Fixed empty password check bug

[ais.git] / bin / djais / views.py

# -*- coding: utf-8 -*-

import os
from datetime import *
import re
from time import time as get_timestamp
import logging
import crack
import struct
import rrdtool
from django.http import *
from django.template import loader, RequestContext
from django import forms
from django.shortcuts import render_to_response, get_object_or_404
from django.db import IntegrityError

from decoratedstr import remove_decoration

from ais.djais.basicauth import http_authenticate
from ais.djais.models import *
from ais.show_targets_ships import *
from ais.common import Nmea, NmeaFeeder, strmmsi_to_mmsi, SHIP_TYPES, STATUS_CODES, AIS_STATUS_NOT_AVAILABLE, AIS_ROT_NOT_AVAILABLE, AIS_LATLON_SCALE, AIS_LON_NOT_AVAILABLE, AIS_LAT_NOT_AVAILABLE, AIS_COG_SCALE, AIS_COG_NOT_AVAILABLE, AIS_NO_HEADING, AIS_SOG_SCALE, AIS_SOG_NOT_AVAILABLE, AIS_SOG_MAX_SPEED, add_nmea1, add_nmea5_partial, load_fleet_to_uset
from ais.ntools import datetime_to_timestamp, clean_ais_charset
from ais.inputs.common import is_id4_active
from ais.inputs.stats import STATS_DIR
from ais.inputs.config import peers_get_config

def auth(username, raw_password):
    try:
        user = User.objects.get(login=username)
    except User.DoesNotExist:
        return None
    if not user.check_password(raw_password):
        return None
    # TODO: update access_datetime
    return user


@http_authenticate(auth, 'ais')
def index(request):
    return render_to_response('index.html', {}, RequestContext(request))


class VesselSearchForm(forms.Form):
    mmsi = forms.CharField(max_length=9, required=False)
    name = forms.CharField(max_length=20, required=False)
    imo = forms.IntegerField(required=False)
    callsign = forms.CharField(max_length=7, required=False)
    destination = forms.CharField(max_length=20, required=False)
    def clean(self):
        cleaned_data = self.cleaned_data
        for value in cleaned_data.values():
            if value:
                return cleaned_data
        raise forms.ValidationError("You must enter at least one criteria")



@http_authenticate(auth, 'ais')
def vessel_search(request):
    if request.method == 'POST' or request.META['QUERY_STRING']:
        form = VesselSearchForm(request.REQUEST)
        if form.is_valid():
            data = form.cleaned_data
            vessels = Vessel.objects
            if data['mmsi']:
                vessels = vessels.filter(mmsi=strmmsi_to_mmsi(data['mmsi']))
            if data['name']:
                vessels = vessels.filter(name__contains=data['name'].upper())
            if data['imo']:
                vessels = vessels.filter(imo=data['imo'])
            if data['callsign']:
                vessels = vessels.filter(callsign__contains=data['callsign'].upper())
            if data['destination']:
                vessels = vessels.filter(destination__contains=data['destination'].upper())
            return render_to_response('vessels.html', {'vessels': vessels}, RequestContext(request))
    else: # GET
        form = VesselSearchForm()

    return render_to_response('vessel_index.html', {'form': form}, RequestContext(request))

@http_authenticate(auth, 'ais')
def vessel(request, strmmsi):
    mmsi = strmmsi_to_mmsi(strmmsi)
    vessel = get_object_or_404(Vessel, pk=mmsi)
    nmea = Nmea.new_from_lastinfo(strmmsi)
    #if not nmea.timestamp_1 and not nmea.timestamp_5:
    #    raise Http404
    return render_to_response('vessel.html', {'nmea': nmea}, RequestContext(request))


