Major update on User Profile.

User profile update feature with URL encryption and User authorization.
tamaraiselvan · Jan 25, 2023 · 6b2f287 · 6b2f287
1 parent f1c3fba
commit 6b2f287
Show file tree

Hide file tree

Showing 15 changed files with 476 additions and 38 deletions.
diff --git a/Base_Master/__pycache__/settings.cpython-311.pyc b/Base_Master/__pycache__/settings.cpython-311.pyc
diff --git a/Base_Master/__pycache__/urls.cpython-311.pyc b/Base_Master/__pycache__/urls.cpython-311.pyc
diff --git a/Base_Master/settings.py b/Base_Master/settings.py
@@ -21,7 +21,7 @@
 
 # SECURITY WARNING: keep the secret key used in production secret!
 SECRET_KEY = 'django-insecure-k6k-x^q$jjp*@bs#_7yw-!&cyn4g^byvr*lseiok=h=t#!)bw4'
-
+ENCRYPT_KEY = b'Py6zhVP-eFxkfq0kHUN0ZmIePwwaOeQ12ZmrFAVLbI8='
 # SECURITY WARNING: don't run with debug turned on in production!
 DEBUG = True
 

diff --git a/Base_Master/urls.py b/Base_Master/urls.py
@@ -9,4 +9,5 @@
     path('home', views.home, name="home"),
     path('register/', views.signup_view, name="sign_up"),
     path('profile/', views.profile, name="profile"),
+    path('update/<str:id>/', views.update, name="update"),
 ]
diff --git a/firstapp/__pycache__/encryption_util.cpython-311.pyc b/firstapp/__pycache__/encryption_util.cpython-311.pyc
diff --git a/firstapp/__pycache__/forms.cpython-311.pyc b/firstapp/__pycache__/forms.cpython-311.pyc
diff --git a/firstapp/__pycache__/views.cpython-311.pyc b/firstapp/__pycache__/views.cpython-311.pyc
diff --git a/firstapp/encryption_util.py b/firstapp/encryption_util.py
@@ -0,0 +1,38 @@
+from cryptography.fernet import Fernet
+import base64
+import logging
+import traceback
+from django.conf import settings
+
+#this is your "password/ENCRYPT_KEY". keep it in settings.py file
+key = Fernet.generate_key()
+
+def encrypt(txt):
+    try:
+        # convert integer etc to string first
+        txt = str(txt)
+        # get the key from settings
+        cipher_suite = Fernet(settings.ENCRYPT_KEY) # key should be byte
+        # #input should be byte, so convert the text to byte
+        encrypted_text = cipher_suite.encrypt(txt.encode('ascii'))
+        # encode to urlsafe base64 format
+        encrypted_text = base64.urlsafe_b64encode(encrypted_text).decode("ascii")
+        return encrypted_text
+    except Exception as e:
+        # log the error if any
+        print(e)
+        logging.getLogger("error_logger").error(traceback.format_exc())
+        return None
+
+
+def decrypt(txt):
+    try:
+        # base64 decode
+        txt = base64.urlsafe_b64decode(txt)
+        cipher_suite = Fernet(settings.ENCRYPT_KEY)
+        decoded_text = cipher_suite.decrypt(txt).decode("ascii")
+        return decoded_text
+    except Exception as e:
+        # log the error
+        logging.getLogger("error_logger").error(traceback.format_exc())
+        return None
diff --git a/firstapp/forms.py b/firstapp/forms.py
@@ -22,6 +22,10 @@ def clean_email(self):
         return email
 
 class profile_edit(forms.ModelForm):
+    first_name = forms.CharField(widget=forms.TextInput(attrs={'class':'form-control', 'placeholder': 'Enter First name'}), required=True)
+    last_name = forms.CharField(widget=forms.TextInput(attrs={'class':'form-control', 'placeholder': 'Enter last name'}), required=True)
+    email = forms.EmailField(widget=forms.EmailInput(attrs={'class':'form-control', 'placeholder': 'Enter Email address'}), required=True)
+    username = forms.CharField(widget=forms.TextInput(attrs={'class':'form-control', 'placeholder': 'Enter username'}), required=True)
     class Meta:
         model = User
-        fields=['username','email','first_name','last_name', "is_superuser"]
+        fields=['username','email','first_name','last_name',]
diff --git a/firstapp/views.py b/firstapp/views.py
@@ -1,7 +1,10 @@
 from django.shortcuts import render, redirect
 from django.contrib import messages
 from django.contrib.auth import login, authenticate
+from django.contrib.auth.models import User
+from django.contrib.auth.decorators import login_required
 # Create your views here.
+
 def home(request):
     if request.user.is_authenticated:
         return render(request, 'home.html')
@@ -26,4 +29,47 @@ def signup_view(request):
 
 
 def profile(request):
-    return render(request, 'profile.html')
+    if request.user.is_authenticated:
+        lst = User.objects.filter(username=request.user).values('id')
+        l=[]
+        for i in lst:
+            i['encrypt_key']=encrypt(i['id'])
+            i['id']=i['id']
+            l.append(i)
+        return render(request, 'profile.html', {'lst':l})
+    else:
+        messages.error(request, 'Please Provide the credentials to Login to your account.')
+        return redirect("login")
+
+
+from django.shortcuts import redirect, render, get_object_or_404
+from firstapp.encryption_util import *
+@login_required
+def update(request,id):
+    id=decrypt(id)
+
+    # dictionary for initial data with
+    # field names as keys
+    context ={}
+
+    # fetch the object related to passed id
+    obj = get_object_or_404(User, id = id)
+    if request.user == obj:
+
+        # pass the object as instance in form
+        form = profile_edit(request.POST or None, instance = obj)
+
+        # save the data from the form and
+        # redirect to detail_view
+        if form.is_valid():
+            form.save()
+            messages.success(request, 'Profile updated successfully!')
+            return redirect('profile')
+
+        # add form dictionary to context
+        context["form"] = form
+
+        return render(request, "edit_profile.html", context)
+    else:
+        messages.error(request,"You cannot access other user profile")
+        return redirect("profile")
diff --git a/requirements.txt b/requirements.txt
@@ -1,12 +1,9 @@
 asgiref==3.5.2
+cffi==1.15.1
+cryptography==39.0.0
 Django==4.0.4
 django-crispy-forms==1.14.0
 django-jazzmin==2.5.0
-sqlparse==0.4.2
-tzdata==2022.1
-asgiref==3.5.2
-Django==4.0.4
-django-crispy-forms==1.14.0
-django-jazzmin==2.5.0
+pycparser==2.21
 sqlparse==0.4.2
 tzdata==2022.1