mirror of
https://github.com/ae-utbm/sith.git
synced 2024-11-22 22:23:23 +00:00
b9298792ae
* integration of 3D secure v2 for eboutic bank payment * edit yml to avoid git conflict when deploying on test * escape html characters on xml (#505) * Change country id to ISO 3166 1 numeric for 3DSV2 (#510) * remove useless tests * Fix le panier de l'Eboutic pour Safari (#518) Co-authored-by: Théo DURR <git@theodurr.fr> Co-authored-by: thomas girod <56346771+imperosol@users.noreply.github.com> * update some dependencies (#523) * [Eboutic] Fix double quote issue & improved user experience on small screen (#522) * Fix #511 Regex issue with escaped double quotes * Fix basket being when reloading the page (when cookie != "") + Added JSDoc + Cleaned some code * Fix #509 Improved user experience on small screens * Fix css class not being added back when reloading page * CSS Fixes (see description) + Fixed overlaping item title with the cart emoji on small screen + Fixed minimal size of the basket on small screen (full width) * Added darkened background circle to items with no image * Fix issue were the basket could be None * Edited CSS to have bette img ratio & the 🛒 icon Adapt, Improve, Overcome * Moved basket down on small screen size * enhance admin pages * update documentation * Update doc/about/tech.rst Co-authored-by: Julien Constant <49886317+Juknum@users.noreply.github.com> * remove csrf_token * Fix 3DSv2 implementation (#542) * Fixed wrong HMAC signature generation * Fix xml du panier Co-authored-by: Julien Constant <julienconstant190@gmail.com> * [FIX] 3DSv2 - Echappement du XML et modif tables (#543) * Fixed wrong HMAC signature generation * Updated migration files Co-authored-by: Julien Constant <julienconstant190@gmail.com> * Update doc/about/tech.rst * Update doc/start/install.rst * Updated lock file according to pyproject * unify account_id creation * upgrade re_path to path (#533) * redirect directly on counter if user is barman * Passage de vue à Alpine pour les comptoirs (#561) Vue, c'est cool, mais avec Django c'est un peu chiant à utiliser. Alpine a l'avantage d'être plus léger et d'avoir une syntaxe qui ne ressemble pas à celle de Jinja (ce qui évite d'avoir à mettre des {% raw %} partout). * resolved importError (#565) * Add galaxy (#562) * style.scss: lint * style.scss: add 'th' padding * core: populate: add much more data for development * Add galaxy * repair user merging tool (#498) * Disabled galaxy feature (only visually) * Disabled Galaxy button & Removed 404 exception display * Update 404.jinja * Fixed broken test * Added eurocks links to eboutic * fix typo * fix wording Co-authored-by: Théo DURR <git@theodurr.fr> * Edited unit tests This test caused a breach in security due to the alert block displaying sensitive data. * Repair NaN bug for autocomplete on counter click * remove-useless-queries-counter-stats (#519) * Amélioration des pages utilisateurs pour les petits écrans (#578, #520) - Refonte de l'organisation des pages utilisateurs (principalement du front) - Page des parrains/fillots - Page d'édition du profil - Page du profil - Page des outils - Page des préférences - Page des stats utilisateurs - Refonte du CSS / organisation de la navbar principale (en haut de l'écran) - Refonte du CSS de la navbar bleu clair (le menu) - Refonte du CSS du SAS : - Page de photo - Page d'albums * Added GA/Clubs Google Calendar to main page (#585) * Added GA/Clubs google calendar to main page * Made tables full width * Create dependabot.yml (#587) * Bump django from 3.2.16 to 3.2.18 (#574) * [CSS] Follow up of #578 (#589) * [FIX] Broken link in readme and license fix (& update) (#591) * Fixes pour la mise à jour de mars (#598) * Fix problème de cache dans le SAS & améliore le CSS du SAS Co-authored-by: Bartuccio Antoine <klmp200@users.noreply.github.com> * Fixes & améliorations du nouveau CSS (#616) * [UPDATE] Bump sentry-sdk from 1.12.1 to 1.19.1 (#620) * [FIX] Fixes supplémentaires pour la màj de mars (#622) - Les photos de l'onglet de la page utilisateur utilise désormais leur version thumbnail au lieu de leur version HD - Une des classes du CSS du SAS a été renommée car elle empiétait sur une class de la navbar - Le profil utilisateur a été revu pour ajouter plus d'espacement entre le tableau des cotisations et le numéro de cotisants - Les images de forum & blouse sont de nouveau cliquable pour les afficher en grands - Sur mobile, lorsqu'on cliquait sur le premier élément de la navbar, ce dernier avait un overlay avec des angles arrondis - Sur mobile, les utilisateurs avec des images de profils non carrées dépassait dans l'onglet Famille * [UPDATE] Bump dict2xml from 1.7.2 to 1.7.3 (#592) Bumps [dict2xml](https://github.com/delfick/python-dict2xml) from 1.7.2 to 1.7.3. - [Release notes](https://github.com/delfick/python-dict2xml/releases) - [Commits](https://github.com/delfick/python-dict2xml/compare/release-1.7.2...release-1.7.3) --- updated-dependencies: - dependency-name: dict2xml dependency-type: direct:production update-type: version-update:semver-patch ... * [UPDATE] Bump django-debug-toolbar from 3.8.1 to 4.0.0 (#593) Bumps [django-debug-toolbar](https://github.com/jazzband/django-debug-toolbar) from 3.8.1 to 4.0.0. - [Release notes](https://github.com/jazzband/django-debug-toolbar/releases) - [Changelog](https://github.com/jazzband/django-debug-toolbar/blob/main/docs/changes.rst) - [Commits](https://github.com/jazzband/django-debug-toolbar/compare/3.8.1...4.0.0) --- updated-dependencies: - dependency-name: django-debug-toolbar dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [UPDATE] Bump cryptography from 37.0.4 to 40.0.1 (#594) * [UPDATE] Bump cryptography from 37.0.4 to 40.0.1 Bumps [cryptography](https://github.com/pyca/cryptography) from 37.0.4 to 40.0.1. - [Release notes](https://github.com/pyca/cryptography/releases) - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/37.0.4...40.0.1) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> * Updated pyOpenSSL to match cryptography requirements --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: Julien Constant <julienconstant190@gmail.com> * Mise à jour de Black vers la version 23.3 (#629) * update link for poetry install * [UPDATE] Bump django-countries from 7.5 to 7.5.1 (#624) Bumps [django-countries](https://github.com/SmileyChris/django-countries) from 7.5 to 7.5.1. - [Release notes](https://github.com/SmileyChris/django-countries/releases) - [Changelog](https://github.com/SmileyChris/django-countries/blob/main/CHANGES.rst) - [Commits](https://github.com/SmileyChris/django-countries/compare/v7.5...v7.5.1) --- updated-dependencies: - dependency-name: django-countries dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [UPDATE] Bump sentry-sdk from 1.19.1 to 1.21.0 Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 1.19.1 to 1.21.0. