20a0f3d6af
Major changes: - Remove username and password_hash from User model - Add MagicLinkToken table for one-time-use email authentication - Implement Magic Link email sending with 15-minute expiration - Update all auth endpoints (/login, /signup) to use email only - Create verify-signup and verify-login pages for token verification - Container URLs now use slug instead of username (e.g., /u-a3f9c2d1) - Add rate limiting: max 3 Magic Links per email per hour - Remove password reset functionality (no passwords to reset) Backend changes: - api.py: Complete rewrite of auth routes (magic link based) - models.py: Remove username/password, add slug and MagicLinkToken - email_service.py: Add Magic Link generation and email sending - admin_api.py: Remove password reset, update to use email identifiers - container_manager.py: Use slug instead of username for routing - config.py: Add MAGIC_LINK_TOKEN_EXPIRY and MAGIC_LINK_RATE_LIMIT Frontend changes: - src/lib/api.ts: Update auth functions and User interface - src/hooks/use-auth.tsx: Implement verifySignup/verifyLogin - src/app/login/page.tsx: Email-only login form - src/app/signup/page.tsx: Email-only signup form - src/app/verify-signup/page.tsx: NEW - Signup token verification - src/app/verify-login/page.tsx: NEW - Login token verification - src/app/dashboard/page.tsx: Display slug instead of username Infrastructure: - install.sh: Simplified, no migration needed (db.create_all handles it) - .env.example: Add MAGIC_LINK_TOKEN_EXPIRY and MAGIC_LINK_RATE_LIMIT - Add IMPLEMENTATION-GUIDE.md with detailed setup instructions Security improvements: - No password storage = no password breaches - One-time-use tokens prevent replay attacks - 15-minute token expiration limits attack window - Rate limiting prevents email flooding Co-Authored-By: Claude Haiku 4.5 <noreply@anthropic.com>
96 lines
3.8 KiB
Python
96 lines
3.8 KiB
Python
from flask_sqlalchemy import SQLAlchemy
|
|
from flask_login import UserMixin
|
|
from datetime import datetime
|
|
from enum import Enum
|
|
|
|
|
|
db = SQLAlchemy()
|
|
|
|
|
|
class UserState(Enum):
|
|
"""Benutzer-Status fuer Email-Verifizierung und Aktivitaet"""
|
|
REGISTERED = 'registered' # Signup abgeschlossen, Email nicht verifiziert
|
|
VERIFIED = 'verified' # Email verifiziert, Container noch nie genutzt
|
|
ACTIVE = 'active' # Container mindestens einmal gestartet
|
|
|
|
|
|
class User(UserMixin, db.Model):
|
|
id = db.Column(db.Integer, primary_key=True)
|
|
email = db.Column(db.String(120), unique=True, nullable=False)
|
|
slug = db.Column(db.String(12), unique=True, nullable=False, index=True)
|
|
container_id = db.Column(db.String(100), nullable=True)
|
|
container_port = db.Column(db.Integer, nullable=True)
|
|
created_at = db.Column(db.DateTime, default=datetime.utcnow)
|
|
|
|
# Admin-Felder
|
|
is_admin = db.Column(db.Boolean, default=False, nullable=False)
|
|
|
|
# Sperr-Felder
|
|
is_blocked = db.Column(db.Boolean, default=False, nullable=False)
|
|
blocked_at = db.Column(db.DateTime, nullable=True)
|
|
blocked_by = db.Column(db.Integer, db.ForeignKey('user.id'), nullable=True)
|
|
|
|
# Email-Verifizierung und Status
|
|
state = db.Column(db.String(20), default=UserState.REGISTERED.value, nullable=False)
|
|
|
|
# Aktivitaetstracking
|
|
last_used = db.Column(db.DateTime, nullable=True)
|
|
|
|
# Beziehung fuer blocked_by
|
|
blocker = db.relationship('User', remote_side=[id], foreign_keys=[blocked_by])
|
|
|
|
def to_dict(self):
|
|
"""Konvertiert User zu Dictionary fuer API-Responses"""
|
|
return {
|
|
'id': self.id,
|
|
'email': self.email,
|
|
'slug': self.slug,
|
|
'is_admin': self.is_admin,
|
|
'is_blocked': self.is_blocked,
|
|
'blocked_at': self.blocked_at.isoformat() if self.blocked_at else None,
|
|
'state': self.state,
|
|
'last_used': self.last_used.isoformat() if self.last_used else None,
|
|
'created_at': self.created_at.isoformat() if self.created_at else None,
|
|
'container_id': self.container_id
|
|
}
|
|
|
|
|
|
class MagicLinkToken(db.Model):
|
|
"""Magic Link Tokens für Passwordless Authentication"""
|
|
__tablename__ = 'magic_link_token'
|
|
|
|
id = db.Column(db.Integer, primary_key=True)
|
|
user_id = db.Column(db.Integer, db.ForeignKey('user.id'), nullable=False)
|
|
token = db.Column(db.String(64), unique=True, nullable=False, index=True)
|
|
token_type = db.Column(db.String(20), nullable=False) # 'signup' oder 'login'
|
|
created_at = db.Column(db.DateTime, default=datetime.utcnow)
|
|
expires_at = db.Column(db.DateTime, nullable=False)
|
|
used_at = db.Column(db.DateTime, nullable=True)
|
|
ip_address = db.Column(db.String(45), nullable=True)
|
|
|
|
user = db.relationship('User', backref=db.backref('magic_tokens', lazy=True))
|
|
|
|
def is_valid(self):
|
|
"""Prüft ob Token noch gültig ist"""
|
|
if self.used_at is not None:
|
|
return False # Token bereits verwendet
|
|
if datetime.utcnow() > self.expires_at:
|
|
return False # Token abgelaufen
|
|
return True
|
|
|
|
def mark_as_used(self):
|
|
"""Markiert Token als verwendet"""
|
|
self.used_at = datetime.utcnow()
|
|
|
|
|
|
class AdminTakeoverSession(db.Model):
|
|
"""Protokolliert Admin-Zugriffe auf User-Container (Phase 2)"""
|
|
id = db.Column(db.Integer, primary_key=True)
|
|
admin_id = db.Column(db.Integer, db.ForeignKey('user.id'), nullable=False)
|
|
target_user_id = db.Column(db.Integer, db.ForeignKey('user.id'), nullable=False)
|
|
started_at = db.Column(db.DateTime, default=datetime.utcnow)
|
|
ended_at = db.Column(db.DateTime, nullable=True)
|
|
reason = db.Column(db.String(500), nullable=True)
|
|
|
|
admin = db.relationship('User', foreign_keys=[admin_id])
|
|
target_user = db.relationship('User', foreign_keys=[target_user_id]) |