Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Refactor already-signed-in check into a decorator #5317

Merged
merged 2 commits into from
Dec 23, 2024
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 2 additions & 4 deletions app/main/views/register.py
Original file line number Diff line number Diff line change
@@ -1,7 +1,6 @@
from datetime import datetime, timedelta

from flask import abort, redirect, render_template, session, url_for
from flask_login import current_user

from app.main import main
from app.main.forms import (
Expand All @@ -12,14 +11,13 @@
from app.main.views.verify import activate_user
from app.models.user import InvitedOrgUser, InvitedUser, User
from app.utils import hide_from_search_engines
from app.utils.login import redirect_if_logged_in


@main.route("/register", methods=["GET", "POST"])
@hide_from_search_engines
@redirect_if_logged_in
def register():
if current_user and current_user.is_authenticated:
return redirect(url_for("main.show_accounts_or_dashboard"))

form = RegisterUserForm()
if form.validate_on_submit():
_do_registration(form, send_sms=False)
Expand Down
9 changes: 3 additions & 6 deletions app/main/views/sign_in.py
Original file line number Diff line number Diff line change
Expand Up @@ -19,17 +19,14 @@
from app.models.user import InvitedUser, User
from app.utils import hide_from_search_engines
from app.utils.constants import JSON_UPDATES_BLUEPRINT_NAME
from app.utils.login import is_safe_redirect_url
from app.utils.login import redirect_if_logged_in


@main.route("/sign-in", methods=(["GET", "POST"]))
@hide_from_search_engines
def sign_in(): # noqa: C901
@redirect_if_logged_in
def sign_in():
redirect_url = request.args.get("next")
if current_user and current_user.is_authenticated:
if redirect_url and is_safe_redirect_url(redirect_url):
return redirect(redirect_url)
return redirect(url_for("main.show_accounts_or_dashboard"))

form = LoginForm()
password_reset_url = url_for(".forgot_password", next=request.args.get("next"))
Expand Down
6 changes: 2 additions & 4 deletions app/main/views/two_factor.py
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,6 @@
session,
url_for,
)
from flask_login import current_user
from itsdangerous import SignatureExpired
from notifications_utils.url_safe_token import check_token

Expand All @@ -19,8 +18,8 @@
from app.utils.login import (
email_needs_revalidating,
log_in_user,
redirect_if_logged_in,
redirect_to_sign_in,
redirect_when_logged_in,
)


Expand All @@ -36,10 +35,9 @@ def two_factor_email_interstitial(token):


@main.route("/email-auth/<string:token>", methods=["POST"])
@redirect_if_logged_in
def two_factor_email(token):
redirect_url = request.args.get("next")
if current_user.is_authenticated:
return redirect_when_logged_in(platform_admin=current_user.platform_admin)

# checks url is valid, and hasn't timed out
try:
Expand Down
17 changes: 15 additions & 2 deletions app/utils/login.py
Original file line number Diff line number Diff line change
Expand Up @@ -32,17 +32,30 @@ def log_in_user(user_id):
session.pop("user_details", None)
session.pop("file_uploads", None)

return redirect_when_logged_in(platform_admin=user.platform_admin)
return redirect_when_logged_in()


def redirect_when_logged_in(platform_admin):
def redirect_when_logged_in():
next_url = request.args.get("next")
if next_url and is_safe_redirect_url(next_url):
return redirect(next_url)

return redirect(url_for("main.show_accounts_or_dashboard"))


def redirect_if_logged_in(f):
from app import current_user

@wraps(f)
def wrapped(*args, **kwargs):
if current_user and current_user.is_authenticated:
return redirect_when_logged_in()
else:
return f(*args, **kwargs)

return wrapped


def email_needs_revalidating(user):
return not is_less_than_days_ago(user.email_access_validated_at, 90)

Expand Down