From 176d400287305ead70a3f1e1cd2e5443c0b9cfb5 Mon Sep 17 00:00:00 2001
From: Horilla <teamhorilla@gmail.com>
Date: Wed, 3 Jul 2024 13:05:21 +0530
Subject: [PATCH] [UPDT] BASE: Updated horilla database initialize by adding
 authentication

---
 base/views.py                                 |  19 ++-
 horilla/horilla_settings.py                   |   9 ++
 .../horilla_department_form.html              |   2 +-
 .../initialize_database/horilla_user.html     | 120 +++-----------
 .../horilla_user_signup.html                  | 150 ++++++++++++++++++
 5 files changed, 197 insertions(+), 103 deletions(-)
 create mode 100644 horilla/horilla_settings.py
 create mode 100644 templates/initialize_database/horilla_user_signup.html

diff --git a/base/views.py b/base/views.py
index a7328738c..4a61b03b5 100644
--- a/base/views.py
+++ b/base/views.py
@@ -200,10 +200,18 @@ def initialize_database_condition():
 
 def initialize_database(request):
     if initialize_database_condition():
-        return render(
-            request,
-            "initialize_database/horilla_user.html",
-        )
+        if request.method == "POST":
+            password = request._post.get("password")
+            from horilla.horilla_settings import DB_INIT_PASSWORD as db_password
+
+            if db_password == password:
+                return redirect(initialize_database_user)
+            else:
+                messages.warning(
+                    request,
+                    _("The password you entered is incorrect. Please try again."),
+                )
+                return HttpResponse("<script>window.location.reload()</script>")
     else:
         return redirect("/")
 
@@ -238,7 +246,7 @@ def initialize_database_user(request):
             "initialize_database/horilla_company.html",
             {"form": CompanyForm(initial={"hq": True})},
         )
-    return render(request, "initialize_database/horilla_user.html")
+    return render(request, "initialize_database/horilla_user_signup.html")
 
 
 @hx_request_required
@@ -5184,6 +5192,7 @@ def audit_tag_update(request, tag_id):
 
 
 @login_required
+@permission_required("base.view_multipleapprovalcondition")
 def multiple_approval_condition(request):
     form = MultipleApproveConditionForm()
     conditions = MultipleApprovalCondition.objects.all().order_by("department")[::-1]
diff --git a/horilla/horilla_settings.py b/horilla/horilla_settings.py
new file mode 100644
index 000000000..e0f5ed0c7
--- /dev/null
+++ b/horilla/horilla_settings.py
@@ -0,0 +1,9 @@
+from horilla import settings
+
+"""
+DB_INIT_PASSWORD: str
+
+The password used for database setup and initialization. This password is a 
+48-character alphanumeric string generated using a UUID to ensure high entropy and security. 
+"""
+DB_INIT_PASSWORD = "d3f6a1b2c3d4e5f6a7b8c9d0e1f2a3b4c5d6e7f8a9b0c1d"
\ No newline at end of file
diff --git a/templates/initialize_database/horilla_department_form.html b/templates/initialize_database/horilla_department_form.html
index 47fbcc732..fafd3d741 100644
--- a/templates/initialize_database/horilla_department_form.html
+++ b/templates/initialize_database/horilla_department_form.html
@@ -78,7 +78,7 @@
           hx-swap="innerHTML"
           class="oh-btn oh-btn--secondary-outline m-2"
           role="button"
-        >
+          >
           {% trans "Next Step" %}
           <ion-icon class="ms-2" name="arrow-forward-outline"></ion-icon>
         </button>
diff --git a/templates/initialize_database/horilla_user.html b/templates/initialize_database/horilla_user.html
index 6481efa1d..4d2995e18 100644
--- a/templates/initialize_database/horilla_user.html
+++ b/templates/initialize_database/horilla_user.html
@@ -48,7 +48,6 @@
       .select2-selection.select2-selection--multiple {
         height: 46px !important;
       }
-
     </style>
     <div id="main">
       <div class="oh-alert-container">
@@ -61,7 +60,7 @@
       <main class="oh-auth">
         <div
           class="oh-onboarding-card"
-          style="max-height: 790px;max-width: 975px;"
+          style="max-height: 790px; max-width: 975px"
           id="ohAuthCard"
           >
           <div class="oh-onboarding-card__header">
