take precedence over the value returned here. LOGIN_REDIRECT_URLNAMENzSLOGIN_REDIRECT_URLNAME is deprecated, simply use LOGIN_REDIRECT_URL with a URL name) rBis_authenticatedgetattrrwarningswarnDeprecationWarningLOGIN_REDIRECT_URLr)r/r-urlr0r0r1get_login_redirect_urls  z,DefaultAccountAdapter.get_login_redirect_urlcCri)a Returns the URL to redirect to after the user logs out. Note that this method is also invoked if you attempt to log out while no users is logged in. Therefore, request.user is not guaranteed to be an authenticated user. )rr#LOGOUT_REDIRECT_URLr.r0r0r1get_logout_redirect_urls z-DefaultAccountAdapter.get_logout_redirect_urlcCs$|jjrtjr tjS||StjS)zL The URL to return to after successful e-mail confirmation. )rBrmr#-EMAIL_CONFIRMATION_AUTHENTICATED_REDIRECT_URLrt)EMAIL_CONFIRMATION_ANONYMOUS_REDIRECT_URLr.r0r0r1#get_email_confirmation_redirect_urls  z9DefaultAccountAdapter.get_email_confirmation_redirect_urlcCsdS)z Checks whether or not the site is open for signups. Next to simply returning True/False you can also intervene the regular flow by raising an ImmediateHttpResponse Tr0r.r0r0r1is_open_for_signupsz(DefaultAccountAdapter.is_open_for_signupcCs t}|S)z3 Instantiates a new User instance. )r rAr0r0r1new_userszDefaultAccountAdapter.new_userc Csdddlm}m}m}||d}||d}||}||} tjr0||| p,||||| dgdSdS)z Fills in a valid username, if required and missing. If the username is already present it is assumed to be valid (unique). r" user_email user_field user_username first_name last_namerBN)utilsr}r~rr#USER_MODEL_USERNAME_FIELDr) r/r-rBr}r~rrrr9r%r0r0r1populate_usernames   z'DefaultAccountAdapter.populate_usernamecCs t||Sr+)r)r/txtsregexr0r0r1rr3z.DefaultAccountAdapter.generate_unique_usernameTc Csddlm}m}m}|j}|d} |d} |d} |d} ||| ||| | r3||d| | r;||d| d|vrG||dn|||||rW| |S)zd Saves a new `User` instance using information provided in the signup form. r"r|rrr9r% password1) rr}r~r cleaned_datar< set_passwordset_unusable_passwordrsave) r/r-rBformcommitr}r~rdatarrr9r%r0r0r1 save_users&         zDefaultAccountAdapter.save_userFc CstjD]}||qddtjD}||vr t|jd|sPddlm}|| rPt }tj }|j |jd}|sE|jd}tj||j|dd |S) z Validates the username. You can hook into this if you want to (dynamically) restrict what usernames can be chosen. cSsg|]}|qSr0)rF).0ubr0r0r1 sz8DefaultAccountAdapter.clean_username..r'r")filter_users_by_usernamer&r() model_name field_label)params)r#USERNAME_VALIDATORSUSERNAME_BLACKLISTrFrValidationErrorerror_messagesrrexistsr r_meta get_fieldr<__name__) r/r%shallow validatorusername_blacklist_lowerr user_modelusername_field error_messager0r0r1clean_usernames4      z$DefaultAccountAdapter.clean_usernamecCs|S)z Validates an email value. You can hook into this if you want to (dynamically) restrict what email addresses can be chosen. r0r/r9r0r0r1 clean_email!sz!DefaultAccountAdapter.clean_emailcCs8tj}|rt||krttd|t|||S)z{ Validates a password. You can hook into this