class VesselManualInputForm(forms.Form):
    timestamp = forms.DateTimeField(label=u'When', help_text=u'When was the observation made in GMT. Use YYYY-MM-DD HH:MM:SS format')
    imo = forms.IntegerField(required=False, min_value=1000000, max_value=9999999)
    name = forms.CharField(max_length=20, required=False)
    callsign = forms.CharField(max_length=7, required=False)
    type = forms.TypedChoiceField(required=False, choices = [ kv for kv in SHIP_TYPES.iteritems() if 'reserved' not in kv[1].lower()], coerce=int, empty_value=0, initial=0)
    status = forms.TypedChoiceField(required=False, choices = [ kv for kv in STATUS_CODES.iteritems() if 'reserved' not in kv[1].lower()], coerce=int, empty_value=AIS_STATUS_NOT_AVAILABLE, initial=AIS_STATUS_NOT_AVAILABLE)
    sog = forms.FloatField(label='Speed', help_text='Over ground, in knots', required=False, min_value=0, max_value=AIS_SOG_MAX_SPEED/AIS_SOG_SCALE)
    latitude = forms.CharField(required=False)
    longitude = forms.CharField(required=False)
    cog = forms.FloatField(label='Course', help_text='Over ground', required=False, min_value=0.0, max_value=359.9)
    heading = forms.IntegerField(required=False, min_value=0, max_value=359)

    @staticmethod
    def _clean_ais_charset(ustr):
        ustr = remove_decoration(ustr) # benign cleaning, but can increase size (œ->oe)
        ustr = ustr.upper() # benign cleaning
        str = clean_ais_charset(ustr.encode('ascii', 'replace'))
        if unicode(str) != ustr:
            raise forms.ValidationError('Invalid character: AIS alphabet is @ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^- !"#$%&\'()*+,-./0123456789:;<=>?')
        return str

    def clean_timestamp(self):
        data = self.cleaned_data['timestamp']
        if data is None:
            return None
        if data < datetime.utcnow() - timedelta(365):
            raise forms.ValidationError('Date is too much is the past.')
        if data > datetime.utcnow():
            raise forms.ValidationError('Date is be in the future. This form is only for observed results.')
        return datetime_to_timestamp(data)

    def clean_imo(self):
        data = self.cleaned_data['imo']
        if data is None:
            return 0
        return data

    def clean_name(self):
        name = self.cleaned_data['name']
        if name is None:
            return ''
        name = VesselManualInputForm._clean_ais_charset(name)
        if len(name)>20:
            raise forms.ValidationError('Ensure this value has at most 20 characters (it has %s).' % len(name))
        return name

    def clean_callsign(self):
        callsign = self.cleaned_data['callsign']
        if callsign is None:
            return ''
        callsign = VesselManualInputForm._clean_ais_charset(callsign)
        if len(callsign)>7:
            raise forms.ValidationError('Ensure this value has at most 7 characters (it has %s).' % len(callsign))
        return callsign

    def clean_sog(self):
        sog = self.cleaned_data['sog']
        if sog is None:
            return AIS_SOG_NOT_AVAILABLE
        return int(sog*AIS_SOG_SCALE)

    def clean_latitude(self):
        data = self.cleaned_data['latitude']
        data = data.replace(u"''", u'"') # commong mistake
        data = data.replace(u' ', u'') # remove spaces
        sides = u'SN'
        if not data:
            return AIS_LAT_NOT_AVAILABLE
        tmp, side = data[:-1], data[-1]
        if side == sides[0]:
            side = -1
        elif side == sides[1]:
            side = 1
        else:
            raise forms.ValidationError(u'Last character must be either %s or %s.' % (sides[0], sides[1]))
        spl = tmp.split(u'°')
        if len(spl) == 1:
            raise forms.ValidationError(u'You need to use the ° character.')
        d, tmp = spl
        try:
            d = float(d)
        except ValueError:
            raise forms.ValidationError(u'Degrees must be an number. It\'s %s.' % d)
        spl = tmp.split(u"'", 1)
        if len(spl) == 1:
            # no ' sign: ok only if there is nothing but the side after °
            # we don't accept seconds if there is no minutes:
            # It might be an entry mistake
            tmp = spl[0]
            if len(tmp) == 0:
                m = s = 0
            else:
                raise forms.ValidationError(u'You must use the \' character between ° and %s.' % data[-1])
        else:
            m, tmp = spl
            try:
                m = float(m)
            except ValueError:
                raise forms.ValidationError(u'Minutes must be an number. It\'s %s.' % m)
            if len(tmp) == 0:
                s = 0
            else:
                if tmp[-1] != '"':
                    raise forms.ValidationError(u'You must use the " character between seconds and %s.' % data[-1])
                s = tmp[:-1]
                try:
                    s = float(s)
                except ValueError:
                    raise forms.ValidationError(u'Seconds must be an number. It\'s %s.' % s)
        data = side * ( d + m / 60 + s / 3600)

        if data < -90 or data > 90:
            raise forms.ValidationError(u'%s in not in -90..90 range' % data)
        return int(data * AIS_LATLON_SCALE)

    def clean_longitude(self):
        data = self.cleaned_data['longitude']
        data = data.replace(u"''", u'"') # commong mistake
        data = data.replace(u' ', u'') # remove spaces
        sides = u'WE'
        if not data:
            return AIS_LON_NOT_AVAILABLE
        tmp, side = data[:-1], data[-1]
        if side == sides[0]:
            side = -1
        elif side == sides[1]:
            side = 1
        else:
            raise forms.ValidationError(u'Last character must be either %s or %s.' % (sides[0], sides[1]))
        spl = tmp.split(u'°')
        if len(spl) == 1:
            raise forms.ValidationError(u'You need to use the ° character.')
        d, tmp = spl
        try:
            d = float(d)
        except ValueError:
            raise forms.ValidationError(u'Degrees must be an number. It\'s %s.' % d)
        spl = tmp.split(u"'", 1)
        if len(spl) == 1:
            # no ' sign: ok only if there is nothing but the side after °
            # we don't accept seconds if there is no minutes:
            # It might be an entry mistake
            tmp = spl[0]
            if len(tmp) == 0:
                m = s = 0
            else:
                raise forms.ValidationError(u'You must use the \' character between ° and %s.' % data[-1])
        else:
            m, tmp = spl
            try:
                m = float(m)
            except ValueError:
                raise forms.ValidationError(u'Minutes must be an number. It\'s %s.' % m)
            if len(tmp) == 0:
                s = 0
            else:
                if tmp[-1] != '"':
                    raise forms.ValidationError(u'You must use the " character between seconds and %s.' % data[-1])
                s = tmp[:-1]
                try:
                    s = float(s)
                except ValueError:
                    raise forms.ValidationError(u'Seconds must be an number. It\'s %s.' % s)
        data = side * ( d + m / 60 + s / 3600)

        if data < -180 or data > 180:
            raise forms.ValidationError(u'%s in not in -180..180 range' % data)
        return int(data * AIS_LATLON_SCALE)

    def clean_cog(self):
        data = self.cleaned_data['cog']
        if data is None:
            return AIS_COG_NOT_AVAILABLE
        return int(data * AIS_COG_SCALE)
    
    def clean_heading(self):
        #raise forms.ValidationError(u'clean_heading called')
        data = self.cleaned_data['heading']
        if data is None:
            return AIS_NO_HEADING
        return data

    def clean(self):
        cleaned_data = self.cleaned_data
        if (cleaned_data.get('latitude', AIS_LAT_NOT_AVAILABLE) == AIS_LAT_NOT_AVAILABLE ) ^ ( cleaned_data.get('longitude', AIS_LON_NOT_AVAILABLE) == AIS_LON_NOT_AVAILABLE):
            raise forms.ValidationError('It makes no sense to enter just a latitude or a longitude. Enter both or none.')
        if cleaned_data.get('latitude', AIS_LAT_NOT_AVAILABLE) == AIS_LAT_NOT_AVAILABLE:
            if cleaned_data.get('status', AIS_STATUS_NOT_AVAILABLE) != AIS_STATUS_NOT_AVAILABLE:
                raise forms.ValidationError('It makes no sense to enter a status without coordinates. Please enter latitute and longitude too.')
            if cleaned_data.get('sog', AIS_SOG_NOT_AVAILABLE) != AIS_SOG_NOT_AVAILABLE:
                raise forms.ValidationError('It makes no sense to enter a speed without coordinates. Please enter latitute and longitude too.')
            if cleaned_data.get('cog', AIS_COG_NOT_AVAILABLE) != AIS_COG_NOT_AVAILABLE:
                raise forms.ValidationError('It makes no sense to enter a course without coordinates. Please enter latitute and longitude too.')
            if cleaned_data.get('heading', AIS_NO_HEADING) != AIS_NO_HEADING:
                raise forms.ValidationError('It makes no sense to enter a heading without coordinates. Please enter latitute and longitude too.')

