| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161 |
- from recaptcha.client.captcha import submit as recaptcha_submit
- from django.forms.forms import BoundField
- from django.utils.translation import ugettext_lazy as _
- import floppyforms as forms
- from misago.conf import settings
- class Form(forms.Form):
- """
- Misago-native form abstract extending Django's one with automatic trimming
- of user input, captacha support and more accessible validation errors
- """
- validate_repeats = []
- repeats_errors = []
- dont_strip = []
- error_source = None
- def __init__(self, data=None, file=None, request=None, *args, **kwargs):
- self.form_finalized = False
- self.request = request
- # Extract request from first arguments
- if data != None:
- super(Form, self).__init__(data, file, *args, **kwargs)
- else:
- super(Form, self).__init__(*args, **kwargs)
- # Let forms do mumbo-jumbo with fields removing
- self.ensure_finalization()
- # Kill captcha fields
- try:
- if settings.bots_registration != 'recaptcha' or self.request.session.get('captcha_passed'):
- del self.fields['recaptcha']
- except KeyError:
- pass
- try:
- if settings.bots_registration != 'qa' or self.request.session.get('captcha_passed'):
- del self.fields['captcha_qa']
- else:
- # Make sure we have any questions loaded
- self.fields['captcha_qa'].label = settings.qa_test
- self.fields['captcha_qa'].help_text = settings.qa_test_help
- except KeyError:
- pass
- @property
- def has_captcha(self):
- return 'recaptcha' in self.fields or 'captcha_qa' in self.fields
- def ensure_finalization(self):
- if not self.form_finalized:
- self.form_finalized = True
- self.finalize_form()
- def add_field(self, name, field):
- bound = BoundField(self, field, name)
- self.__dict__[name] = bound
- self.fields[name] = field
- def finalize_form(self):
- pass
- def full_clean(self):
- """
- Trim inputs and strip newlines
- """
- self.ensure_finalization()
- self.data = self.data.copy()
- for name, field in self.fields.iteritems():
- if field.__class__ == forms.CharField:
- try:
- self.data[name] = self.data[name].strip()
- except KeyError:
- pass
- super(Form, self).full_clean()
- def clean(self):
- """
- Clean data, do magic checks and stuff
- """
- cleaned_data = super(Form, self).clean()
- self._check_all()
- return cleaned_data
- def clean_recaptcha(self):
- """
- Test reCaptcha, scream if it went wrong
- """
- response = recaptcha_submit(
- self.request.POST.get('recaptcha_challenge_field'),
- self.request.POST.get('recaptcha_response_field'),
- settings.recaptcha_private,
- self.request.session.get_ip(self.request)
- ).is_valid
- if not response:
- raise forms.ValidationError(_("Entered words are incorrect. Please try again."))
- self.request.session['captcha_passed'] = True
- return ''
- def clean_captcha_qa(self):
- """
- Test QA Captcha, scream if it went wrong
- """
- if not unicode(self.cleaned_data['captcha_qa']).lower() in (name.lower() for name in unicode(settings.qa_test_answers).splitlines()):
- raise forms.ValidationError(_("The answer you entered is incorrect."))
- self.request.session['captcha_passed'] = True
- return self.cleaned_data['captcha_qa']
- def _check_all(self):
- # Check repeated fields
- self._check_repeats()
- # Check CSRF, we dont allow un-csrf'd forms in Misago
- self._check_csrf()
- # Check if we have any errors from fields, if we do, we will set fancy form-wide error message
- self._check_fields_errors()
- def _check_repeats(self):
- for index, repeat in enumerate(self.validate_repeats):
- # Check empty fields
- for field in repeat:
- if not field in self.data:
- try:
- if len(repeat) == 2:
- self.errors['_'.join(repeat)] = [self.repeats_errors[index]['fill_both']]
- else:
- self.errors['_'.join(repeat)] = [self.repeats_errors[index]['fill_all']]
- except (IndexError, KeyError):
- if len(repeat) == 2:
- self.errors['_'.join(repeat)] = [_("You have to fill in both fields.")]
- else:
- self.errors['_'.join(repeat)] = [_("You have to fill in all fields.")]
- break
- else:
- # Check different fields
- past_field = self.data[repeat[0]]
- for field in repeat:
- if self.data[field] != past_field:
- try:
- self.errors['_'.join(repeat)] = [self.repeats_errors[index]['different']]
- except (IndexError, KeyError):
- self.errors['_'.join(repeat)] = [_("Entered values differ from each other.")]
- break
- past_field = self.data[field]
- def _check_csrf(self):
- if not self.request.csrf.request_secure(self.request):
- raise forms.ValidationError(_("Request authorization is invalid. Please resubmit your form."))
- def _check_fields_errors(self):
- if self.errors:
- if self.error_source and self.error_source in self.errors:
- field_error, self.errors[self.error_source] = self.errors[self.error_source][0], []
- raise forms.ValidationError(field_error)
- raise forms.ValidationError(_("Form contains errors."))
- def empty_errors(self):
- for i in self.errors:
- self.errors[i] = []
|
