Sith/core/views/user.py

748 lines
25 KiB
Python
Raw Permalink Normal View History

#
# Copyright 2016,2017
# - Skia <skia@libskia.so>
2017-11-05 23:22:25 +00:00
# - Sli <antoine@bartuccio.fr>
#
# Ce fichier fait partie du site de l'Association des Étudiants de l'UTBM,
# http://ae.utbm.fr.
#
# This program is free software; you can redistribute it and/or modify it under
# the terms of the GNU General Public License a published by the Free Software
# Foundation; either version 3 of the License, or (at your option) any later
# version.
#
# This program is distributed in the hope that it will be useful, but WITHOUT
# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
# FOR A PARTICULAR PURPOSE. See the GNU General Public License for more
# details.
#
# You should have received a copy of the GNU General Public License along with
# this program; if not, write to the Free Sofware Foundation, Inc., 59 Temple
# Place - Suite 330, Boston, MA 02111-1307, USA.
#
#
2024-10-13 09:46:03 +00:00
import itertools
2015-11-24 15:09:46 +00:00
# This file contains all the views that concern the user model
2024-06-24 11:07:36 +00:00
from datetime import date, timedelta
2024-10-13 09:46:03 +00:00
from operator import itemgetter
from smtplib import SMTPException
2024-06-24 11:07:36 +00:00
from django.conf import settings
from django.contrib.auth import login, views
from django.contrib.auth.forms import PasswordChangeForm
2024-07-18 18:23:30 +00:00
from django.contrib.auth.mixins import LoginRequiredMixin
from django.core.exceptions import PermissionDenied
2024-10-04 11:41:15 +00:00
from django.db.models import DateField, QuerySet
from django.db.models.functions import Trunc
2024-06-24 11:07:36 +00:00
from django.forms import CheckboxSelectMultiple
from django.forms.models import modelform_factory
from django.http import Http404
from django.shortcuts import get_object_or_404, redirect
from django.template.loader import render_to_string
2024-06-24 11:07:36 +00:00
from django.template.response import TemplateResponse
from django.urls import reverse, reverse_lazy
from django.utils.decorators import method_decorator
2024-06-24 11:07:36 +00:00
from django.utils.translation import gettext as _
2018-10-04 19:29:19 +00:00
from django.views.generic import (
CreateView,
DeleteView,
2024-06-24 11:07:36 +00:00
DetailView,
ListView,
TemplateView,
2018-10-04 19:29:19 +00:00
)
2024-06-24 11:07:36 +00:00
from django.views.generic.dates import MonthMixin, YearMixin
from django.views.generic.edit import FormView, UpdateView
from honeypot.decorators import check_honeypot
from core.models import Gift, Preferences, User
2018-10-04 19:29:19 +00:00
from core.views import (
CanEditMixin,
CanEditPropMixin,
2024-06-24 11:07:36 +00:00
CanViewMixin,
2018-10-04 19:29:19 +00:00
QuickNotifMixin,
2024-06-24 11:07:36 +00:00
TabedViewMixin,
2018-10-04 19:29:19 +00:00
)
from core.views.forms import (
2024-06-24 11:07:36 +00:00
GiftForm,
2018-10-04 19:29:19 +00:00
LoginForm,
2024-06-24 11:07:36 +00:00
RegisteringForm,
2018-10-04 19:29:19 +00:00
UserGodfathersForm,
2024-06-24 11:07:36 +00:00
UserProfileForm,
2018-10-04 19:29:19 +00:00
)
from counter.forms import StudentCardForm
2024-10-04 11:41:15 +00:00
from counter.models import Refilling, Selling
from eboutic.models import Invoice
2024-06-24 11:07:36 +00:00
from subscription.models import Subscription
2017-05-10 20:17:05 +00:00
from trombi.views import UserTrombiForm
2015-11-24 15:09:46 +00:00
2017-06-12 07:42:03 +00:00
class SithLoginView(views.LoginView):
2024-07-12 07:34:16 +00:00
"""The login View."""
template_name = "core/login.jinja"
authentication_form = LoginForm
form_class = PasswordChangeForm
redirect_authenticated_user = True
2015-11-25 16:03:18 +00:00
2017-06-12 07:42:03 +00:00
class SithPasswordChangeView(views.PasswordChangeView):
2024-07-12 07:34:16 +00:00
"""Allows a user to change its password."""