        if cleaned_data.get('timestamp', None) \
        and cleaned_data.get('imo', 0) == 0 \
        and cleaned_data.get('name', '') == '' \
        and cleaned_data.get('callsign', '') == '' \
        and cleaned_data.get('type', 0) == 0 \
        and cleaned_data.get('status', AIS_STATUS_NOT_AVAILABLE) == AIS_STATUS_NOT_AVAILABLE \
        and cleaned_data.get('sog', AIS_SOG_NOT_AVAILABLE) == AIS_SOG_NOT_AVAILABLE \
        and cleaned_data.get('latitude', AIS_LAT_NOT_AVAILABLE) == AIS_LAT_NOT_AVAILABLE \
        and cleaned_data.get('longitude', AIS_LON_NOT_AVAILABLE) == AIS_LON_NOT_AVAILABLE \
        and cleaned_data.get('cog', AIS_COG_NOT_AVAILABLE) == AIS_COG_NOT_AVAILABLE \
        and cleaned_data.get('heading', AIS_NO_HEADING) == AIS_NO_HEADING:
            raise forms.ValidationError("You must enter some data, beside when.")
        return cleaned_data

@http_authenticate(auth, 'ais')
def vessel_manual_input(request, strmmsi):
    strmmsi = strmmsi.encode('utf-8')
    nmea = Nmea.new_from_lastinfo(strmmsi)
    if request.method == 'POST' or request.META['QUERY_STRING']:
        form = VesselManualInputForm(request.REQUEST)
        if form.is_valid():
            data = form.cleaned_data
            source = 'U' +  struct.pack('<I', request.user.id)[0:3]
            result = u''
            if data['imo'] != 0 \
            or data['name'] != '' \
            or data['callsign'] != '' \
            or data['type'] != 0:
                toto = (strmmsi, data['timestamp'], data['imo'], data['name'], data['callsign'], data['type'], 0,0,0,0, 0,0,24,60, 0, '', source)
                result += 'UPDATING NMEA 5: '+repr(toto)+'<br>'
                add_nmea5_partial(*toto)
            if data['status'] != AIS_STATUS_NOT_AVAILABLE \
            or data['sog'] != AIS_SOG_NOT_AVAILABLE \
            or data['latitude'] != AIS_LAT_NOT_AVAILABLE \
            or data['longitude'] != AIS_LON_NOT_AVAILABLE \
            or data['cog'] != AIS_COG_NOT_AVAILABLE \
            or data['heading'] != AIS_NO_HEADING:
                
                toto = (strmmsi, data['timestamp'], data['status'], AIS_ROT_NOT_AVAILABLE, data['sog'], data['latitude'], data['longitude'], data['cog'], data['heading'], source)
                result += 'UPDATING NMEA 1: '+repr(toto)+'<br>'
                add_nmea1(*toto)
            return HttpResponse('Not fully implemented: '+repr(data) + '<br>' + result)
    else: # GET
        form = VesselManualInputForm()
    return render_to_response('vessel_manual_input.html', {'form': form, 'nmea': nmea}, RequestContext(request))

@http_authenticate(auth, 'ais')
def vessel_track(request, strmmsi):
    ndays = request.REQUEST.get('ndays', 90)
    try:
        ndays = int(ndays)
    except ValueError:
        ndays = 90
    grain = request.REQUEST.get('grain', 3600)
    try:
        grain = int(grain)
    except ValueError:
        grain = 3600
    date_end = datetime.utcnow()
    date_start = date_end - timedelta(ndays)
    nmea_iterator = NmeaFeeder(strmmsi, date_end, date_start, granularity=grain)
    value = kml_to_kmz(format_boat_track(nmea_iterator))
    response = HttpResponse(value, mimetype="application/vnd.google-earth.kml")
    response['Content-Disposition'] = 'attachment; filename=%s.kmz' % strmmsi
    return response


