django-rest-auth/rest_auth/registration/views.py

from django.conf import settings
from django.utils.decorators import method_decorator
from django.utils.translation import ugettext_lazy as _
from django.views.decorators.debug import sensitive_post_parameters

from rest_framework.views import APIView
from rest_framework.response import Response
from rest_framework.permissions import (AllowAny,
                                        IsAuthenticated)
from rest_framework.generics import CreateAPIView, ListAPIView, GenericAPIView
from rest_framework.exceptions import NotFound
from rest_framework import status

from allauth.account.adapter import get_adapter
from allauth.account.views import ConfirmEmailView
from allauth.account.utils import complete_signup
from allauth.account import app_settings as allauth_settings
from allauth.socialaccount import signals
from allauth.socialaccount.adapter import get_adapter as get_social_adapter
from allauth.socialaccount.models import SocialAccount

from rest_auth.app_settings import (TokenSerializer,
                                    JWTSerializer,
                                    create_token)
from rest_auth.models import TokenModel
from rest_auth.registration.serializers import (VerifyEmailSerializer,
                                                SocialLoginSerializer,
                                                SocialAccountSerializer,
                                                SocialConnectSerializer)
from rest_auth.utils import jwt_encode
from rest_auth.views import LoginView
from .app_settings import RegisterSerializer, register_permission_classes

sensitive_post_parameters_m = method_decorator(
    sensitive_post_parameters('password1', 'password2')
)


class RegisterView(CreateAPIView):
    serializer_class = RegisterSerializer
    permission_classes = register_permission_classes()
    token_model = TokenModel

    @sensitive_post_parameters_m
    def dispatch(self, *args, **kwargs):
        return super(RegisterView, self).dispatch(*args, **kwargs)

    def get_response_data(self, user):
        if allauth_settings.EMAIL_VERIFICATION == \
                allauth_settings.EmailVerificationMethod.MANDATORY:
            return {"detail": _("Verification e-mail sent.")}

        if getattr(settings, 'REST_USE_JWT', False):
            data = {
                'user': user,
                'token': self.token
            }
            return JWTSerializer(data).data
        else:
            return TokenSerializer(user.auth_token).data

    def create(self, request, *args, **kwargs):
        serializer = self.get_serializer(data=request.data)
        serializer.is_valid(raise_exception=True)
        user = self.perform_create(serializer)
        headers = self.get_success_headers(serializer.data)

        return Response(self.get_response_data(user),
                        status=status.HTTP_201_CREATED,
                        headers=headers)

    def perform_create(self, serializer):
        user = serializer.save(self.request)
        if getattr(settings, 'REST_USE_JWT', False):
            self.token = jwt_encode(user)
        else:
            create_token(self.token_model, user, serializer)

        complete_signup(self.request._request, user,
                        allauth_settings.EMAIL_VERIFICATION,
                        None)
        return user


class VerifyEmailView(APIView, ConfirmEmailView):
    permission_classes = (AllowAny,)
    allowed_methods = ('POST', 'OPTIONS', 'HEAD')

    def get_serializer(self, *args, **kwargs):
        return VerifyEmailSerializer(*args, **kwargs)

    def post(self, request, *args, **kwargs):
        serializer = self.get_serializer(data=request.data)
        serializer.is_valid(raise_exception=True)
        self.kwargs['key'] = serializer.validated_data['key']
        confirmation = self.get_object()
        confirmation.confirm(self.request)
        return Response({'detail': _('ok')}, status=status.HTTP_200_OK)


class SocialLoginView(LoginView):
    """
    class used for social authentications
    example usage for facebook with access_token
    -------------
    from allauth.socialaccount.providers.facebook.views import FacebookOAuth2Adapter

    class FacebookLogin(SocialLoginView):
        adapter_class = FacebookOAuth2Adapter
    -------------

    example usage for facebook with code

    -------------
    from allauth.socialaccount.providers.facebook.views import FacebookOAuth2Adapter
    from allauth.socialaccount.providers.oauth2.client import OAuth2Client

    class FacebookLogin(SocialLoginView):
        adapter_class = FacebookOAuth2Adapter
        client_class = OAuth2Client
        callback_url = 'localhost:8000'
    -------------
    """
    serializer_class = SocialLoginSerializer

    def process_login(self):
        get_adapter(self.request).login(self.request, self.user)


class SocialConnectView(LoginView):
    """
    class used for social account linking

