implemented positive opt in for GDPR

2018-03-07 13:55:25 +01:00
parent 0808884c9c
commit ad71e8ff0d
6 changed files with 107 additions and 1 deletions
--- a/rowers/views.py
+++ b/rowers/views.py
@@ -594,6 +594,33 @@ def deactivate_user(request):
    else:
        raise PermissionDenied    

+@login_required()
+def user_gdpr_optin(request):
+    r = getrower(request.user)
+    r.gdproptin = False
+    r.gdproptindate = None
+    r.save()
+    nexturl = request.GET.get('next','/rowers/list-workouts/')
+    if r.gdproptin:
+        return HttpResponseRedirect(nexturl)
+
+    return render(request,'gdpr_optin.html',{
+        "next": nexturl
+        })
+
+@login_required()
+def user_gdpr_confirm(request):
+    r = getrower(request.user)
+    r.gdproptin = True
+    r.gdproptindate = timezone.now()
+    r.save()
+
+    nexturl = request.GET.get('next','/rowers/list-workouts/')
+
+    return HttpResponseRedirect(nexturl)
+                  
+        
+    
@login_required()
 def remove_user(request):
    pk = request.user.id