@http_authenticate(auth, 'ais')
def vessel_animation(request, strmmsi):
    ndays = request.REQUEST.get('ndays', 90)
    try:
        ndays = int(ndays)
    except ValueError:
        ndays = 90
    grain = request.REQUEST.get('grain', 3600)
    try:
        grain = int(grain)
    except ValueError:
        grain = 3600
    date_end = datetime.utcnow()
    date_start = date_end - timedelta(ndays)
    nmea_iterator = NmeaFeeder(strmmsi, date_end, date_start, granularity=grain)
    value = kml_to_kmz(format_boat_intime(nmea_iterator))
    response = HttpResponse(value, mimetype="application/vnd.google-earth.kml")
    response['Content-Disposition'] = 'attachment; filename=%s.kmz' % strmmsi
    return response


@http_authenticate(auth, 'ais')
def fleets(request):
    fleetusers = request.user.fleetuser_set.all()
    return render_to_response('fleets.html', {'fleetusers':fleetusers}, RequestContext(request))


@http_authenticate(auth, 'ais')
def fleet(request, fleetname):
    fleet = get_object_or_404(Fleet, pk=fleetname)
    if not FleetUser.objects.filter(fleet=fleetname, user=request.user.id).all():
        return HttpResponseForbidden('<h1>Forbidden</h1>')
    return render_to_response('fleet.html', {'fleet':fleet}, RequestContext(request))


@http_authenticate(auth, 'ais')
def fleet_vessels(request, fleetname):
    fleet = get_object_or_404(Fleet, pk=fleetname)
    if not FleetUser.objects.filter(fleet=fleetname, user=request.user.id).all():
        return HttpResponseForbidden('<h1>Forbidden</h1>')
    vessels = fleet.vessel.all()
    return render_to_response('fleet_vessels.html', {'fleet':fleet, 'vessels': vessels}, RequestContext(request))


@http_authenticate(auth, 'ais')
def fleet_vessel_add(request, fleetname):
    fleet = get_object_or_404(Fleet, pk=fleetname)
    if not FleetUser.objects.filter(fleet=fleetname, user=request.user.id).all():
        return HttpResponseForbidden('<h1>Forbidden</h1>')
    strmmsi = request.REQUEST['mmsi']
    mmsi = strmmsi_to_mmsi(strmmsi)
    try:
        vessel = Vessel.objects.get(pk=mmsi)
    except Vessel.DoesNotExist:
        return HttpResponse('No such vessel')
    try:
        FleetVessel(fleet=fleet, vessel=vessel).save()
    except IntegrityError:
        return HttpResponse('Integrity error: Is the ship already in that fleet?')
    return HttpResponse('Done')


class FleetAddVessel(forms.Form):
    mmsi = forms.CharField(help_text=u'Enter one MMSI per line', required=False, widget=forms.Textarea)
    #name = forms.CharField(max_length=20, required=False)
    #imo = forms.IntegerField(required=False)
    #callsign = forms.CharField(max_length=7, required=False)
    #destination = forms.CharField(max_length=20, required=False)
    def clean(self):
        cleaned_data = self.cleaned_data
        for value in cleaned_data.values():
            if value:
                return cleaned_data
        raise forms.ValidationError("You must enter at least one criteria")

@http_authenticate(auth, 'ais')
def fleet_vessel_add2(request, fleetname):
    fleet = get_object_or_404(Fleet, pk=fleetname)
    if not FleetUser.objects.filter(fleet=fleetname, user=request.user.id).all():
        return HttpResponseForbidden('<h1>Forbidden</h1>')
    if request.method == 'POST' or request.META['QUERY_STRING']:
        form = FleetAddVessel(request.REQUEST)
        if form.is_valid():
            data = form.cleaned_data
            result = []
            a_strmmsi = request.REQUEST['mmsi']
            if a_strmmsi:
                for strmmsi in a_strmmsi.split('\n'):
                    strmmsi = strmmsi.strip('\r')
                    if not strmmsi:
                        continue
                    try:
                        sqlmmsi = strmmsi_to_mmsi(strmmsi)
                    except AssertionError:
                        result.append('Invalid mmsi %s' % strmmsi)
                        continue
                    try:
                        vessel = Vessel.objects.get(pk=sqlmmsi)
                    except Vessel.DoesNotExist:
                        result.append('No vessel with MMSI '+strmmsi)
                        continue
                    try:
                        fv = FleetVessel.objects.get(fleet=fleet, vessel=vessel)
                        result.append('Vessel with MMSI %s is already in that fleet' % strmmsi)
                    except FleetVessel.DoesNotExist:
                        FleetVessel(fleet=fleet, vessel=vessel).save()
                        result.append('Vessel with MMSI %s added' % strmmsi)

