Merge pull request #354 from ollama-webui/email-format-validate

feat/fix: email format validation
2024-01-02 19:24:28 -05:00 · 2024-01-02 19:24:28 -05:00 · f051b366e3
commit f051b366e3
parent cbee5621c3 d8754b4486
3 changed files with 39 additions and 25 deletions
--- a/backend/apps/web/routers/auths.py
+++ b/backend/apps/web/routers/auths.py
@ -8,6 +8,7 @@ from pydantic import BaseModel
 import time
 import uuid

+
 from apps.web.models.auths import (
    SigninForm,
    SignupForm,
@ -20,7 +21,7 @@ from apps.web.models.users import Users


 from utils.utils import get_password_hash, get_current_user, create_token
-from utils.misc import get_gravatar_url
+from utils.misc import get_gravatar_url, validate_email_format
 from constants import ERROR_MESSAGES


@ -95,6 +96,7 @@ async def signin(form_data: SigninForm):
@router.post("/signup", response_model=SigninResponse)
 async def signup(request: Request, form_data: SignupForm):
    if request.app.state.ENABLE_SIGNUP:
+        if validate_email_format(form_data.email.lower()):
            if not Users.get_user_by_email(form_data.email.lower()):
                try:
                    role = "admin" if Users.get_num_users() == 0 else "pending"
@ -117,11 +119,15 @@ async def signup(request: Request, form_data: SignupForm):
                            "profile_image_url": user.profile_image_url,
                        }
                    else:
-                    raise HTTPException(500, detail=ERROR_MESSAGES.CREATE_USER_ERROR)
+                        raise HTTPException(
+                            500, detail=ERROR_MESSAGES.CREATE_USER_ERROR
+                        )
                except Exception as err:
                    raise HTTPException(500, detail=ERROR_MESSAGES.DEFAULT(err))
            else:
                raise HTTPException(400, detail=ERROR_MESSAGES.EMAIL_TAKEN)
+        else:
+            raise HTTPException(400, detail=ERROR_MESSAGES.INVALID_EMAIL_FORMAT)
    else:
        raise HTTPException(400, detail=ERROR_MESSAGES.ACCESS_PROHIBITED)

--- a/backend/constants.py
+++ b/backend/constants.py
@ -21,6 +21,7 @@ class ERROR_MESSAGES(str, Enum):
        "Your session has expired or the token is invalid. Please sign in again."
    )
    INVALID_CRED = "The email or password provided is incorrect. Please check for typos and try logging in again."
+    INVALID_EMAIL_FORMAT = "The email format you entered is invalid. Please double-check and make sure you're using a valid email address (e.g., yourname@example.com)."
    INVALID_PASSWORD = (
        "The password provided is incorrect. Please check for typos and try again."
    )
--- a/backend/utils/misc.py
+++ b/backend/utils/misc.py
@ -1,4 +1,5 @@
 import hashlib
+import re


 def get_gravatar_url(email):
@ -21,3 +22,9 @@ def calculate_sha256(file):
    for chunk in iter(lambda: file.read(8192), b""):
        sha256.update(chunk)
    return sha256.hexdigest()
+
+
+def validate_email_format(email: str) -> bool:
+    if not re.match(r"[^@]+@[^@]+\.[^@]+", email):
+        return False
+    return True