core: reformat file tree

accounts/admin.py

@@ -0,0 +1,3 @@
+from django.contrib import admin
+
+# Register your models here.

accounts/apps.py

@@ -0,0 +1,6 @@
+from django.apps import AppConfig
+
+
+class AccountsConfig(AppConfig):
+    default_auto_field = 'django.db.models.BigAutoField'
+    name = 'accounts'

accounts/forms/change_password.py

@@ -0,0 +1,7 @@
+from django import forms
+from ..settings import *
+
+class ChangePasswordForm(forms.Form):
+    username = forms.CharField(label="username", max_length=USERNAME_MAX_SIZE, min_length=USERNAME_MIN_SIZE, required=True)
+    current_password = forms.CharField(label="current_password", max_length=PASSWORD_MAX_SIZE, min_length=PASSWORD_MIN_SIZE, required=True)
+    new_password = forms.CharField(label="new_password", max_length=PASSWORD_MAX_SIZE, min_length=PASSWORD_MIN_SIZE, required=True)

accounts/forms/delete.py

@@ -0,0 +1,6 @@
+from django import forms
+from ..settings import *
+
+class DeleteForm(forms.Form):
+    username = forms.CharField(label="username", max_length=USERNAME_MAX_SIZE, min_length=USERNAME_MIN_SIZE, required=True)
+    password = forms.CharField(label="password", max_length=PASSWORD_MAX_SIZE, min_length=PASSWORD_MIN_SIZE, required=True)

accounts/forms/login.py

@@ -0,0 +1,6 @@
+from django import forms
+from ..settings import *
+
+class LoginForm(forms.Form):
+    username = forms.CharField(label="username", max_length=USERNAME_MAX_SIZE, min_length=USERNAME_MIN_SIZE, required=True)
+    password = forms.CharField(label="password", max_length=PASSWORD_MAX_SIZE, min_length=PASSWORD_MIN_SIZE, required=True)

accounts/forms/register.py

@@ -0,0 +1,6 @@
+from django import forms
+from ..settings import *
+
+class RegisterForm(forms.Form):
+    username = forms.CharField(label="username", max_length=USERNAME_MAX_SIZE, min_length=USERNAME_MIN_SIZE, required=True)
+    password = forms.CharField(label="password", max_length=PASSWORD_MAX_SIZE, min_length=PASSWORD_MIN_SIZE, required=True)

accounts/models.py

@@ -0,0 +1,3 @@
+from django.db import models
+
+# Create your models here.

accounts/settings.py

@@ -0,0 +1,4 @@
+PASSWORD_MIN_SIZE = 3
+PASSWORD_MAX_SIZE = 128
+USERNAME_MIN_SIZE = 3
+USERNAME_MAX_SIZE = 40

accounts/status_code.py

@@ -0,0 +1,9 @@
+INVALID_USERNAME: str = "error: username invalid"
+INVALID_PASSWORD: str = "error: password invalid"
+INVALID_USERNAME_PASSWORD: str = "error: username or password invalid"
+USERNAME_ALREADY_USED: str = "error: username already used"
+
+USER_ADDED: str = "ok: user added"
+USER_DELETED: str = "ok: account has been deleted"
+USER_VALID: str = "ok: account valid"
+PASSWORD_UPDATED: str = "ok: password has been updated"

accounts/templates/change_password.html

@@ -0,0 +1,9 @@
+<html>
+    <form method='post'>
+        {% csrf_token %}
+        <input type="text" name="username" placeholder="username">
+        <input type="text" name="current_password" placeholder="current_password">
+        <input type="text" name="new_password" placeholder="new_password">
+        <input type='submit'>
+    </form>
+</html>

accounts/templates/delete.html

@@ -0,0 +1,7 @@
+<html>
+    <form method='post'>
+        {% csrf_token %}
+        {{ form }}
+        <input type='submit'>
+    </form>
+</html>

