Mirror
/
zulip
mirror of https://github.com/zulip/zulip.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
zulip/zerver/lib/email_validation.py

210 lines
6.2 KiB
Python
Raw Normal View History

refactor: Extract get_existing_user_errors. This is a prep commit that will allow us to more efficiently validate a bunch of emails in the invite UI. This commit does not yet change any behavior or performance. A secondary goal of this commit is to prepare us to eliminate some hackiness related to how we construct `ValidationError` exceptions. It preserves some quirks of the prior implementation: - the strings we decided to translate here appear haphazard (and often get ignored anyway) - we use `msg` in most codepaths, but use `code` for invites Right now we never actually call this with more than one email, but that will change soon. Note that part of the rationale for the inner method here is to avoid a test coverage bug with `continue` in loops.
2020-03-02 16:07:19 +01:00
from typing import Callable, Dict, Optional, Set, Tuple
refactor: Extract zerver/lib/email_validation.py.
2020-03-05 13:54:37 +01:00
refactor: Extract validate_email_is_valid(). This has two goals: - sets up a future commit to bulk-validate emails - the extracted function is more simple, since it just has errors, and no codes or deactivated flags This commit leaves us in a somewhat funny intermediate state where we have `action.validate_email` being a glorified two-line function with strange parameters, but subsequent commits will clean this up: - we will eliminate validate_email - we will move most of the guts of its other callee to lib/email_validation.py To be clear, the code is correct here, just kinda in an ugly, temporarily-disorganized intermediate state.
2020-03-02 22:26:24 +01:00
from django.core import validators
from django.core.exceptions import ValidationError
from django.utils.translation import ugettext as _
refactor: Extract zerver/lib/email_validation.py.
2020-03-05 13:54:37 +01:00
python: Sort imports with isort. Fixes #2665. Regenerated by tabbott with `lint --fix` after a rebase and change in parameters. Note from tabbott: In a few cases, this converts technical debt in the form of unsorted imports into different technical debt in the form of our largest files having very long, ugly import sequences at the start. I expect this change will increase pressure for us to split those files, which isn't a bad thing. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-11 00:54:34 +02:00
from zerver.lib.name_restrictions import is_disposable_domain
isort: Enable black profile. Our isort configuration was almost Black-compatible, but we were missing ensure_newline_before_comments. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-09-02 05:21:28 +02:00
refactor: Extract zerver/lib/email_validation.py.
2020-03-05 13:54:37 +01:00
# TODO: Move DisposableEmailError, etc. into here.
from zerver.models import (
DisposableEmailError,
DomainNotAllowedForRealmError,
EmailContainsPlusError,
Realm,
RealmDomain,
python: Sort imports with isort. Fixes #2665. Regenerated by tabbott with `lint --fix` after a rebase and change in parameters. Note from tabbott: In a few cases, this converts technical debt in the form of unsorted imports into different technical debt in the form of our largest files having very long, ugly import sequences at the start. I expect this change will increase pressure for us to split those files, which isn't a bad thing. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-11 00:54:34 +02:00
email_to_domain,
email_to_username,
get_users_by_delivery_email,
is_cross_realm_bot_email,
refactor: Extract zerver/lib/email_validation.py.
2020-03-05 13:54:37 +01:00
)
python: Sort imports with isort. Fixes #2665. Regenerated by tabbott with `lint --fix` after a rebase and change in parameters. Note from tabbott: In a few cases, this converts technical debt in the form of unsorted imports into different technical debt in the form of our largest files having very long, ugly import sequences at the start. I expect this change will increase pressure for us to split those files, which isn't a bad thing. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-11 00:54:34 +02:00
refactor: Extract zerver/lib/email_validation.py.