template_name = "core/password_change.jinja"
success_url = reverse_lazy("core:password_change_done")
2015-11-25 16:03:18 +00:00
2017-06-12 07:42:03 +00:00
class SithPasswordChangeDoneView(views.PasswordChangeDoneView):
2024-07-12 07:34:16 +00:00
"""Allows a user to change its password."""
template_name = "core/password_change_done.jinja"
2015-11-25 16:03:18 +00:00
2017-06-12 07:42:03 +00:00
def logout(request):
2024-07-12 07:34:16 +00:00
"""The logout view."""
return views.logout_then_login(request)
2015-11-25 16:03:18 +00:00
2017-06-12 07:42:03 +00:00
2016-08-13 15:15:45 +00:00
def password_root_change(request, user_id):
2024-07-12 07:34:16 +00:00
"""Allows a root user to change someone's password."""
2016-08-14 02:35:08 +00:00
if not request.user.is_root:
2016-08-13 15:15:45 +00:00
raise PermissionDenied
user = User.objects.filter(id=user_id).first()
if not user:
raise Http404("User not found")
if request.method == "POST":
form = views.SetPasswordForm(user=user, data=request.POST)
if form.is_valid():
form.save()
return redirect("core:password_change_done")
else:
form = views.SetPasswordForm(user=user)
2018-10-04 19:29:19 +00:00
return TemplateResponse(
request, "core/password_change.jinja", {"form": form, "target": user}
)
2016-08-13 15:15:45 +00:00
2017-06-12 07:42:03 +00:00
@method_decorator(check_honeypot, name="post")
class SithPasswordResetView(views.PasswordResetView):
2024-07-12 07:34:16 +00:00
"""Allows someone to enter an email address for resetting password."""
2017-06-12 07:42:03 +00:00
template_name = "core/password_reset.jinja"
email_template_name = "core/password_reset_email.jinja"
success_url = reverse_lazy("core:password_reset_done")
2015-11-25 16:03:18 +00:00
class SithPasswordResetDoneView(views.PasswordResetDoneView):
2024-07-12 07:34:16 +00:00
"""Confirm that the reset email has been sent."""
2015-11-25 16:03:18 +00:00
template_name = "core/password_reset_done.jinja"
2017-06-12 07:42:03 +00:00
class SithPasswordResetConfirmView(views.PasswordResetConfirmView):
2024-07-12 07:34:16 +00:00
"""Provide a reset password form."""
template_name = "core/password_reset_confirm.jinja"
success_url = reverse_lazy("core:password_reset_complete")
2017-06-12 07:42:03 +00:00
2015-11-26 09:57:26 +00:00
class SithPasswordResetCompleteView(views.PasswordResetCompleteView):
2024-07-12 07:34:16 +00:00
"""Confirm the password has successfully been reset."""
template_name = "core/password_reset_complete.jinja"
2017-06-12 07:42:03 +00:00
2015-11-25 16:03:18 +00:00
@method_decorator(check_honeypot, name="post")
class UserCreationView(FormView):
success_url = reverse_lazy("core:index")
form_class = RegisteringForm
template_name = "core/register.jinja"
def form_valid(self, form):
# Just knowing that the user gave sound data isn't enough,
# we must also know if the given email actually exists.
# This step must happen after the whole validation has been made,
# but before saving the user, while being tightly coupled
# to the request/response cycle.
# Thus this is here.
user: User = form.save(commit=False)
username = user.generate_username()
try:
user.email_user(
"Création de votre compte AE",
render_to_string(
"core/register_confirm_mail.jinja", context={"username": username}
),
2018-10-04 19:29:19 +00:00
)
except SMTPException:
# if the email couldn't be sent, it's likely to be
# that the given email doesn't exist (which means it's either a typo or a bot).
# It may also be a genuine bug, but that's less likely to happen
# and wouldn't be critical as the favoured way to create an account
# is to contact an AE board member
form.add_error(
"email", _("We couldn't verify that this email actually exists")
)
return super().form_invalid(form)
user = form.save()
login(self.request, user)
return super().form_valid(form)
2015-11-24 15:09:46 +00:00
2017-06-12 07:42:03 +00:00
class UserTabsMixin(TabedViewMixin):
def get_tabs_title(self):
return self.object.get_display_name()
def get_list_of_tabs(self):
user: User = self.object
tab_list = [
2018-10-04 19:29:19 +00:00
{
"url": reverse("core:user_profile", kwargs={"user_id": user.id}),
2018-10-04 19:29:19 +00:00
"slug": "infos",
"name": _("Infos"),
},
2018-10-04 19:29:19 +00:00
{
"url": reverse("core:user_godfathers", kwargs={"user_id": user.id}),
2018-10-04 19:29:19 +00:00
"slug": "godfathers",
2021-11-05 20:01:19 +00:00
"name": _("Family"),
},
2018-10-04 19:29:19 +00:00
{
"url": reverse("core:user_pictures", kwargs={"user_id": user.id}),
2018-10-04 19:29:19 +00:00
"slug": "pictures",
"name": _("Pictures"),
},
]
if settings.SITH_ENABLE_GALAXY and self.request.user.was_subscribed:
tab_list.append(
{
"url": reverse("galaxy:user", kwargs={"user_id": user.id}),
"slug": "galaxy",
"name": _("Galaxy"),
}
)
if self.request.user == user:
2018-10-04 19:29:19 +00:00
tab_list.append(
{"url": reverse("core:user_tools"), "slug": "tools", "name": _("Tools")}
)
if self.request.user.can_edit(user):
2018-10-04 19:29:19 +00:00
tab_list.append(
{
"url": reverse("core:user_edit", kwargs={"user_id": user.id}),
2018-10-04 19:29:19 +00:00
"slug": "edit",
"name": _("Edit"),
}
)
tab_list.append(
{
"url": reverse("core:user_prefs", kwargs={"user_id": user.id}),
2018-10-04 19:29:19 +00:00
"slug": "prefs",
"name": _("Preferences"),
}
)
if self.request.user.can_view(user):
2018-10-04 19:29:19 +00:00
tab_list.append(
{
"url": reverse("core:user_clubs", kwargs={"user_id": user.id}),
2018-10-04 19:29:19 +00:00
"slug": "clubs",
"name": _("Clubs"),
}
)
if self.request.user.is_owner(user):
2018-10-04 19:29:19 +00:00
tab_list.append(
{
"url": reverse("core:user_groups", kwargs={"user_id": user.id}),
2018-10-04 19:29:19 +00:00
"slug": "groups",
"name": _("Groups"),
}
)
if (
hasattr(user, "customer")
and user.customer
and (
user == self.request.user
2018-10-04 19:29:19 +00:00
or self.request.user.is_in_group(
pk=settings.SITH_GROUP_ACCOUNTING_ADMIN_ID
2018-10-04 19:29:19 +00:00
)
or self.request.user.is_in_group(
name=settings.SITH_BAR_MANAGER["unix_name"]
+ settings.SITH_BOARD_SUFFIX
2018-10-04 19:29:19 +00:00
)
or self.request.user.is_root
)
):
tab_list.append(
{
"url": reverse("core:user_stats", kwargs={"user_id": user.id}),
"slug": "stats",
"name": _("Stats"),
}
)
tab_list.append(
{
"url": reverse("core:user_account", kwargs={"user_id": user.id}),
"slug": "account",
"name": _("Account") + " (%s €)" % user.customer.amount,
}
)
return tab_list
2017-06-12 07:42:03 +00:00
class UserView(UserTabsMixin, CanViewMixin, DetailView):
2024-07-12 07:34:16 +00:00
"""Display a user's profile."""
2018-10-04 19:29:19 +00:00
2015-11-26 15:32:56 +00:00
model = User
pk_url_kwarg = "user_id"
context_object_name = "profile"
2016-02-01 16:35:55 +00:00
template_name = "core/user_detail.jinja"
2018-10-04 19:29:19 +00:00
current_tab = "infos"
2015-11-26 15:32:56 +00:00
2017-11-05 23:22:25 +00:00
def get_context_data(self, **kwargs):
2024-06-27 12:46:43 +00:00
kwargs = super().get_context_data(**kwargs)
2018-10-04 19:29:19 +00:00
kwargs["gift_form"] = GiftForm(
user_id=self.object.id, initial={"user": self.object}
)
2017-11-05 23:22:25 +00:00
return kwargs
2016-09-29 13:04:43 +00:00
2017-06-12 07:42:03 +00:00
2016-11-20 09:40:49 +00:00
class UserPicturesView(UserTabsMixin, CanViewMixin, DetailView):
2024-07-12 07:34:16 +00:00
"""Display a user's pictures."""