accounts/templates/login.html

@@ -0,0 +1,7 @@
+<html>
+    <form method='post'>
+        {% csrf_token %}
+        {{ form }}
+        <input type='submit'>
+    </form>
+</html>

accounts/templates/register.html

@@ -0,0 +1,7 @@
+<html>
+    <form method='post'>
+        {% csrf_token %}
+        {{ form }}
+        <input type='submit'>
+    </form>
+</html>

accounts/tests/__init__.py

@@ -0,0 +1,4 @@
+from .register import *
+from .login import *
+from .change_password import *
+from .delete import *

accounts/tests/change_password.py

@@ -0,0 +1,76 @@
+from django.test import TestCase
+
+# Create your tests here.
+from django.test.client import Client
+from django.http import HttpResponse
+import uuid
+
+from ..status_code import *
+from ..settings import *
+
+class ChangePasswordTest(TestCase):
+    def setUp(self):
+        self.client = Client()
+        
+        self.url = "/api/accounts/change_password"
+        
+        self.username: str = str(uuid.uuid4())[:USERNAME_MAX_SIZE]
+        self.password: str = str(uuid.uuid4())[:PASSWORD_MAX_SIZE]
+        self.new_password: str = str(uuid.uuid4())[:PASSWORD_MAX_SIZE]
+        
+        self.client.post("/api/accounts/register",  {"username": self.username, "password": self.password})
+    
+    def test_normal_login(self):
+        response: HttpResponse = self.client.post("/api/accounts/login",  {"username": self.username, "password": self.password})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, USER_VALID)
+
+    def test_invalid_username(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.password, "password": self.password})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_invalid_password(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username, "password": self.username})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_invalid_no_username(self):
+        response: HttpResponse = self.client.post(self.url,  {"password": self.password})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_invalid_no_password(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_invalid_no_password(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_invalid_no_password_no_username(self):
+        response: HttpResponse = self.client.post(self.url,  {})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+    
+    def test_no_new_password(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username, "current_password": self.password})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_new_password_to_short(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username, "current_password": self.password, "new_password": "a" * (PASSWORD_MIN_SIZE - (PASSWORD_MIN_SIZE > 0))})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_new_password_to_long(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username, "current_password": self.password, "new_password": "a" * (PASSWORD_MAX_SIZE + 1)})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_normal_change_password(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username, "current_password": self.password, "new_password": self.new_password})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, PASSWORD_UPDATED)

accounts/tests/delete.py

@@ -0,0 +1,55 @@
+from django.test import TestCase
+
+# Create your tests here.
+from django.test.client import Client
+from django.http import HttpResponse
+import uuid
+
+from ..status_code import *
+from ..settings import *
+
+class DeleteTest(TestCase):
+    def setUp(self):
+        self.client = Client()
+        
+        self.url = "/api/accounts/delete"
+        
+        self.username: str = str(uuid.uuid4())[:USERNAME_MAX_SIZE]
+        self.password: str = str(uuid.uuid4())[:PASSWORD_MAX_SIZE]
+        
+        self.client.post("/api/accounts/register",  {"username": self.username, "password": self.password})
+
+    def test_invalid_username(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.password, "password": self.password})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_invalid_password(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username, "password": self.username})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_invalid_no_username(self):
+        response: HttpResponse = self.client.post(self.url,  {"password": self.password})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_invalid_no_password(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_invalid_no_password(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_invalid_no_password_no_username(self):
+        response: HttpResponse = self.client.post(self.url,  {})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+    
+    def test_normal_delete(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username, "password": self.password})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, USER_DELETED)