2020-03-05 13:54:37 +01:00
def validate_disposable(email: str) -> None:
if is_disposable_domain(email_to_domain(email)):
raise DisposableEmailError
def get_realm_email_validator(realm: Realm) -> Callable[[str], None]:
if not realm.emails_restricted_to_domains:
# Should we also do '+' check for non-resticted realms?
if realm.disallow_disposable_email_addresses:
return validate_disposable
# allow any email through
return lambda email: None
'''
RESTRICTIVE REALMS:
Some realms only allow emails within a set
of domains that are configured in RealmDomain.
We get the set of domains up front so that
folks can validate multiple emails without
multiple round trips to the database.
'''
query = RealmDomain.objects.filter(realm=realm)
rows = list(query.values('allow_subdomains', 'domain'))
allowed_domains = {
r['domain'] for r in rows
}
allowed_subdomains = {
r['domain'] for r in rows
if r['allow_subdomains']
}
def validate(email: str) -> None:
'''
We don't have to do a "disposable" check for restricted
domains, since the realm is already giving us
a small whitelist.
'''
if '+' in email_to_username(email):
raise EmailContainsPlusError
domain = email_to_domain(email)
if domain in allowed_domains:
return
while len(domain) > 0:
subdomain, sep, domain = domain.partition('.')
if domain in allowed_subdomains:
return
raise DomainNotAllowedForRealmError
return validate
# Is a user with the given email address allowed to be in the given realm?
# (This function does not check whether the user has been invited to the realm.
# So for invite-only realms, this is the test for whether a user can be invited,
# not whether the user can sign up currently.)
def email_allowed_for_realm(email: str, realm: Realm) -> None:
'''
Avoid calling this in a loop!
Instead, call get_realm_email_validator()
outside of the loop.
'''
get_realm_email_validator(realm)(email)
refactor: Extract validate_email_is_valid(). This has two goals: - sets up a future commit to bulk-validate emails - the extracted function is more simple, since it just has errors, and no codes or deactivated flags This commit leaves us in a somewhat funny intermediate state where we have `action.validate_email` being a glorified two-line function with strange parameters, but subsequent commits will clean this up: - we will eliminate validate_email - we will move most of the guts of its other callee to lib/email_validation.py To be clear, the code is correct here, just kinda in an ugly, temporarily-disorganized intermediate state.
2020-03-02 22:26:24 +01:00
def validate_email_is_valid(
email: str,
validate_email_allowed_in_realm: Callable[[str], None],
) -> Optional[str]:
try:
validators.validate_email(email)
except ValidationError:
return _("Invalid address.")
try:
validate_email_allowed_in_realm(email)
except DomainNotAllowedForRealmError:
return _("Outside your domain.")
except DisposableEmailError:
return _("Please use your real email address.")
except EmailContainsPlusError:
return _("Email addresses containing + are not allowed.")
return None
refactor: Extract get_existing_user_errors. This is a prep commit that will allow us to more efficiently validate a bunch of emails in the invite UI. This commit does not yet change any behavior or performance. A secondary goal of this commit is to prepare us to eliminate some hackiness related to how we construct `ValidationError` exceptions. It preserves some quirks of the prior implementation: - the strings we decided to translate here appear haphazard (and often get ignored anyway) - we use `msg` in most codepaths, but use `code` for invites Right now we never actually call this with more than one email, but that will change soon. Note that part of the rationale for the inner method here is to avoid a test coverage bug with `continue` in loops.
2020-03-02 16:07:19 +01:00
def email_reserved_for_system_bots_error(email: str) -> str:
python: Convert percent formatting to Python 3.6 f-strings. Generated by pyupgrade --py36-plus. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-10 06:41:04 +02:00
return f'{email} is reserved for system bots'
refactor: Extract get_existing_user_errors. This is a prep commit that will allow us to more efficiently validate a bunch of emails in the invite UI. This commit does not yet change any behavior or performance. A secondary goal of this commit is to prepare us to eliminate some hackiness related to how we construct `ValidationError` exceptions. It preserves some quirks of the prior implementation: - the strings we decided to translate here appear haphazard (and often get ignored anyway) - we use `msg` in most codepaths, but use `code` for invites Right now we never actually call this with more than one email, but that will change soon. Note that part of the rationale for the inner method here is to avoid a test coverage bug with `continue` in loops.