@@ -71,18 +70,22 @@
                 class="oh-onboarding-card__step oh-onboarding-card__step--active"
               >
                 <div class="oh-onboarding-card__count">1</div>
-                <span class="oh-onboarding-card__text">Sign Up</span>
+                <span class="oh-onboarding-card__text">Authentication</span>
               </li>
               <li class="oh-onboarding-card__step">
                 <div class="oh-onboarding-card__count">2</div>
-                <span class="oh-onboarding-card__text">Company</span>
+                <span class="oh-onboarding-card__text">Sign Up</span>
               </li>
               <li class="oh-onboarding-card__step">
                 <div class="oh-onboarding-card__count">3</div>
+                <span class="oh-onboarding-card__text">Company</span>
+              </li>
+              <li class="oh-onboarding-card__step">
+                <div class="oh-onboarding-card__count">4</div>
                 <span class="oh-onboarding-card__text">Department</span>
               </li>
               <li class="oh-onboarding-card__step oh-onboarding-card__step">
-                <div class="oh-onboarding-card__count">4</div>
+                <div class="oh-onboarding-card__count">5</div>
                 <span class="oh-onboarding-card__text">Job Position</span>
               </li>
             </ul>
@@ -90,66 +93,19 @@
           <h1
             class="oh-onboarding-card__title oh-onboarding-card__title--h2 text-center my-3"
           >
-            {% trans "Sign Up" %}
+            {% trans "Database Authentication" %}
           </h1>
           <p class="text-muted text-center">
-            {% trans "Please sign up to access the Horilla HRMS." %}
+            {% trans "Authenticate with your password to initialize the Horilla HRMS database." %}
           </p>
           <form
-            hx-post="{% url 'initialize-database-user' %}"
+            hx-post="{% url 'initialize-database' %}"
             hx-target="#ohAuthCard"
             class="oh-form-group"
           >
             {% csrf_token %}
             <div class="row">
-              <div class="col-12 col-sm-12 col-md-6 col-lg-6">
-                <div class="oh-input-group">
-                  <label class="oh-label" for="firstname"
-                    >{% trans "First Name" %}</label
-                  >
-                  <input
-                    type="text"
-                    id="firstname"
-                    name="firstname"
-                    class="oh-input w-100"
-                    placeholder="e.g. Adam"
-                    required
-                  />
-                </div>
-              </div>
-              <div class="col-12 col-sm-12 col-md-6 col-lg-6">
-                <div class="oh-input-group">
-                  <label class="oh-label" for="lastname"
-                    >{% trans "Last Name" %}</label
-                  >
-                  <input
-                    type="text"
-                    id="lastname"
-                    name="lastname"
-                    class="oh-input w-100"
-                    placeholder="e.g. Luis"
-                    required
-                  />
-                </div>
-              </div>
-            </div>
-            <div class="row">
-              <div class="col-12 col-sm-12 col-md-6 col-lg-6">
-                <div class="oh-input-group">
-                  <label class="oh-label" for="username"
-                    >{% trans "Username" %}</label
-                  >
-                  <input
-                    type="text"
-                    id="username"
-                    name="username"
-                    class="oh-input w-100"
-                    placeholder="e.g. jane.doe@acme.com"
-                    required
-                  />
-                </div>
-              </div>
-              <div class="col-12 col-sm-12 col-md-6 col-lg-6">
+              <div class="col-12 col-sm-12 col-md-12 col-lg-12">
                 <div class="oh-input-group">
                   <label class="oh-label" for="password"
                     >{% trans "Password" %}</label
