o 6i?@sxddlZddlmZddlmZmZmZddlmZm Z ddl m Z ddl m Z ddlmZddlmZdd lmZdd lmZdd lmZdd lmZdd lmZddlmZmZeZ ddZ!Gdddej"Z#Gdddej$Z%Gdddej&Z'Gdddej(Z)Gdddej(Z*Gdddej+Z,Gdddej+Z-Gdd d ej+Z.Gd!d"d"e.Z/Gd#d$d$ej+Z0dS)%N)forms) authenticateget_user_modelpassword_validation)UNUSABLE_PASSWORD_PREFIXidentify_hasher)User)default_token_generator)get_current_site)ValidationError)EmailMultiAlternatives)loader) force_bytes)urlsafe_base64_encode)capfirst)gettext gettext_lazycCs td|td|kS)z Perform case-insensitive comparison of two identifiers, using the recommended algorithm from Unicode Technical Report 36, section 2.11.2(B)(2). NFKC) unicodedata normalizecasefold)s1s2r^/var/www/hoanhtaovolam_webdjango/env/lib/python3.10/site-packages/django/contrib/auth/forms.py_unicode_ci_compares rcs$eZdZdZdZfddZZS)ReadOnlyPasswordHashWidgetz)auth/widgets/read_only_password_hash.htmlTc st|||}g}|r|tr|dtdin/zt|}Wnty3|dtdiYnw|| D]\}}|t||dq;||d<|S)NlabelzNo password set.z5Invalid password format or unknown hashing algorithm.)rvaluesummary) super get_context startswithrappendrr ValueError safe_summaryitems) selfnamerattrscontextrhasherkeyvalue_ __class__rrr!%s  z&ReadOnlyPasswordHashWidget.get_context)__name__ __module__ __qualname__ template_name read_onlyr! __classcell__rrr.rr!srcs eZdZeZfddZZS)ReadOnlyPasswordHashFieldcs.|dd|ddtj|i|dS)NrequiredFdisabledT) setdefaultr __init__r'argskwargsr.rrr:9s  z"ReadOnlyPasswordHashField.__init__)r0r1r2rwidgetr:r5rrr.rr66sr6cs(eZdZfddZfddZZS) UsernameFieldcs4t|}|jdurt||jkr|Std|S)Nr)r to_python max_lengthlenrr)r'rr.rrr@@s  zUsernameField.to_pythoncsit|dddS)Nnoneusername)autocapitalize autocomplete)r widget_attrs)r'r>r.rrrGKs  zUsernameField.widget_attrs)r0r1r2r@rGr5rrr.rr??s  r?cseZdZdZdediZejeddejddide d Z ejed ejddidded d Z Gd ddZ fddZddZfddZdfdd ZZS)UserCreationFormzc A form that creates a user, with no privileges, from the given username and password. password_mismatch'The two password fields didn’t match.PasswordFrF new-passwordr))rstripr> help_textzPassword confirmation4Enter the same password as before, for verification.rr>rNrOc@eZdZeZdZdeiZdS)zUserCreationForm.Meta)rDrDNr0r1r2rmodelfieldsr? field_classesrrrrMetah rWcsBtj|i||jjj|jvrd|j|jjjjjd<dSdS)NT autofocus)r r:_metarTUSERNAME_FIELDrUr>r)r;r.rrr:mszUserCreationForm.__init__cCs>|jd}|jd}|r|r||krt|jddd|SN password1 password2rIcode) cleaned_datagetr error_messagesr'r]r^rrrclean_password2rs  z UserCreationForm.clean_password2c sft|jd}|r1z t||jWdSty0}z |d|WYd}~dSd}~wwdS)Nr^) r _post_cleanrarbrvalidate_passwordinstancer add_error)r'passworderrorr.rrrf|s  zUserCreationForm._post_cleanTcs.tjdd}||jd|r||S)NF)commitr])r save set_passwordra)r'rluserr.rrrms zUserCreationForm.saveT)r0r1r2__doc___rcr CharField PasswordInputr"password_validators_help_text_htmlr]r^rWr:rerfrmr5rrr.rrHSs*   rHcs>eZdZeededdZGdddZfddZZS)UserChangeFormrKuRaw passwords are not stored, so there is no way to see this user’s password, but you can change the password using this form.)rrOc@rR)zUserChangeForm.Meta__all__rDNrSrrrrrWrXrWcsVtj|i||jd}|r|jd|_|jd}|r)|jd|_dSdS)Nrjz ../password/user_permissions content_type)r r:rUrbrOformatquerysetselect_related)r'r<r=rjrxr.rrr:s  zUserChangeForm.__init__) r0r1r2r6rrrjrWr:r5rrr.rrvs rvcseZdZdZeejddiddZeje ddej dd idd Z e d e d d Z dfdd Z ddZddZddZddZZS)AuthenticationFormzs Base class for authenticating users. Extend this to get a form that accepts username/password logins. rYTrM)r>rKFrFcurrent-passwordrrNr>z^Please enter a correct %(username)s and password. Note that both fields may be case-sensitive.zThis account is inactive.) invalid_logininactiveNcs||_d|_tj|i|tjtj|_|jj pd}||j d_ ||j dj j d<|j dj dur@t|jj|j d_ dSdS)z The 'request' parameter is set for custom auth use by subclasses. The form data comes in via the standard 'data' kwarg. NrD maxlength)request user_cacher r: UserModelrZ get_fieldr[username_fieldrArUr>r)rr verbose_name)r'rr<r=username_max_lengthr.rrr:s  zAuthenticationForm.