2020-03-02 16:07:19 +01:00
def get_existing_user_errors(
target_realm: Realm,
emails: Set[str],
refactor: Avoid hacky use of ValidationError.code. We were using `code` to pass around messages. The `code` field is designed to be a code, not a human-readable message. It's possible that we don't actually need two flavors of messages for these type of validations, but I didn't want to change that yet. We **definitely** don't need to put two types of message in the exception, so I fix that. Instead, I just have the caller ask what level of detail it needs. I added a non-verbose message for the case of system bots. I removed the non-translated version of the message for deactivated accounts, which didn't have test coverage and is slightly more prone to leaking email info that we don't want to leak.
2020-03-05 17:24:47 +01:00
verbose: bool=False,
) -> Dict[str, Tuple[str, bool]]:
refactor: Extract get_existing_user_errors. This is a prep commit that will allow us to more efficiently validate a bunch of emails in the invite UI. This commit does not yet change any behavior or performance. A secondary goal of this commit is to prepare us to eliminate some hackiness related to how we construct `ValidationError` exceptions. It preserves some quirks of the prior implementation: - the strings we decided to translate here appear haphazard (and often get ignored anyway) - we use `msg` in most codepaths, but use `code` for invites Right now we never actually call this with more than one email, but that will change soon. Note that part of the rationale for the inner method here is to avoid a test coverage bug with `continue` in loops.
2020-03-02 16:07:19 +01:00
'''
We use this function even for a list of one emails.
It checks "new" emails to make sure that they don't
already exist. There's a bit of fiddly logic related
to cross-realm bots and mirror dummies too.
'''
performance: Add get_users_by_delivery_email(). The main purpose of this new function is to allow us to validate emails in bulk, which we don't do yet (still setting the stage for that). This is still a speedup, though, since in our caller we grab only three fields now. And other than that, we're essentially doing the same query for the single-email case, just outside the loop.
2020-03-02 18:56:52 +01:00
python: Convert assignment type annotations to Python 3.6 style. This commit was split by tabbott; this piece covers the vast majority of files in Zulip, but excludes scripts/, tools/, and puppet/ to help ensure we at least show the right error messages for Xenial systems. We can likely further refine the remaining pieces with some testing. Generated by com2ann, with whitespace fixes and various manual fixes for runtime issues: - invoiced_through: Optional[LicenseLedger] = models.ForeignKey( + invoiced_through: Optional["LicenseLedger"] = models.ForeignKey( -_apns_client: Optional[APNsClient] = None +_apns_client: Optional["APNsClient"] = None - notifications_stream: Optional[Stream] = models.ForeignKey('Stream', related_name='+', null=True, blank=True, on_delete=CASCADE) - signup_notifications_stream: Optional[Stream] = models.ForeignKey('Stream', related_name='+', null=True, blank=True, on_delete=CASCADE) + notifications_stream: Optional["Stream"] = models.ForeignKey('Stream', related_name='+', null=True, blank=True, on_delete=CASCADE) + signup_notifications_stream: Optional["Stream"] = models.ForeignKey('Stream', related_name='+', null=True, blank=True, on_delete=CASCADE) - author: Optional[UserProfile] = models.ForeignKey('UserProfile', blank=True, null=True, on_delete=CASCADE) + author: Optional["UserProfile"] = models.ForeignKey('UserProfile', blank=True, null=True, on_delete=CASCADE) - bot_owner: Optional[UserProfile] = models.ForeignKey('self', null=True, on_delete=models.SET_NULL) + bot_owner: Optional["UserProfile"] = models.ForeignKey('self', null=True, on_delete=models.SET_NULL) - default_sending_stream: Optional[Stream] = models.ForeignKey('zerver.Stream', null=True, related_name='+', on_delete=CASCADE) - default_events_register_stream: Optional[Stream] = models.ForeignKey('zerver.Stream', null=True, related_name='+', on_delete=CASCADE) + default_sending_stream: Optional["Stream"] = models.ForeignKey('zerver.Stream', null=True, related_name='+', on_delete=CASCADE) + default_events_register_stream: Optional["Stream"] = models.ForeignKey('zerver.Stream', null=True, related_name='+', on_delete=CASCADE) -descriptors_by_handler_id: Dict[int, ClientDescriptor] = {} +descriptors_by_handler_id: Dict[int, "ClientDescriptor"] = {} -worker_classes: Dict[str, Type[QueueProcessingWorker]] = {} -queues: Dict[str, Dict[str, Type[QueueProcessingWorker]]] = {} +worker_classes: Dict[str, Type["QueueProcessingWorker"]] = {} +queues: Dict[str, Dict[str, Type["QueueProcessingWorker"]]] = {} -AUTH_LDAP_REVERSE_EMAIL_SEARCH: Optional[LDAPSearch] = None +AUTH_LDAP_REVERSE_EMAIL_SEARCH: Optional["LDAPSearch"] = None Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-22 01:09:50 +02:00
errors: Dict[str, Tuple[str, bool]] = {}
refactor: Extract get_existing_user_errors. This is a prep commit that will allow us to more efficiently validate a bunch of emails in the invite UI. This commit does not yet change any behavior or performance. A secondary goal of this commit is to prepare us to eliminate some hackiness related to how we construct `ValidationError` exceptions. It preserves some quirks of the prior implementation: - the strings we decided to translate here appear haphazard (and often get ignored anyway) - we use `msg` in most codepaths, but use `code` for invites Right now we never actually call this with more than one email, but that will change soon. Note that part of the rationale for the inner method here is to avoid a test coverage bug with `continue` in loops.
2020-03-02 16:07:19 +01:00
performance: Add get_users_by_delivery_email(). The main purpose of this new function is to allow us to validate emails in bulk, which we don't do yet (still setting the stage for that). This is still a speedup, though, since in our caller we grab only three fields now. And other than that, we're essentially doing the same query for the single-email case, just outside the loop.
2020-03-02 18:56:52 +01:00
users = get_users_by_delivery_email(emails, target_realm).only(
invites: Fix regression w/email vs. delivery_email. In 220c2a5ff391e3de282c7ca6489282e727ffb558 I introduced a query to find invites by delivery_email but was still using email as the key. For most realms `email` and `delivery_email` are synonymous, so this temporary bug would not affect them. For realms that restrict emails, the invite would have probably failed for other reasons, but the symptom would have been less clear.
2020-03-12 14:54:49 +01:00
'delivery_email',
performance: Add get_users_by_delivery_email(). The main purpose of this new function is to allow us to validate emails in bulk, which we don't do yet (still setting the stage for that). This is still a speedup, though, since in our caller we grab only three fields now. And other than that, we're essentially doing the same query for the single-email case, just outside the loop.
2020-03-02 18:56:52 +01:00
'is_active',
'is_mirror_dummy',
)
'''
A note on casing: We will preserve the casing used by
the user for email in most of this code. The only
exception is when we do existence checks against
the `user_dict` dictionary. (We don't allow two
users in the same realm to have the same effective
delivery email.)
'''
invites: Fix regression w/email vs. delivery_email. In 220c2a5ff391e3de282c7ca6489282e727ffb558 I introduced a query to find invites by delivery_email but was still using email as the key. For most realms `email` and `delivery_email` are synonymous, so this temporary bug would not affect them. For realms that restrict emails, the invite would have probably failed for other reasons, but the symptom would have been less clear.
2020-03-12 14:54:49 +01:00
user_dict = {user.delivery_email.lower(): user for user in users}
performance: Add get_users_by_delivery_email(). The main purpose of this new function is to allow us to validate emails in bulk, which we don't do yet (still setting the stage for that). This is still a speedup, though, since in our caller we grab only three fields now. And other than that, we're essentially doing the same query for the single-email case, just outside the loop.