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/1.19.1...1.21.0) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Speed up tests (#638) * Better usage of cache for groups and clubs related operations (#634) * Better usage of cache for group retrieval * Cache clearing on object deletion or update * replace signals by save and delete override * add is_anonymous check in is_owned_by Add in many is_owned_by(self, user) methods that user is not anonymous. Since many of those functions do db queries, this should reduce a little bit the load of the db. * Stricter usage of User.is_in_group Constrain the parameters that can be passed to the function to make sure only a str or an int can be used. Also force to explicitly specify if the group id or the group name is used. * write test and correct bugs * remove forgotten populate commands * Correct test * [FIX] Correction de bugs (#617) * Fix #600 * Fix #602 * Fixes & améliorations du nouveau CSS (#616) * Fix #604 * should fix #605 * Fix #608 * Update core/views/site.py Co-Authored-By: thomas girod <56346771+imperosol@users.noreply.github.com> * Added back the permission denied * Should fix #609 * Fix failing test when 2 user are merged * Should fix #610 * Should fix #627 * Should fix #109 Block les URLs suivantes lorsque le fichier se trouve dans le dir `profiles` ou `SAS` : - `/file/<id>/` - `/file/<id>/[delete|prop|edit]` > Les urls du SAS restent accessiblent pour les roots & les admins SAS > Les urls de profiles sont uniquement accessiblent aux roots * Fix root dir of SAS being unnaccessible for sas admins ⚠️ need to edit the SAS directory & save it (no changes required in sas directory properties) * Remove overwritten code * Should fix duplicated albums in user profile (wtf) * Fix typo * Extended profiles picture access to board members * Should fix #607 * Fix keyboard navigation not working properly * Fix user tagged pictures section inside python rather than in the template * Update utils.py * Apply suggested changes * Fix #604 * Fix #608 * Added back the permission denied * Should fix duplicated albums in user profile (wtf) * Fix user tagged pictures section inside python rather than in the template * Apply suggested changes --------- Co-authored-by: thomas girod <56346771+imperosol@users.noreply.github.com> * Remove duplicated css * Galaxy improvements (#628) * galaxy: improve logging and performance reporting * galaxy: add a full galaxy state test * galaxy: optimize user self score computation * galaxy: add 'generate_galaxy_test_data' command for development at scale * galaxy: big refactor Main changes: - Multiple Galaxy objects can now exist at the same time in DB. This allows for ruling a new galaxy while still displaying the old one. - The criteria to quickly know whether a user is a possible citizen is now a simple query on picture count. This avoids a very complicated query to database, that could often result in huge working memory load. With this change, it should be possible to run the galaxy even on a vanilla Postgres that didn't receive fine tuning for the Sith's galaxy. * galaxy: template: make the galaxy graph work and be usable with a lot of stars - Display focused star and its connections clearly - Display star label faintly by default for other stars to avoid overloading the graph - Hide non-focused lanes - Avoid clicks on non-highlighted, too far stars - Make the canva adapt its width to initial screen size, doesn't work dynamically * galaxy: better docstrings * galaxy: use bulk_create whenever possible This is a big performance gain, especially for the tests. Examples: ---- `./manage.py test galaxy.tests.GalaxyTest.test_full_galaxy_state` Measurements averaged over 3 run on *my machine*™: Before: 2min15s After: 1m41s ---- `./manage.py generate_galaxy_test_data --user-pack-count 1` Before: 48s After: 25s ---- `./manage.py rule_galaxy` (for 600 citizen, corresponding to 1 user-pack) Before: 14m4s After: 12m34s * core: populate: use a less ambiguous 'timezone.now()' When running the tests around midnight, the day is changing, leading to some values being offset to the next day depending on the timezone, and making some tests to fail. This ensure to use a less ambiguous `now` when populating the database. * write more extensive documentation - add documentation to previously documented classes and functions and refactor some of the documented one, in accordance to the PEP257 and ReStructuredText standards ; - add some type hints ; - use a NamedTuple for the `Galaxy.compute_users_score` method instead of a raw tuple. Also change a little bit the logic in the function which call the latter ; - add some additional parameter checks on a few functions ; - change a little bit the logic of the log level setting for the galaxy related commands. * galaxy: tests: split Model and View for more efficient data usage --------- Co-authored-by: maréchal <thgirod@hotmail.com> * [UPDATE] Bump libsass from 0.21.0 to 0.22.0 (#640) Bumps [libsass](https://github.com/sass/libsass-python) from 0.21.0 to 0.22.0. - [Release notes](https://github.com/sass/libsass-python/releases) - [Changelog](https://github.com/sass/libsass-python/blob/main/docs/changes.rst) - [Commits](https://github.com/sass/libsass-python/compare/0.21.0...0.22.0) --- updated-dependencies: - dependency-name: libsass dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [FIX] Fix cached groups (#647) * Bump sqlparse from 0.4.3 to 0.4.4 (#645) Bumps [sqlparse](https://github.com/andialbrecht/sqlparse) from 0.4.3 to 0.4.4. - [Release notes](https://github.com/andialbrecht/sqlparse/releases) - [Changelog](https://github.com/andialbrecht/sqlparse/blob/master/CHANGELOG) - [Commits](https://github.com/andialbrecht/sqlparse/compare/0.4.3...0.4.4) --- updated-dependencies: - dependency-name: sqlparse dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [UPDATE] Bump django-ordered-model from 3.6 to 3.7.4 (#625) Bumps [django-ordered-model](https://github.com/django-ordered-model/django-ordered-model) from 3.6 to 3.7.4. - [Release notes](https://github.com/django-ordered-model/django-ordered-model/releases) - [Changelog](https://github.com/django-ordered-model/django-ordered-model/blob/master/CHANGES.md) - [Commits](https://github.com/django-ordered-model/django-ordered-model/compare/3.6...3.7.4) --- updated-dependencies: - dependency-name: django-ordered-model dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Fix immutable default variable in `get_start_of_semester` (#656) Le serveur ne percevait pas le changement de semestre, parce que la valeur par défaut passée à la fonction `get_start_of_semester()` était une fonction appelée une seule fois, lors du lancement du serveur. Bref, c'était ça : https://beta.ruff.rs/docs/rules/function-call-in-default-argument/ --------- Co-authored-by: imperosol <thgirod@hotmail.com> * Add missing method on AnonymousUser (#649) --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: Thomas Girod <thgirod@hotmail.com> Co-authored-by: thomas girod <56346771+imperosol@users.noreply.github.com> Co-authored-by: Théo DURR <git@theodurr.fr> Co-authored-by: Skia <skia@hya.sk> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Bartuccio Antoine <klmp200@users.noreply.github.com>