2018-10-04 19:29:19 +00:00
2016-11-20 09:40:49 +00:00
model = User
pk_url_kwarg = "user_id"
context_object_name = "profile"
template_name = "core/user_pictures.jinja"
2018-10-04 19:29:19 +00:00
current_tab = "pictures"
2016-09-29 13:04:43 +00:00
2018-06-10 16:43:39 +00:00
2023-01-09 21:07:03 +00:00
def delete_user_godfather(request, user_id, godfather_id, is_father):
user_is_admin = request.user.is_root or request.user.is_board_member
if user_id != request.user.id and not user_is_admin:
raise PermissionDenied()
user = get_object_or_404(User, id=user_id)
to_remove = get_object_or_404(User, id=godfather_id)
if is_father:
user.godfathers.remove(to_remove)
else:
2023-01-09 21:07:03 +00:00
user.godchildren.remove(to_remove)
2018-10-04 19:29:19 +00:00
return redirect("core:user_godfathers", user_id=user_id)
2018-06-10 16:43:39 +00:00
class UserGodfathersView(UserTabsMixin, CanViewMixin, DetailView, FormView):
2024-07-12 07:34:16 +00:00
"""Display a user's godfathers."""
2018-10-04 19:29:19 +00:00
2016-09-19 18:29:43 +00:00
model = User
pk_url_kwarg = "user_id"
context_object_name = "profile"
template_name = "core/user_godfathers.jinja"
2018-10-04 19:29:19 +00:00
current_tab = "godfathers"
form_class = UserGodfathersForm
2016-09-19 18:29:43 +00:00
def get_form_kwargs(self):
return super().get_form_kwargs() | {"user": self.object}
def form_valid(self, form):
if form.cleaned_data["type"] == "godfather":
self.object.godfathers.add(form.cleaned_data["user"])
else:
self.object.godchildren.add(form.cleaned_data["user"])
return redirect("core:user_godfathers", user_id=self.object.id)
2016-09-19 18:29:43 +00:00
def get_context_data(self, **kwargs):
return super().get_context_data(**kwargs) | {
"godfathers": list(self.object.godfathers.select_related("profile_pict")),
"godchildren": list(self.object.godchildren.select_related("profile_pict")),
}
2016-09-19 18:29:43 +00:00
2018-10-04 19:29:19 +00:00
class UserGodfathersTreeView(UserTabsMixin, CanViewMixin, DetailView):
2024-07-12 07:34:16 +00:00
"""Display a user's family tree."""
2018-10-04 19:29:19 +00:00
model = User
pk_url_kwarg = "user_id"
context_object_name = "profile"
template_name = "core/user_godfathers_tree.jinja"
2018-10-04 19:29:19 +00:00
current_tab = "godfathers"
def get_context_data(self, **kwargs):
2024-06-27 12:46:43 +00:00
kwargs = super().get_context_data(**kwargs)
kwargs["api_url"] = reverse(
"api:family_graph", kwargs={"user_id": self.object.id}
)
return kwargs
2018-10-04 19:29:19 +00:00
class UserStatsView(UserTabsMixin, CanViewMixin, DetailView):
2024-07-12 07:34:16 +00:00
"""Display a user's stats."""
