ammar/zod-backend
1
0
Fork 0
mirror of https://github.com/HamzaSha1/zod-backend.git synced 2025-11-26 08:34:55 +00:00
Code Issues Packages Projects Releases Wiki Activity

sonar issues

Browse Source
This commit is contained in:
jain
2023-07-17 17:00:33 +05:30
parent 1399b585e8
commit 6d6d21137f
5 changed files with 25 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
account/serializers.py
View File

@ -140,15 +140,28 @@ class ForgotPasswordSerializer(serializers.Serializer):
class SuperUserSerializer(serializers.ModelSerializer): class SuperUserSerializer(serializers.ModelSerializer):
"""Super admin serializer""" """Super admin serializer"""
user_type = serializers.SerializerMethodField('get_user_type') user_type = serializers.SerializerMethodField('get_user_type')
auth_token = serializers.SerializerMethodField('get_auth_token')
refresh_token = serializers.SerializerMethodField('get_refresh_token')
def get_auth_token(self, obj):
refresh = RefreshToken.for_user(obj.auth)
access_token = str(refresh.access_token)
return access_token
def get_refresh_token(self, obj):
refresh = RefreshToken.for_user(obj.user)
refresh_token = str(refresh)
return refresh_token
def get_user_type(self, obj): def get_user_type(self, obj):
"""user type""" """user type"""
return SUPERUSER return str(NUMBER['three'])
class Meta(object): class Meta(object):
"""Meta info""" """Meta info"""
model = User model = User
fields = ['id', 'username', 'email', 'first_name', 'last_name', 'is_active', 'user_type'] fields = ['id', 'auth_token', 'refresh_token', 'username', 'email', 'first_name',
'last_name', 'is_active', 'user_type']
class GuardianSerializer(serializers.ModelSerializer): class GuardianSerializer(serializers.ModelSerializer):

2
account/views.py
View File

@ -214,7 +214,7 @@ class ForgotPasswordAPIView(views.APIView):
User.objects.get(email=email) User.objects.get(email=email)
except User.DoesNotExist: except User.DoesNotExist:
return custom_error_response(ERROR_CODE['2004'], response_status=status.HTTP_404_NOT_FOUND) return custom_error_response(ERROR_CODE['2004'], response_status=status.HTTP_404_NOT_FOUND)
verification_code = ''.join([str(random.randrange(9)) for _ in range(6)]) verification_code = generate_otp()
# Send the verification code to the user's email # Send the verification code to the user's email
from_email = settings.EMAIL_FROM_ADDRESS from_email = settings.EMAIL_FROM_ADDRESS
recipient_list = [email] recipient_list = [email]

2
base/messages.py
View File

@ -47,6 +47,7 @@ ERROR_CODE = {
"2021": "Already register", "2021": "Already register",
"2022": "Invalid Guardian code", "2022": "Invalid Guardian code",
"2023": "Invalid user", "2023": "Invalid user",
# email not verified
"2024": "Email not verified", "2024": "Email not verified",
"2025": "Invalid input. Expected a list of strings.", "2025": "Invalid input. Expected a list of strings.",
"2026": "New password should not same as old password", "2026": "New password should not same as old password",
@ -54,6 +55,7 @@ ERROR_CODE = {
"2028": "You are not authorized person to sign up on this platform", "2028": "You are not authorized person to sign up on this platform",
"2029": "Validity of otp verification is expired", "2029": "Validity of otp verification is expired",
"2030": "Use correct user type and token", "2030": "Use correct user type and token",
# invalid password
"2031": "Invalid password", "2031": "Invalid password",
"2032": "Failed to send email", "2032": "Failed to send email",
"2033": "Missing required fields", "2033": "Missing required fields",

5
guardian/tasks.py
View File

@ -1,6 +1,7 @@
"""task files""" """task files"""
"""Django import""" """Django import"""
import random import secrets
def generate_otp(): def generate_otp():
"""generate random otp""" """generate random otp"""
return ''.join([str(random.randrange(9)) for _ in range(6)]) digits = "0123456789"
return "".join(secrets.choice(digits) for _ in range(6))

4
guardian/views.py
View File

@ -176,6 +176,7 @@ class SearchTaskListAPIView(viewsets.ModelViewSet):
queryset = self.get_queryset() queryset = self.get_queryset()
paginator = self.pagination_class() paginator = self.pagination_class()
# use pagination
paginated_queryset = paginator.paginate_queryset(queryset, request) paginated_queryset = paginator.paginate_queryset(queryset, request)
# use TaskSerializer serializer # use TaskSerializer serializer
serializer = TaskDetailsSerializer(paginated_queryset, many=True) serializer = TaskDetailsSerializer(paginated_queryset, many=True)
@ -242,6 +243,7 @@ class ApproveTaskAPIView(viewsets.ViewSet):
def get_queryset(self): def get_queryset(self):
"""Get the queryset for the view""" """Get the queryset for the view"""
guardian = Guardian.objects.filter(user__email=self.request.user).last() guardian = Guardian.objects.filter(user__email=self.request.user).last()
# task query
task_queryset = JuniorTask.objects.filter(id=self.request.data.get('task_id'), task_queryset = JuniorTask.objects.filter(id=self.request.data.get('task_id'),
guardian=guardian, guardian=guardian,
junior=self.request.data.get('junior_id')).last() junior=self.request.data.get('junior_id')).last()
@ -257,9 +259,11 @@ class ApproveTaskAPIView(viewsets.ViewSet):
"action": str(request.data['action'])}, "action": str(request.data['action'])},
data=request.data) data=request.data)
if str(request.data['action']) == str(NUMBER['one']) and serializer.is_valid(): if str(request.data['action']) == str(NUMBER['one']) and serializer.is_valid():
# save serializer
serializer.save() serializer.save()
return custom_response(SUCCESS_CODE['3025'], response_status=status.HTTP_200_OK) return custom_response(SUCCESS_CODE['3025'], response_status=status.HTTP_200_OK)
elif str(request.data['action']) == str(NUMBER['two']) and serializer.is_valid(): elif str(request.data['action']) == str(NUMBER['two']) and serializer.is_valid():
# save serializer
serializer.save() serializer.save()
return custom_response(SUCCESS_CODE['3026'], response_status=status.HTTP_200_OK) return custom_response(SUCCESS_CODE['3026'], response_status=status.HTTP_200_OK)
else: else: