Ticket #6083: auth-uses-newforms-2.diff

django/contrib/comments/views/comments.py

@@ -7 +7 @@
-from django.template import RequestContext
-from django.contrib.comments.models import Comment, FreeComment, RATINGS_REQUIRED, RATINGS_OPTIONAL, IS_PUBLIC
-from django.contrib.contenttypes.models import ContentType
-from django.contrib.auth.forms import AuthenticationForm
-from django.http import HttpResponseRedirect
-from django.utils.text import normalize_newlines
-from django.conf import settings
@@ -17 +16 @@
-
-COMMENTS_PER_PAGE = 20
-
+
+class AuthenticationForm(oldforms.Manipulator):
+    """
+    Oldforms-based Base class for authenticating users, extended by contrib.comments
+    """
+    def __init__(self, request=None):
+        """
+        If request is passed in, the manipulator will validate that cookies are
+        enabled. Note that the request (a HttpRequest object) must have set a
+        cookie with the key TEST_COOKIE_NAME and value TEST_COOKIE_VALUE before
+        running this validator.
+        """
+        self.request = request
+        self.fields = [
+            oldforms.TextField(field_name="username", length=15, max_length=30, is_required=True,
+                validator_list=[self.isValidUser, self.hasCookiesEnabled]),
+            oldforms.PasswordField(field_name="password", length=15, max_length=30, is_required=True),
+        ]
+        self.user_cache = None
+
+    def hasCookiesEnabled(self, field_data, all_data):
+        if self.request and not self.request.session.test_cookie_worked():
+            raise validators.ValidationError, _("Your Web browser doesn't appear to have cookies enabled. Cookies are required for logging in.")
+
+    def isValidUser(self, field_data, all_data):
+        username = field_data
+        password = all_data.get('password', None)
+        self.user_cache = authenticate(username=username, password=password)
+        if self.user_cache is None:
+            raise validators.ValidationError, _("Please enter a correct username and password. Note that both fields are case-sensitive.")
+        elif not self.user_cache.is_active:
+            raise validators.ValidationError, _("This account is inactive.")
+
+    def get_user_id(self):
+        if self.user_cache:
+            return self.user_cache.id
+        return None
+
+    def get_user(self):
+        return self.user_cache
+
-class PublicCommentManipulator(AuthenticationForm):
-    "Manipulator that handles public registered comments"
-    def __init__(self, user, ratings_required, ratings_range, num_rating_choices):

django/contrib/admin/views/auth.py

@@ -11 +11 @@
-def user_add_stage(request):
-    if not request.user.has_perm('auth.change_user'):
-        raise PermissionDenied
-    manipulator = UserCreationForm()
-    if request.method == 'POST':
-
-
-
-
+
+
+
-            msg = _('The %(name)s "%(obj)s" was added successfully.') % {'name': 'user', 'obj': new_user}
-            if "_addanother" in request.POST:
-                request.user.message_set.create(message=msg)
@@ -25 +23 @@
-                request.user.message_set.create(message=msg + ' ' + _("You may edit it again below."))
-                return HttpResponseRedirect('../%s/' % new_user.id)
-    else:
-
-
+
-    return render_to_response('admin/auth/user/add_form.html', {
-        'title': _('Add user'),
-        'form': form,
@@ -49 +46 @@
-    if not request.user.has_perm('auth.change_user'):
-        raise PermissionDenied
-    user = get_object_or_404(User, pk=id)
-    manipulator = AdminPasswordChangeForm(user)
-    if request.method == 'POST':
-
-
-
-
+
+
+
-            msg = _('Password changed successfully.')
-            request.user.message_set.create(message=msg)
-            return HttpResponseRedirect('..')
-    else:
-
-
+
-    return render_to_response('admin/auth/user/change_password.html', {
-        'title': _('Change password: %s') % escape(user.username),
-        'form': form,

django/contrib/auth/views.py

@@ -1 +1 @@
-from django.contrib.auth.forms import AuthenticationForm
-from django.contrib.auth.forms import PasswordResetForm, PasswordChangeForm
-from django import oldforms
-from django.shortcuts import render_to_response
-from django.template import RequestContext
-from django.contrib.sites.models import Site, RequestSite
@@ -11 +10 @@
-
-def login(request, template_name='registration/login.html', redirect_field_name=REDIRECT_FIELD_NAME):
-    "Displays the login form and handles the login action."
-    manipulator = AuthenticationForm(request)
-    redirect_to = request.REQUEST.get(redirect_field_name, '')
-POST
-errors = manipulator.get_validation_errors
-not errors
+method == 'POST'
+form = AuthenticationForm
+form.is_valid()
-            # Light security check -- make sure redirect_to isn't garbage.
-            if not redirect_to or '//' in redirect_to or ' ' in redirect_to:
-                from django.conf import settings
-                redirect_to = settings.LOGIN_REDIRECT_URL
-            from django.contrib.auth import login
-
-
+
+
+
-            return HttpResponseRedirect(redirect_to)
-    else:
-errors = {}
+form = AuthenticationForm(request=request)
-    request.session.set_test_cookie()
-
-    if Site._meta.installed:
@@ -34 +33 @@
-        current_site = RequestSite(request)
-
-    return render_to_response(template_name, {
-oldforms.FormWrapper(manipulator, request.POST, errors)
+form
-        redirect_field_name: redirect_to,
-        'site_name': current_site.name,
-    }, context_instance=RequestContext(request))
@@ -65 +64 @@
-
-def password_reset(request, is_admin_site=False, template_name='registration/password_reset_form.html',
-        email_template_name='registration/password_reset_email.html'):
-    new_data, errors = {}, {}
-    form = PasswordResetForm()
-    if request.POST:
-
-
-
+
+
-            if is_admin_site:
-                form.save(domain_override=request.META['HTTP_HOST'])
-            else:
-                form.save(email_template_name=email_template_name)
-            return HttpResponseRedirect('%sdone/' % request.path)
-
+
+
+
-        context_instance=RequestContext(request))
-
-def password_reset_done(request, template_name='registration/password_reset_done.html'):
@@ -84 +82 @@
-
-def password_change(request, template_name='registration/password_change_form.html'):
-    new_data, errors = {}, {}
-
-
-
-
-
-
+
+
+
+
-            return HttpResponseRedirect('%sdone/' % request.path)
-
+
+
+
-        context_instance=RequestContext(request))
-password_change = login_required(password_change)
-

