Changeset 15609 for main/waeup.kofa/trunk/src/waeup/kofa/students/browser.py

Timestamp:

26 Sep 2019, 11:38:36 (5 years ago)

Author:

Henrik Bettermann

Message:

Finalize parents access.

File:

• main/waeup.kofa/trunk/src/waeup/kofa/students/browser.py (modified) (4 diffs)

main/waeup.kofa/trunk/src/waeup/kofa/students/browser.py

@@ -50 +50 @@
     academic_sessions_vocab, IDataCenter, DOCLINK)
 from waeup.kofa.interfaces import MessageFactory as _
-from waeup.kofa.mandates.mandate import PasswordMandate
+from waeup.kofa.mandates.mandate import PasswordMandate, ParentsPasswordMandate
 from waeup.kofa.university.interfaces import (
     IDepartment, ICertificate, ICourse)
@@ -392 +392 @@
     grok.template('loginasstep1')
     pnav = 4
+
+    def update(self):
+        super(LoginAsStudentStep1, self).update()
+        kofa_utils = getUtility(IKofaUtils)
+        self.temp_password_minutes = kofa_utils.TEMP_PASSWORD_MINUTES
+        return
 
     def label(self):
@@ -2555 +2561 @@
     grok.require('waeup.handleStudent')
     form_fields = grok.AutoFields(IStudentBase).select(
-        'email', 'phone')
+        'email', 'phone', 'parents_email')
     label = _('Edit base data')
     pnav = 4
@@ -3216 +3222 @@
         return
 
+class ParentsUser:
+    pass
+
+class RequestParentsPasswordPage(StudentRequestPasswordPage):
+    """Captcha'd request password page for parents.
+    """
+    grok.name('requestppw')
+    grok.template('requestppw')
+    label = _('Request password for parents access')
+
+    def update(self):
+        super(RequestParentsPasswordPage, self).update()
+        kofa_utils = getUtility(IKofaUtils)
+        self.temp_password_minutes = kofa_utils.TEMP_PASSWORD_MINUTES
+        return
+
+    @action(_('Send temporary login credentials to email address'), style='primary')
+    def get_credentials(self, **data):
+        if not self.captcha_result.is_valid:
+            # Captcha will display error messages automatically.
+            # No need to flash something.
+            return
+        number = data.get('number','')
+        lastname = data.get('lastname','')
+        email = data['email']
+        cat = getUtility(ICatalog, name='students_catalog')
+        results = list(
+            cat.searchResults(reg_number=(number, number)))
+        if not results:
+            results = list(
+                cat.searchResults(matric_number=(number, number)))
+        if results:
+            student = results[0]
+            if getattr(student,'lastname',None) is None:
+                self.flash(_('An error occurred.'), type="danger")
+                return
+            elif student.lastname.lower() != lastname.lower():
+                # Don't tell the truth here. Anonymous must not
+                # know that a record was found and only the lastname
+                # verification failed.
+                self.flash(_('No student record found.'), type="warning")
+                return
+            elif email != student.parents_email:
+                self.flash(_('Wrong email address.'), type="warning")
+                return
+        else:
+            self._redirect_no_student()
+            return
+        kofa_utils = getUtility(IKofaUtils)
+        password = kofa_utils.genPassword()
+        mandate = ParentsPasswordMandate()
+        mandate.params['password'] = password
+        mandate.params['student'] = student
+        site = grok.getSite()
+        site['mandates'].addMandate(mandate)
+        # Send email with credentials
+        args = {'mandate_id':mandate.mandate_id}
+        mandate_url = self.url(site) + '/mandate?%s' % urlencode(args)
+        url_info = u'Confirmation link: %s' % mandate_url
+        msg = _('You have successfully requested a parents password for the')
+        # Create a fake user
+        user = ParentsUser()
+        user.name = student.student_id
+        user.title = "Parents of %s" % student.display_fullname
+        user.email = student.parents_email
+        if kofa_utils.sendCredentials(user, password, url_info, msg):
+            email_sent = user.email
+        else:
+            email_sent = None
+        self._redirect(email=email_sent, password=password,
+            student_id=student.student_id)
+        ob_class = self.__implemented__.__name__.replace('waeup.kofa.','')
+        self.context.logger.info(
+            '%s - %s (%s) - %s' % (ob_class, number, student.student_id, email_sent))
+        return
+
 class StudentRequestPasswordEmailSent(KofaPage):
     """Landing page after successful password request.