            return HttpResponse('<br>'.join(result))
    else: # GET
        form = FleetAddVessel()

    return render_to_response('fleet_vessel_add.html', {'form': form, 'fleet': fleet}, RequestContext(request))


@http_authenticate(auth, 'ais')
def fleet_users(request, fleetname):
    fleet = get_object_or_404(Fleet, pk=fleetname)
    if not FleetUser.objects.filter(fleet=fleetname, user=request.user.id).all():
        return HttpResponseForbidden('<h1>Forbidden</h1>')

    message = u''
    if request.method == 'POST' or request.META['QUERY_STRING']:
        action = request.REQUEST['action']
        userlogin = request.REQUEST['user']
        try:
            user = User.objects.get(login=userlogin)
        except User.DoesNotExist:
            message = u'User %s does not exist.' % userlogin
        else:
            if action == u'add':
                try:
                    fu = FleetUser.objects.get(fleet=fleet, user=user)
                    message = u'User %s already has access.' % user.login
                except FleetUser.DoesNotExist:
                    FleetUser(fleet=fleet, user=user).save()
                    message = u'Granted access to user %s.' % user.login
            elif action == u'revoke':
                try:
                    fu = FleetUser.objects.get(fleet=fleet, user=user)
                    fu.delete()
                    message = u'Revoked access to user %s.' % user.login
                except FleetUser.DoesNotExist:
                    message = u'User %s didn\'t have access.' % user.login
            else:
                message = u'Unknown action %s' % action

    fleetusers = fleet.fleetuser_set.all()
    otherusers = User.objects.exclude(id__in=[fu.user.id for fu in fleetusers]).order_by('name')
    return render_to_response('fleet_users.html', {'fleet':fleet, 'fleetusers': fleetusers, 'otherusers': otherusers, 'message': message }, RequestContext(request))


@http_authenticate(auth, 'ais')
def fleet_lastpos(request, fleetname):
    fleet = get_object_or_404(Fleet, pk=fleetname)
    if not FleetUser.objects.filter(fleet=fleetname, user=request.user.id).all():
        return HttpResponseForbidden('<h1>Forbidden</h1>')
    fleet_uset = load_fleet_to_uset(fleetname)
    # = set([mmsi_to_strmmsi(vessel.mmsi) for vessel in fleet.vessel.all()])
    value = kml_to_kmz(format_fleet(fleet_uset, document_name=fleetname+' fleet').encode('utf-8'))
    response = HttpResponse(value, mimetype="application/vnd.google-earth.kml")
    response['Content-Disposition'] = 'attachment; filename=%s.kmz' % fleetname
    return response


@http_authenticate(auth, 'ais')
def users(request):
    users = User.objects.all()
    for user in users:
        user.admin_ok = user.is_admin_by(request.user.id)
    if request.REQUEST.has_key('showtree'):
        local_users = {}
        for user in users:
            user.children = []
            local_users[user.id] = user
        for user in users:
            if user.father_id == None:
                root = user
            else:
                local_users[user.father_id].children.append(user)
        assert root
        return render_to_response('users_tree.html', {'root': root, 'auser': request.user.id}, RequestContext(request))
    else:
        return render_to_response('users.html', {'users':users}, RequestContext(request))

phone_re = re.compile('^\\+.+')