accounts/tests/login.py

@@ -0,0 +1,50 @@
+from django.test import TestCase
+
+# Create your tests here.
+from django.test.client import Client
+from django.http import HttpResponse
+import uuid
+
+from ..status_code import *
+from ..settings import *
+
+class LoginTest(TestCase):
+    def setUp(self):
+        self.client = Client()
+        
+        self.url = "/api/accounts/login"
+        
+        self.username: str = str(uuid.uuid4())[:USERNAME_MAX_SIZE]
+        self.password: str = str(uuid.uuid4())[:PASSWORD_MAX_SIZE]
+        
+        self.client.post("/api/accounts/register",  {"username": self.username, "password": self.password})
+    
+    def test_normal_login(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username, "password": self.password})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, USER_VALID)
+
+    def test_invalid_username(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.password, "password": self.password})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_invalid_password(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username, "password": self.username})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_invalid_no_username(self):
+        response: HttpResponse = self.client.post(self.url,  {"password": self.password})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_invalid_no_password(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_invalid_no_password_no_username(self):
+        response: HttpResponse = self.client.post(self.url,  {})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)

accounts/tests/register.py

@@ -0,0 +1,69 @@
+from django.test import TestCase
+
+# Create your tests here.
+from django.test.client import Client
+from django.http import HttpResponse
+import uuid
+
+from ..status_code import *
+from ..settings import *
+
+class RegisterTest(TestCase):
+    def setUp(self):
+        self.client = Client()
+
+        self.url: str = "/api/accounts/register"
+
+        self.username: str = str(uuid.uuid4())[:USERNAME_MAX_SIZE]
+        self.password: str = str(uuid.uuid4())[:PASSWORD_MAX_SIZE]
+
+    def test_incomplet_form_no_username_no_password(self):
+        response: HttpResponse = self.client.post(self.url)
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_incomplet_form_no_password(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_incomplet_form_no_username(self):
+        response: HttpResponse = self.client.post(self.url,  {"password": self.password})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, "error: username invalid")
+    
+    def test_incomplet_form_no_username(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_normal_register(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username, "password": self.password})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, USER_ADDED)
+
+    def test_username_too_short(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": "a" * (USERNAME_MIN_SIZE - (USERNAME_MIN_SIZE > 0)), "password": self.password})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_username_too_long(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": "a" * (USERNAME_MAX_SIZE + 1), "password": self.password})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_password_too_short(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username, "password": "a" * (PASSWORD_MIN_SIZE - (PASSWORD_MIN_SIZE > 0))})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+
+    def test_password_too_long(self):
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username, "password": "a" * (PASSWORD_MAX_SIZE + 1)})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, INVALID_USERNAME_PASSWORD)
+        
+    def test_already_registered(self):
+        self.client.post(self.url,  {"username": self.username, "password": self.password})
+        response: HttpResponse = self.client.post(self.url,  {"username": self.username, "password": self.password})
+        response_text: str = response.content.decode("utf-8")
+        self.assertEqual(response_text, USERNAME_ALREADY_USED)

accounts/urls.py

@@ -0,0 +1,10 @@
+from django.urls import path
+
+from .views import login, register, delete, change_password
+
+urlpatterns = [
+    path("login", login.LoginView.as_view(), name="login"),
+    path("register", register.RegisterView.as_view(), name="register"),
+    path("delete", delete.DeleteView.as_view(), name="delete"),
+    path("change_password", change_password.ChangePasswordView.as_view(), name="change_password"),
+]

accounts/views/change_password.py

@@ -0,0 +1,36 @@
+from django.shortcuts import render
+from django.views import View
+from django.http import HttpResponse, HttpRequest
+from django.contrib.auth.models import User
+from django.db.models.query import QuerySet
+
+from ..status_code import *
+from ..settings import *
+from ..forms.change_password import ChangePasswordForm
+
+class ChangePasswordView(View):
+    def get(self, request: HttpRequest):
+        return render(request, "change_password.html")
+    
+    def post(self, request: HttpRequest):
+
+        form: ChangePasswordForm = ChangePasswordForm(request.POST)
+        if not form.is_valid():
+            return HttpResponse(INVALID_USERNAME_PASSWORD)
+        
+        username: str = form.cleaned_data['username']
+        current_password: str = form.cleaned_data['current_password']
+        new_password: str = form.cleaned_data['new_password']
+        
+        query: QuerySet = User.objects.filter(username=username)
+        if (not query.exists()):
+            return HttpResponse(INVALID_USERNAME_PASSWORD)
+        
+        user: User = User.objects.get(username=username)
+        if (not user.check_password(current_password)):
+            return HttpResponse(INVALID_USERNAME_PASSWORD)
+        
+        user.set_password(new_password)
+        user.save()
+        
+        return HttpResponse(PASSWORD_UPDATED)

