from django.contrib import messages
from django.contrib.auth import logout
from django.contrib.auth.views import LoginView
from django.shortcuts import redirect
from django.utils.decorators import method_decorator

from django.contrib.auth.models import User
from django.shortcuts import render
from django.contrib.auth.decorators import login_required, permission_required
from django.views.decorators.csrf import csrf_protect


@method_decorator(csrf_protect, name='dispatch')
class CustomLoginView(LoginView):
    template_name = 'accounts/login.html'

    def form_valid(self, form):
        remember_me = form.cleaned_data.get('remember_me')
        if remember_me:
            self.request.session.set_expiry(1209600)  # 2 weeks
        else:
            self.request.session.set_expiry(0)  # Browser close
        return super(CustomLoginView, self).form_valid(form)

    def form_invalid(self, form):
        messages.error(self.request, '用户名或密码错误。')
        return super().form_invalid(form)


def logout_view(request):
    logout(request)
    # Redirect to a success page, such as the home page
    return redirect('user_login')


@login_required
@permission_required('auth.view_user', raise_exception=True)
def user_permissions_list(request):
    users = User.objects.all().select_related('user_permissions').prefetch_related('groups__permissions')
    return render(request, 'accounts/user_permissions_list.html', {'users': users})