linuxrouter/docker/routlin-dash/app/pages/accountverifyemail/action.py

from pathlib import Path
from flask import Blueprint, request, session, redirect, flash
import time, secrets
import auth
import config_utils

_PAGE = Path(__file__).parent.name

bp = Blueprint(_PAGE, __name__)


@bp.route('/action/accountverifyemail/email_verify', methods=['POST'])
@auth.require_level('nothing')
def email_verify():
    if session.get('access_level', 'nothing') != 'nothing':
        return redirect('/overview')

    from pages.accountcreate.action import CODE_TTL_SECS

    token = session.sid
    try:
        con    = config_utils.open_accounts_db()
        client = con.execute(
            'SELECT * FROM clients WHERE cookie_unique_token=?', (token,)
        ).fetchone()
        con.close()
    except Exception:
        client = None

    if not client or not client['email']:
        flash('No pending account creation found. Please start over.', 'error')
        return redirect('/accountcreate')

    if int(time.time()) > client['code_sent_ts'] + CODE_TTL_SECS:
        try:
            con = config_utils.open_accounts_db()
            con.execute(
                '''UPDATE clients SET email=NULL, hashed_password=NULL,
                   tz_offset_seconds=NULL, verification_code=NULL, code_sent_ts=NULL
                   WHERE cookie_unique_token=?''',
                (token,)
            )
            con.commit()
            con.close()
        except Exception:
            pass
        flash('Verification code has expired. Please start over.', 'error')
        return redirect('/accountcreate')

    submitted = request.form.get('code', '').strip()
    if submitted != client['verification_code']:
        flash('Incorrect verification code.', 'error')
        return redirect(f'/{_PAGE}')

    pending_email = client['email']
    account = config_utils.get_account_by_email(pending_email)
    if account is None:
        flash('Account no longer exists. Contact your manager.', 'error')
        return redirect('/accountcreate')

    if account.get('hashed_password'):
        flash('This account is already set up. Please log in.', 'error')
        return redirect('/accountlogin')

    now = int(time.time())
    try:
        con = config_utils.open_accounts_db()
        con.execute(
            'UPDATE accounts SET hashed_password=?, created_ts=?, created_by=? WHERE account_id=?',
            (client['hashed_password'], now, 'self', account['account_id'])
        )
        con.execute(
            '''UPDATE clients SET email=NULL, hashed_password=NULL,
               tz_offset_seconds=NULL, verification_code=NULL, code_sent_ts=NULL
               WHERE cookie_unique_token=?''',
            (token,)
        )
        con.commit()
        con.close()
    except Exception as exc:
        flash(f'Could not complete account setup: {exc}', 'error')
        return redirect(f'/{_PAGE}')

    session['account_id']                = account['account_id']
    session['tz_offset_seconds']         = int(client['tz_offset_seconds'])
    session['apply_changes_immediately'] = False
    session.permanent                    = True

    return redirect('/overview')


@bp.route('/action/accountverifyemail/email_resend')
@auth.require_level('nothing')
def email_resend():
    if session.get('access_level', 'nothing') != 'nothing':
        return redirect('/overview')

    from pages.accountcreate.action import _send_verification_email

    token = session.sid
    try:
        con    = config_utils.open_accounts_db()
        client = con.execute(
            'SELECT * FROM clients WHERE cookie_unique_token=?', (token,)
        ).fetchone()
        con.close()
    except Exception:
        client = None

    if not client or not client['email']:
        flash('No pending account creation found. Please start over.', 'error')
        return redirect('/accountcreate')

    code         = f'{secrets.randbelow(1000000):06d}'
    code_sent_ts = int(time.time())

    try:
        _send_verification_email(client['email'], code)
    except Exception as exc:
        flash(f'Could not resend verification email: {exc}', 'error')
        return redirect(f'/{_PAGE}')

    try:
        con = config_utils.open_accounts_db()
        con.execute(
            'UPDATE clients SET verification_code=?, code_sent_ts=? WHERE cookie_unique_token=?',
            (code, code_sent_ts, token)
        )
        con.commit()
        con.close()
    except Exception:
        pass

    flash('A new verification code has been sent.', 'success')
    return redirect(f'/{_PAGE}')
Development 2026-05-27 22:04:04 -04:00			`from pathlib import Path`
Flask app progress 2026-05-17 03:26:01 -04:00			`from flask import Blueprint, request, session, redirect, flash`
Development 2026-06-10 14:23:47 -04:00			`import time, secrets`
Development 2026-06-07 00:21:08 -04:00			`import auth`
			`import config_utils`
Flask app progress 2026-05-17 03:26:01 -04:00
Development 2026-05-27 22:04:04 -04:00			`_PAGE = Path(__file__).parent.name`

