accounts/views.py

from rest_framework.response import Response
from rest_framework.generics import GenericAPIView
from accounts.serializers import (
    ResetSerializer,
    UserSerailizer,
    LoginSerializer,
    ResetPasswordSeriliazer,
)
from .models import User
from rest_framework import status
from rest_framework_simplejwt.tokens import RefreshToken
from django.contrib.auth.hashers import check_password
from .tokens import account_activation_token
from django.core.mail import send_mail
from django.utils.http import urlsafe_base64_encode, urlsafe_base64_decode
from django.utils.encoding import force_str, force_bytes
from django.contrib.auth import logout
from rest_framework_simplejwt.authentication import JWTAuthentication
from rest_framework.permissions import IsAuthenticated


# Create your views here.
class Register(GenericAPIView):
    serializer_class = UserSerailizer

    def post(self, request, format="json"):
        num_results = User.objects.filter(email=request.data["email"]).count()
        if num_results > 0:
            return Response(
                {
                    "success": False,
                    "detail": "User already exists",
                },
                status=status.HTTP_400_BAD_REQUEST,
            )

        serializer = self.serializer_class(data=request.data)
        if serializer.is_valid(raise_exception=True):
            user = serializer.save()
            user.is_active = True
            user.save()

            # if user:
            #     subject = "Activate your account"
            #     message = "Hi, " + user.first_name + " " + user.last_name + "!\n\n"
            #     message += "Please click the link below to activate your account:\n\n"
            #     message += (
            #         "http://localhost:8000/api/v1/auth/confirm-email/"
            #         + urlsafe_base64_encode(force_bytes(user.id))
            #         + "/"
            #         + account_activation_token.make_token(user)
            #         + "\n\n"
            #     )
            #     message += "Thank you for using our application!"
            #     from_email = "EMAIL_HOST_USER"
            #     to_email = [user.email]
            #     send_mail(subject, message, from_email, to_email)

            return Response(
                {
                    "success": True,
                    "detail": "User created successfully.",
                },
                status=status.HTTP_201_CREATED,
            )
        return Response(
            {
                "success": False,
                "detail": "User already exists",
            },
            status=status.HTTP_400_BAD_REQUEST,
        )


class Login(GenericAPIView):
    serializer_class = LoginSerializer

    def post(self, request, *args, **kwargs):
        serializer = self.serializer_class(data=request.data)
        serializer.is_valid(raise_exception=True)
        data = serializer.data
        try:
            user = User.objects.get(email=data["email"])
        except User.DoesNotExist:
            return Response(
                {
                    "success": False,
                    "detail": "Email or password is incorrect",
                },
                status=status.HTTP_401_UNAUTHORIZED,
            )

        current_password = user.password
        check = check_password(data['password'], current_password)

        if check:
            if user.is_active:
                refresh = RefreshToken.for_user(user)
                return Response(
                    {
                        "success": True,
                        "detail": "Login Successful",
                        "data": {
                            "user": {
                                "user_id": user.pk,
                                "email": user.email,
                            },
                            "refresh": str(refresh),
                            "access": str(refresh.access_token),
                        },
                    }
                )
            else:
                return Response(
                    {
                        "success": False,
                        "detail": "User is not active",
                    },
                    status=status.HTTP_401_UNAUTHORIZED,
                )
        else:
            return Response(
                {
                    "success": False,
                    "detail": "Email or password is not correct.",
                },
                status=status.HTTP_401_UNAUTHORIZED,
            )


class ResendActivationLink(GenericAPIView):
    serializer_class = ResetSerializer

    def get(self, request, email):
        try:
            user = User.objects.get(email=email)
        except User.DoesNotExist:
            return Response(
                {
                    "success": False,
                    "detail": "User does not exist"
                },
                status=status.HTTP_400_BAD_REQUEST,
            )
        if user.is_active:
            return Response(
                {
                    "success": False,
                    "detail": "User is already active"
               },
                status=status.HTTP_400_BAD_REQUEST,
            )