1589 lines
52 KiB
Python
1589 lines
52 KiB
Python
# -*- coding:utf-8 -*
|
|
#
|
|
# Copyright 2016,2017,2018
|
|
# - Skia <skia@libskia.so>
|
|
# - Sli <antoine@bartuccio.fr>
|
|
#
|
|
# Ce fichier fait partie du site de l'Association des Étudiants de l'UTBM,
|
|
# http://ae.utbm.fr.
|
|
#
|
|
# This program is free software; you can redistribute it and/or modify it under
|
|
# the terms of the GNU General Public License a published by the Free Software
|
|
# Foundation; either version 3 of the License, or (at your option) any later
|
|
# version.
|
|
#
|
|
# This program is distributed in the hope that it will be useful, but WITHOUT
|
|
# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
|
|
# FOR A PARTICULAR PURPOSE. See the GNU General Public License for more
|
|
# details.
|
|
#
|
|
# You should have received a copy of the GNU General Public License along with
|
|
# this program; if not, write to the Free Sofware Foundation, Inc., 59 Temple
|
|
# Place - Suite 330, Boston, MA 02111-1307, USA.
|
|
#
|
|
#
|
|
import importlib
|
|
from typing import Union, Optional, List
|
|
|
|
from django.core.cache import cache
|
|
from django.core.mail import send_mail
|
|
from django.contrib.auth.models import (
|
|
AbstractBaseUser,
|
|
UserManager,
|
|
Group as AuthGroup,
|
|
GroupManager as AuthGroupManager,
|
|
AnonymousUser as AuthAnonymousUser,
|
|
)
|
|
from django.utils.translation import gettext_lazy as _
|
|
from django.utils import timezone
|
|
from django.core import validators
|
|
from django.core.exceptions import ValidationError, PermissionDenied
|
|
from django.urls import reverse
|
|
from django.conf import settings
|
|
from django.db import models, transaction
|
|
from django.contrib.staticfiles.storage import staticfiles_storage
|
|
from django.utils.html import escape
|
|
from django.utils.functional import cached_property
|
|
|
|
import os
|
|
from core import utils
|
|
|
|
from phonenumber_field.modelfields import PhoneNumberField
|
|
|
|
from datetime import timedelta, date
|
|
|
|
import unicodedata
|
|
|
|
|
|
class RealGroupManager(AuthGroupManager):
|
|
def get_queryset(self):
|
|
return super(RealGroupManager, self).get_queryset().filter(is_meta=False)
|
|
|
|
|
|
class MetaGroupManager(AuthGroupManager):
|
|
def get_queryset(self):
|
|
return super(MetaGroupManager, self).get_queryset().filter(is_meta=True)
|
|
|
|
|
|
class Group(AuthGroup):
|
|
"""
|
|
Implement both RealGroups and Meta groups
|
|
|
|
Groups are sorted by their is_meta property
|
|
"""
|
|
|
|
#: If False, this is a RealGroup
|
|
is_meta = models.BooleanField(
|
|
_("meta group status"),
|
|
default=False,
|
|
help_text=_("Whether a group is a meta group or not"),
|
|
)
|
|
#: Description of the group
|
|
description = models.CharField(_("description"), max_length=60)
|
|
|
|
class Meta:
|
|
ordering = ["name"]
|
|
|
|
def get_absolute_url(self):
|
|
"""
|
|
This is needed for black magic powered UpdateView's children
|
|
"""
|
|
return reverse("core:group_list")
|
|
|
|
def save(self, *args, **kwargs):
|
|
super().save(*args, **kwargs)
|
|
cache.set(f"sith_group_{self.id}", self)
|
|
cache.set(f"sith_group_{self.name.replace(' ', '_')}", self)
|
|
|
|
def delete(self, *args, **kwargs):
|
|
super().delete(*args, **kwargs)
|
|
cache.delete(f"sith_group_{self.id}")
|
|
cache.delete(f"sith_group_{self.name.replace(' ', '_')}")
|
|
|
|
|
|
class MetaGroup(Group):
|
|
"""
|
|
MetaGroups are dynamically created groups.
|
|
Generally used with clubs where creating a club creates two groups:
|
|
|
|
* club-SITH_BOARD_SUFFIX
|
|
* club-SITH_MEMBER_SUFFIX
|
|
"""
|
|
|
|
#: Assign a manager in a way that MetaGroup.objects only return groups with is_meta=False
|
|
objects = MetaGroupManager()
|
|
|
|
class Meta:
|
|
proxy = True
|
|
|
|
def __init__(self, *args, **kwargs):
|
|
super(MetaGroup, self).__init__(*args, **kwargs)
|
|
self.is_meta = True
|
|
|
|
@cached_property
|
|
def associated_club(self):
|
|
"""
|
|
Return the group associated with this meta group
|
|
|
|
The result of this function is cached
|
|
|
|
:return: The associated club if it exists, else None
|
|
:rtype: club.models.Club | None
|
|
"""
|
|
from club.models import Club
|
|
|
|
if self.name.endswith(settings.SITH_BOARD_SUFFIX):
|
|
# replace this with str.removesuffix as soon as Python
|
|
# is upgraded to 3.10
|
|
club_name = self.name[: -len(settings.SITH_BOARD_SUFFIX)]
|
|
elif self.name.endswith(settings.SITH_MEMBER_SUFFIX):
|
|
club_name = self.name[: -len(settings.SITH_MEMBER_SUFFIX)]
|
|
else:
|
|
return None
|
|
club = cache.get(f"sith_club_{club_name}")
|
|
if club is None:
|
|
club = Club.objects.filter(unix_name=club_name).first()
|
|
cache.set(f"sith_club_{club_name}", club)
|
|
return club
|
|
|
|
|
|
class RealGroup(Group):
|
|
"""
|
|
RealGroups are created by the developer.
|
|
Most of the time they match a number in settings to be easily used for permissions.
|
|
"""
|
|
|
|
#: Assign a manager in a way that MetaGroup.objects only return groups with is_meta=True
|
|
objects = RealGroupManager()
|
|
|
|
class Meta:
|
|
proxy = True
|
|
|
|
|
|
def validate_promo(value):
|
|
start_year = settings.SITH_SCHOOL_START_YEAR
|
|
delta = (date.today() + timedelta(days=180)).year - start_year
|
|
if value < 0 or delta < value:
|
|
raise ValidationError(
|
|
_("%(value)s is not a valid promo (between 0 and %(end)s)"),
|
|
params={"value": value, "end": delta},
|
|
)
|
|
|
|
|
|
def get_group(*, pk: int = None, name: str = None) -> Optional[Group]:
|
|
"""
|
|
Search for a group by its primary key or its name.
|
|
Either one of the two must be set.
|
|
|
|
The result is cached for the default duration (should be 5 minutes).
|
|
|
|
:param pk: The primary key of the group
|
|
:param name: The name of the group
|
|
:return: The group if it exists, else None
|
|
:raise ValueError: If no group matches the criteria
|
|
"""
|
|
if pk is None and name is None:
|
|
raise ValueError("Either pk or name must be set")
|
|
|
|
# replace space characters to hide warnings with memcached backend
|
|
pk_or_name: Union[str, int] = pk if pk is not None else name.replace(" ", "_")
|
|
group = cache.get(f"sith_group_{pk_or_name}")
|
|
|
|
if group == "not_found":
|
|
# Using None as a cache value is a little bit tricky,
|
|
# so we use a special string to represent None
|
|
return None
|
|
elif group is not None:
|
|
return group
|
|
# if this point is reached, the group is not in cache
|
|
if pk is not None:
|
|
group = Group.objects.filter(pk=pk).first()
|
|
else:
|
|
group = Group.objects.filter(name=name).first()
|
|
if group is not None:
|
|
cache.set(f"sith_group_{group.id}", group)
|
|
cache.set(f"sith_group_{group.name.replace(' ', '_')}", group)
|
|
else:
|
|
cache.set(f"sith_group_{pk_or_name}", "not_found")
|
|
return group
|
|
|
|
|
|
class User(AbstractBaseUser):
|
|
"""
|
|
Defines the base user class, useable in every app
|
|
|
|
This is almost the same as the auth module AbstractUser since it inherits from it,
|
|
but some fields are required, and the username is generated automatically with the
|
|
name of the user (see generate_username()).
|
|
|
|
Added field: nick_name, date_of_birth
|
|
Required fields: email, first_name, last_name, date_of_birth
|
|
"""
|
|
|
|
username = models.CharField(
|
|
_("username"),
|
|
max_length=254,
|
|
unique=True,
|
|
help_text=_(
|
|
"Required. 254 characters or fewer. Letters, digits and ./+/-/_ only."
|
|
),
|
|
validators=[
|
|
validators.RegexValidator(
|
|
r"^[\w.+-]+$",
|
|
_(
|
|
"Enter a valid username. This value may contain only "
|
|
"letters, numbers "
|
|
"and ./+/-/_ characters."
|
|
),
|
|
)
|
|
],
|
|
error_messages={"unique": _("A user with that username already exists.")},
|
|
)
|
|
first_name = models.CharField(_("first name"), max_length=64)
|
|
last_name = models.CharField(_("last name"), max_length=64)
|
|
email = models.EmailField(_("email address"), unique=True)
|
|
date_of_birth = models.DateField(_("date of birth"), blank=True, null=True)
|
|
nick_name = models.CharField(_("nick name"), max_length=64, null=True, blank=True)
|
|
is_staff = models.BooleanField(
|
|
_("staff status"),
|
|
default=False,
|
|
help_text=_("Designates whether the user can log into this admin site."),
|
|
)
|
|
is_active = models.BooleanField(
|
|
_("active"),
|
|
default=True,
|
|
help_text=_(
|
|
"Designates whether this user should be treated as active. "
|
|
"Unselect this instead of deleting accounts."