class UserEditForm(forms.Form):
    login = forms.RegexField(regex=r'^[a-zA-Z0-9_]+$', max_length=16,
        error_message ='Login must only contain letters, numbers and underscores')
    name = forms.CharField(max_length=50)
    email = forms.EmailField()
    phone = forms.RegexField(regex='\\+.+', max_length=20, required=False,
        error_message ='Phones must start with a \'+\'')
    def __init__(self, *args, **kargs):
        forms.Form.__init__(self, *args, **kargs)
        self.old_login = kargs['initial']['login']
    def clean_login(self):
        new_login = self.cleaned_data['login']
        if new_login != self.old_login:
            if User.objects.filter(login=new_login).count():
                raise forms.ValidationError("Sorry that login is already in use. Try another one.")
            if new_login == u'add':
                raise forms.ValidationError("Sorry that login is reserved. Try another one.")
        return new_login

@http_authenticate(auth, 'ais')
def user_detail(request, login):
    user = get_object_or_404(User, login=login)
    user.admin_ok = user.is_admin_by(request.user.id)
    return render_to_response('user_detail.html', {'auser': user}, RequestContext(request))

@http_authenticate(auth, 'ais')
def user_edit(request, login):
    initial = {}
    if login:
        user = get_object_or_404(User, login=login)
        if not user.is_admin_by(request.user.id):
            return HttpResponseForbidden('403 Forbidden')
    else:
        user = User()
        user.father_id = request.user.id;
    initial['login'] = user.login
    initial['name'] = user.name
    initial['email'] = user.email
    initial['phone'] = user.phone
    if request.method == 'POST':
        form = UserEditForm(request.POST, initial=initial)
        if form.is_valid():
            user.login = form.cleaned_data['login']
            user.name = form.cleaned_data['name']
            user.email = form.cleaned_data['email']
            user.phone = form.cleaned_data['phone']
            user.save()
            #TODO grant access to sandbox fleet
            return HttpResponseRedirect('/user/')
    else: # GET
        form = UserEditForm(initial=initial)

    return render_to_response('user_edit.html', {'form':form, 'auser': user}, RequestContext(request))


class ChangePasswordForm(forms.Form):
    new_password = forms.CharField(max_length=16, widget=forms.PasswordInput())
    new_password_check = forms.CharField(max_length=16, widget=forms.PasswordInput())

    def clean_generic_password(self, field_name):
        password = self.cleaned_data[field_name]
        try:
            crack.FascistCheck(password)
        except ValueError, err:
            raise forms.ValidationError(err.message)
        return password

    def clean_new_password(self):
        return self.clean_generic_password('new_password')

    def clean_new_password_check(self):
        return self.clean_generic_password('new_password_check')

    def clean(self):
        cleaned_data = self.cleaned_data
        pass1 = cleaned_data.get('new_password')
        pass2 = cleaned_data.get('new_password_check')
        if pass1 != pass2 and pass2:
            self._errors['new_password_check'] = forms.util.ErrorList(['Passwords must match'])
            del cleaned_data['new_password_check'] # FIXME
        return cleaned_data


@http_authenticate(auth, 'ais')
def user_change_password(request, login):
    user = get_object_or_404(User, login=login)
    if not user.is_admin_by(request.user.id):
        return HttpResponseForbidden('403 Forbidden')
    if request.method == 'POST':
        form = ChangePasswordForm(request.POST)
        if form.is_valid():
            user.set_password(form.cleaned_data['new_password'])
            user.save()
            return HttpResponseRedirect('/user/')
    else: # GET
        form = ChangePasswordForm()
    return render_to_response('user_change_password.html', {'form':form, 'auser':user}, RequestContext(request))


@http_authenticate(auth, 'ais')
def user_delete(request, login):
    user = get_object_or_404(User, login=login)
    if not user.is_admin_by(request.user.id):
        return HttpResponseForbidden('403 Forbidden')
    if request.REQUEST.get('confirm', None):
        user.delete()
        return HttpResponseRedirect('/user/')
    return render_to_response('user_delete.html', {'form':None, 'auser':user}, RequestContext(request))


def logout(request):
    # TODO
    return HttpResponse('Not implemented')
    #response = render_to_response('logout.html', {}, RequestContext(request))
    #return response

periods = ({
    #'name_tiny': '2h',
    #'name_long': '2 hours',
    #'seconds': 2*60*60
    #}, {
    'name_tiny': '6h',
    'name_long': '6 hours',
    'seconds': 6*60*60,
    'default': True,
    }, {
    #'name_tiny': '2d',
    #'name_long': '2 days',
    #'seconds': 2*24*60*60
    #}, {
    'name_tiny': '14d',
    'name_long': '2 weeks',
    'seconds': 14*24*60*60
    }, {
    'name_tiny': '90d',
    'name_long': '3 monthes',
    'seconds': 90*24*60*60
    })
        
