Add company dashboard improvements and upload/auth features

2026-01-23 20:21:11 +01:00
parent 1394ef6f67
commit ea3d0164f2
14 changed files with 1004 additions and 112 deletions
--- a/app/routes/auth.py
+++ b/app/routes/auth.py
@@ -8,29 +8,26 @@ from itsdangerous import BadSignature, SignatureExpired, URLSafeTimedSerializer
 from ..extensions import db
 from ..email_utils import send_email
 from ..models import User
+from ..auth_tokens import load_password_reset_user_id, make_password_reset_token

 bp = Blueprint("auth", __name__, url_prefix="/auth")
 logger = logging.getLogger(__name__)


-def _reset_serializer_v2() -> URLSafeTimedSerializer:
-    # Use Flask SECRET_KEY; fallback to app config via current_app.
-    # (defined as separate function to keep import cycle minimal)
+def _make_reset_token(user: User) -> str:
    from flask import current_app

-    return URLSafeTimedSerializer(current_app.config["SECRET_KEY"], salt="password-reset")
-
-
-def _make_reset_token(user: User) -> str:
-    s = _reset_serializer_v2()
-    return s.dumps({"user_id": user.id})
+    return make_password_reset_token(secret_key=current_app.config["SECRET_KEY"], user_id=user.id)


 def _load_reset_token(token: str, *, max_age_seconds: int) -> int:
-    s = _reset_serializer_v2()
-    data = s.loads(token, max_age=max_age_seconds)
-    user_id = int(data.get("user_id"))
-    return user_id
+    from flask import current_app
+
+    return load_password_reset_user_id(
+        secret_key=current_app.config["SECRET_KEY"],
+        token=token,
+        max_age_seconds=max_age_seconds,
+    )


@bp.get("/forgot-password")