2018-10-04 19:29:19 +00:00
model = User
pk_url_kwarg = "user_id"
context_object_name = "profile"
template_name = "core/user_stats.jinja"
2018-10-04 19:29:19 +00:00
current_tab = "stats"
2017-03-27 23:03:31 +00:00
def dispatch(self, request, *arg, **kwargs):
profile = self.get_object()
2017-03-28 12:39:52 +00:00
if not hasattr(profile, "customer"):
raise Http404
2018-10-04 19:29:19 +00:00
if not (
profile == request.user
or request.user.is_in_group(pk=settings.SITH_GROUP_ACCOUNTING_ADMIN_ID)
2018-10-04 19:29:19 +00:00
or request.user.is_in_group(
name=settings.SITH_BAR_MANAGER["unix_name"] + settings.SITH_BOARD_SUFFIX
2018-10-04 19:29:19 +00:00
)
or request.user.is_root
):
2017-03-27 23:03:31 +00:00
raise PermissionDenied
2024-06-27 12:46:43 +00:00
return super().dispatch(request, *arg, **kwargs)
2017-03-27 23:03:31 +00:00
def get_context_data(self, **kwargs):
2024-06-27 12:46:43 +00:00
kwargs = super().get_context_data(**kwargs)
2016-09-22 09:09:15 +00:00
from django.db.models import Sum
2018-10-04 19:29:19 +00:00
2024-06-24 11:07:36 +00:00
from counter.models import Counter
2016-08-19 00:53:44 +00:00
foyer = Counter.objects.filter(name="Foyer").first()
mde = Counter.objects.filter(name="MDE").first()
gommette = Counter.objects.filter(name="La Gommette").first()
2017-06-12 07:42:03 +00:00
semester_start = Subscription.compute_start(d=date.today(), duration=3)
2018-10-04 19:29:19 +00:00
kwargs["total_perm_time"] = sum(
[p.end - p.start for p in self.object.permanencies.exclude(end=None)],
timedelta(),
)
kwargs["total_foyer_time"] = sum(
[
p.end - p.start
for p in self.object.permanencies.filter(counter=foyer).exclude(
end=None
)
],
timedelta(),
)
kwargs["total_mde_time"] = sum(
[
p.end - p.start
for p in self.object.permanencies.filter(counter=mde).exclude(end=None)
],
timedelta(),
)
kwargs["total_gommette_time"] = sum(
[
p.end - p.start
for p in self.object.permanencies.filter(counter=gommette).exclude(
end=None
)
],
timedelta(),
)
kwargs["total_foyer_buyings"] = sum(
[
b.unit_price * b.quantity
for b in self.object.customer.buyings.filter(
counter=foyer, date__gte=semester_start
)
]
)
kwargs["total_mde_buyings"] = sum(
[
b.unit_price * b.quantity
for b in self.object.customer.buyings.filter(
counter=mde, date__gte=semester_start
)
]
)
kwargs["total_gommette_buyings"] = sum(
[
b.unit_price * b.quantity
for b in self.object.customer.buyings.filter(
counter=gommette, date__gte=semester_start
)
]
)
kwargs["top_product"] = (
self.object.customer.buyings.values("product__name")
.annotate(product_sum=Sum("quantity"))
.exclude(product_sum=None)
.order_by("-product_sum")
.all()[:10]
)
return kwargs
2017-06-12 07:42:03 +00:00
2016-08-14 17:28:14 +00:00
class UserMiniView(CanViewMixin, DetailView):
2024-07-12 07:34:16 +00:00
"""Display a user's profile."""
2018-10-04 19:29:19 +00:00
2016-08-14 17:28:14 +00:00
model = User
pk_url_kwarg = "user_id"
context_object_name = "profile"
template_name = "core/user_mini.jinja"
2017-06-12 07:42:03 +00:00
2016-10-27 16:39:40 +00:00
class UserListView(ListView, CanEditPropMixin):
2024-07-12 07:34:16 +00:00
"""Displays the user list."""
2018-10-04 19:29:19 +00:00
2015-11-26 15:32:56 +00:00
model = User
2016-02-01 16:35:55 +00:00
template_name = "core/user_list.jinja"
2015-11-26 15:32:56 +00:00
2017-06-12 07:42:03 +00:00
2024-09-09 19:37:28 +00:00
# FIXME: the edit_once fields aren't displayed to the user (as expected).
# However, if the user re-add them manually in the form, they are saved.
class UserUpdateProfileView(UserTabsMixin, CanEditMixin, UpdateView):
2024-07-12 07:34:16 +00:00
"""Edit a user's profile."""