|
|
),
|
|
)
|
|
date_joined = models.DateField(_("date joined"), auto_now_add=True)
|
|
last_update = models.DateTimeField(_("last update"), auto_now=True)
|
|
is_superuser = models.BooleanField(
|
|
_("superuser"),
|
|
default=False,
|
|
help_text=_("Designates whether this user is a superuser. "),
|
|
)
|
|
groups = models.ManyToManyField(RealGroup, related_name="users", blank=True)
|
|
home = models.OneToOneField(
|
|
"SithFile",
|
|
related_name="home_of",
|
|
verbose_name=_("home"),
|
|
null=True,
|
|
blank=True,
|
|
on_delete=models.SET_NULL,
|
|
)
|
|
profile_pict = models.OneToOneField(
|
|
"SithFile",
|
|
related_name="profile_of",
|
|
verbose_name=_("profile"),
|
|
null=True,
|
|
blank=True,
|
|
on_delete=models.SET_NULL,
|
|
)
|
|
avatar_pict = models.OneToOneField(
|
|
"SithFile",
|
|
related_name="avatar_of",
|
|
verbose_name=_("avatar"),
|
|
null=True,
|
|
blank=True,
|
|
on_delete=models.SET_NULL,
|
|
)
|
|
scrub_pict = models.OneToOneField(
|
|
"SithFile",
|
|
related_name="scrub_of",
|
|
verbose_name=_("scrub"),
|
|
null=True,
|
|
blank=True,
|
|
on_delete=models.SET_NULL,
|
|
)
|
|
sex = models.CharField(
|
|
_("sex"),
|
|
max_length=10,
|
|
null=True,
|
|
blank=True,
|
|
choices=[("MAN", _("Man")), ("WOMAN", _("Woman")), ("OTHER", _("Other"))],
|
|
)
|
|
pronouns = models.CharField(_("pronouns"), max_length=64, blank=True, default="")
|
|
tshirt_size = models.CharField(
|
|
_("tshirt size"),
|
|
max_length=5,
|
|
choices=[
|
|
("-", _("-")),
|
|
("XS", _("XS")),
|
|
("S", _("S")),
|
|
("M", _("M")),
|
|
("L", _("L")),
|
|
("XL", _("XL")),
|
|
("XXL", _("XXL")),
|
|
("XXXL", _("XXXL")),
|
|
],
|
|
default="-",
|
|
)
|
|
role = models.CharField(
|
|
_("role"),
|
|
max_length=15,
|
|
choices=[
|
|
("STUDENT", _("Student")),
|
|
("ADMINISTRATIVE", _("Administrative agent")),
|
|
("TEACHER", _("Teacher")),
|
|
("AGENT", _("Agent")),
|
|
("DOCTOR", _("Doctor")),
|
|
("FORMER STUDENT", _("Former student")),
|
|
("SERVICE", _("Service")),
|
|
],
|
|
blank=True,
|
|
default="",
|
|
)
|
|
department = models.CharField(
|
|
_("department"),
|
|
max_length=15,
|
|
choices=settings.SITH_PROFILE_DEPARTMENTS,
|
|
default="NA",
|
|
blank=True,
|
|
)
|
|
dpt_option = models.CharField(
|
|
_("dpt option"), max_length=32, blank=True, default=""
|
|
)
|
|
semester = models.CharField(_("semester"), max_length=5, blank=True, default="")
|
|
quote = models.CharField(_("quote"), max_length=256, blank=True, default="")
|
|
school = models.CharField(_("school"), max_length=80, blank=True, default="")
|
|
promo = models.IntegerField(
|
|
_("promo"), validators=[validate_promo], null=True, blank=True
|
|
)
|
|
forum_signature = models.TextField(
|
|
_("forum signature"), max_length=256, blank=True, default=""
|
|
)
|
|
second_email = models.EmailField(_("second email address"), null=True, blank=True)
|
|
phone = PhoneNumberField(_("phone"), null=True, blank=True)
|
|
parent_phone = PhoneNumberField(_("parent phone"), null=True, blank=True)
|
|
address = models.CharField(_("address"), max_length=128, blank=True, default="")
|
|
parent_address = models.CharField(
|
|
_("parent address"), max_length=128, blank=True, default=""
|
|
)
|
|
is_subscriber_viewable = models.BooleanField(
|
|
_("is subscriber viewable"), default=True
|
|
)
|
|
godfathers = models.ManyToManyField("User", related_name="godchildren", blank=True)
|
|
|
|
objects = UserManager()
|
|
|
|
USERNAME_FIELD = "username"
|
|
|
|
def promo_has_logo(self):
|
|
return utils.file_exist("./core/static/core/img/promo_%02d.png" % self.promo)
|
|
|
|
def has_module_perms(self, package_name):
|
|
return self.is_active
|
|
|
|
def has_perm(self, perm, obj=None):
|
|
return self.is_active and self.is_superuser
|
|
|
|
def get_absolute_url(self):
|
|
"""
|
|
This is needed for black magic powered UpdateView's children
|
|
"""
|
|
return reverse("core:user_profile", kwargs={"user_id": self.pk})
|
|
|
|
def __str__(self):
|
|
return self.get_display_name()
|
|
|
|
def to_dict(self):
|
|
return self.__dict__
|
|
|
|
@cached_property
|
|
def was_subscribed(self):
|
|
return self.subscriptions.exists()
|
|
|
|
@cached_property
|
|
def is_subscribed(self):
|
|
s = self.subscriptions.filter(
|
|
subscription_start__lte=timezone.now(), subscription_end__gte=timezone.now()
|
|
)
|
|
return s.exists()
|
|
|
|
@cached_property
|
|
def account_balance(self):
|
|
if hasattr(self, "customer"):
|
|
return self.customer.amount
|
|
else:
|
|
return 0
|
|
|
|
def is_in_group(self, *, pk: int = None, name: str = None) -> bool:
|
|
"""
|
|
Check if this user is in the given group.
|
|
Either a group id or a group name must be provided.
|
|
If both are passed, only the id will be considered.
|
|
|
|
The group will be fetched using the given parameter.
|
|
If no group is found, return False.
|
|
If a group is found, check if this user is in the latter.
|
|
|
|
:return: True if the user is the group, else False
|
|
"""
|
|
if pk is not None:
|
|
group: Optional[Group] = get_group(pk=pk)
|
|
elif name is not None:
|
|
group: Optional[Group] = get_group(name=name)
|
|
else:
|
|
raise ValueError("You must either provide the id or the name of the group")
|
|
if group is None:
|
|
return False
|
|
if group.id == settings.SITH_GROUP_PUBLIC_ID:
|
|
return True
|
|
if group.id == settings.SITH_GROUP_SUBSCRIBERS_ID:
|
|
return self.is_subscribed
|
|
if group.id == settings.SITH_GROUP_OLD_SUBSCRIBERS_ID:
|
|
return self.was_subscribed
|
|
if group.id == settings.SITH_GROUP_ROOT_ID:
|
|
return self.is_root
|
|
if group.is_meta:
|
|
# check if this group is associated with a club
|
|
group.__class__ = MetaGroup
|
|
club = group.associated_club
|
|
if club is None:
|
|
return False
|
|
membership = club.get_membership_for(self)
|
|
if membership is None:
|
|
return False
|
|
if group.name.endswith(settings.SITH_MEMBER_SUFFIX):
|
|
return True
|
|
return membership.role > settings.SITH_MAXIMUM_FREE_ROLE
|
|
return group in self.cached_groups
|
|
|
|
@property
|
|
def cached_groups(self) -> List[Group]:
|
|
"""
|
|
Get the list of groups this user is in.