@@ -160,7 +116,7 @@
                       id="password"
                       name="password"
                       class="oh-input oh-input--password w-100"
-                      placeholder="Use alphanumeric characters"
+                      placeholder="Database authentication passowrd"
                       required
                     />
                     <button
@@ -182,46 +138,16 @@
                 </div>
               </div>
             </div>
-            <div class="row">
-              <div class="col-12 col-sm-12 col-md-6 col-lg-6">
-                <div class="oh-input-group">
-                  <label class="oh-label" for="email"
-                    >{% trans "Email" %}</label
-                  >
-                  <input
-                    type="text"
-                    id="email"
-                    name="email"
-                    class="oh-input w-100"
-                    placeholder="e.g. jane.doe@acme.com"
-                    required
-                  />
-                </div>
-              </div>
-              <div class="col-12 col-sm-12 col-md-6 col-lg-6">
-                <div class="oh-input-group">
-                  <label class="oh-label" for="phone"
-                    >{% trans "Phone" %}</label
-                  >
-                  <input
-                    type="text"
-                    id="phone"
-                    name="phone"
-                    class="oh-input w-100"
-                    placeholder="e.g. 9865324512"
-                    required
-                  />
-                </div>
-              </div>
-            </div>
-            <button
-              type="submit"
-              class="oh-btn oh-onboarding-card__button mt-4 oh-btn--secondary oh-btn--shadow w-100 mb-4"
-              role="button"
+            <div class="oh-modal__dialog-footer p-0 mt-3">
+              <button
+                type="submit"
+                class="oh-btn oh-btn--secondary-outline m-2"
+                role="button"
               >
-              <ion-icon class="me-2" name="lock-closed-outline"></ion-icon>
-              {% trans "Secure Sign-up" %}
-            </button>
+                {% trans "Authenticate" %}
+                <ion-icon class="ms-2" name="arrow-forward-outline"></ion-icon>
+              </button>
+            </div>
           </form>
         </div>
         <img src={% if white_label_company.icon %} "{{white_label_company.icon.url}}" {% else %} "{% static 'images/ui/auth-logo.png' %}" {% endif %} alt="Horilla" />
@@ -230,6 +156,7 @@
     <script src="{% static '/build/js/web.frontend.min.js' %}"></script>
     <script src="https://code.jquery.com/jquery-3.6.4.min.js"></script>
     <script src="{% static 'htmx/htmx.min.js' %}"></script>
+    <script src="{% static 'build/js/hxSelect2.js' %}"></script>
     <script src="{% static '/index/index.js' %}"></script>
     <script
       type="module"
@@ -239,7 +166,6 @@
       nomodule
       src="https://unpkg.com/ionicons@5.5.2/dist/ionicons/ionicons.js"
     ></script>
-    <script src="{% static 'build/js/hxSelect2.js' %}"></script>
     <script src="https://cdn.jsdelivr.net/npm/sweetalert2@10"></script>
     <script>
       $(document).on("htmx:beforeRequest", function (event, data) {
diff --git a/templates/initialize_database/horilla_user_signup.html b/templates/initialize_database/horilla_user_signup.html
new file mode 100644
index 000000000..37d310ea0
--- /dev/null
+++ b/templates/initialize_database/horilla_user_signup.html
@@ -0,0 +1,150 @@
+{% load i18n %}
+<div class="oh-onboarding-card__header">
+  <span class="oh-onboarding-card__company-name">Horilla HRMS</span>
+  <ul class="oh-onboarding-card__step">
+    <li class="oh-onboarding-card__step">
+        <div class="oh-onboarding-card__count">1</div>
+        <span class="oh-onboarding-card__text">Authentication</span>
+      </li>
+    <li class="oh-onboarding-card__step oh-onboarding-card__step--active">
+      <div class="oh-onboarding-card__count">2</div>
+      <span class="oh-onboarding-card__text">Sign Up</span>
+    </li>
+    <li class="oh-onboarding-card__step">