2020-03-02 18:56:52 +01:00
refactor: Extract get_existing_user_errors. This is a prep commit that will allow us to more efficiently validate a bunch of emails in the invite UI. This commit does not yet change any behavior or performance. A secondary goal of this commit is to prepare us to eliminate some hackiness related to how we construct `ValidationError` exceptions. It preserves some quirks of the prior implementation: - the strings we decided to translate here appear haphazard (and often get ignored anyway) - we use `msg` in most codepaths, but use `code` for invites Right now we never actually call this with more than one email, but that will change soon. Note that part of the rationale for the inner method here is to avoid a test coverage bug with `continue` in loops.
2020-03-02 16:07:19 +01:00
def process_email(email: str) -> None:
if is_cross_realm_bot_email(email):
refactor: Avoid hacky use of ValidationError.code. We were using `code` to pass around messages. The `code` field is designed to be a code, not a human-readable message. It's possible that we don't actually need two flavors of messages for these type of validations, but I didn't want to change that yet. We **definitely** don't need to put two types of message in the exception, so I fix that. Instead, I just have the caller ask what level of detail it needs. I added a non-verbose message for the case of system bots. I removed the non-translated version of the message for deactivated accounts, which didn't have test coverage and is slightly more prone to leaking email info that we don't want to leak.
2020-03-05 17:24:47 +01:00
if verbose:
msg = email_reserved_for_system_bots_error(email)
else:
msg = _('Reserved for system bots.')
refactor: Extract get_existing_user_errors. This is a prep commit that will allow us to more efficiently validate a bunch of emails in the invite UI. This commit does not yet change any behavior or performance. A secondary goal of this commit is to prepare us to eliminate some hackiness related to how we construct `ValidationError` exceptions. It preserves some quirks of the prior implementation: - the strings we decided to translate here appear haphazard (and often get ignored anyway) - we use `msg` in most codepaths, but use `code` for invites Right now we never actually call this with more than one email, but that will change soon. Note that part of the rationale for the inner method here is to avoid a test coverage bug with `continue` in loops.
2020-03-02 16:07:19 +01:00
deactivated = False
refactor: Avoid hacky use of ValidationError.code. We were using `code` to pass around messages. The `code` field is designed to be a code, not a human-readable message. It's possible that we don't actually need two flavors of messages for these type of validations, but I didn't want to change that yet. We **definitely** don't need to put two types of message in the exception, so I fix that. Instead, I just have the caller ask what level of detail it needs. I added a non-verbose message for the case of system bots. I removed the non-translated version of the message for deactivated accounts, which didn't have test coverage and is slightly more prone to leaking email info that we don't want to leak.
2020-03-05 17:24:47 +01:00
errors[email] = (msg, deactivated)
refactor: Extract get_existing_user_errors. This is a prep commit that will allow us to more efficiently validate a bunch of emails in the invite UI. This commit does not yet change any behavior or performance. A secondary goal of this commit is to prepare us to eliminate some hackiness related to how we construct `ValidationError` exceptions. It preserves some quirks of the prior implementation: - the strings we decided to translate here appear haphazard (and often get ignored anyway) - we use `msg` in most codepaths, but use `code` for invites Right now we never actually call this with more than one email, but that will change soon. Note that part of the rationale for the inner method here is to avoid a test coverage bug with `continue` in loops.
2020-03-02 16:07:19 +01:00
return
performance: Add get_users_by_delivery_email(). The main purpose of this new function is to allow us to validate emails in bulk, which we don't do yet (still setting the stage for that). This is still a speedup, though, since in our caller we grab only three fields now. And other than that, we're essentially doing the same query for the single-email case, just outside the loop.