|
|
The result is cached for the default duration (should be 5 minutes)
|
|
:return: A list of all the groups this user is in
|
|
"""
|
|
groups = cache.get(f"user_{self.id}_groups")
|
|
if groups is None:
|
|
groups = list(self.groups.all())
|
|
cache.set(f"user_{self.id}_groups", groups)
|
|
return groups
|
|
|
|
@cached_property
|
|
def is_root(self) -> bool:
|
|
if self.is_superuser:
|
|
return True
|
|
root_id = settings.SITH_GROUP_ROOT_ID
|
|
return any(g.id == root_id for g in self.cached_groups)
|
|
|
|
@cached_property
|
|
def is_board_member(self):
|
|
main_club = settings.SITH_MAIN_CLUB["unix_name"]
|
|
return self.is_in_group(name=main_club + settings.SITH_BOARD_SUFFIX)
|
|
|
|
@cached_property
|
|
def can_read_subscription_history(self):
|
|
if self.is_root or self.is_board_member:
|
|
return True
|
|
|
|
from club.models import Club
|
|
|
|
for club in Club.objects.filter(
|
|
id__in=settings.SITH_CAN_READ_SUBSCRIPTION_HISTORY
|
|
):
|
|
if club in self.clubs_with_rights:
|
|
return True
|
|
return False
|
|
|
|
@cached_property
|
|
def can_create_subscription(self):
|
|
from club.models import Club
|
|
|
|
for club in Club.objects.filter(id__in=settings.SITH_CAN_CREATE_SUBSCRIPTIONS):
|
|
if club in self.clubs_with_rights:
|
|
return True
|
|
return False
|
|
|
|
@cached_property
|
|
def is_launderette_manager(self):
|
|
from club.models import Club
|
|
|
|
return (
|
|
Club.objects.filter(
|
|
unix_name=settings.SITH_LAUNDERETTE_MANAGER["unix_name"]
|
|
)
|
|
.first()
|
|
.get_membership_for(self)
|
|
)
|
|
|
|
@cached_property
|
|
def is_banned_alcohol(self):
|
|
return self.is_in_group(pk=settings.SITH_GROUP_BANNED_ALCOHOL_ID)
|
|
|
|
@cached_property
|
|
def is_banned_counter(self):
|
|
return self.is_in_group(pk=settings.SITH_GROUP_BANNED_COUNTER_ID)
|
|
|
|
@cached_property
|
|
def age(self) -> int:
|
|
"""
|
|
Return the age this user has the day the method is called.
|
|
If the user has not filled his age, return 0
|
|
"""
|
|
if self.date_of_birth is None:
|
|
return 0
|
|
today = timezone.now()
|
|
age = today.year - self.date_of_birth.year
|
|
# remove a year if this year's birthday is yet to come
|
|
age -= (today.month, today.day) < (
|
|
self.date_of_birth.month,
|
|
self.date_of_birth.day,
|
|
)
|
|
return age
|
|
|
|
def save(self, *args, **kwargs):
|
|
create = False
|
|
with transaction.atomic():
|
|
if self.id:
|
|
old = User.objects.filter(id=self.id).first()
|
|
if old and old.username != self.username:
|
|
self._change_username(self.username)
|
|
else:
|
|
create = True
|
|
super(User, self).save(*args, **kwargs)
|
|
|
|
def make_home(self):
|
|
if self.home is None:
|
|
home_root = SithFile.objects.filter(parent=None, name="users").first()
|
|
if home_root is not None:
|
|
home = SithFile(parent=home_root, name=self.username, owner=self)
|
|
home.save()
|
|
self.home = home
|
|
self.save()
|
|
|
|
def _change_username(self, new_name):
|
|
u = User.objects.filter(username=new_name).first()
|
|
if u is None:
|
|
if self.home:
|
|
self.home.name = new_name
|
|
self.home.save()
|
|
else:
|
|
raise ValidationError(_("A user with that username already exists"))
|
|
|
|
def get_profile(self):
|
|
return {
|
|
"last_name": self.last_name,
|
|
"first_name": self.first_name,
|
|
"nick_name": self.nick_name,
|
|
"date_of_birth": self.date_of_birth,
|
|
}
|
|
|
|
def get_full_name(self):
|
|
"""
|
|
Returns the first_name plus the last_name, with a space in between.
|
|
"""
|
|
full_name = "%s %s" % (self.first_name, self.last_name)
|
|
return full_name.strip()
|
|
|
|
def get_short_name(self):
|
|
"Returns the short name for the user."
|
|
if self.nick_name:
|
|
return self.nick_name
|
|
return self.first_name + " " + self.last_name
|
|
|
|
def get_display_name(self):
|
|
"""
|
|
Returns the display name of the user.
|
|
A nickname if possible, otherwise, the full name
|
|
"""
|
|
if self.nick_name:
|
|
return "%s (%s)" % (self.get_full_name(), self.nick_name)
|
|
return self.get_full_name()
|
|
|
|
def get_age(self):
|
|
"""
|
|
Returns the age
|
|
"""
|
|
today = timezone.now()
|
|
born = self.date_of_birth
|
|
return (
|
|
today.year - born.year - ((today.month, today.day) < (born.month, born.day))
|
|
)
|
|
|
|
def email_user(self, subject, message, from_email=None, **kwargs):
|
|
"""
|
|
Sends an email to this User.
|
|
"""
|
|
if from_email is None:
|
|
from_email = settings.DEFAULT_FROM_EMAIL
|
|
send_mail(subject, message, from_email, [self.email], **kwargs)
|
|
|
|
def generate_username(self):
|
|
"""
|
|
Generates a unique username based on the first and last names.
|
|
For example: Guy Carlier gives gcarlier, and gcarlier1 if the first one exists
|
|
Returns the generated username
|
|
"""
|
|
|
|
def remove_accents(data):
|
|
return "".join(
|
|
x
|
|
for x in unicodedata.normalize("NFKD", data)
|
|
if unicodedata.category(x)[0] == "L"
|
|
).lower()
|
|
|
|
user_name = (
|
|
remove_accents(self.first_name[0] + self.last_name)
|
|
.encode("ascii", "ignore")
|
|
.decode("utf-8")
|
|
)
|
|
un_set = [u.username for u in User.objects.all()]
|
|
if user_name in un_set:
|
|
i = 1
|
|
while user_name + str(i) in un_set:
|
|
i += 1
|
|
user_name += str(i)
|
|
self.username = user_name
|
|
return user_name
|
|
|
|
def is_owner(self, obj):
|
|
"""
|
|
Determine if the object is owned by the user
|
|
"""
|
|
if hasattr(obj, "is_owned_by") and obj.is_owned_by(self):
|
|
return True
|
|
if hasattr(obj, "owner_group") and self.is_in_group(pk=obj.owner_group.id):
|
|
return True
|
|
if self.is_root:
|
|
return True
|
|
return False
|
|
|
|
def can_edit(self, obj):
|
|
"""
|
|
Determine if the object can be edited by the user
|
|
"""
|
|
if hasattr(obj, "can_be_edited_by") and obj.can_be_edited_by(self):
|
|
return True
|
|
if hasattr(obj, "edit_groups"):
|
|
for pk in obj.edit_groups.values_list("pk", flat=True):
|
|
if self.is_in_group(pk=pk):
|
|
return True
|
|
if isinstance(obj, User) and obj == self:
|
|
return True
|
|
if self.is_owner(obj):
|
|
return True
|
|
return False
|
|
|
|
def can_view(self, obj):
|
|
"""
|
|
Determine if the object can be viewed by the user
|
|
"""
|
|
if hasattr(obj, "can_be_viewed_by") and obj.can_be_viewed_by(self):
|
|
return True
|
|
if hasattr(obj, "view_groups"):
|
|
for pk in obj.view_groups.values_list("pk", flat=True):
|
|
if self.is_in_group(pk=pk):
|
|
return True
|
|
if self.can_edit(obj):
|
|
return True
|
|
return False
|
|
|
|
