from flask_wtf import FlaskForm, RecaptchaField from wtforms import StringField, PasswordField, SubmitField, HiddenField, BooleanField from wtforms.validators import ValidationError, DataRequired, Email, EqualTo, Length from flask_babel import _, lazy_gettext as _l from app.models import User, Community from sqlalchemy import func class LoginForm(FlaskForm): user_name = StringField(_l('User name'), validators=[DataRequired()], render_kw={'autofocus': True, 'autocomplete': 'username'}) password = PasswordField(_l('Password'), validators=[DataRequired()]) low_bandwidth_mode = BooleanField(_l('Low bandwidth mode')) submit = SubmitField(_l('Log In')) class RegistrationForm(FlaskForm): user_name = StringField(_l('User name'), validators=[DataRequired()], render_kw={'autofocus': True, 'autocomplete': 'username'}) email = HiddenField(_l('Email')) real_email = StringField(_l('Email'), validators=[DataRequired(), Email(), Length(min=5, max=255)], render_kw={'autocomplete': 'email'}) password = PasswordField(_l('Password'), validators=[DataRequired(), Length(min=8, max=50)], render_kw={'autocomplete': 'new-password'}) password2 = PasswordField( _l('Repeat password'), validators=[DataRequired(), EqualTo('password')]) question = StringField(_l('Why would you like to join this site?'), validators=[DataRequired(), Length(min=1, max=512)]) recaptcha = RecaptchaField() submit = SubmitField(_l('Register')) def validate_real_email(self, email): user = User.query.filter(func.lower(User.email) == func.lower(email.data.strip())).first() if user is not None: raise ValidationError(_l('An account with this email address already exists.')) def validate_user_name(self, user_name): if '@' in user_name.data: raise ValidationError(_l('User names cannot contain @.')) user = User.query.filter(func.lower(User.user_name) == func.lower(user_name.data.strip())).filter_by(ap_id=None).first() if user is not None: if user.deleted: raise ValidationError(_l('This username was used in the past and cannot be reused.')) else: raise ValidationError(_l('An account with this user name already exists.')) community = Community.query.filter(func.lower(Community.name) == func.lower(user_name.data.strip())).first() if community is not None: raise ValidationError(_l('A community with this name exists so it cannot be used for a user.')) def validate_password(self, password): if not password.data: return password.data = password.data.strip() if password.data == 'password' or password.data == '12345678' or password.data == '1234567890': raise ValidationError(_l('This password is too common.')) first_char = password.data[0] # the first character in the string all_the_same = True # Compare all characters to the first character for char in password.data: if char != first_char: all_the_same = False if all_the_same: raise ValidationError(_l('This password is not secure.')) if password.data == 'password' or password.data == '12345678' or password.data == '1234567890': raise ValidationError(_l('This password is too common.')) class ResetPasswordRequestForm(FlaskForm): email = StringField(_l('Email'), validators=[DataRequired(), Email()], render_kw={'autofocus': True}) submit = SubmitField(_l('Request password reset')) class ResetPasswordForm(FlaskForm): password = PasswordField(_l('Password'), validators=[DataRequired()], render_kw={'autofocus': True}) password2 = PasswordField( _l('Repeat password'), validators=[DataRequired(), EqualTo('password')]) submit = SubmitField(_l('Set password'))