CDRM-Project/routes/user_changes.py

"""Module to handle the user changes."""

import re
from flask import Blueprint, request, jsonify, session
from custom_functions.database.user_db import change_password, change_api_key

user_change_bp = Blueprint("user_change_bp", __name__)

# Define allowed characters regex (no spaces allowed)
PASSWORD_REGEX = re.compile(r'^[A-Za-z0-9!@#$%^&*()_+\-=\[\]{};\'":\\|,.<>\/?`~]+$')


@user_change_bp.route("/user/change_password", methods=["POST"])
def change_password_route():
    """Handle the change password route."""
    username = session.get("username")
    if not username:
        return jsonify({"message": "False"}), 400

    try:
        data = request.get_json()
        new_password = data.get("new_password", "")

        if not PASSWORD_REGEX.match(new_password):
            return jsonify({"message": "Invalid password format"}), 400

        change_password(username=username, new_password=new_password)
        return jsonify({"message": "True"}), 200

    except Exception as e:
        return jsonify({"message": "False", "error": str(e)}), 400


@user_change_bp.route("/user/change_api_key", methods=["POST"])
def change_api_key_route():
    """Handle the change API key route."""
    # Ensure the user is logged in by checking session for 'username'
    username = session.get("username")
    if not username:
        return jsonify({"message": "False", "error": "User not logged in"}), 400

    # Get the new API key from the request body
    new_api_key = request.get_json().get("new_api_key")

    if not new_api_key:
        return jsonify({"message": "False", "error": "New API key not provided"}), 400

    try:
        # Call the function to update the API key in the database
        success = change_api_key(username=username, new_api_key=new_api_key)

        if success:
            return (
                jsonify({"message": "True", "success": "API key changed successfully"}),
                200,
            )
        else:
            return (
                jsonify({"message": "False", "error": "Failed to change API key"}),
                500,
            )

    except Exception as e:
        # Catch any unexpected errors and return a response
        return jsonify({"message": "False", "error": str(e)}), 500
Add module docstrings to user_changes.py for improved documentation and clarity; enhance error handling in change_password_route and change_api_key_route functions. 2025-07-23 16:37:34 +07:00			`"""Module to handle the user changes."""`

User updates 2025-04-30 20:11:17 -04:00			`import re`
			`from flask import Blueprint, request, jsonify, session`
			`from custom_functions.database.user_db import change_password, change_api_key`

Update project structure and formatting, add build code, remove /dist 2025-07-22 20:01:22 +07:00			`user_change_bp = Blueprint("user_change_bp", __name__)`
User updates 2025-04-30 20:11:17 -04:00
			`# Define allowed characters regex (no spaces allowed)`
			PASSWORD_REGEX = re.compile(r'^[A-Za-z0-9!@#$%^&*()_+\-=\[\]{};\'":\\\|,.<>\/?`~]+$')

Update project structure and formatting, add build code, remove /dist 2025-07-22 20:01:22 +07:00
			`@user_change_bp.route("/user/change_password", methods=["POST"])`
User updates 2025-04-30 20:11:17 -04:00			`def change_password_route():`
Add module docstrings to user_changes.py for improved documentation and clarity; enhance error handling in change_password_route and change_api_key_route functions. 2025-07-23 16:37:34 +07:00			`"""Handle the change password route."""`
Update project structure and formatting, add build code, remove /dist 2025-07-22 20:01:22 +07:00			`username = session.get("username")`
User updates 2025-04-30 20:11:17 -04:00			`if not username:`
Update project structure and formatting, add build code, remove /dist 2025-07-22 20:01:22 +07:00			`return jsonify({"message": "False"}), 400`
User updates 2025-04-30 20:11:17 -04:00
			`try:`
			`data = request.get_json()`
Update project structure and formatting, add build code, remove /dist 2025-07-22 20:01:22 +07:00			`new_password = data.get("new_password", "")`
User updates 2025-04-30 20:11:17 -04:00
			`if not PASSWORD_REGEX.match(new_password):`
Update project structure and formatting, add build code, remove /dist 2025-07-22 20:01:22 +07:00			`return jsonify({"message": "Invalid password format"}), 400`
User updates 2025-04-30 20:11:17 -04:00
			`change_password(username=username, new_password=new_password)`
Update project structure and formatting, add build code, remove /dist 2025-07-22 20:01:22 +07:00			`return jsonify({"message": "True"}), 200`
User updates 2025-04-30 20:11:17 -04:00
			`except Exception as e:`
Add module docstrings to user_changes.py for improved documentation and clarity; enhance error handling in change_password_route and change_api_key_route functions. 2025-07-23 16:37:34 +07:00			`return jsonify({"message": "False", "error": str(e)}), 400`
User updates 2025-04-30 20:11:17 -04:00

Update project structure and formatting, add build code, remove /dist 2025-07-22 20:01:22 +07:00			`@user_change_bp.route("/user/change_api_key", methods=["POST"])`
User updates 2025-04-30 20:11:17 -04:00			`def change_api_key_route():`
Add module docstrings to user_changes.py for improved documentation and clarity; enhance error handling in change_password_route and change_api_key_route functions. 2025-07-23 16:37:34 +07:00			`"""Handle the change API key route."""`
User updates 2025-04-30 20:11:17 -04:00			`# Ensure the user is logged in by checking session for 'username'`
Update project structure and formatting, add build code, remove /dist 2025-07-22 20:01:22 +07:00			`username = session.get("username")`
User updates 2025-04-30 20:11:17 -04:00			`if not username:`
Update project structure and formatting, add build code, remove /dist 2025-07-22 20:01:22 +07:00			`return jsonify({"message": "False", "error": "User not logged in"}), 400`
User updates 2025-04-30 20:11:17 -04:00
			`# Get the new API key from the request body`
Add module docstrings to user_changes.py for improved documentation and clarity; enhance error handling in change_password_route and change_api_key_route functions. 2025-07-23 16:37:34 +07:00			`new_api_key = request.get_json().get("new_api_key")`
User updates 2025-04-30 20:11:17 -04:00
			`if not new_api_key:`
Update project structure and formatting, add build code, remove /dist 2025-07-22 20:01:22 +07:00			`return jsonify({"message": "False", "error": "New API key not provided"}), 400`
User updates 2025-04-30 20:11:17 -04:00
			`try:`
			`# Call the function to update the API key in the database`
			`success = change_api_key(username=username, new_api_key=new_api_key)`

			`if success:`
Update project structure and formatting, add build code, remove /dist 2025-07-22 20:01:22 +07:00			`return (`
			`jsonify({"message": "True", "success": "API key changed successfully"}),`
			`200,`
			`)`
User updates 2025-04-30 20:11:17 -04:00			`else:`
Update project structure and formatting, add build code, remove /dist 2025-07-22 20:01:22 +07:00			`return (`
			`jsonify({"message": "False", "error": "Failed to change API key"}),`
			`500,`
			`)`
User updates 2025-04-30 20:11:17 -04:00
			`except Exception as e:`
			`# Catch any unexpected errors and return a response`
Update project structure and formatting, add build code, remove /dist 2025-07-22 20:01:22 +07:00			`return jsonify({"message": "False", "error": str(e)}), 500`