| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185 |
- """
- Misago-native rehash of Django's createsuperuser command that
- works with double authentication fields on user model
- """
- import sys
- from getpass import getpass
- from django.contrib.auth import get_user_model
- from django.contrib.auth.password_validation import validate_password
- from django.core.exceptions import ValidationError
- from django.core.management.base import BaseCommand
- from django.db import DEFAULT_DB_ALIAS, IntegrityError
- from django.utils.encoding import force_str
- from misago.cache.versions import get_cache_versions
- from misago.conf.dynamicsettings import DynamicSettings
- from misago.users.setupnewuser import setup_new_user
- from misago.users.validators import validate_email, validate_username
- User = get_user_model()
- class NotRunningInTTYException(Exception):
- pass
- class Command(BaseCommand):
- help = "Used to create a superuser."
- def add_arguments(self, parser):
- parser.add_argument(
- "--username",
- dest="username",
- default=None,
- help="Specifies the username for the superuser.",
- )
- parser.add_argument(
- "--email",
- dest="email",
- default=None,
- help="Specifies the e-mail for the superuser.",
- )
- parser.add_argument(
- "--password",
- dest="password",
- default=None,
- help="Specifies the password for the superuser.",
- )
- parser.add_argument(
- "--noinput",
- "--no-input",
- action="store_false",
- dest="interactive",
- default=True,
- help=(
- "Tells Misago to NOT prompt the user for input "
- "of any kind. You must use --username with "
- "--noinput, along with an option for any other "
- "required field. Superusers created with "
- "--noinput will not be able to log in until "
- "they're given a valid password."
- ),
- )
- parser.add_argument(
- "--database",
- action="store",
- dest="database",
- default=DEFAULT_DB_ALIAS,
- help=('Specifies the database to use. Default is "default".'),
- )
- def execute(self, *args, **options):
- self.stdin = options.get("stdin", sys.stdin) # Used for testing
- return super().execute(*args, **options)
- def handle(self, *args, **options):
- username = options.get("username")
- email = options.get("email")
- password = options.get("password")
- interactive = options.get("interactive")
- verbosity = int(options.get("verbosity", 1))
- cache_versions = get_cache_versions()
- settings = DynamicSettings(cache_versions)
- # Validate initial inputs
- if username is not None:
- try:
- username = username.strip()
- validate_username(settings, username)
- except ValidationError as e:
- self.stderr.write("\n".join(e.messages))
- username = None
- if email is not None:
- try:
- email = email.strip()
- validate_email(email)
- except ValidationError as e:
- self.stderr.write("\n".join(e.messages))
- email = None
- if password is not None:
- password = password.strip()
- if password == "":
- self.stderr.write("Error: Blank passwords aren't allowed.")
- if not interactive:
- if username and email and password:
- # Call User manager's create_superuser using our wrapper
- self.create_superuser(username, email, password, settings, verbosity)
- else:
- try:
- if hasattr(self.stdin, "isatty") and not self.stdin.isatty():
- raise NotRunningInTTYException("Not running in a TTY")
- # Prompt for username/password, and any other required fields.
- # Enclose this whole thing in a try/except to trap for a
- # keyboard interrupt and exit gracefully.
- while not username:
- try:
- message = force_str("Enter displayed username: ")
- raw_value = input(message).strip()
- validate_username(raw_value)
- username = raw_value
- except ValidationError as e:
- self.stderr.write("\n".join(e.messages))
- while not email:
- try:
- raw_value = input("Enter e-mail address: ").strip()
- validate_email(raw_value)
- email = raw_value
- except ValidationError as e:
- self.stderr.write("\n".join(e.messages))
- while not password:
- raw_value = getpass("Enter password: ")
- password_repeat = getpass("Repeat password:")
- if raw_value != password_repeat:
- self.stderr.write("Error: Your passwords didn't match.")
- # Don't validate passwords that don't match.
- continue
- if raw_value.strip() == "":
- self.stderr.write("Error: Blank passwords aren't allowed.")
- # Don't validate blank passwords.
- continue
- try:
- validate_password(
- raw_value, user=User(username=username, email=email)
- )
- except ValidationError as e:
- self.stderr.write("\n".join(e.messages))
- response = input(
- "Bypass password validation and create user anyway? [y/N]: "
- )
- if response.lower() != "y":
- continue
- password = raw_value
- # Call User manager's create_superuser using our wrapper
- self.create_superuser(username, email, password, settings, verbosity)
- except KeyboardInterrupt:
- self.stderr.write("\nOperation cancelled.")
- sys.exit(1)
- except NotRunningInTTYException:
- self.stdout.write(
- "Superuser creation skipped due to not running in a TTY. "
- "You can run `manage.py createsuperuser` in your project "
- "to create one manually."
- )
- def create_superuser(self, username, email, password, settings, verbosity):
- try:
- user = User.objects.create_superuser(username, email, password)
- setup_new_user(settings, user)
- if verbosity >= 1:
- message = "Superuser #%s has been created successfully."
- self.stdout.write(message % user.pk)
- except ValidationError as e:
- self.stderr.write(e.messages[0])
- except IntegrityError as e:
- self.stderr.write(e.messages[0])
|