2018-10-04 19:29:19 +00:00
2015-11-26 15:32:56 +00:00
model = User
pk_url_kwarg = "user_id"
2016-02-01 16:35:55 +00:00
template_name = "core/user_edit.jinja"
form_class = UserProfileForm
current_tab = "edit"
2018-10-04 19:29:19 +00:00
edit_once = ["profile_pict", "date_of_birth", "first_name", "last_name"]
board_only = []
2016-10-15 00:33:38 +00:00
def remove_restricted_fields(self, request):
2024-07-12 07:34:16 +00:00
"""Removes edit_once and board_only fields."""
for i in self.edit_once:
2018-10-04 19:29:19 +00:00
if getattr(self.form.instance, i) and not (
request.user.is_board_member or request.user.is_root
):
self.form.fields.pop(i, None)
2016-10-15 00:33:38 +00:00
for i in self.board_only:
if not (request.user.is_board_member or request.user.is_root):
self.form.fields.pop(i, None)
def get(self, request, *args, **kwargs):
self.object = self.get_object()
self.form = self.get_form()
2016-10-15 00:33:38 +00:00
self.remove_restricted_fields(request)
return self.render_to_response(self.get_context_data(form=self.form))
def post(self, request, *args, **kwargs):
self.object = self.get_object()
self.form = self.get_form()
2016-10-15 00:33:38 +00:00
self.remove_restricted_fields(request)
files = request.FILES.items()
self.form.process(files)
2018-10-04 19:29:19 +00:00
if (
request.user.is_authenticated
2018-10-04 19:29:19 +00:00
and request.user.can_edit(self.object)
and self.form.is_valid()
):
2024-06-27 12:46:43 +00:00
return super().form_valid(self.form)
return self.form_invalid(self.form)
def get_context_data(self, **kwargs):
2024-06-27 12:46:43 +00:00
kwargs = super().get_context_data(**kwargs)
2018-10-04 19:29:19 +00:00
kwargs["profile"] = self.form.instance
kwargs["form"] = self.form
return kwargs
2015-11-26 15:32:56 +00:00
2017-06-12 07:42:03 +00:00
2016-10-05 11:08:51 +00:00
class UserClubView(UserTabsMixin, CanViewMixin, DetailView):
2024-07-12 07:34:16 +00:00
"""Display the user's club(s)."""
2018-10-04 19:29:19 +00:00
2016-10-05 11:08:51 +00:00
model = User
context_object_name = "profile"
pk_url_kwarg = "user_id"
template_name = "core/user_clubs.jinja"
current_tab = "clubs"
2017-06-12 07:42:03 +00:00
2017-01-11 00:34:16 +00:00
class UserPreferencesView(UserTabsMixin, CanEditMixin, UpdateView):
2024-07-12 07:34:16 +00:00
"""Edit a user's preferences."""
2018-10-04 19:29:19 +00:00
model = User
2017-01-11 00:34:16 +00:00
pk_url_kwarg = "user_id"
2017-05-09 21:42:01 +00:00
template_name = "core/user_preferences.jinja"
2018-10-04 19:29:19 +00:00
form_class = modelform_factory(
Preferences, fields=["receive_weekmail", "notify_on_click", "notify_on_refill"]
)
2017-01-11 00:34:16 +00:00
context_object_name = "profile"
current_tab = "prefs"
def get_object(self, queryset=None):
2018-10-04 19:29:19 +00:00
user = get_object_or_404(User, pk=self.kwargs["user_id"])
return user
def get_form_kwargs(self):
2024-06-27 12:46:43 +00:00
kwargs = super().get_form_kwargs()
pref = self.object.preferences
2018-10-04 19:29:19 +00:00
kwargs.update({"instance": pref})
return kwargs
2017-01-11 00:34:16 +00:00
2017-05-09 21:42:01 +00:00
def get_context_data(self, **kwargs):
2024-06-27 12:46:43 +00:00
kwargs = super().get_context_data(**kwargs)
if not (
hasattr(self.object, "trombi_user") and self.request.user.trombi_user.trombi
):
2018-10-04 19:29:19 +00:00
kwargs["trombi_form"] = UserTrombiForm()
if hasattr(self.object, "customer"):
kwargs["student_card_form"] = StudentCardForm()
2017-05-09 21:42:01 +00:00
return kwargs
2017-06-12 07:42:03 +00:00
class UserUpdateGroupView(UserTabsMixin, CanEditPropMixin, UpdateView):
2024-07-12 07:34:16 +00:00
"""Edit a user's groups."""
