87 lines
3.3 KiB
Python
87 lines
3.3 KiB
Python
from django.urls import reverse_lazy
|
|
from django.views.generic import CreateView
|
|
from backend.accounts.forms import SignupForm
|
|
from .models import EmailConfirmation
|
|
from django.shortcuts import get_object_or_404, render
|
|
from django.http import HttpResponse
|
|
from backend.accounts.utils import send_confirmation_email
|
|
from backend.core.utils import get_controls_for_risk, get_top_risk
|
|
from backend.core.models import Organization,Risk,Document,Control,DocumentRiskControl
|
|
|
|
class SignUpView(CreateView):
|
|
form_class = SignupForm
|
|
success_url = reverse_lazy('login')
|
|
template_name = 'accounts/signup.html'
|
|
|
|
|
|
from django.urls import reverse_lazy
|
|
from django.views.generic import CreateView
|
|
from django.shortcuts import get_object_or_404, render
|
|
from django.http import HttpResponse
|
|
from backend.accounts.forms import SignupForm
|
|
from backend.accounts.utils import send_confirmation_email
|
|
from backend.core.utils import get_controls_for_risk, get_top_risk
|
|
from backend.core.models import Organization, Risk, Document, Control, DocumentRiskControl
|
|
|
|
class SignUpView(CreateView):
|
|
form_class = SignupForm
|
|
success_url = reverse_lazy('login')
|
|
template_name = 'accounts/signup.html'
|
|
|
|
|
|
def confirm_email(request, uuid):
|
|
confirmation = get_object_or_404(EmailConfirmation, uuid=uuid)
|
|
|
|
if confirmation.is_expired():
|
|
return render(request, 'confirmation_expired.html', {'email': confirmation.email})
|
|
|
|
organization = get_object_or_404(Organization, email=confirmation.email)
|
|
|
|
top_risk_ids = get_top_risk(organization)
|
|
top_risks = Risk.objects.filter(risk_id__in=top_risk_ids)
|
|
organization.risks.set(top_risks)
|
|
|
|
document = Document.objects.create(organization=organization)
|
|
document.add_segment('h1', "Top 10 Risks Identified")
|
|
|
|
risk_content = "\n\n".join([
|
|
f"Risk: {risk.risk_id} - {risk.risk_name} \n"
|
|
f"Category: {risk.category}\n"
|
|
f"Primary Impact: {risk.primary_impact} \n"
|
|
f"Secondary Impact: {risk.secondary_impact}\n"
|
|
f"Tertiary Impact: {risk.tretiary_impact} \n"
|
|
f"Detection Difficulty: {risk.detection_difficulty} \n"
|
|
f"Recovery Complexity: {risk.recovery_complexity} \n"
|
|
f"Business Impact Severity: {risk.businnes_impact_severity}\n"
|
|
for risk in top_risks
|
|
])
|
|
document.add_segment('body', f"Identified Risks: \n\n{risk_content}")
|
|
|
|
controls_content = "Mitigation Controls:\n\n"
|
|
|
|
for risk in top_risks:
|
|
controls_content += f"Risk: {risk.risk_id} - {risk.risk_name}\n"
|
|
|
|
selected_controls = get_controls_for_risk(risk)
|
|
|
|
for control_id, weight in selected_controls:
|
|
control = Control.objects.filter(id=control_id).first()
|
|
if control:
|
|
DocumentRiskControl.objects.create(
|
|
document=document,
|
|
risk=risk,
|
|
control=control,
|
|
weight=weight
|
|
)
|
|
controls_content += f" - Control: {control.name} (Impact Weight: {weight}/10)\n"
|
|
|
|
controls_content += "\n"
|
|
|
|
document.add_segment('body', controls_content)
|
|
|
|
return HttpResponse("Email is confirmed")
|
|
|
|
def resend_confirmation(request,email):
|
|
if request.method == 'POST':
|
|
send_confirmation_email(email)
|
|
return HttpResponse("Confirmation email resent") |