        subject = "Activate your account"
        message = "Hi, " + user.first_name + " " + user.last_name + "!\n\n"
        message += "Please click the link below to activate your account:\n\n"
        message += (
            "http://localhost:8000/api/v1/auth/confirm-email/"
            + urlsafe_base64_encode(force_bytes(user.id))
            + "/"
            + account_activation_token.make_token(user)
            + "\n\n"
        )
        message += "Thank you for using our application!"
        from_email = "EMAIL_HOST_USER"
        to_email = [user.email]
        send_mail(subject, message, from_email, to_email)

        return Response(
            {
                "success": True,
                "detail": "Email sent", "data": message
            },
            status=status.HTTP_200_OK,
        )


class ActivateEmail(GenericAPIView):
    def get(self, request, user_id, token):
        try:
            user_id = force_str(urlsafe_base64_decode(user_id))
            user = User.objects.get(pk=user_id)
        except User.DoesNotExist:
            return Response(
                {
                    "success": False,
                    "detail": "User does not exist"
                },
                status=status.HTTP_400_BAD_REQUEST,
            )
        if user and account_activation_token.check_token(user, token):
            user.is_active = True
            user.save()
            return Response(
                {
                    "success": True,
                    "detail": "Email activated successfully"
               },
                status=status.HTTP_200_OK,
            )
        else:
            return Response(
                {
                    "success": False,
                    "detail": "Invalid token"
                },
                status=status.HTTP_400_BAD_REQUEST,
            )


class ResetPassword(GenericAPIView):
    serializer_class = ResetSerializer

    def get(self, request, email):
        try:
            user = User.objects.get(email=email)
        except User.DoesNotExist:
            return Response(
                {
                    "success": False,
                    "detail": "User does not exist."
                }, status=status.HTTP_401_UNAUTHORIZED
            )

        if user.is_active:

            subject = "Reset Your Password"
            message = "Hi, " + user.first_name + " " + user.last_name + "!\n\n"
            message += "Please click the link below to activate your account:\n\n"
            message += (
                "http://localhost:8000/api/v1/auth/reset-password-confirm/"
                + urlsafe_base64_encode(force_bytes(user.id))
                + "/"
                + account_activation_token.make_token(user)
                + "\n\n"
            )
            message += "Thank you for using our application!"
            from_email = "EMAIL_HOST_USER"
            to_email = [user.email]
            send_mail(subject, message, from_email, to_email)

            return Response(
                {
                    "success": True,
                    "detail": "Check your mail to reset your password",
                    "data": message
                },
                status=status.HTTP_200_OK,
            )
        else:
            return Response(
                {
                    "success": False,
                    "detail": "User is not active. Request for an activation link."
                },
                status=status.HTTP_400_BAD_REQUEST,
            )


class ConfirmPassword(GenericAPIView):
    serializer_class = ResetPasswordSeriliazer

    def put(self, request, user_id, token):
        try:
            user_id = force_str(urlsafe_base64_decode(user_id))
            user = User.objects.get(pk=user_id)
        except User.DoesNotExist:
            return Response(
                {
                    "success": False,
                    "detail": "User does not exist"
                },
                status=status.HTTP_400_BAD_REQUEST,
            )

        if user and account_activation_token.check_token(user, token):
            serializer = self.serializer_class(data=request.data)
            if serializer.is_valid():
                user.set_password(request.data.get("password"))
                user.save()

                return Response(
                    {
                        "success": True,
                        "detail": "New password set."
                    }, status=status.HTTP_200_OK
                )
            else:
                return Response(
                    {
                        "success": False,
                        "detail": serializer.errors}, status=status.HTTP_400_BAD_REQUEST
                )
        else:
            return Response(
                {
                    "success": False,
                    "detail": "Password Reset Failed!"},
                status=status.HTTP_400_BAD_REQUEST,
            )


class Logout(GenericAPIView):
    permission_classes = [IsAuthenticated]
    authentication_classes = [JWTAuthentication]

    def get(self, request):
        request.user.access_token.delete()
        logout(request)

        return Response(
            {
                "success": True,
                "detail": "Logged out successfully"
            },
            status=status.HTTP_200_OK,
        )