Promo-Code-API/promo_code/user/serializers.py at e9267f6fd96e70eca567572922bfa2125fa11161 · RandomProgramm3r/Promo-Code-API · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
import django.contrib.auth.password_validation
import django.core.exceptions
import django.core.validators
import rest_framework.exceptions
import rest_framework.serializers
import rest_framework.status
import rest_framework_simplejwt.serializers
import rest_framework_simplejwt.token_blacklist.models as tb_models
import rest_framework_simplejwt.tokens

import user.models as user_models
import user.validators


class SignUpSerializer(rest_framework.serializers.ModelSerializer):
    password = rest_framework.serializers.CharField(
        write_only=True,
        required=True,
        validators=[django.contrib.auth.password_validation.validate_password],
        max_length=60,
        min_length=8,
        style={'input_type': 'password'},
    )
    name = rest_framework.serializers.CharField(required=True, min_length=1)
    surname = rest_framework.serializers.CharField(required=True, min_length=1)
    email = rest_framework.serializers.EmailField(
        required=True,
        min_length=8,
        validators=[
            user.validators.UniqueEmailValidator(
                'This email address is already registered.',
                'email_conflict',
            ),
        ],
    )
    avatar_url = rest_framework.serializers.CharField(
        required=False,
        max_length=350,
        validators=[
            django.core.validators.URLValidator(schemes=['http', 'https']),
        ],
    )
    other = rest_framework.serializers.JSONField(
        required=True,
        validators=[user.validators.OtherFieldValidator()],
    )

    class Meta:
        model = user_models.User
        fields = (
            'name',
            'surname',
            'email',
            'avatar_url',
            'other',
            'password',
        )

    def create(self, validated_data):
        try:
            user = user_models.User.objects.create_user(
                email=validated_data['email'],
                name=validated_data['name'],
                surname=validated_data['surname'],
                avatar_url=validated_data.get('avatar_url'),
                other=validated_data['other'],
                password=validated_data['password'],
            )
            return user
        except django.core.exceptions.ValidationError as e:
            raise rest_framework.serializers.ValidationError(e.messages)


class SignInSerializer(
    rest_framework_simplejwt.serializers.TokenObtainPairSerializer,
):
    email = rest_framework.serializers.EmailField(required=True)
    password = rest_framework.serializers.CharField(
        required=True,
        write_only=True,
    )

    def validate(self, data):
        email = data.get('email')
        password = data.get('password')

        if not email or not password:
            raise rest_framework.serializers.ValidationError(
                {'status': 'error', 'message': 'Both fields are required.'},
                code='required',
            )

        user = django.contrib.auth.authenticate(
            request=self.context.get('request'),
            email=email,
            password=password,
        )
        if not user:
            raise rest_framework.exceptions.AuthenticationFailed(
                {'status': 'error', 'message': 'Invalid email or password.'},
                code='authorization',
            )

        authenticate_kwargs = {
            self.username_field: data[self.username_field],
            'password': data['password'],
        }
        try:
            authenticate_kwargs['request'] = self.context['request']
        except KeyError:
            pass

        self.user = django.contrib.auth.authenticate(**authenticate_kwargs)

        if not getattr(self.user, 'is_active', None):
            raise rest_framework.exceptions.AuthenticationFailed(
                self.error_messages['no_active_account'],
                'no_active_account',
            )

        self.user.token_version += 1
        self.user.save()

        refresh = self.get_token(self.user)
        data = {
            'refresh': str(refresh),
            'access': str(refresh.access_token),
        }

        current_jti = refresh['jti']

        tokens_qs = tb_models.OutstandingToken.objects.filter(
            user=self.user,
        )

        outstanding_tokens = tokens_qs.exclude(jti=current_jti)

        for token in outstanding_tokens:
            (
                tb_models.BlacklistedToken.objects.get_or_create(
                    token=token,
                )
            )

        data['token_version'] = self.user.token_version
        return data

    def get_token(self, user):
        token = super().get_token(user)
        token['token_version'] = user.token_version
        return token