def can_be_edited_by(self, user):
|
|
return user.is_root or user.is_board_member
|
|
|
|
def can_be_viewed_by(self, user):
|
|
return (user.was_subscribed and self.is_subscriber_viewable) or user.is_root
|
|
|
|
def get_mini_item(self):
|
|
return """
|
|
<div class="mini_profile_link" >
|
|
<span>
|
|
<img src="%s" alt="%s" />
|
|
</span>
|
|
<em>%s</em>
|
|
</a>
|
|
""" % (
|
|
self.profile_pict.get_download_url()
|
|
if self.profile_pict
|
|
else staticfiles_storage.url("core/img/unknown.jpg"),
|
|
_("Profile"),
|
|
escape(self.get_display_name()),
|
|
)
|
|
|
|
@cached_property
|
|
def preferences(self):
|
|
try:
|
|
return self._preferences
|
|
except:
|
|
prefs = Preferences(user=self)
|
|
prefs.save()
|
|
return prefs
|
|
|
|
@cached_property
|
|
def forum_infos(self):
|
|
try:
|
|
return self._forum_infos
|
|
except:
|
|
from forum.models import ForumUserInfo
|
|
|
|
infos = ForumUserInfo(user=self)
|
|
infos.save()
|
|
return infos
|
|
|
|
@cached_property
|
|
def clubs_with_rights(self):
|
|
"""
|
|
:return: the list of clubs where the user has rights
|
|
:rtype: list[club.models.Club]
|
|
"""
|
|
memberships = self.memberships.ongoing().board().select_related("club")
|
|
return [m.club for m in memberships]
|
|
|
|
@cached_property
|
|
def is_com_admin(self):
|
|
return self.is_in_group(pk=settings.SITH_GROUP_COM_ADMIN_ID)
|
|
|
|
|
|
class AnonymousUser(AuthAnonymousUser):
|
|
def __init__(self):
|
|
super(AnonymousUser, self).__init__()
|
|
|
|
@property
|
|
def can_create_subscription(self):
|
|
return False
|
|
|
|
@property
|
|
def can_read_subscription_history(self):
|
|
return False
|
|
|
|
@property
|
|
def was_subscribed(self):
|
|
return False
|
|
|
|
@property
|
|
def is_subscribed(self):
|
|
return False
|
|
|
|
@property
|
|
def subscribed(self):
|
|
return False
|
|
|
|
@property
|
|
def is_root(self):
|
|
return False
|
|
|
|
@property
|
|
def is_board_member(self):
|
|
return False
|
|
|
|
@property
|
|
def is_launderette_manager(self):
|
|
return False
|
|
|
|
@property
|
|
def is_banned_alcohol(self):
|
|
return False
|
|
|
|
@property
|
|
def is_banned_counter(self):
|
|
return False
|
|
|
|
@property
|
|
def forum_infos(self):
|
|
raise PermissionDenied
|
|
|
|
@property
|
|
def favorite_topics(self):
|
|
raise PermissionDenied
|
|
|
|
def is_in_group(self, *, pk: int = None, name: str = None) -> bool:
|
|
"""
|
|
The anonymous user is only in the public group
|
|
"""
|
|
allowed_id = settings.SITH_GROUP_PUBLIC_ID
|
|
if pk is not None:
|
|
return pk == allowed_id
|
|
elif name is not None:
|
|
group = get_group(name=name)
|
|
return group is not None and group.id == allowed_id
|
|
else:
|
|
raise ValueError("You must either provide the id or the name of the group")
|
|
|
|
def is_owner(self, obj):
|
|
return False
|
|
|
|
def can_edit(self, obj):
|
|
return False
|
|
|
|
@property
|
|
def is_com_admin(self):
|
|
return False
|
|
|
|
def can_view(self, obj):
|
|
if (
|
|
hasattr(obj, "view_groups")
|
|
and obj.view_groups.filter(id=settings.SITH_GROUP_PUBLIC_ID).exists()
|
|
):
|
|
return True
|
|
if hasattr(obj, "can_be_viewed_by") and obj.can_be_viewed_by(self):
|
|
return True
|
|
return False
|
|
|
|
def get_display_name(self):
|
|
return _("Visitor")
|
|
|
|
|
|
class Preferences(models.Model):
|
|
user = models.OneToOneField(
|
|
User, related_name="_preferences", on_delete=models.CASCADE
|
|
)
|
|
receive_weekmail = models.BooleanField(_("receive the Weekmail"), default=False)
|
|
show_my_stats = models.BooleanField(_("show your stats to others"), default=False)
|
|
notify_on_click = models.BooleanField(
|
|
_("get a notification for every click"), default=False
|
|
)
|
|
notify_on_refill = models.BooleanField(
|
|
_("get a notification for every refilling"), default=False
|
|
)
|
|
|
|
def get_display_name(self):
|
|
return self.user.get_display_name()
|
|
|
|
def get_absolute_url(self):
|
|
return self.user.get_absolute_url()
|
|
|
|
|
|
def get_directory(instance, filename):
|
|
return ".{0}/{1}".format(instance.get_parent_path(), filename)
|
|
|
|
|
|
def get_compressed_directory(instance, filename):
|
|
return "./.compressed/{0}/{1}".format(instance.get_parent_path(), filename)
|
|
|
|
|
|
def get_thumbnail_directory(instance, filename):
|
|
return "./.thumbnails/{0}/{1}".format(instance.get_parent_path(), filename)
|
|
|
|
|
|
class SithFile(models.Model):
|
|
name = models.CharField(_("file name"), max_length=256, blank=False)
|
|
parent = models.ForeignKey(
|
|
"self",
|
|
related_name="children",
|
|
verbose_name=_("parent"),
|
|
null=True,
|
|
blank=True,
|
|
on_delete=models.CASCADE,
|
|
)
|
|
file = models.FileField(
|
|
upload_to=get_directory,
|
|
verbose_name=_("file"),
|
|
max_length=256,
|
|
null=True,
|
|
blank=True,
|
|
)
|
|
compressed = models.FileField(
|
|
upload_to=get_compressed_directory,
|
|
verbose_name=_("compressed file"),
|
|
max_length=256,
|
|
null=True,
|
|
blank=True,
|
|
)
|
|
thumbnail = models.FileField(
|
|
upload_to=get_thumbnail_directory,
|
|
verbose_name=_("thumbnail"),
|
|
max_length=256,
|
|
null=True,
|
|
blank=True,
|
|
)
|
|
owner = models.ForeignKey(
|
|
User,
|
|
related_name="owned_files",
|
|
verbose_name=_("owner"),
|
|
on_delete=models.CASCADE,
|
|
)
|
|
edit_groups = models.ManyToManyField(
|
|
Group, related_name="editable_files", verbose_name=_("edit group"), blank=True
|
|
)
|
|
view_groups = models.ManyToManyField(
|
|
Group, related_name="viewable_files", verbose_name=_("view group"), blank=True
|
|
)
|
|
is_folder = models.BooleanField(_("is folder"), default=True, db_index=True)
|
|
mime_type = models.CharField(_("mime type"), max_length=30)
|
|
size = models.IntegerField(_("size"), default=0)
|
|
date = models.DateTimeField(_("date"), default=timezone.now)
|
|
is_moderated = models.BooleanField(_("is moderated"), default=False)
|
|
moderator = models.ForeignKey(
|
|
User,
|
|
related_name="moderated_files",
|
|
verbose_name=_("owner"),
|
|
null=True,
|
|
blank=True,
|
|
on_delete=models.CASCADE,
|
|
)
|
|
asked_for_removal = models.BooleanField(_("asked for removal"), default=False)
|
|
is_in_sas = models.BooleanField(
|
|
_("is in the SAS"), default=False, db_index=True
|
|
) # Allows to query this flag, updated at each call to save()
|
|
|
|
class Meta:
|
|
verbose_name = _("file")
|
|
|
|
def can_be_managed_by(self, user: User) -> bool:
|
|
"""
|
|
Tell if the user can manage the file (edit, delete, etc.) or not.
