from formencode import htmlfill

from pylons import request, response, session, tmpl_context as c, url, \

    app_globals as g

from pylons.controllers.util import abort, redirect

from pylons_app.lib.auth import LoginRequired

from pylons_app.lib.base import BaseController, render

from pylons_app.model.db import User, UserLog

from pylons_app.model.forms import UserForm

from pylons_app.model.user_model import UserModel

    def create(self):

        """POST /users: Create a new item"""

        # url('users')

        user_model = UserModel()

        try:

            form_result = login_form.to_python(dict(request.POST))

            user_model.create(form_result)

            return redirect(url('users'))

        except formencode.Invalid as errors:

            c.form_errors = errors.error_dict

            return htmlfill.render(

                 render('admin/users/user_add.html'),

        #    <input type="hidden" name="_method" value="PUT" />

        # Or using helpers:

        #    h.form(url('user', id=ID),

        #           method='put')

        # url('user', id=ID)

        user_model = UserModel()

        try:

            form_result = login_form.to_python(dict(request.POST))

            user_model.update(id, form_result)

            return redirect(url('users'))

        except formencode.Invalid as errors:

            c.user = user_model.get_user(id)

            c.form_errors = errors.error_dict

            return htmlfill.render(

                 render('admin/users/user_edit.html'),

                defaults=errors.value,

                encoding="UTF-8")

        #    h.form(url('user', id=ID),

        #           method='delete')

        # url('user', id=ID)

        try:

            self.sa.delete(self.sa.query(User).get(id))

            self.sa.commit()

        except:

            self.sa.rollback()

            raise

        return redirect(url('users'))

    def show(self, id, format='html'):

<name> = formencode.validators.<name of validator>

<name> must equal form name

list=[1,2,3,4,5]

for SELECT use formencode.All(OneOf(list), Int())

"""

from pylons import session

from pylons.i18n.translation import _

from pylons_app.lib.auth import get_crypt_password

from pylons_app.model import meta

from pylons_app.model.db import User

from sqlalchemy.exc import OperationalError

    def validate_python(self, value, state):

        if value != authentication_token():

            raise formencode.Invalid(self.message('invalid_token', state,

                                            search_number=value), value, state)

class ValidAuth(formencode.validators.FancyValidator):

    messages = {

            'invalid_password':_('invalid password'),

            'invalid_login':_('invalid user name'),

            'disabled_account':_('Your acccount is disabled')

        username = value['username']

        try:

            user = sa.query(User).filter(User.username == username).one()

        except (NoResultFound, MultipleResultsFound, OperationalError) as e:

            log.error(e)

            user = None

        if user:

            if user.active:

                if user.username == username and user.password == crypted_passwd:

                    from pylons_app.lib.auth import AuthUser

                    auth_user = AuthUser()

                    auth_user.username = username

                                )

    #chained validators have access to all data

    chained_validators = [ValidAuth]

<%def name="title()">

    ${_('User administration')}

</%def>

<%def name="breadcrumbs()">

	${h.link_to(u'Admin',h.url('admin_home'))}

	 /  

</%def>

<%def name="page_nav()">

	${self.menu('admin')}

	${self.submenu('users')}

</%def>

<%def name="main()">

        <h2>${_('User')} - ${_('add new')}</h2>

        ${h.form(url('users'))}

        <table>

        	<tr>

        		<td>${_('Username')}</td>

        		<td>${h.text('username')}</td>

        	</tr>

        	<tr>

        	</tr>

        	<tr>

        		<td>${_('Active')}</td>

        	</tr>

        	<tr>

        		<td></td>

        	</tr>

        </table>

        ${h.end_form()}

    </div>

</%def>    

        <h2>${_('User')} - ${c.user.username}</h2>

        ${h.form(url('user', id=c.user.user_id),method='put')}

        <table>

        	<tr>

        		<td>${_('Username')}</td>

        		<td>${h.text('username')}</td>

        	</tr>

        	<tr>

        		<td>${_('New password')}</td>

        		<td>${h.text('new_password')}</td>

        	</tr>

        	<tr>

        		<td>${_('Active')}</td>

        		<td>${h.checkbox('active',value=True)}</td>

        	</tr>

        	<tr>

        		<td></td>

        		<td>${h.submit('save','save')}</td>

        	</tr>

</%def>

<%def name="main()">

	<div>

        <h2>${_('Mercurial users')}</h2>

        <table class="table_disp">

         <tr class="header">

            <td>${_('username')}</td>

            <td>${_('active')}</td>

            <td>${_('admin')}</td>

            <td>${_('action')}</td>

         </tr>

            %for user in c.users_list:

                <tr>

                    <td>${h.link_to(user.username,h.url('edit_user', id=user.user_id))}</td>

                    <td>${user.active}</td>

                    <td>${user.admin}</td>

                    <td>

	                    ${h.form(url('user', id=user.user_id),method='delete')}

	                    	${h.submit('remove','delete',class_="delete_icon action_button")}

	                    ${h.end_form()}

        <h2>${_('Login')}</h2>

        ${h.form(h.url.current())}

        <table>

            <tr>

                <td>${_('Username')}</td>

                <td>${h.text('username')}</td>

            </tr>

            <tr>

                <td>${_('Password')}</td>

                <td>${h.password('password')}</td>

                <td>${self.get_form_error('password')}</td> 

            </tr>