2020-03-02 18:56:52 +01:00
existing_user_profile = user_dict.get(email.lower())
if existing_user_profile is None:
refactor: Extract get_existing_user_errors. This is a prep commit that will allow us to more efficiently validate a bunch of emails in the invite UI. This commit does not yet change any behavior or performance. A secondary goal of this commit is to prepare us to eliminate some hackiness related to how we construct `ValidationError` exceptions. It preserves some quirks of the prior implementation: - the strings we decided to translate here appear haphazard (and often get ignored anyway) - we use `msg` in most codepaths, but use `code` for invites Right now we never actually call this with more than one email, but that will change soon. Note that part of the rationale for the inner method here is to avoid a test coverage bug with `continue` in loops.
2020-03-02 16:07:19 +01:00
# HAPPY PATH! Most people invite users that don't exist yet.
return
if existing_user_profile.is_mirror_dummy:
if existing_user_profile.is_active:
raise AssertionError("Mirror dummy user is already active!")
return
'''
Email has already been taken by a "normal" user.
'''
deactivated = not existing_user_profile.is_active
if existing_user_profile.is_active:
refactor: Avoid hacky use of ValidationError.code. We were using `code` to pass around messages. The `code` field is designed to be a code, not a human-readable message. It's possible that we don't actually need two flavors of messages for these type of validations, but I didn't want to change that yet. We **definitely** don't need to put two types of message in the exception, so I fix that. Instead, I just have the caller ask what level of detail it needs. I added a non-verbose message for the case of system bots. I removed the non-translated version of the message for deactivated accounts, which didn't have test coverage and is slightly more prone to leaking email info that we don't want to leak.
2020-03-05 17:24:47 +01:00
if verbose:
python: Convert percent formatting to .format for translated strings. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-15 23:22:24 +02:00
msg = _('{email} already has an account').format(email=email)
refactor: Avoid hacky use of ValidationError.code. We were using `code` to pass around messages. The `code` field is designed to be a code, not a human-readable message. It's possible that we don't actually need two flavors of messages for these type of validations, but I didn't want to change that yet. We **definitely** don't need to put two types of message in the exception, so I fix that. Instead, I just have the caller ask what level of detail it needs. I added a non-verbose message for the case of system bots. I removed the non-translated version of the message for deactivated accounts, which didn't have test coverage and is slightly more prone to leaking email info that we don't want to leak.
2020-03-05 17:24:47 +01:00
else:
msg = _("Already has an account.")
refactor: Extract get_existing_user_errors. This is a prep commit that will allow us to more efficiently validate a bunch of emails in the invite UI. This commit does not yet change any behavior or performance. A secondary goal of this commit is to prepare us to eliminate some hackiness related to how we construct `ValidationError` exceptions. It preserves some quirks of the prior implementation: - the strings we decided to translate here appear haphazard (and often get ignored anyway) - we use `msg` in most codepaths, but use `code` for invites Right now we never actually call this with more than one email, but that will change soon. Note that part of the rationale for the inner method here is to avoid a test coverage bug with `continue` in loops.
2020-03-02 16:07:19 +01:00
else:
refactor: Avoid hacky use of ValidationError.code. We were using `code` to pass around messages. The `code` field is designed to be a code, not a human-readable message. It's possible that we don't actually need two flavors of messages for these type of validations, but I didn't want to change that yet. We **definitely** don't need to put two types of message in the exception, so I fix that. Instead, I just have the caller ask what level of detail it needs. I added a non-verbose message for the case of system bots. I removed the non-translated version of the message for deactivated accounts, which didn't have test coverage and is slightly more prone to leaking email info that we don't want to leak.
2020-03-05 17:24:47 +01:00
msg = _("Account has been deactivated.")
refactor: Extract get_existing_user_errors. This is a prep commit that will allow us to more efficiently validate a bunch of emails in the invite UI. This commit does not yet change any behavior or performance. A secondary goal of this commit is to prepare us to eliminate some hackiness related to how we construct `ValidationError` exceptions. It preserves some quirks of the prior implementation: - the strings we decided to translate here appear haphazard (and often get ignored anyway) - we use `msg` in most codepaths, but use `code` for invites Right now we never actually call this with more than one email, but that will change soon. Note that part of the rationale for the inner method here is to avoid a test coverage bug with `continue` in loops.