django/contrib/auth/forms.py

@@ -2 +2 @@
-from django.contrib.auth import authenticate
-from django.contrib.sites.models import Site
-from django.template import Context, loader
-
-
+
-from django.utils.translation import ugettext as _
+import re
-
-oldforms.Manipulator
+forms.Form
-    "A form that creates a user, with no privileges, from the given username and password."
-
-
-
-
-
-
-
-
+
+
+
-
-
+
+
+
+
+
+
+
+
+
+
+
+
+
-        try:
-User.objects.get(username=field_data
+user = User.objects.get(username__exact=self.cleaned_data['username']
-        except User.DoesNotExist:
-return
-validator
-
-, new_data
+    return self.cleaned_data['username']
+form
+
+
-        "Creates the user."
-new_data['username'], '', new
+self.cleaned_data['username'], '', self.cleaned
-
-oldforms.Manipulator
+forms.Form
-    """
-    Base class for authenticating users. Extend this to get a form that accepts
-    username/password logins.
-    """
-
+
+
+
+
-        """
-        If request is passed in, the manipulator will validate that cookies are
-        enabled. Note that the request (a HttpRequest object) must have set a
@@ -41 +51 @@
-        running this validator.
-        """
-        self.request = request
-        self.fields = [
-            oldforms.TextField(field_name="username", length=15, max_length=30, is_required=True,
-                validator_list=[self.isValidUser, self.hasCookiesEnabled]),
-            oldforms.PasswordField(field_name="password", length=15, max_length=30, is_required=True),
-        ]
-        self.user_cache = None
+        super(AuthenticationForm, self).__init__(request_post)
-
-
+
+
+
+
+
-        if self.request and not self.request.session.test_cookie_worked():
-            raise validators.ValidationError, _("Your Web browser doesn't appear to have cookies enabled. Cookies are required for logging in.")
-
-
-
-
+
+
-        self.user_cache = authenticate(username=username, password=password)
-        if self.user_cache is None:
-validator
+form
-        elif not self.user_cache.is_active:
-
+
+
-
-    def get_user_id(self):
-        if self.user_cache:
@@ -69 +78 @@
-    def get_user(self):
-        return self.user_cache
-
-oldforms.Manipulator
+forms.Form
-    "A form that lets a user request a password reset"
-
-
-
-
-
-
-
+
+
+
-        "Validates that a user exists with the given e-mail address"
-new_data
+self.cleaned_data['email']
-        if len(self.users_cache) == 0:
-
+
+
-
-    def save(self, domain_override=None, email_template_name='registration/password_reset_email.html'):
-        "Calculates a new password randomly and sends it to the user"
@@ -106 +112 @@
-                }
-            send_mail(_('Password reset on %s') % site_name, t.render(Context(c)), None, [user.email])
-
-
-
-
+
+
+
+
+
+
+
-        self.user = user
-elf.fields = (
-    oldforms.PasswordField(field_name="old_password", length=30, max_length=30, is_required=True,
-            validator_list=[self.isValidOldPassword]),
-    oldforms.PasswordField(field_name="new_password1", length=30, max_length=30, is_required=True,
-        validator_list=[validators.AlwaysMatchesOtherField('new_password2', _("The two 'new password' fields didn't match."))]),
-oldforms.PasswordField(field_name="new_password2", length=30, max_length=30, is_required=True),
-)
+uper(PasswordChangeForm,self).__init__(request_post)
+
+def clean_new_password2(self):
+if self._errors: return
+if not self.cleaned_data['new_password1'] == self.cleaned_data['new_password2']:    
+raise forms.ValidationError, _("The two 'new password' fields didn't match.")
+return self.cleaned_data['new_password2']
-
-isValidOldPassword(self, new_data, all_data
+clean_old_password(self
-        "Validates that the old_password field is correct."
-
-
+
+
+
-
-, new_data
+
-        "Saves the new password."
-new
+self.cleaned
-        self.user.save()
-
-
-
-
+
+
+
+
+
+
-        self.user = user
-
-
-
-
-
+
-
-
+
+
+
+
+
+
+
-        "Saves the new password."
-new_data['
+self.cleaned_data['new_
-        self.user.save()

AUTHORS

@@ -329 +329 @@
-    tstromberg@google.com
-    Makoto Tsuyuki <mtsuyuki@gmail.com>
-    tt@gurgle.no
+    Greg Turner <http://gregturner.org>
-    Amit Upadhyay
-    Geert Vanderkelen
-    I.S. van Oostveen <v.oostveen@idca.nl>