Skip to content

Redirect to login when email is already verifyed. #163

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 1 commit into from
Nov 30, 2016
Merged

Redirect to login when email is already verifyed. #163

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,7 @@
## UPCOMING

* Update `VerifyUserEmailView` to redirect to login without providing a next.
* Redirect to the login when attempting to verify an email address that is already verified.

## 15.0.0

Expand Down
4 changes: 4 additions & 0 deletions user_management/ui/exceptions.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,3 +5,7 @@
class InvalidExpiredToken(Http404):
"""Exception to confirm an account."""
message = _('Invalid or expired token.')


class AlreadyVerifiedException(Exception):
message = _('Email already verified.')
19 changes: 16 additions & 3 deletions user_management/ui/tests/test_views.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -42,11 +42,24 @@ def test_get_nonsense_token(self):
view(request, token=token)

def test_get_registered_user(self):
"""The view is accessed for an already-verified user and 403s."""
"""The view is accessed for an already-verified user then redirect."""
user = VerifyEmailUserFactory.create(email_verified=True)
token = user.generate_validation_token()

request = self.create_request('get', auth=False)
view = self.view_class.as_view()
with(self.assertRaises(self.view_class.permission_denied_class)):
view(request, token=token)

response = view(request, token=token)
self.assertEqual(response.status_code, 302)

self.assertEqual(response.url, '/accounts/login/')

user = VerifyEmailUser.objects.get(pk=user.pk)

self.assertTrue(user.email_verified)
self.assertTrue(user.is_active)

self.assertEqual(
self.view_class.already_verified_message,
str(request._messages.store[0]),
)
16 changes: 11 additions & 5 deletions user_management/ui/views.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,11 +1,10 @@
from django.conf import settings
from django.contrib import messages
from django.core.exceptions import PermissionDenied
from django.utils.translation import ugettext_lazy as _
from django.views import generic

from user_management.utils.views import VerifyAccountViewMixin
from .exceptions import InvalidExpiredToken
from .exceptions import AlreadyVerifiedException, InvalidExpiredToken


class VerifyUserEmailView(VerifyAccountViewMixin, generic.RedirectView):
Expand All @@ -20,16 +19,23 @@ class VerifyUserEmailView(VerifyAccountViewMixin, generic.RedirectView):
As a RedirectView, this will return a HTTP 302 to LOGIN_URL on success.
"""
permanent = False
already_verified = False
url = settings.LOGIN_URL
success_message = _('Your email address was confirmed.')
already_verified_message = _('Your email is already confirmed.')
invalid_exception_class = InvalidExpiredToken
permission_denied_class = PermissionDenied
permission_denied_class = AlreadyVerifiedException

def dispatch(self, request, *args, **kwargs):
self.verify_token(request, *args, **kwargs)
try:
self.verify_token(request, *args, **kwargs)
except self.permission_denied_class:
self.already_verified = True
self.success_message = self.already_verified_message
return super(VerifyUserEmailView, self).dispatch(request, *args, **kwargs)

def get(self, request, *args, **kwargs):
self.activate_user()
if not self.already_verified:
self.activate_user()
messages.success(request, self.success_message)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should messages.success only be set if the user has not been verified?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

success_message gets set to already_verified_message ('Your email is already confirmed.') if they are
already_verified

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Oh I see, I thought we were going down the path of calling messages.success twice.

return super(VerifyUserEmailView, self).get(request, *args, **kwargs)