2018-10-04 19:29:19 +00:00
2015-11-26 15:32:56 +00:00
model = User
pk_url_kwarg = "user_id"
template_name = "core/user_group.jinja"
2018-10-04 19:29:19 +00:00
form_class = modelform_factory(
User, fields=["groups"], widgets={"groups": CheckboxSelectMultiple}
)
2016-02-01 16:35:55 +00:00
context_object_name = "profile"
current_tab = "groups"
2015-11-26 15:32:56 +00:00
2017-06-12 07:42:03 +00:00
2024-07-18 18:23:30 +00:00
class UserToolsView(LoginRequiredMixin, QuickNotifMixin, UserTabsMixin, TemplateView):
2024-07-12 07:34:16 +00:00
"""Displays the logged user's tools."""
2018-10-04 19:29:19 +00:00
2016-02-01 16:35:55 +00:00
template_name = "core/user_tools.jinja"
current_tab = "tools"
2016-08-05 07:52:19 +00:00
def get_context_data(self, **kwargs):
self.object = self.request.user
from launderette.models import Launderette
2018-10-04 19:29:19 +00:00
2024-06-27 12:46:43 +00:00
kwargs = super().get_context_data(**kwargs)
2018-10-04 19:29:19 +00:00
kwargs["launderettes"] = Launderette.objects.all()
kwargs["profile"] = self.request.user
kwargs["object"] = self.request.user
return kwargs
2017-06-12 07:42:03 +00:00
2016-09-06 19:47:15 +00:00
class UserAccountBase(UserTabsMixin, DetailView):
2024-07-12 07:34:16 +00:00
"""Base class for UserAccount."""
2018-10-04 19:29:19 +00:00
2016-08-05 07:52:19 +00:00
model = User
pk_url_kwarg = "user_id"
current_tab = "account"
2024-10-04 11:41:15 +00:00
queryset = User.objects.select_related("customer")
2016-08-05 07:52:19 +00:00
2017-06-12 07:42:03 +00:00
def dispatch(self, request, *arg, **kwargs): # Manually validates the rights
2018-10-04 19:29:19 +00:00
if (
2024-10-04 11:41:15 +00:00
kwargs.get("user_id") == request.user.id
or request.user.is_in_group(pk=settings.SITH_GROUP_ACCOUNTING_ADMIN_ID)
2018-10-04 19:29:19 +00:00
or request.user.is_in_group(
name=settings.SITH_BAR_MANAGER["unix_name"] + settings.SITH_BOARD_SUFFIX
2018-10-04 19:29:19 +00:00
)
or request.user.is_root
):
2024-10-04 11:41:15 +00:00
return super().dispatch(request, *arg, **kwargs)
2016-08-05 07:52:19 +00:00
raise PermissionDenied
def get_object(self, queryset=None):
obj = super().get_object(queryset)
if not hasattr(obj, "customer"):
raise Http404(_("User has no account"))
return obj
2017-06-12 07:42:03 +00:00
2016-09-06 19:47:15 +00:00
class UserAccountView(UserAccountBase):
2024-07-12 07:34:16 +00:00
"""Display a user's account."""