			`bp = Blueprint(_PAGE, __name__)`
Flask app progress 2026-05-17 03:26:01 -04:00

Development 2026-05-27 22:04:04 -04:00			`@bp.route('/action/accountverifyemail/email_verify', methods=['POST'])`
Development 2026-06-07 00:21:08 -04:00			`@auth.require_level('nothing')`
Development 2026-05-27 22:04:04 -04:00			`def email_verify():`
Flask app progress 2026-05-17 03:26:01 -04:00			`if session.get('access_level', 'nothing') != 'nothing':`
Development 2026-05-27 22:04:04 -04:00			`return redirect('/overview')`
Flask app progress 2026-05-17 03:26:01 -04:00
Development 2026-06-10 22:57:55 -04:00			`from pages.accountcreate.action import CODE_TTL_SECS`
Flask app progress 2026-05-17 03:26:01 -04:00
Development 2026-06-10 22:57:55 -04:00			`token = session.sid`
Development 2026-06-10 14:23:47 -04:00			`try:`
Development 2026-06-10 22:57:55 -04:00			`con = config_utils.open_accounts_db()`
			`client = con.execute(`
			`'SELECT * FROM clients WHERE cookie_unique_token=?', (token,)`
Development 2026-06-10 14:23:47 -04:00			`).fetchone()`
			`con.close()`
			`except Exception:`
Development 2026-06-10 22:57:55 -04:00			`client = None`
Development 2026-06-10 14:23:47 -04:00
Development 2026-06-10 22:57:55 -04:00			`if not client or not client['email']:`
Flask app progress 2026-05-17 03:26:01 -04:00			`flash('No pending account creation found. Please start over.', 'error')`
Development 2026-05-27 22:04:04 -04:00			`return redirect('/accountcreate')`
Flask app progress 2026-05-17 03:26:01 -04:00
Development 2026-06-10 22:57:55 -04:00			`if int(time.time()) > client['code_sent_ts'] + CODE_TTL_SECS:`
Development 2026-06-10 14:23:47 -04:00			`try:`
			`con = config_utils.open_accounts_db()`
Development 2026-06-10 22:57:55 -04:00			`con.execute(`
			`'''UPDATE clients SET email=NULL, hashed_password=NULL,`
			`tz_offset_seconds=NULL, verification_code=NULL, code_sent_ts=NULL`
			`WHERE cookie_unique_token=?''',`
			`(token,)`
			`)`
Development 2026-06-10 14:23:47 -04:00			`con.commit()`
			`con.close()`
			`except Exception:`
			`pass`
Flask app progress 2026-05-17 03:26:01 -04:00			`flash('Verification code has expired. Please start over.', 'error')`
Development 2026-05-27 22:04:04 -04:00			`return redirect('/accountcreate')`
Flask app progress 2026-05-17 03:26:01 -04:00
			`submitted = request.form.get('code', '').strip()`
Development 2026-06-10 22:57:55 -04:00			`if submitted != client['verification_code']:`
Flask app progress 2026-05-17 03:26:01 -04:00			`flash('Incorrect verification code.', 'error')`
Development 2026-05-27 22:04:04 -04:00			`return redirect(f'/{_PAGE}')`
Flask app progress 2026-05-17 03:26:01 -04:00
Development 2026-06-10 22:57:55 -04:00			`pending_email = client['email']`
Development 2026-06-10 14:23:47 -04:00			`account = config_utils.get_account_by_email(pending_email)`
Flask app progress 2026-05-17 03:26:01 -04:00			`if account is None:`
			`flash('Account no longer exists. Contact your manager.', 'error')`
Development 2026-05-27 22:04:04 -04:00			`return redirect('/accountcreate')`
Flask app progress 2026-05-17 03:26:01 -04:00
			`if account.get('hashed_password'):`
			`flash('This account is already set up. Please log in.', 'error')`
Development 2026-05-27 22:04:04 -04:00			`return redirect('/accountlogin')`
Flask app progress 2026-05-17 03:26:01 -04:00
Development 2026-06-10 14:23:47 -04:00			`now = int(time.time())`
			`try:`
			`con = config_utils.open_accounts_db()`
			`con.execute(`
			`'UPDATE accounts SET hashed_password=?, created_ts=?, created_by=? WHERE account_id=?',`
Development 2026-06-10 22:57:55 -04:00			`(client['hashed_password'], now, 'self', account['account_id'])`
			`)`
			`con.execute(`
			`'''UPDATE clients SET email=NULL, hashed_password=NULL,`
			`tz_offset_seconds=NULL, verification_code=NULL, code_sent_ts=NULL`
			`WHERE cookie_unique_token=?''',`
			`(token,)`
Development 2026-06-10 14:23:47 -04:00			`)`
			`con.commit()`
			`con.close()`
			`except Exception as exc:`
			`flash(f'Could not complete account setup: {exc}', 'error')`
			`return redirect(f'/{_PAGE}')`
Flask app progress 2026-05-17 03:26:01 -04:00
Development 2026-06-10 14:23:47 -04:00			`session['account_id'] = account['account_id']`
Development 2026-06-10 22:57:55 -04:00			`session['tz_offset_seconds'] = int(client['tz_offset_seconds'])`
Development 2026-06-10 14:23:47 -04:00			`session['apply_changes_immediately'] = False`
			`session.permanent = True`
Flask app progress 2026-05-17 03:26:01 -04:00
Development 2026-05-27 22:04:04 -04:00			`return redirect('/overview')`
Flask app progress 2026-05-17 03:26:01 -04:00