    example usage for facebook with access_token
    -------------
    from allauth.socialaccount.providers.facebook.views import FacebookOAuth2Adapter

    class FacebookConnect(SocialConnectView):
        adapter_class = FacebookOAuth2Adapter
    -------------
    """
    serializer_class = SocialConnectSerializer
    permission_classes = (IsAuthenticated,)

    def process_login(self):
        get_adapter(self.request).login(self.request, self.user)


class SocialAccountListView(ListAPIView):
    """
    List SocialAccounts for the currently logged in user
    """
    serializer_class = SocialAccountSerializer
    permission_classes = (IsAuthenticated,)

    def get_queryset(self):
        return SocialAccount.objects.filter(user=self.request.user)


class SocialAccountDisconnectView(GenericAPIView):
    """
    Disconnect SocialAccount from remote service for
    the currently logged in user
    """
    serializer_class = SocialConnectSerializer
    permission_classes = (IsAuthenticated,)

    def get_queryset(self):
        return SocialAccount.objects.filter(user=self.request.user)

    def post(self, request, *args, **kwargs):
        accounts = self.get_queryset()
        account = accounts.filter(pk=kwargs['pk']).first()
        if not account:
            raise NotFound

        get_social_adapter(self.request).validate_disconnect(account, accounts)

        account.delete()
        signals.social_account_removed.send(
            sender=SocialAccount,
            request=self.request,
            socialaccount=account
        )

        return Response(self.get_serializer(account).data)
Fixing tests 2016-02-29 15:57:54 +03:00			`from django.conf import settings`
Add `sensitive_post_parameters` decorator to several views 2016-12-31 23:55:19 +03:00			`from django.utils.decorators import method_decorator`
			`from django.utils.translation import ugettext_lazy as _`
			`from django.views.decorators.debug import sensitive_post_parameters`
* Added support for REST_USE_JWT * Added JWTSerializer * Added JWT encoding support, based on django-rest-framework-jwt * Tests for JWT authentication 2016-01-04 20:45:33 +03:00
django-registration replacement - remove django-registration references - integrate with django-allauth - move all registration stuff to separated app - update unit tests 2014-10-01 16:13:21 +04:00			`from rest_framework.views import APIView`
			`from rest_framework.response import Response`
Implement connect social accounts functionality Add serializers and views for connecting accounts with minimal specialization of the existing django-rest-auth interfaces. Also add viewset which enables listing social account infmration via the REST API for social authentication driven client applications. Resolves #347 in GitHub. 2017-12-02 17:00:16 +03:00			`from rest_framework.permissions import (AllowAny,`
			`IsAuthenticated)`
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`from rest_framework.generics import CreateAPIView, ListAPIView, GenericAPIView`
			`from rest_framework.exceptions import NotFound`
django-registration replacement - remove django-registration references - integrate with django-allauth - move all registration stuff to separated app - update unit tests 2014-10-01 16:13:21 +04:00			`from rest_framework import status`

Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`from allauth.account.adapter import get_adapter`
Rewrite registration logic 2015-11-24 13:11:46 +03:00			`from allauth.account.views import ConfirmEmailView`
django-registration replacement - remove django-registration references - integrate with django-allauth - move all registration stuff to separated app - update unit tests 2014-10-01 16:13:21 +04:00			`from allauth.account.utils import complete_signup`
Rewrite registration logic 2015-11-24 13:11:46 +03:00			`from allauth.account import app_settings as allauth_settings`
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`from allauth.socialaccount import signals`
			`from allauth.socialaccount.adapter import get_adapter as get_social_adapter`
			`from allauth.socialaccount.models import SocialAccount`
django-registration replacement - remove django-registration references - integrate with django-allauth - move all registration stuff to separated app - update unit tests 2014-10-01 16:13:21 +04:00
Merge branch 'master' of https://github.com/Tivix/django-rest-auth 2016-01-08 00:45:28 +03:00			`from rest_auth.app_settings import (TokenSerializer,`
Added tests for JWT, fixed merge issues 2016-02-16 08:42:18 +03:00			`JWTSerializer,`
Merge branch 'master' of https://github.com/Tivix/django-rest-auth 2016-01-08 00:45:28 +03:00			`create_token)`
Add `sensitive_post_parameters` decorator to several views 2016-12-31 23:55:19 +03:00			`from rest_auth.models import TokenModel`
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`from rest_auth.registration.serializers import (VerifyEmailSerializer,`
			`SocialLoginSerializer,`
			`SocialAccountSerializer,`
Implement connect social accounts functionality Add serializers and views for connecting accounts with minimal specialization of the existing django-rest-auth interfaces. Also add viewset which enables listing social account infmration via the REST API for social authentication driven client applications. Resolves #347 in GitHub. 2017-12-02 17:00:16 +03:00			`SocialConnectSerializer)`
Add `sensitive_post_parameters` decorator to several views 2016-12-31 23:55:19 +03:00			`from rest_auth.utils import jwt_encode`
appending all views with View 2015-08-07 13:54:45 +03:00			`from rest_auth.views import LoginView`
registration: allow custom permission classes 2017-02-13 02:35:28 +03:00			`from .app_settings import RegisterSerializer, register_permission_classes`
django-registration replacement - remove django-registration references - integrate with django-allauth - move all registration stuff to separated app - update unit tests 2014-10-01 16:13:21 +04:00
Add `sensitive_post_parameters` decorator to several views 2016-12-31 23:55:19 +03:00			`sensitive_post_parameters_m = method_decorator(`
			`sensitive_post_parameters('password1', 'password2')`
			`)`
* Added support for REST_USE_JWT * Added JWTSerializer * Added JWT encoding support, based on django-rest-framework-jwt * Tests for JWT authentication 2016-01-04 20:45:33 +03:00
fixed code quality 2016-03-01 14:51:01 +03:00
Rewrite registration logic 2015-11-24 13:11:46 +03:00			`class RegisterView(CreateAPIView):`
			`serializer_class = RegisterSerializer`
registration: allow custom permission classes 2017-02-13 02:35:28 +03:00			`permission_classes = register_permission_classes()`
Add support for custom Token model 2016-01-01 00:10:52 +03:00			`token_model = TokenModel`
django-registration replacement - remove django-registration references - integrate with django-allauth - move all registration stuff to separated app - update unit tests 2014-10-01 16:13:21 +04:00
Add `sensitive_post_parameters` decorator to several views 2016-12-31 23:55:19 +03:00			`@sensitive_post_parameters_m`
			`def dispatch(self, args, *kwargs):`
			`return super(RegisterView, self).dispatch(args, *kwargs)`

Return token only when verification is mandatory 2016-01-12 00:33:14 +03:00			`def get_response_data(self, user):`
			`if allauth_settings.EMAIL_VERIFICATION == \`
			`allauth_settings.EmailVerificationMethod.MANDATORY:`
PEP8 cleanup and small text fixes 2016-12-22 01:08:56 +03:00			`return {"detail": _("Verification e-mail sent.")}`
now also accepting authorization codes from social login (e.g. facebook) 2015-08-07 13:26:57 +03:00
Added tests for JWT, fixed merge issues 2016-02-16 08:42:18 +03:00			`if getattr(settings, 'REST_USE_JWT', False):`
			`data = {`
			`'user': user,`
			`'token': self.token`
			`}`
			`return JWTSerializer(data).data`
			`else:`
			`return TokenSerializer(user.auth_token).data`
django-registration replacement - remove django-registration references - integrate with django-allauth - move all registration stuff to separated app - update unit tests 2014-10-01 16:13:21 +04:00
Rewrite registration logic 2015-11-24 13:11:46 +03:00			`def create(self, request, args, *kwargs):`
			`serializer = self.get_serializer(data=request.data)`
			`serializer.is_valid(raise_exception=True)`
			`user = self.perform_create(serializer)`
			`headers = self.get_success_headers(serializer.data)`
make registration API browsable 2014-11-12 05:52:06 +03:00
PEP8 cleanup and small text fixes 2016-12-22 01:08:56 +03:00			`return Response(self.get_response_data(user),`
			`status=status.HTTP_201_CREATED,`
			`headers=headers)`
fix issue with setting POST attribute in request 2015-11-06 16:07:12 +03:00
Rewrite registration logic 2015-11-24 13:11:46 +03:00			`def perform_create(self, serializer):`
			`user = serializer.save(self.request)`
Added tests for JWT, fixed merge issues 2016-02-16 08:42:18 +03:00			`if getattr(settings, 'REST_USE_JWT', False):`
			`self.token = jwt_encode(user)`
			`else:`
			`create_token(self.token_model, user, serializer)`
Changed confirm email url path + test fixes 2016-07-28 21:14:26 +03:00
Rewrite registration logic 2015-11-24 13:11:46 +03:00			`complete_signup(self.request._request, user,`
			`allauth_settings.EMAIL_VERIFICATION,`
None as success_url for complete_signup in RegisterView 2015-11-24 17:16:39 +03:00			`None)`
Rewrite registration logic 2015-11-24 13:11:46 +03:00			`return user`
django-registration replacement - remove django-registration references - integrate with django-allauth - move all registration stuff to separated app - update unit tests 2014-10-01 16:13:21 +04:00