if you want to restric the allowed password choices. z-Password must be a minimum of {0} characters.)r#PASSWORD_MIN_LENGTHlenrr_rKr )r/passwordrB min_lengthr0r0r1clean_password(s  z$DefaultAccountAdapter.clean_passwordcCst|r t|jd|S)Nr*)rrrrrr0r0r1validate_unique_email5sz+DefaultAccountAdapter.validate_unique_emailcCsndtjvr5z%|dur i}t|||j}|r(t|}tj||||dWdSWdSt y4YdSwdS)zx Wrapper of `django.contrib.messages.add_message`, that reads the message text from a template. zdjango.contrib.messagesN) extra_tags) rINSTALLED_APPSrr-r[rTunescaper add_messager)r/r-levelmessage_templatemessage_contextrescaped_messagemessager0r0r1r:s&   z!DefaultAccountAdapter.add_messagecCsi}|j}|r d}||d<|r8|jdkr|rd}nd}nd}|||d<t|dr0||jd|d<|dur@||d <tt ||d d S) NlocationPOSTirrenderutf8rTrapplication/json)status content_type) status_codemethodis_validajax_response_formhasattrrcontentdecoderjsondumps)r/r-response redirect_torrresprr0r0r1 ajax_responseUs(   z#DefaultAccountAdapter.ajax_responsec Csig|d}|D]3}t|j|t|jdd|jDddd|jjj Did}||d|j <|d  |j q |S) N)fields field_ordererrorscSsg|]}t|qSr0r)rer0r0r1rysz.attrscSsi|] \}}|t|qSr0r)rkvr0r0r1 {sz.)labelvalue help_textrwidgetrr) non_field_errorsrrrrrfieldrritems html_nameappend)r/r form_specr field_specr0r0r1rns"  z(DefaultAccountAdapter.ajax_response_formc Csddlm}m} |js|||S|tjkrdS|tjkr2|||s.|r0| ||||ddSdSdS|tjkrJ|||sL| ||||d| ||SdSdS)Nr")has_verified_emailsend_email_confirmation)signupr9) rrr is_activerespond_user_inactiverNONEOPTIONAL MANDATORYrespond_email_verification_sent) r/r-rBemail_verification signal_kwargsr9r redirect_urlrrr0r0r1 pre_logins       zDefaultAccountAdapter.pre_loginc Csbddlm}t||||d} |duri}tjjd|j|| |d|||tj dd|i| S)Nr")rt)r)senderr-rrBzaccount/messages/logged_in.txtrBr0) rrtrruser_logged_inrg __class__rrSUCCESS) r/r-rBrrr9rrrtrr0r0r1 post_logins*  z DefaultAccountAdapter.post_logincCsvt|ds4ddlm}t}d}|D]}t||r|}n |s&t|dr&|}qd|j|jjg}||_ t ||dS)Nbackendr"AuthenticationBackendget_user.) r auth_backendsrrrWrY __module__rrr django_login)r/r-rBrbackendsrb backend_pathr0r0r1rs   zDefaultAccountAdapter.logincCs t|dSr+) django_logoutr.r0r0r1r  zDefaultAccountAdapter.logoutcCsd|_|jdd|dS)z@ Marks the email address as confirmed on the db T) conditionalN)verifiedset_as_primaryr)r/r- email_addressr0r0r1 confirm_emails  z#DefaultAccountAdapter.confirm_emailcCs|||dSr+)rr)r/rBrr0r0r1rs  z"DefaultAccountAdapter.set_passwordcs$ttfddtjdddgS)Ncs|ot|Sr+)r)arBr0r1sz>DefaultAccountAdapter.get_user_search_fields..rrr9)r filterr#rrQr0rr1get_user_search_fieldss z,DefaultAccountAdapter.get_user_search_fieldscCs<zddlm}Wntyddlm}Ynw||ddS)Nr)url_has_allowed_host_and_scheme) is_safe_url) allowed_hosts)django.utils.httpr  ImportErrorr )r/rsr r0r0r1r s   z!DefaultAccountAdapter.is_safe_urlcCstd|jgd}t||}|S)zConstructs the email confirmation (activation) url. Note that if you have architected your system such that email confirmations are sent outside of the