Password

Verification, replacement and recoverang of password.

PasswordMixin

Verification, replacement and recoverang of password.

Source code in src\ramifice\paladins\password.py

class PasswordMixin:
    """Verification, replacement and recoverang of password."""

    async def verify_password(
        self,
        password: str,
        field_name: str = "password",
    ) -> bool:
        """For password verification."""
        cls_model = self.__class__
        # Get documet ID.
        doc_id = self._id.value
        if doc_id is None:
            msg = (
                f"Model: `{cls_model.META['full_model_name']}` > "
                + "Method: `verify_password` => "
                + "Cannot get document ID - ID field is empty."
            )
            logger.critical(msg)
            raise PanicError(msg)
        # Get collection for current Model.
        collection: AsyncCollection = constants.MONGO_DATABASE[cls_model.META["collection_name"]]
        # Get document.
        mongo_doc: dict[str, Any] | None = await collection.find_one({"_id": doc_id})
        if mongo_doc is None:
            msg = (
                f"Model: `{cls_model.META['full_model_name']}` > "
                + "Method: `verify_password` => "
                + f"There is no document with ID `{self._id.value}` in the database."
            )
            logger.critical(msg)
            raise PanicError(msg)
        # Get password hash.
        hash: str | None = mongo_doc.get(field_name)
        if hash is None:
            msg = (
                f"Model: `{cls_model.META['full_model_name']}` > "
                + "Method: `verify_password` => "
                + f"The model does not have a field `{field_name}`."
            )
            logger.critical(msg)
            raise PanicError(msg)
        # Password verification.
        is_valid: bool = False
        ph = PasswordHasher()
        with contextlib.suppress(BaseException):
            is_valid = ph.verify(hash, password)
        #
        if is_valid and ph.check_needs_rehash(hash):
            hash = ph.hash(password)
            await collection.update_one({"_id": doc_id}, {"$set": {field_name: hash}})
        #
        return is_valid

    async def update_password(
        self,
        old_password: str,
        new_password: str,
        field_name: str = "password",
    ) -> None:
        """For replace or recover password."""
        cls_model = self.__class__
        if not await self.verify_password(old_password, field_name):
            logger.warning("Old password does not match!")
            raise OldPassNotMatchError()
        # Get documet ID.
        doc_id = self._id.value
        # Get collection for current Model.
        collection: AsyncCollection = constants.MONGO_DATABASE[cls_model.META["collection_name"]]
        # Create hash of new passwor.
        ph = PasswordHasher()
        hash: str = ph.hash(new_password)
        await collection.update_one({"_id": doc_id}, {"$set": {field_name: hash}})

update_password(old_password, new_password, field_name='password') async

For replace or recover password.

Source code in src\ramifice\paladins\password.py

async def update_password(
    self,
    old_password: str,
    new_password: str,
    field_name: str = "password",
) -> None:
    """For replace or recover password."""
    cls_model = self.__class__
    if not await self.verify_password(old_password, field_name):
        logger.warning("Old password does not match!")
        raise OldPassNotMatchError()
    # Get documet ID.
    doc_id = self._id.value
    # Get collection for current Model.
    collection: AsyncCollection = constants.MONGO_DATABASE[cls_model.META["collection_name"]]
    # Create hash of new passwor.
    ph = PasswordHasher()
    hash: str = ph.hash(new_password)
    await collection.update_one({"_id": doc_id}, {"$set": {field_name: hash}})

verify_password(password, field_name='password') async

For password verification.

Source code in src\ramifice\paladins\password.py

async def verify_password(
    self,
    password: str,
    field_name: str = "password",
) -> bool:
    """For password verification."""
    cls_model = self.__class__
    # Get documet ID.
    doc_id = self._id.value
    if doc_id is None:
        msg = (
            f"Model: `{cls_model.META['full_model_name']}` > "
            + "Method: `verify_password` => "
            + "Cannot get document ID - ID field is empty."
        )
        logger.critical(msg)
        raise PanicError(msg)
    # Get collection for current Model.
    collection: AsyncCollection = constants.MONGO_DATABASE[cls_model.META["collection_name"]]
    # Get document.
    mongo_doc: dict[str, Any] | None = await collection.find_one({"_id": doc_id})
    if mongo_doc is None:
        msg = (
            f"Model: `{cls_model.META['full_model_name']}` > "
            + "Method: `verify_password` => "
            + f"There is no document with ID `{self._id.value}` in the database."
        )
        logger.critical(msg)
        raise PanicError(msg)
    # Get password hash.
    hash: str | None = mongo_doc.get(field_name)
    if hash is None:
        msg = (
            f"Model: `{cls_model.META['full_model_name']}` > "
            + "Method: `verify_password` => "
            + f"The model does not have a field `{field_name}`."
        )
        logger.critical(msg)
        raise PanicError(msg)
    # Password verification.
    is_valid: bool = False
    ph = PasswordHasher()
    with contextlib.suppress(BaseException):
        is_valid = ph.verify(hash, password)
    #
    if is_valid and ph.check_needs_rehash(hash):
        hash = ph.hash(password)
        await collection.update_one({"_id": doc_id}, {"$set": {field_name: hash}})
    #
    return is_valid