__init__cCsZ|jd}|jd}|dur*|r*t|j||d|_|jdur$|||j|jS)NrDrj)rDrj)rarbrrrget_invalid_login_errorconfirm_login_allowed)r'rDrjrrrcleans     zAuthenticationForm.cleancCs|js t|jddddS)a Controls whether the given User may log in. This is a policy setting, independent of end-user authentication. This default behavior is to allow login by active users, and reject login by inactive users. If the given user cannot log in, this method should raise a ``ValidationError``. If the given user may log in, this method should return None. rr_N) is_activer rc)r'rorrrrs  z(AuthenticationForm.confirm_login_allowedcCs|jSN)rr'rrrget_userszAuthenticationForm.get_usercCst|jddd|jjidS)NrrD)r`params)r rcrrrrrrrs  z*AuthenticationForm.get_invalid_login_errorr)r0r1r2rqr?r TextInputrDrsrrrtrjrcr:rrrrr5rrr.rr}s$ r}c @s\eZdZejeddejddiddZ ddd Zd d Z dd d de ddddf ddZ dS)PasswordResetFormEmailrrFemailrM)rrAr>Nc Csbt||}d|}t||}t||||g} |dur+t||} | | d| dS)zO Send a django.core.mail.EmailMultiAlternatives to `to_email`. Nz text/html)r render_to_stringjoin splitlinesr attach_alternativesend) r'subject_template_nameemail_template_namer* from_emailto_emailhtml_email_template_namesubjectbody email_message html_emailrrr send_mails     zPasswordResetForm.send_mailcs:ttjjdidddi}fdd|DS)aGiven an email, return matching user(s) who should receive a reset. This allows subclasses to more easily customize the default policies that prevent inactive users and users with unusable passwords from resetting their password. z %s__iexactrTc3s,|]}|rtt|r|VqdSr)has_usable_passwordrgetattr).0uremail_field_namerr s z.PasswordResetForm.get_users..Nr)rget_email_field_name_default_managerfilter)r'r active_usersrrr get_userss  zPasswordResetForm.get_usersz'registration/password_reset_subject.txtz®istration/password_reset_email.htmlFc  Cs|jd} |st|} | j} | j} n|} } t}|| D],}t||}|| | tt |j || ||r8dndd| p>i}|j ||||||dqdS)zf Generate a one-use only link for resetting password and send it to the user. rhttpshttp)rdomain site_nameuidrotokenprotocol)rN) rar r(rrrrrrrpk make_tokenr)r'domain_overriderr use_httpstoken_generatorrrrextra_email_contextr current_siterrrro user_emailr*rrrrm s0     zPasswordResetForm.saver) r0r1r2r EmailFieldrr EmailInputrrrr rmrrrrrs  rcseZdZdZdediZejedejddidde d Z ejed dejddidd Z fd d Z ddZdddZZS)SetPasswordFormza A form that lets a user change set their password without entering the old password rIrJz New passwordrFrLrMFrQzNew password confirmationrc||_tj|i|dSrror r:r'ror<r=r.rrr:XzSetPasswordForm.__init__cCL|jd}|jd}|r|r||krt|jdddt||j|S)N new_password1 new_password2rIr_rarbr rcrrgrordrrrclean_new_password2\s  z#SetPasswordForm.clean_new_password2TcC*|jd}|j||r|j|jS)Nrrarornrmr'rlrjrrrrmhs   zSetPasswordForm.saverp)r0r1r2rqrrrcrrsrtrrurrr:rrmr5rrr.rrDs$  rc@sXeZdZdZiejdediZejeddej dddd d Z gd Z d d Z dS)PasswordChangeFormz[ A form that lets a user change their password by entering their old password. password_incorrectzAYour old password was entered incorrectly. Please enter it again.z Old passwordFr~TrFrYrMr) old_passwordrrcCs,|jd}|j|st|jddd|S)zB Validate that the old_password field is correct. rrr_)rarocheck_passwordr rc)r'rrrrclean_old_passwords  z%PasswordChangeForm.clean_old_passwordN) r0r1r2rqrrcrrrrsrtr field_orderrrrrrrps rcseZdZdZdediZdZejedej dddd d e d Z ejed ej d did d edd Z fddZddZdddZefddZZS)AdminPasswordChangeFormzN A form used to change the password of a user in the admin interface. rIrJr7rKrLTrrMFrQzPassword (again)rFrPcrrrrr.rrr:rz AdminPasswordChangeForm.__init__cCrr\rrdrrrres  z'AdminPasswordChangeForm.clean_password2cCr)zSave the new password.r]rrrrrrms   zAdminPasswordChangeForm.savecs*tj}|jD] }||vrgSqdgS)Nrj)r changed_datarU)r'datar(r.rrrs  z$AdminPasswordChangeForm.changed_datarp)r0r1r2rqrrrcrequired_css_classrrsrtrrur]r^r:rermpropertyrr5rrr.rrs,  r)1rdjangordjango.contrib.authrrrdjango.contrib.auth.hashersrrdjango.contrib.auth.modelsrdjango.contrib.auth.tokensr django.contrib.sites.shortcutsr django.core.exceptionsr django.core.mailr django.templater django.utils.encodingrdjango.utils.httprdjango.utils.textrdjango.utils.translationrrrrrrWidgetrFieldr6rsr? ModelFormrHrvFormr}rrrrrrrrs4            <NN,