Merge remote-tracking branch 'origin/master' into comewithmeifyouwanttowork

Conflicts: data/model/legacy.py static/js/app.js
2014-09-12 11:03:30 -04:00 · 2014-09-12 11:03:30 -04:00 · c5ca46a14b
commit c5ca46a14b
parent 8d3ce44682 da3d58890e
70 changed files with 1566 additions and 630 deletions
--- a/endpoints/api/user.py
+++ b/endpoints/api/user.py
@ -9,7 +9,7 @@ from app import app, billing as stripe, authentication
 from endpoints.api import (ApiResource, nickname, resource, validate_json_request, request_error,
                           log_action, internal_only, NotFound, require_user_admin, parse_args,
                           query_param, InvalidToken, require_scope, format_date, hide_if, show_if,
-                           license_error)
+                           license_error,  require_fresh_login)
 from endpoints.api.subscribe import subscribe
 from endpoints.common import common_login
 from endpoints.api.team import try_accept_invite
@ -43,9 +43,15 @@ def user_view(user):
  organizations = model.get_user_organizations(user.username)

  def login_view(login):
+    try:
+      metadata = json.loads(login.metadata_json)
+    except:
+      metadata = {}
+
    return {
      'service': login.service.name,
      'service_identifier': login.service_ident,
+      'metadata': metadata
    }

  logins = model.list_federated_logins(user)
@ -92,6 +98,7 @@ class User(ApiResource):
  """ Operations related to users. """
  schemas = {
    'NewUser': {
+
      'id': 'NewUser',
      'type': 'object',
      'description': 'Fields which must be specified for a new user.',
@ -147,6 +154,7 @@ class User(ApiResource):
    return user_view(user)

  @require_user_admin
+  @require_fresh_login
  @nickname('changeUserDetails')
  @internal_only
  @validate_json_request('UpdateUser')
@ -155,7 +163,7 @@ class User(ApiResource):
    user = get_authenticated_user()
    user_data = request.get_json()

-    try:
+    try:     
      if 'password' in user_data:
        logger.debug('Changing password for user: %s', user.username)
        log_action('account_change_password', user.username)
@ -372,6 +380,37 @@ class Signin(ApiResource):
    return conduct_signin(username, password)


+@resource('/v1/signin/verify')
+@internal_only
+class VerifyUser(ApiResource):
+  """ Operations for verifying the existing user. """
+  schemas = {
+    'VerifyUser': {
+      'id': 'VerifyUser',
+      'type': 'object',
+      'description': 'Information required to verify the signed in user.',
+      'required': [
+        'password',
+      ],
+      'properties': {
+        'password': {
+          'type': 'string',
+          'description': 'The user\'s password',
+        },
+      },
+    },
+  }
+
+  @require_user_admin
+  @nickname('verifyUser')
+  @validate_json_request('VerifyUser')
+  def post(self):
+    """ Verifies the signed in the user with the specified credentials. """
+    signin_data = request.get_json()
+    password = signin_data['password']
+    return conduct_signin(get_authenticated_user().username, password)
+
+
@resource('/v1/signout')
@internal_only
 class Signout(ApiResource):