Development

docker/routlin-dash/app/pages/preferences/action.py

@@ -0,0 +1,91 @@
+from flask import Blueprint, request, session, redirect, flash
+import json, bcrypt
+from auth import require_level
+from config_utils import ACCOUNTS_FILE
+import sanitize
+
+bp = Blueprint('preferences', __name__)
+
+
+
+def _load_accounts():
+    try:
+        with open(ACCOUNTS_FILE) as f:
+            return json.load(f)
+    except Exception:
+        return {'accounts': []}
+
+def _save_accounts(data):
+    with open(ACCOUNTS_FILE, 'w') as f:
+        json.dump(data, f, indent=2)
+
+
+@bp.route('/action/save_preferences', methods=['POST'])
+@require_level('viewer')
+def save_preferences():
+    tz = sanitize.timezone(request.form.get('timezone', '').strip())
+
+    if not tz:
+        flash('Timezone is required.', 'error')
+        return redirect('/view/view_preferences')
+
+    email    = session.get('email_address', '').lower()
+    data     = _load_accounts()
+    accounts = data.get('accounts', [])
+    account  = next((a for a in accounts if a.get('email_address', '').lower() == email), None)
+
+    if account is None:
+        flash('Account not found. Please log in again.', 'error')
+        return redirect('/view/view_login')
+
+    account['timezone'] = tz
+    _save_accounts(data)
+
+    session['timezone'] = tz
+
+    flash('Preferences saved.', 'success')
+    return redirect('/view/view_preferences')
+
+
+@bp.route('/action/change_password', methods=['POST'])
+@require_level('viewer')
+def change_password():
+    current_password = request.form.get('current_password', '')
+    new_password     = request.form.get('new_password', '')
+    confirm_password = request.form.get('confirm_password', '')
+
+    if not current_password or not new_password or not confirm_password:
+        flash('All fields are required.', 'error')
+        return redirect('/view/view_preferences')
+
+    if new_password != confirm_password:
+        flash('New passwords do not match.', 'error')
+        return redirect('/view/view_preferences')
+
+    if len(new_password) < 8:
+        flash('New password must be at least 8 characters.', 'error')
+        return redirect('/view/view_preferences')
+
+    email    = session.get('email_address', '').lower()
+    data     = _load_accounts()
+    accounts = data.get('accounts', [])
+    account  = next((a for a in accounts if a.get('email_address', '').lower() == email), None)
+
+    if account is None:
+        flash('Account not found. Please log in again.', 'error')
+        return redirect('/view/view_login')
+
+    stored_hash = account.get('hashed_password', '').encode('utf-8')
+    if not bcrypt.checkpw(current_password.encode('utf-8'), stored_hash):
+        flash('Current password is incorrect.', 'error')
+        return redirect('/view/view_preferences')
+
+    salt   = bcrypt.gensalt()
+    hashed = bcrypt.hashpw(new_password.encode('utf-8'), salt)
+
+    account['hashed_password'] = hashed.decode('utf-8')
+    account['salt']            = salt.decode('utf-8')
+    _save_accounts(data)
+
+    flash('Password changed successfully.', 'success')
+    return redirect('/view/view_preferences')

docker/routlin-dash/app/pages/preferences/content.json

@@ -0,0 +1,105 @@
+{
+  "id": "view_preferences",
+  "client_requirement": "client_is_viewer+",
+  "items": [
+    {
+      "type": "header_page_title",
+      "items": [
+        {
+          "type": "h1",
+          "text": "Preferences"
+        },
+        {
+          "type": "p",
+          "text": "Your personal account settings."
+        }
+      ]
+    },
+    {
+      "type": "card",
+      "label": "Account Details",
+      "items": [
+        {
+          "type": "form",
+          "action": "/action/save_preferences",
+          "method": "post",
+          "items": [
+            {
+              "type": "field",
+              "label": "Email Address",
+              "name": "email",
+              "input_type": "text",
+              "value": "%PREF_EMAIL%",
+              "hint": "Contact your manager to change your email address."
+            },
+            {
+              "type": "field",
+              "label": "Timezone",
+              "name": "timezone",
+              "input_type": "select",
+              "value": "%PREF_TIMEZONE%",
+              "options": "%TIMEZONE_OPTIONS%",
+              "hint": "All timestamps will be displayed in this timezone."
+            },
+            {
+              "type": "button_row",
+              "items": [
+                {
+                  "type": "button_primary",
+                  "action": "/action/save_preferences",
+                  "method": "post",
+                  "text": "Save Preferences"
+                }
+              ]
+            }
+          ]
+        }
+      ]
+    },
+    {
+      "type": "card",
+      "label": "Change Password",
+      "items": [
+        {
+          "type": "form",
+          "action": "/action/change_password",
+          "method": "post",
+          "items": [
+            {
+              "type": "field",
+              "label": "Current Password",
+              "name": "current_password",
+              "input_type": "password",
+              "placeholder": "Current password"
+            },
+            {
+              "type": "field",
+              "label": "New Password",
+              "name": "new_password",
+              "input_type": "password",
+              "placeholder": "New password"
+            },
+            {
+              "type": "field",
+              "label": "Confirm Password",
+              "name": "confirm_password",
+              "input_type": "password",
+              "placeholder": "Repeat new password"
+            },
+            {
+              "type": "button_row",
+              "items": [
+                {
+                  "type": "button_primary",
+                  "action": "/action/change_password",
+                  "method": "post",
+                  "text": "Change Password"
+                }
+              ]
+            }
+          ]
+        }
+      ]
+    }
+  ]
+}