@http_authenticate(auth, 'ais')
def sources_index(request):
    peers_config = peers_get_config()
    peers_display = []
    for id4, peer in peers_config.iteritems():
        peer['id4'] = id4
        peer['id2'] = id4[2:]
        peer['active'] = is_id4_active(id4)
        peers_display.append(peer)
        
    peers_display = sorted(peers_display, key=lambda k: k['id4'])

    return render_to_response('sources_index.html', {'sources':peers_display, 'periods': periods}, RequestContext(request))


@http_authenticate(auth, 'ais')
def sources_stats(request):
    filter_peers = request.REQUEST.get('peers', None)
    if filter_peers:
        filter_peers = filter_peers.split(u',')

    peers_config = peers_get_config()
    peers_display = []

    for id4, peer in peers_config.iteritems():
        if filter_peers:
            if unicode(id4) not in filter_peers:
                continue
        peer['id4'] = id4
        peers_display.append(peer)

    peers_display = sorted(peers_display, key=lambda k: k['id4'])

    filter_types = request.REQUEST.get('types', None)
    if filter_types:
        filter_types = filter_types.split(u',')
    else:
        filter_types = [ 'bytes', 'counts' ]
    logging.error('filter_types=%s', filter_types)

    filter_periods = request.REQUEST.get('periods', None)
    if filter_periods:
        display_periods = []
        for period_name in filter_periods.split(u','):
            for period in periods:
                if period['name_tiny'] == period_name:
                    display_periods.append(period)
    else:
        display_periods = periods
    #logging.error('display_periods=%s', display_periods)


    now = int(get_timestamp())
    for config in peers_display:
        id4 = config['id4']
        for period in periods:
            args = os.path.join(STATS_DIR, id4+'-'+period['name_tiny']+'-bytes.png'), \
                '--lazy', \
                '-l', '0', \
                '--title', config['name'] + ' - Bandwidth usage - ' + period['name_long'], \
                '--start', '%d' % (now - period['seconds']), \
                '--end', '%d' % now, \
                '--vertical-label', 'bps', \
                'DEF:bytes=%s:bytes:AVERAGE' % os.path.join(STATS_DIR, id4+'.rrd'), \
                'DEF:rawbytes=%s:rawbytes:AVERAGE' % os.path.join(STATS_DIR, id4+'.rrd'), \
                'CDEF:bits=bytes,8,*', \
                'CDEF:rawbits=rawbytes,8,*', \
                'LINE:bits#00FF00:IP payload', \
                'LINE:rawbits#FF0000:IP with headers'
            rrdtool.graph(*args)
            args = os.path.join(STATS_DIR, id4+'-'+period['name_tiny']+'-counts.png'), \
                '--lazy', \
                '-l', '0', \
                '--title', config['name'] + ' - Packet\'izer stats - ' + period['name_long'], \
                '--start', '%d' % (now-period['seconds']), \
                '--end', '%d' % now, \
                '--vertical-label', 'Hz', \
                'DEF:packets=%s:packets:AVERAGE' % os.path.join(STATS_DIR, id4+'.rrd'), \
                'DEF:lines=%s:lines:AVERAGE' % os.path.join(STATS_DIR, id4+'.rrd'), \
                'LINE:packets#FF0000:input packets', \
                'LINE:lines#00FF00:AIVDM lines'
            rrdtool.graph(*args)
    return render_to_response('sources.html', {'sources':peers_display, 'show_bytes': 'bytes' in filter_types,  'show_counts': 'counts' in filter_types, 'periods': display_periods}, RequestContext(request))