appending all views with View 2015-08-07 13:54:45 +03:00			`class VerifyEmailView(APIView, ConfirmEmailView):`
veirfy email view and test 2014-10-01 18:34:51 +04:00			`permission_classes = (AllowAny,)`
make all endpoints browsable 2014-11-12 12:33:29 +03:00			`allowed_methods = ('POST', 'OPTIONS', 'HEAD')`

refactor allow VerifyEmailView display data field in swagger 2016-12-09 12:53:09 +03:00			`def get_serializer(self, args, *kwargs):`
			`return VerifyEmailSerializer(args, *kwargs)`

veirfy email view and test 2014-10-01 18:34:51 +04:00			`def post(self, request, args, *kwargs):`
refactor allow VerifyEmailView display data field in swagger 2016-12-09 12:53:09 +03:00			`serializer = self.get_serializer(data=request.data)`
Rewrite registration logic 2015-11-24 13:11:46 +03:00			`serializer.is_valid(raise_exception=True)`
			`self.kwargs['key'] = serializer.validated_data['key']`
veirfy email view and test 2014-10-01 18:34:51 +04:00			`confirmation = self.get_object()`
			`confirmation.confirm(self.request)`
'detail' keyword in success response messages 2016-03-31 11:58:14 +03:00			`return Response({'detail': _('ok')}, status=status.HTTP_200_OK)`
create base view and serializer for social authentication 2014-10-02 18:54:55 +04:00

Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`class SocialLoginView(LoginView):`
			`"""`
			`class used for social authentications`
			`example usage for facebook with access_token`
			`-------------`
			`from allauth.socialaccount.providers.facebook.views import FacebookOAuth2Adapter`
create base view and serializer for social authentication 2014-10-02 18:54:55 +04:00
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`class FacebookLogin(SocialLoginView):`
			`adapter_class = FacebookOAuth2Adapter`
			`-------------`
now also accepting authorization codes from social login (e.g. facebook) 2015-08-07 13:26:57 +03:00
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`example usage for facebook with code`
now also accepting authorization codes from social login (e.g. facebook) 2015-08-07 13:26:57 +03:00
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`-------------`
			`from allauth.socialaccount.providers.facebook.views import FacebookOAuth2Adapter`
			`from allauth.socialaccount.providers.oauth2.client import OAuth2Client`
now also accepting authorization codes from social login (e.g. facebook) 2015-08-07 13:26:57 +03:00
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`class FacebookLogin(SocialLoginView):`
			`adapter_class = FacebookOAuth2Adapter`
			`client_class = OAuth2Client`
			`callback_url = 'localhost:8000'`
			`-------------`
			`"""`
			`serializer_class = SocialLoginSerializer`
create base view and serializer for social authentication 2014-10-02 18:54:55 +04:00
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`def process_login(self):`
			`get_adapter(self.request).login(self.request, self.user)`
Increased test coverage (#229) * Added twitter login test * pep8 * Fixes missing backend attr issue * Refactored login process * pep8 * Added more tests for twitter social login 2016-07-18 08:06:28 +03:00
Implement connect social accounts functionality Add serializers and views for connecting accounts with minimal specialization of the existing django-rest-auth interfaces. Also add viewset which enables listing social account infmration via the REST API for social authentication driven client applications. Resolves #347 in GitHub. 2017-12-02 17:00:16 +03:00
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`class SocialConnectView(LoginView):`
			`"""`
			`class used for social account linking`
Implement connect social accounts functionality Add serializers and views for connecting accounts with minimal specialization of the existing django-rest-auth interfaces. Also add viewset which enables listing social account infmration via the REST API for social authentication driven client applications. Resolves #347 in GitHub. 2017-12-02 17:00:16 +03:00
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`example usage for facebook with access_token`
			`-------------`
			`from allauth.socialaccount.providers.facebook.views import FacebookOAuth2Adapter`
Implement connect social accounts functionality Add serializers and views for connecting accounts with minimal specialization of the existing django-rest-auth interfaces. Also add viewset which enables listing social account infmration via the REST API for social authentication driven client applications. Resolves #347 in GitHub. 2017-12-02 17:00:16 +03:00
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`class FacebookConnect(SocialConnectView):`
			`adapter_class = FacebookOAuth2Adapter`
			`-------------`
			`"""`
			`serializer_class = SocialConnectSerializer`
			`permission_classes = (IsAuthenticated,)`
Implement connect social accounts functionality Add serializers and views for connecting accounts with minimal specialization of the existing django-rest-auth interfaces. Also add viewset which enables listing social account infmration via the REST API for social authentication driven client applications. Resolves #347 in GitHub. 2017-12-02 17:00:16 +03:00
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`def process_login(self):`
			`get_adapter(self.request).login(self.request, self.user)`
Implement connect social accounts functionality Add serializers and views for connecting accounts with minimal specialization of the existing django-rest-auth interfaces. Also add viewset which enables listing social account infmration via the REST API for social authentication driven client applications. Resolves #347 in GitHub. 2017-12-02 17:00:16 +03:00

Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`class SocialAccountListView(ListAPIView):`
			`"""`
			`List SocialAccounts for the currently logged in user`
			`"""`
			`serializer_class = SocialAccountSerializer`
			`permission_classes = (IsAuthenticated,)`
Implement connect social accounts functionality Add serializers and views for connecting accounts with minimal specialization of the existing django-rest-auth interfaces. Also add viewset which enables listing social account infmration via the REST API for social authentication driven client applications. Resolves #347 in GitHub. 2017-12-02 17:00:16 +03:00
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`def get_queryset(self):`
			`return SocialAccount.objects.filter(user=self.request.user)`
Implement connect social accounts functionality Add serializers and views for connecting accounts with minimal specialization of the existing django-rest-auth interfaces. Also add viewset which enables listing social account infmration via the REST API for social authentication driven client applications. Resolves #347 in GitHub. 2017-12-02 17:00:16 +03:00

Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`class SocialAccountDisconnectView(GenericAPIView):`
			`"""`
			`Disconnect SocialAccount from remote service for`
			`the currently logged in user`
			`"""`
			`serializer_class = SocialConnectSerializer`
			`permission_classes = (IsAuthenticated,)`
Implement connect social accounts functionality Add serializers and views for connecting accounts with minimal specialization of the existing django-rest-auth interfaces. Also add viewset which enables listing social account infmration via the REST API for social authentication driven client applications. Resolves #347 in GitHub. 2017-12-02 17:00:16 +03:00
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`def get_queryset(self):`
			`return SocialAccount.objects.filter(user=self.request.user)`
Implement connect social accounts functionality Add serializers and views for connecting accounts with minimal specialization of the existing django-rest-auth interfaces. Also add viewset which enables listing social account infmration via the REST API for social authentication driven client applications. Resolves #347 in GitHub. 2017-12-02 17:00:16 +03:00
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`def post(self, request, args, *kwargs):`
			`accounts = self.get_queryset()`
			`account = accounts.filter(pk=kwargs['pk']).first()`
			`if not account:`
			`raise NotFound`
Implement connect social accounts functionality Add serializers and views for connecting accounts with minimal specialization of the existing django-rest-auth interfaces. Also add viewset which enables listing social account infmration via the REST API for social authentication driven client applications. Resolves #347 in GitHub. 2017-12-02 17:00:16 +03:00
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`get_social_adapter(self.request).validate_disconnect(account, accounts)`
Implement connect social accounts functionality Add serializers and views for connecting accounts with minimal specialization of the existing django-rest-auth interfaces. Also add viewset which enables listing social account infmration via the REST API for social authentication driven client applications. Resolves #347 in GitHub. 2017-12-02 17:00:16 +03:00
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`account.delete()`
			`signals.social_account_removed.send(`
			`sender=SocialAccount,`
			`request=self.request,`
			`socialaccount=account`
			`)`
Implement connect social accounts functionality Add serializers and views for connecting accounts with minimal specialization of the existing django-rest-auth interfaces. Also add viewset which enables listing social account infmration via the REST API for social authentication driven client applications. Resolves #347 in GitHub. 2017-12-02 17:00:16 +03:00
Refactor social connect views and serializers # 347 2018-01-19 05:08:41 +03:00			`return Response(self.get_serializer(account).data)`