gault-millau/apps/account/serializers/web.py

"""Serializers for account web"""
from django.conf import settings
from django.contrib.auth import password_validation as password_validators
from django.db.models import Q
from django.utils.translation import gettext_lazy as _
from rest_framework import serializers

from account import models, tasks
from utils import exceptions as utils_exceptions
from utils.methods import username_validator


class PasswordResetSerializer(serializers.ModelSerializer):
    """Serializer from model PasswordReset"""
    username_or_email = serializers.CharField(required=False,
                                              write_only=True,)

    class Meta:
        """Meta class"""
        model = models.ResetPasswordToken
        fields = (
            'username_or_email',
        )

    def validate(self, attrs):
        """Override validate method"""
        user = self.context.get('request').user

        if user.is_anonymous:
            username_or_email = attrs.get('username_or_email')
            if not username_or_email:
                raise serializers.ValidationError(_('Username or Email not in request body.'))
            # Check user in DB
            username_or_email = (username_or_email.lower()
                                 if username_validator(username_or_email) is False
                                 else username_or_email)
            user_qs = models.User.objects.filter(Q(email=username_or_email) |
                                                 Q(username=username_or_email))
            if user_qs.exists():
                attrs['user'] = user_qs.first()
        else:
            attrs['user'] = user
        return attrs

    def create(self, validated_data, *args, **kwargs):
        """Override create method"""
        user = validated_data.pop('user')
        ip_address = self.context.get('request').META.get('REMOTE_ADDR')

        obj = models.ResetPasswordToken.objects.create(
            user=user,
            ip_address=ip_address,
            source=models.ResetPasswordToken.WEB)
        if settings.USE_CELERY:
            tasks.send_reset_password_email.delay(obj.id)
        else:
            tasks.send_reset_password_email(obj.id)
        return obj


class PasswordResetConfirmSerializer(serializers.ModelSerializer):
    """Serializer for model User"""

    password = serializers.CharField(write_only=True)

    class Meta:
        """Meta class"""
        model = models.ResetPasswordToken
        fields = ('password', )

    def validate(self, attrs):
        """Override validate method"""
        user = self.instance.user
        password = attrs.get('password')
        try:
            # Compare new password with the old ones
            if user.check_password(raw_password=password):
                raise utils_exceptions.PasswordsAreEqual()
            # Validate password
            password_validators.validate_password(password=password)
        except serializers.ValidationError as e:
            raise serializers.ValidationError(str(e))
        else:
            return attrs

    def update(self, instance, validated_data):
        """Override update method"""
        # Update user password from instance
        instance.user.set_password(validated_data.get('password'))
        instance.user.save()

        # Overdue instance
        instance.overdue()
        return instance