2018-10-04 19:29:19 +00:00
2016-09-06 19:47:15 +00:00
template_name = "core/user_account.jinja"
2024-10-04 11:41:15 +00:00
@staticmethod
def expense_by_month[T](qs: QuerySet[T]) -> QuerySet[T]:
month_trunc = Trunc("date", "month", output_field=DateField())
return (
qs.annotate(grouped_date=month_trunc)
.values("grouped_date")
.annotate_total()
.exclude(total=0)
.order_by("-grouped_date")
)
2016-09-06 19:47:15 +00:00
2016-08-05 07:52:19 +00:00
def get_context_data(self, **kwargs):
2024-06-27 12:46:43 +00:00
kwargs = super().get_context_data(**kwargs)
2018-10-04 19:29:19 +00:00
kwargs["profile"] = self.object
2024-10-04 11:41:15 +00:00
kwargs["customer"] = self.object.customer
kwargs["buyings_month"] = self.expense_by_month(
Selling.objects.filter(customer=self.object.customer)
)
kwargs["refilling_month"] = self.expense_by_month(
Refilling.objects.filter(customer=self.object.customer)
)
2024-10-13 09:46:03 +00:00
kwargs["invoices_month"] = [
# the django ORM removes the `group by` clause in this query,
# so a little of post-processing is needed
{"grouped_date": key, "total": sum(i["total"] for i in group)}
for key, group in itertools.groupby(
self.expense_by_month(Invoice.objects.filter(user=self.object)),
key=itemgetter("grouped_date"),
)
]
2024-10-04 11:41:15 +00:00
kwargs["etickets"] = self.object.customer.buyings.exclude(product__eticket=None)
2016-08-05 07:52:19 +00:00
return kwargs
2017-06-12 07:42:03 +00:00
2016-09-06 19:47:15 +00:00
class UserAccountDetailView(UserAccountBase, YearMixin, MonthMixin):
2024-07-12 07:34:16 +00:00
"""Display a user's account for month."""
2018-10-04 19:29:19 +00:00
2016-09-06 19:47:15 +00:00
template_name = "core/user_account_detail.jinja"
def get_context_data(self, **kwargs):
2024-06-27 12:46:43 +00:00
kwargs = super().get_context_data(**kwargs)
2018-10-04 19:29:19 +00:00
kwargs["profile"] = self.object
2024-10-04 11:41:15 +00:00
kwargs["customer"] = self.object.customer
year, month = self.get_year(), self.get_month()
filters = {
"customer": self.object.customer,
"date__year": year,
"date__month": month,
}
kwargs["purchases"] = list(
Selling.objects.filter(**filters)
.select_related("counter", "counter__club", "seller")
.order_by("-date")
)
kwargs["refills"] = list(
Refilling.objects.filter(**filters)
.select_related("counter", "counter__club", "operator")
.order_by("-date")
)
kwargs["invoices"] = list(
Invoice.objects.filter(user=self.object, date__year=year, date__month=month)
.annotate_total()
.prefetch_related("items")
.order_by("-date")
)
2016-09-06 19:47:15 +00:00
return kwargs
2017-11-05 23:22:25 +00:00
class GiftCreateView(CreateView):
form_class = GiftForm
2018-10-04 19:29:19 +00:00
template_name = "core/create.jinja"
2017-11-05 23:22:25 +00:00
def dispatch(self, request, *args, **kwargs):
if not (request.user.is_board_member or request.user.is_root):
raise PermissionDenied
2018-10-04 19:29:19 +00:00
self.user = get_object_or_404(User, pk=kwargs["user_id"])
2024-06-27 12:46:43 +00:00
return super().dispatch(request, *args, **kwargs)
2017-11-05 23:22:25 +00:00
def get_initial(self):
2018-10-04 19:29:19 +00:00
return {"user": self.user}
2017-11-05 23:22:25 +00:00
def get_form_kwargs(self):
2024-06-27 12:46:43 +00:00
kwargs = super().get_form_kwargs()
2018-10-04 19:29:19 +00:00
kwargs["user_id"] = self.user.id
2017-11-05 23:22:25 +00:00
return kwargs
def get_success_url(self):
2018-10-04 19:29:19 +00:00
return reverse_lazy("core:user_profile", kwargs={"user_id": self.user.id})
2017-11-05 23:22:25 +00:00
class GiftDeleteView(CanEditPropMixin, DeleteView):
model = Gift
pk_url_kwarg = "gift_id"
2018-10-04 19:29:19 +00:00
template_name = "core/delete_confirm.jinja"
2017-11-05 23:22:25 +00:00
def dispatch(self, request, *args, **kwargs):
2018-10-04 19:29:19 +00:00
self.user = get_object_or_404(User, pk=kwargs["user_id"])
2024-06-27 12:46:43 +00:00
return super().dispatch(request, *args, **kwargs)
2017-11-05 23:22:25 +00:00
def get_success_url(self):
2018-10-04 19:29:19 +00:00
return reverse_lazy("core:user_profile", kwargs={"user_id": self.user.id})