|
|
Apply the following rules:
|
|
- If the file is not in the SAS nor in the profiles directory, it can be "managed" by anyone -> return True
|
|
- If the file is in the SAS, only the SAS admins (or roots) can manage it -> return True if the user is in the SAS admin group or is a root
|
|
- If the file is in the profiles directory, only the roots can manage it -> return True if the user is a root
|
|
|
|
:returns: True if the file is managed by the SAS or within the profiles directory, False otherwise
|
|
"""
|
|
|
|
# If the file is not in the SAS nor in the profiles directory, it can be "managed" by anyone
|
|
profiles_dir = SithFile.objects.filter(name="profiles").first()
|
|
if not self.is_in_sas and not profiles_dir in self.get_parent_list():
|
|
return True
|
|
|
|
# If the file is in the SAS, only the SAS admins (or roots) can manage it
|
|
if self.is_in_sas and (
|
|
user.is_in_group(settings.SITH_GROUP_SAS_ADMIN_ID) or user.is_root
|
|
):
|
|
return True
|
|
|
|
# If the file is in the profiles directory, only the roots can manage it
|
|
if profiles_dir in self.get_parent_list() and (
|
|
user.is_root or user.is_board_member
|
|
):
|
|
return True
|
|
|
|
return False
|
|
|
|
def is_owned_by(self, user):
|
|
if user.is_anonymous:
|
|
return False
|
|
if hasattr(self, "profile_of") and user.is_board_member:
|
|
return True
|
|
if user.is_com_admin:
|
|
return True
|
|
if self.is_in_sas and user.is_in_group(pk=settings.SITH_GROUP_SAS_ADMIN_ID):
|
|
return True
|
|
return user.id == self.owner.id
|
|
|
|
def can_be_viewed_by(self, user):
|
|
if hasattr(self, "profile_of"):
|
|
return user.can_view(self.profile_of)
|
|
if hasattr(self, "avatar_of"):
|
|
return user.can_view(self.avatar_of)
|
|
if hasattr(self, "scrub_of"):
|
|
return user.can_view(self.scrub_of)
|
|
return False
|
|
|
|
def delete(self):
|
|
for c in self.children.all():
|
|
c.delete()
|
|
self.file.delete()
|
|
if self.compressed:
|
|
self.compressed.delete()
|
|
if self.thumbnail:
|
|
self.thumbnail.delete()
|
|
return super(SithFile, self).delete()
|
|
|
|
def clean(self):
|
|
"""
|
|
Cleans up the file
|
|
"""
|
|
super(SithFile, self).clean()
|
|
if "/" in self.name:
|
|
raise ValidationError(_("Character '/' not authorized in name"))
|
|
if self == self.parent:
|
|
raise ValidationError(_("Loop in folder tree"), code="loop")
|
|
if self == self.parent or (
|
|
self.parent is not None and self in self.get_parent_list()
|
|
):
|
|
raise ValidationError(_("Loop in folder tree"), code="loop")
|
|
if self.parent and self.parent.is_file:
|
|
raise ValidationError(
|
|
_("You can not make a file be a children of a non folder file")
|
|
)
|
|
if (
|
|
self.parent is None
|
|
and SithFile.objects.exclude(id=self.id)
|
|
.filter(parent=None, name=self.name)
|
|
.exists()
|
|
) or (
|
|
self.parent
|
|
and self.parent.children.exclude(id=self.id).filter(name=self.name).exists()
|
|
):
|
|
raise ValidationError(_("Duplicate file"), code="duplicate")
|
|
if self.is_folder:
|
|
if self.file:
|
|
try:
|
|
import imghdr
|
|
|
|
if imghdr.what(None, self.file.read()) not in [
|
|
"gif",
|
|
"png",
|
|
"jpeg",
|
|
]:
|
|
self.file.delete()
|
|
self.file = None
|
|
except:
|
|
self.file = None
|
|
self.mime_type = "inode/directory"
|
|
if self.is_file and (self.file is None or self.file == ""):
|
|
raise ValidationError(_("You must provide a file"))
|
|
|
|
def save(self, *args, **kwargs):
|
|
sas = SithFile.objects.filter(id=settings.SITH_SAS_ROOT_DIR_ID).first()
|
|
self.is_in_sas = sas in self.get_parent_list() or self == sas
|
|
copy_rights = False
|
|
if self.id is None:
|
|
copy_rights = True
|
|
super(SithFile, self).save(*args, **kwargs)
|
|
if copy_rights:
|
|
self.copy_rights()
|
|
if self.is_in_sas:
|
|
for u in (
|
|
RealGroup.objects.filter(id=settings.SITH_GROUP_SAS_ADMIN_ID)
|
|
.first()
|
|
.users.all()
|
|
):
|
|
Notification(
|
|
user=u,
|
|
url=reverse("sas:moderation"),
|
|
type="SAS_MODERATION",
|
|
param="1",
|
|
).save()
|
|
|
|
def apply_rights_recursively(self, only_folders=False):
|
|
children = self.children.all()
|
|
if only_folders:
|
|
children = children.filter(is_folder=True)
|
|
for c in children:
|
|
c.copy_rights()
|
|
c.apply_rights_recursively(only_folders)
|
|
|
|
def copy_rights(self):
|
|
"""Copy, if possible, the rights of the parent folder"""
|
|
if self.parent is not None:
|
|
self.edit_groups.set(self.parent.edit_groups.all())
|
|
self.view_groups.set(self.parent.view_groups.all())
|
|
self.save()
|
|
|
|
def move_to(self, parent):
|
|
"""
|
|
Move a file to a new parent.
|
|
`parent` must be a SithFile with the `is_folder=True` property. Otherwise, this function doesn't change
|
|
anything.
|
|
This is done only at the DB level, so that it's very fast for the user. Indeed, this function doesn't modify
|
|
SithFiles recursively, so it stays efficient even with top-level folders.
|
|
"""
|
|
if not parent.is_folder:
|
|
return
|
|
self.parent = parent
|
|
self.clean()
|
|
self.save()
|
|
|
|
def _repair_fs(self):
|
|
"""
|
|
This function rebuilds recursively the filesystem as it should be
|
|
regarding the DB tree.