accounts/views/delete.py

@@ -0,0 +1,35 @@
+from django.shortcuts import render
+from django.views import View
+from django.http import HttpResponse, HttpRequest
+from django.contrib.auth.models import User
+from django.db.models.query import QuerySet
+
+from ..status_code import *
+from ..settings import *
+from ..forms.delete import DeleteForm
+
+class DeleteView(View):
+    def get(self, request: HttpRequest):
+        return render(request, "delete.html", {"form":  DeleteForm})
+    
+    def post(self, request: HttpRequest):
+        
+        form: DeleteForm = DeleteForm(request.POST)
+        if (not form.is_valid()):
+            return HttpResponse(INVALID_USERNAME_PASSWORD)
+        
+        username: str = form.cleaned_data['username']
+        password: str = form.cleaned_data['password']
+        
+        query: QuerySet = User.objects.filter(username=username)
+        if (not query.exists()):
+            return HttpResponse(INVALID_USERNAME_PASSWORD)
+        
+        user: User = User.objects.get(username=username)
+        if (not user.check_password(password)):
+            return HttpResponse(INVALID_USERNAME_PASSWORD)
+        
+        user.delete()
+        
+        return HttpResponse(USER_DELETED)
+    

accounts/views/login.py

@@ -0,0 +1,31 @@
+from django.shortcuts import render
+from django.views import View
+from django.http import HttpResponse
+from django.contrib.auth.models import User
+from django.db.models.query import QuerySet
+
+from ..status_code import *
+from ..settings import *
+from ..forms.login import LoginForm 
+
+class LoginView(View):
+    def get(self, request):
+        return render(request, "login.html", {"form": LoginForm})
+    
+    def post(self, request):
+        form: LoginForm = LoginForm(request.POST)
+        if not form.is_valid():
+            return HttpResponse(INVALID_USERNAME_PASSWORD)
+        
+        username: str = form.cleaned_data["username"]
+        password: str = form.cleaned_data["password"]
+        
+        query: QuerySet = User.objects.filter(username=username)
+        if (not query.exists()):
+            return HttpResponse(INVALID_USERNAME_PASSWORD)
+        
+        user: User = User.objects.get(username=username)
+        if (not user.check_password(password)):
+            return HttpResponse(INVALID_USERNAME_PASSWORD)
+        
+        return HttpResponse(USER_VALID)

accounts/views/register.py

@@ -0,0 +1,29 @@
+from django.shortcuts import render
+from django.views import View
+from django.http import HttpResponse, HttpRequest
+from django.contrib.auth.models import User
+from django.db.models.query import QuerySet
+
+from ..status_code import *
+from ..settings import *
+from ..forms.register import RegisterForm
+
+class RegisterView(View):
+    def get(self, request: HttpRequest):
+        return render(request, "register.html", {"form": RegisterForm}) 
+
+    def post(self, request: HttpRequest):
+        form: RegisterForm = RegisterForm(request.POST)
+        if not form.is_valid():
+            return HttpResponse(INVALID_USERNAME_PASSWORD)
+        
+        username: str = form.cleaned_data["username"]
+        password: str = form.cleaned_data["password"]
+        
+        if User.objects.filter(username=username).exists():
+            return HttpResponse(USERNAME_ALREADY_USED)
+        
+        user = User.objects.create_user(username, password=password)
+        user.save()
+        
+        return HttpResponse(USER_ADDED)