Merge pull request #16 from springload/change-pass

Change pass

Author: tacitus

CHANGELOG.md

@@ -8,6 +8,13 @@ and this project adheres to [Semantic Versioning](http://semver.org/).
 
 ...
 
+## [1.1.6] - 2018-06-22
+
+### Added
+
+- Add change password form
+
+
 ## [1.1.5] - 2018-06-21
 
 ### Fixed

setup.py

@@ -28,7 +28,7 @@
 
 setup(
     name='wagtailenforcer',
-    version='1.1.5',
+    version='1.1.6',
     description='WagtailEnforcer, the Wagtail arm of the law.',
     author='Springload',
     author_email='hello@springload.co.nz',

wagtailenforcer/urls.py

@@ -6,6 +6,7 @@
 from axes.decorators import watch_login
 
 from wagtailenforcer.views import account as account_views
+from wagtailenforcer.views.wagtailadmin.account import change_password
 from wagtailenforcer.views.wagtailusers import users
 
 # Here we put all the overriden Wagtail urls from the different wagtail apps
@@ -21,7 +22,7 @@
     url(r'^password_reset/complete/$', account_views.password_reset_complete, name='wagtailadmin_password_reset_complete'),
 
     url(r'^login/$', watch_login(wagtail_account_views.login), name='wagtailadmin_login'),
-
+    url(r"^account/change_password/", change_password, name="password_change"),
     url(r'^users/(\d+)/$', users.edit, name='wagtailusers_users_edit'),
     url(r'^users/new/$', users.create, name='wagtailusers_users_create'),
 

wagtailenforcer/views/wagtailadmin/__init__.py

@@ -0,0 +1,58 @@
+from __future__ import absolute_import, unicode_literals
+
+from functools import wraps
+
+from django.conf import settings
+from django.contrib import messages
+from django.utils.translation import ugettext as _
+from django.contrib.auth import update_session_auth_hash
+from django.contrib.auth.forms import PasswordChangeForm
+from django.http import Http404
+from django.shortcuts import redirect, render
+
+from wagtail.utils.compat import user_is_authenticated
+from wagtailenforcer.forms import wagtailadmin
+from wagtail.wagtailadmin.utils import get_available_admin_languages
+from wagtail.wagtailcore.models import UserPagePermissionsProxy
+
+from wagtail.wagtailusers.models import UserProfile
+
+from password_policies.conf import settings
+from password_policies.forms import PasswordPoliciesChangeForm
+from password_policies.forms.fields import PasswordPoliciesField
+
+
+# Helper functions to check password management settings to enable/disable views as appropriate.
+# These are functions rather than class-level constants so that they can be overridden in tests
+# by override_settings
+
+
+def password_management_enabled():
+    return getattr(settings, "WAGTAIL_PASSWORD_MANAGEMENT_ENABLED", True)
+
+
+def change_password(request):
+    if not password_management_enabled():
+        raise Http404
+
+    can_change_password = request.user.has_usable_password()
+    
+    if can_change_password:
+        if request.method == 'POST':
+            form = PasswordPoliciesChangeForm(request.user, request.POST)
+
+            if form.is_valid():
+                form.save()
+                update_session_auth_hash(request, form.user)
+
+                messages.success(request, _("Your password has been changed successfully!"))
+                return redirect('wagtailadmin_account')
+        else:
+            form = PasswordPoliciesChangeForm(request.user)
+    else:
+        form = None
+
+    return render(request, 'wagtailadmin/account/change_password.html', {
+        'form': form,
+        'can_change_password': can_change_password,
+    })