+      <div class="oh-onboarding-card__count">3</div>
+      <span class="oh-onboarding-card__text">Company</span>
+    </li>
+    <li class="oh-onboarding-card__step">
+      <div class="oh-onboarding-card__count">4</div>
+      <span class="oh-onboarding-card__text">Department</span>
+    </li>
+    <li class="oh-onboarding-card__step oh-onboarding-card__step">
+      <div class="oh-onboarding-card__count">5</div>
+      <span class="oh-onboarding-card__text">Job Position</span>
+    </li>
+  </ul>
+</div>
+<h1
+  class="oh-onboarding-card__title oh-onboarding-card__title--h2 text-center my-3"
+>
+  {% trans "Sign Up" %}
+</h1>
+<p class="text-muted text-center">
+  {% trans "Please sign up to access the Horilla HRMS." %}
+</p>
+<form
+  hx-post="{% url 'initialize-database-user' %}"
+  hx-target="#ohAuthCard"
+  class="oh-form-group"
+>
+  {% csrf_token %}
+  <div class="row">
+    <div class="col-12 col-sm-12 col-md-6 col-lg-6">
+      <div class="oh-input-group">
+        <label class="oh-label" for="firstname">{% trans "First Name" %}</label>
+        <input
+          type="text"
+          id="firstname"
+          name="firstname"
+          class="oh-input w-100"
+          placeholder="e.g. Adam"
+          required
+        />
+      </div>
+    </div>
+    <div class="col-12 col-sm-12 col-md-6 col-lg-6">
+      <div class="oh-input-group">
+        <label class="oh-label" for="lastname">{% trans "Last Name" %}</label>
+        <input
+          type="text"
+          id="lastname"
+          name="lastname"
+          class="oh-input w-100"
+          placeholder="e.g. Luis"
+          required
+        />
+      </div>
+    </div>
+  </div>
+  <div class="row">
+    <div class="col-12 col-sm-12 col-md-6 col-lg-6">
+      <div class="oh-input-group">
+        <label class="oh-label" for="username">{% trans "Username" %}</label>
+        <input
+          type="text"
+          id="username"
+          name="username"
+          class="oh-input w-100"
+          placeholder="e.g. jane.doe@acme.com"
+          required
+        />
+      </div>
+    </div>
+    <div class="col-12 col-sm-12 col-md-6 col-lg-6">
+      <div class="oh-input-group">
+        <label class="oh-label" for="password">{% trans "Password" %}</label>
+        <div class="oh-password-input-container">
+          <input
+            type="password"
+            id="password"
+            name="password"
+            class="oh-input oh-input--password w-100"
+            placeholder="Use alphanumeric characters"
+            required
+          />
+          <button
+            type="button"
+            class="oh-btn oh-btn--transparent oh-password-input--toggle"
+          >
+            <ion-icon
+              class="oh-passowrd-input__show-icon"
+              title="Show Password"
+              name="eye-outline"
+            ></ion-icon>
+            <ion-icon
+              class="oh-passowrd-input__hide-icon d-none"
+              title="Hide Password"
+              name="eye-off-outline"
+            ></ion-icon>
+          </button>
+        </div>
+      </div>
+    </div>
+  </div>
+  <div class="row">
+    <div class="col-12 col-sm-12 col-md-6 col-lg-6">
+      <div class="oh-input-group">
+        <label class="oh-label" for="email">{% trans "Email" %}</label>
+        <input
+          type="text"
+          id="email"
+          name="email"
+          class="oh-input w-100"
+          placeholder="e.g. jane.doe@acme.com"
+          required
+        />
+      </div>
+    </div>
+    <div class="col-12 col-sm-12 col-md-6 col-lg-6">
+      <div class="oh-input-group">
+        <label class="oh-label" for="phone">{% trans "Phone" %}</label>
+        <input
+          type="text"
+          id="phone"
+          name="phone"
+          class="oh-input w-100"
+          placeholder="e.g. 9865324512"
+          required
+        />
+      </div>
+    </div>
+  </div>
+  <button
+    type="submit"
+    class="oh-btn oh-onboarding-card__button mt-4 oh-btn--secondary oh-btn--shadow w-100 mb-4"
+    role="button"
+  >
+    <ion-icon class="me-2" name="lock-closed-outline"></ion-icon>
+    {% trans "Secure Sign-up" %}
+  </button>
+</form>