2020-03-02 16:07:19 +01:00
refactor: Avoid hacky use of ValidationError.code. We were using `code` to pass around messages. The `code` field is designed to be a code, not a human-readable message. It's possible that we don't actually need two flavors of messages for these type of validations, but I didn't want to change that yet. We **definitely** don't need to put two types of message in the exception, so I fix that. Instead, I just have the caller ask what level of detail it needs. I added a non-verbose message for the case of system bots. I removed the non-translated version of the message for deactivated accounts, which didn't have test coverage and is slightly more prone to leaking email info that we don't want to leak.
2020-03-05 17:24:47 +01:00
errors[email] = (msg, deactivated)
refactor: Extract get_existing_user_errors. This is a prep commit that will allow us to more efficiently validate a bunch of emails in the invite UI. This commit does not yet change any behavior or performance. A secondary goal of this commit is to prepare us to eliminate some hackiness related to how we construct `ValidationError` exceptions. It preserves some quirks of the prior implementation: - the strings we decided to translate here appear haphazard (and often get ignored anyway) - we use `msg` in most codepaths, but use `code` for invites Right now we never actually call this with more than one email, but that will change soon. Note that part of the rationale for the inner method here is to avoid a test coverage bug with `continue` in loops.
2020-03-02 16:07:19 +01:00
for email in emails:
process_email(email)
return errors
refactor: Move validate_email_not_already_in_realm. We move this to email_validation.py.
2020-03-05 16:56:08 +01:00
refactor: Avoid hacky use of ValidationError.code. We were using `code` to pass around messages. The `code` field is designed to be a code, not a human-readable message. It's possible that we don't actually need two flavors of messages for these type of validations, but I didn't want to change that yet. We **definitely** don't need to put two types of message in the exception, so I fix that. Instead, I just have the caller ask what level of detail it needs. I added a non-verbose message for the case of system bots. I removed the non-translated version of the message for deactivated accounts, which didn't have test coverage and is slightly more prone to leaking email info that we don't want to leak.
2020-03-05 17:24:47 +01:00
def validate_email_not_already_in_realm(target_realm: Realm,
email: str,
verbose: bool=True) -> None:
refactor: Move validate_email_not_already_in_realm. We move this to email_validation.py.
2020-03-05 16:56:08 +01:00
'''
NOTE:
Only use this to validate that a single email
is not already used in the realm.
We should start using bulk_check_new_emails()
for any endpoint that takes multiple emails,
such as the "invite" interface.
'''
refactor: Avoid hacky use of ValidationError.code. We were using `code` to pass around messages. The `code` field is designed to be a code, not a human-readable message. It's possible that we don't actually need two flavors of messages for these type of validations, but I didn't want to change that yet. We **definitely** don't need to put two types of message in the exception, so I fix that. Instead, I just have the caller ask what level of detail it needs. I added a non-verbose message for the case of system bots. I removed the non-translated version of the message for deactivated accounts, which didn't have test coverage and is slightly more prone to leaking email info that we don't want to leak.
2020-03-05 17:24:47 +01:00
error_dict = get_existing_user_errors(target_realm, {email}, verbose)
refactor: Move validate_email_not_already_in_realm. We move this to email_validation.py.
2020-03-05 16:56:08 +01:00
# Loop through errors, the only key should be our email.
for key, error_info in error_dict.items():
assert key == email
refactor: Avoid hacky use of ValidationError.code. We were using `code` to pass around messages. The `code` field is designed to be a code, not a human-readable message. It's possible that we don't actually need two flavors of messages for these type of validations, but I didn't want to change that yet. We **definitely** don't need to put two types of message in the exception, so I fix that. Instead, I just have the caller ask what level of detail it needs. I added a non-verbose message for the case of system bots. I removed the non-translated version of the message for deactivated accounts, which didn't have test coverage and is slightly more prone to leaking email info that we don't want to leak.
2020-03-05 17:24:47 +01:00
msg, deactivated = error_info
raise ValidationError(msg)