Development 2026-05-27 22:04:04 -04:00			`@bp.route('/action/accountverifyemail/email_resend')`
Development 2026-06-07 00:21:08 -04:00			`@auth.require_level('nothing')`
Development 2026-05-27 22:04:04 -04:00			`def email_resend():`
Flask app progress 2026-05-17 03:26:01 -04:00			`if session.get('access_level', 'nothing') != 'nothing':`
Development 2026-05-27 22:04:04 -04:00			`return redirect('/overview')`
Flask app progress 2026-05-17 03:26:01 -04:00
Development 2026-06-10 22:57:55 -04:00			`from pages.accountcreate.action import _send_verification_email`

			`token = session.sid`
			`try:`
			`con = config_utils.open_accounts_db()`
			`client = con.execute(`
			`'SELECT * FROM clients WHERE cookie_unique_token=?', (token,)`
			`).fetchone()`
			`con.close()`
			`except Exception:`
			`client = None`
Flask app progress 2026-05-17 03:26:01 -04:00
Development 2026-06-10 22:57:55 -04:00			`if not client or not client['email']:`
Flask app progress 2026-05-17 03:26:01 -04:00			`flash('No pending account creation found. Please start over.', 'error')`
Development 2026-05-27 22:04:04 -04:00			`return redirect('/accountcreate')`
Flask app progress 2026-05-17 03:26:01 -04:00
Development 2026-06-10 22:57:55 -04:00			`code = f'{secrets.randbelow(1000000):06d}'`
			`code_sent_ts = int(time.time())`
Flask app progress 2026-05-17 03:26:01 -04:00
			`try:`
Development 2026-06-10 22:57:55 -04:00			`_send_verification_email(client['email'], code)`
Flask app progress 2026-05-17 03:26:01 -04:00			`except Exception as exc:`
			`flash(f'Could not resend verification email: {exc}', 'error')`
Development 2026-05-27 22:04:04 -04:00			`return redirect(f'/{_PAGE}')`
Flask app progress 2026-05-17 03:26:01 -04:00
Development 2026-06-10 14:23:47 -04:00			`try:`
			`con = config_utils.open_accounts_db()`
			`con.execute(`
Development 2026-06-10 22:57:55 -04:00			`'UPDATE clients SET verification_code=?, code_sent_ts=? WHERE cookie_unique_token=?',`
			`(code, code_sent_ts, token)`
Development 2026-06-10 14:23:47 -04:00			`)`
			`con.commit()`
			`con.close()`
			`except Exception:`
			`pass`
Flask app progress 2026-05-17 03:26:01 -04:00
			`flash('A new verification code has been sent.', 'success')`
Development 2026-05-27 22:04:04 -04:00			`return redirect(f'/{_PAGE}')`