request context `request` can be `None` here. account_confirm_email)args)rkeyr)r/r-emailconfirmationrsr=r0r0r1get_email_confirmation_urls z0DefaultAccountAdapter.get_email_confirmation_urlcCsbddlm}ttjd}tjr tj|d|j d| d}|S|j j t ||d }|S)Nr)EmailConfirmation)secondsrr"actionramountduration)sent__gtr)allauth.account.modelsrrr#EMAIL_CONFIRMATION_COOLDOWNEMAIL_CONFIRMATION_HMACrconsumer9rF total_secondsobjectsrrnowr)r/r-rrcooldown_period send_emailr0r0r1should_send_confirmation_mails$    z3DefaultAccountAdapter.should_send_confirmation_mailcCsLt|}|||}|jj|||jd}|rd}nd}|||jj|dS)N)rB activate_url current_siterz'account/email/email_confirmation_signupz account/email/email_confirmation)r rrrBrrhr9)r/r-rrr&r%ctxemail_templater0r0r1send_confirmation_mails z,DefaultAccountAdapter.send_confirmation_mailcC ttdS)Naccount_inactiverrrAr0r0r1r'rz+DefaultAccountAdapter.respond_user_inactivecCr*)Naccount_email_verification_sentr,rAr0r0r1r*rz5DefaultAccountAdapter.respond_email_verification_sentcKs0t|}|d|dd}dj|j|dS)Nr9r%rz{site}:{login})rNr)r r<rFrKdomain)r/r- credentialsrNrr0r0r1_get_login_attempts_cache_key-sz3DefaultAccountAdapter._get_login_attempts_cache_keycKs0tjr|j|fi|}tj|d|ddSdS)N login_failed)rr)r#LOGIN_ATTEMPTS_LIMITr0rclearr/r-r/ cache_keyr0r0r1#_delete_login_attempts_cached_email2sz9DefaultAccountAdapter._delete_login_attempts_cached_emailcKsHtjr |j|fi|}tj|d|tjtjds"t|jddSdS)Nr1rr)) r#r2r0rrLOGIN_ATTEMPTS_TIMEOUTrrrr4r0r0r1pre_authenticate7sz&DefaultAccountAdapter.pre_authenticatecKs|ddlm}|j|fi||t|fi|}|}|p"|}|r3tjr3|j|fi||S|j|fi||S)z8Only authenticates, does not actually login. See `login`rr) allauth.account.auth_backendsrr8unstash_authenticated_userrr#r2r6authentication_failed)r/r-r/rrBalt_userr0r0r1rEs  z"DefaultAccountAdapter.authenticatecKsdSr+r0)r/r-r/r0r0r1r;Tsz+DefaultAccountAdapter.authentication_failedcCs,t|jddk|jdk|jddkgS)NHTTP_X_REQUESTED_WITHXMLHttpRequestr HTTP_ACCEPT)anyMETAr<rr.r0r0r1is_ajaxWs zDefaultAccountAdapter.is_ajaxcCs2|jd}|r|dd}|S|jd}|S)NHTTP_X_FORWARDED_FOR,r REMOTE_ADDR)rAr<split)r/r-x_forwarded_foripr0r0r1 get_client_ip`s  z#DefaultAccountAdapter.get_client_ipcCstd}|S)N@)rrF)r/r9rr0r0r1generate_emailconfirmation_keyhs z4DefaultAccountAdapter.generate_emailconfirmation_keyr+)T)F)Nr)NNN)7rr __qualname__rr rrrr2r:r>rCrErHrOrRrfrhrkrtrvryrzr{rrrrrrrrrrrrrr rrr r rr$r)rrr0r6r8rr;rBrIrKr0r0r0r1r$+sz    %      $    "    r$cCsttj|Sr+)r!r#ADAPTERr,r0r0r1 get_adaptermr;rNr+)@rTrrodatetimerdjangor django.confrdjango.contribrdjango.contrib.authrrrrr rdjango.contrib.auth.modelsr 'django.contrib.auth.password_validationr django.contrib.sites.shortcutsr django.core.mailr r django.httprrdjango.shortcutsrdjango.templaterdjango.template.loaderr django.urlsr django.utilsrdjango.utils.cryptordjango.utils.encodingrdjango.utils.translationrrallauthrallauth.accountrallauth.account.app_settingsr allauth.utilsrrrr r!rr#objectr$rNr0r0r0r1s@                   F