|
|
"""
|
|
if self.is_folder:
|
|
for c in self.children.all():
|
|
c._repair_fs()
|
|
return
|
|
elif not self._check_path_consistence():
|
|
# First get future parent path and the old file name
|
|
# Prepend "." so that we match all relative handling of Django's
|
|
# file storage
|
|
parent_path = "." + self.parent.get_full_path()
|
|
parent_full_path = settings.MEDIA_ROOT + parent_path
|
|
print("Parent full path: %s" % parent_full_path)
|
|
os.makedirs(parent_full_path, exist_ok=True)
|
|
old_path = self.file.name # Should be relative: "./users/skia/bleh.jpg"
|
|
new_path = "." + self.get_full_path()
|
|
print("Old path: %s " % old_path)
|
|
print("New path: %s " % new_path)
|
|
try:
|
|
# Make this atomic, so that a FS problem rolls back the DB change
|
|
with transaction.atomic():
|
|
# Set the new filesystem path
|
|
self.file.name = new_path
|
|
self.save()
|
|
print("New file path: %s " % self.file.path)
|
|
# Really move at the FS level
|
|
if os.path.exists(parent_full_path):
|
|
os.rename(
|
|
settings.MEDIA_ROOT + old_path,
|
|
settings.MEDIA_ROOT + new_path,
|
|
)
|
|
# Empty directories may remain, but that's not really a
|
|
# problem, and that can be solved with a simple shell
|
|
# command: `find . -type d -empty -delete`
|
|
except Exception as e:
|
|
print("This file likely had a problem. Here is the exception:")
|
|
print(repr(e))
|
|
print("-" * 80)
|
|
|
|
def _check_path_consistence(self):
|
|
file_path = str(self.file)
|
|
file_full_path = settings.MEDIA_ROOT + file_path
|
|
db_path = ".%s" % self.get_full_path()
|
|
if not os.path.exists(file_full_path):
|
|
print("%s: WARNING: real file does not exists!" % self.id)
|
|
print("file path: %s" % file_path, end="")
|
|
print(" db path: %s" % db_path)
|
|
return False
|
|
if file_path != db_path:
|
|
print("%s: " % self.id, end="")
|
|
print("file path: %s" % file_path, end="")
|
|
print(" db path: %s" % db_path)
|
|
return False
|
|
print("%s OK (%s)" % (self.id, file_path))
|
|
return True
|
|
|
|
def _check_fs(self):
|
|
if self.is_folder:
|
|
for c in self.children.all():
|
|
c._check_fs()
|
|
return
|
|
else:
|
|
self._check_path_consistence()
|
|
|
|
def __getattribute__(self, attr):
|
|
if attr == "is_file":
|
|
return not self.is_folder
|
|
else:
|
|
return super(SithFile, self).__getattribute__(attr)
|
|
|
|
@cached_property
|
|
def as_picture(self):
|
|
from sas.models import Picture
|
|
|
|
return Picture.objects.filter(id=self.id).first()
|
|
|
|
@cached_property
|
|
def as_album(self):
|
|
from sas.models import Album
|
|
|
|
return Album.objects.filter(id=self.id).first()
|
|
|
|
def get_parent_list(self):
|
|
l = []
|
|
p = self.parent
|
|
while p is not None:
|
|
l.append(p)
|
|
p = p.parent
|
|
return l
|
|
|
|
def get_parent_path(self):
|
|
return "/" + "/".join([p.name for p in self.get_parent_list()[::-1]])
|
|
|
|
def get_full_path(self):
|
|
return self.get_parent_path() + "/" + self.name
|
|
|
|
def get_display_name(self):
|
|
return self.name
|
|
|
|
def get_download_url(self):
|
|
return reverse("core:download", kwargs={"file_id": self.id})
|
|
|
|
def __str__(self):
|
|
return self.get_parent_path() + "/" + self.name
|
|
|
|
|
|
class LockError(Exception):
|
|
"""There was a lock error on the object"""
|
|
|
|
pass
|
|
|
|
|
|
class AlreadyLocked(LockError):
|
|
"""The object is already locked"""
|
|
|
|
pass
|
|
|
|
|
|
class NotLocked(LockError):
|
|
"""The object is not locked"""
|
|
|
|
pass
|
|
|
|
|
|
class Page(models.Model):
|
|
"""
|
|
The page class to build a Wiki
|
|
Each page may have a parent and it's URL is of the form my.site/page/<grd_pa>/<parent>/<mypage>
|
|
It has an ID field, but don't use it, since it's only there for DB part, and because compound primary key is
|
|
awkward!
|
|
Prefere querying pages with Page.get_page_by_full_name()
|
|
|
|
Be careful with the _full_name attribute: this field may not be valid until you call save(). It's made for fast
|
|
query, but don't rely on it when playing with a Page object, use get_full_name() instead!
|
|
"""
|
|
|
|
name = models.CharField(
|
|
_("page unix name"),
|
|
max_length=30,
|
|
validators=[
|
|
validators.RegexValidator(
|
|
r"^[a-zA-Z0-9][a-zA-Z0-9._-]*[a-zA-Z0-9]$",
|
|
_(
|
|
"Enter a valid page name. This value may contain only "
|
|
"unaccented letters, numbers "
|
|
"and ./+/-/_ characters."
|
|
),
|
|
)
|
|
],
|
|
blank=False,
|
|
)
|
|
parent = models.ForeignKey(
|
|
"self",
|
|
related_name="children",
|
|
verbose_name=_("parent"),
|
|
null=True,
|
|
blank=True,
|
|
on_delete=models.SET_NULL,
|
|
)
|
|
# Attention: this field may not be valid until you call save(). It's made for fast query, but don't rely on it when
|
|
# playing with a Page object, use get_full_name() instead!
|
|
_full_name = models.CharField(_("page name"), max_length=255, blank=True)
|
|
|
|
# This function prevents generating migration upon settings change
|
|
def get_default_owner_group():
|
|
return settings.SITH_GROUP_ROOT_ID
|
|
|
|
owner_group = models.ForeignKey(
|
|
Group,
|
|
related_name="owned_page",
|
|
verbose_name=_("owner group"),
|
|
default=get_default_owner_group,
|
|
on_delete=models.CASCADE,
|
|
)
|
|
edit_groups = models.ManyToManyField(
|
|
Group, related_name="editable_page", verbose_name=_("edit group"), blank=True
|
|
)
|
|
view_groups = models.ManyToManyField(
|
|
Group, related_name="viewable_page", verbose_name=_("view group"), blank=True
|
|
)
|
|
lock_user = models.ForeignKey(
|
|
User,
|
|
related_name="locked_pages",
|
|
verbose_name=_("lock user"),
|
|
blank=True,
|
|
null=True,
|
|
default=None,
|
|
on_delete=models.CASCADE,
|
|
)
|
|
lock_timeout = models.DateTimeField(
|
|
_("lock_timeout"), null=True, blank=True, default=None
|
|
)
|
|
|
|
class Meta:
|
|
unique_together = ("name", "parent")
|
|
permissions = (
|
|
("change_prop_page", "Can change the page's properties (groups, ...)"),
|
|
)
|
|
|
|
@staticmethod
|
|
def get_page_by_full_name(name):
|
|
"""
|
|
Quicker to get a page with that method rather than building the request every time
|
|
"""
|
|
return Page.objects.filter(_full_name=name).first()
|
|
|
|
def __init__(self, *args, **kwargs):
|
|
super(Page, self).__init__(*args, **kwargs)
|
|
|
|
def clean(self):
|
|
"""
|
|
Cleans up only the name for the moment, but this can be used to make any treatment before saving the object
|
|
"""
|
|
if "/" in self.name:
|
|
self.name = self.name.split("/")[-1]
|
|
if (
|
|
Page.objects.exclude(pk=self.pk)
|
|
.filter(_full_name=self.get_full_name())
|
|
.exists()
|
|
):
|
|
raise ValidationError(_("Duplicate page"), code="duplicate")
|
|
super(Page, self).clean()
|
|
if self.parent is not None and self in self.get_parent_list():
|
|
raise ValidationError(_("Loop in page tree"), code="loop")
|
|
|
|
def can_be_edited_by(self, user):
|
|
if hasattr(self, "club") and self.club.can_be_edited_by(user):
|
|
# Override normal behavior for clubs
|
|
return True
|
|
if self.name == settings.SITH_CLUB_ROOT_PAGE and user.is_board_member:
|
|
return True
|
|
return False
|
|
|
|
def can_be_viewed_by(self, user):
|
|
if self.is_club_page:
|
|
return True
|
|
return False
|
|
|
|
def get_parent_list(self):
|
|
l = []
|
|
p = self.parent
|
|
while p is not None:
|
|
l.append(p)
|
|
p = p.parent
|
|
return l
|
|
|
|
def save(self, *args, **kwargs):
|
|
"""
|
|
Performs some needed actions before and after saving a page in database
|
|
"""
|
|
locked = kwargs.pop("force_lock", False)
|
|
if not locked:
|
|
locked = self.is_locked()
|
|
if not locked:
|
|
raise NotLocked("The page is not locked and thus can not be saved")
|
|
self.full_clean()
|
|
if not self.id:
|
|
super(Page, self).save(
|
|
*args, **kwargs
|
|
) # Save a first time to correctly set _full_name
|
|
# This reset the _full_name just before saving to maintain a coherent field quicker for queries than the
|
|
# recursive method
|
|
# It also update all the children to maintain correct names
|
|
self._full_name = self.get_full_name()
|
|
for c in self.children.all():
|
|
c.save()
|
|
super(Page, self).save(*args, **kwargs)
|
|
self.unset_lock()
|
|
|
|
def is_locked(self):
|
|
"""
|
|
Is True if the page is locked, False otherwise
|
|
This is where the timeout is handled, so a locked page for which the timeout is reach will be unlocked and this
|
|
function will return False
|
|
"""
|
|
if self.lock_timeout and (
|
|
timezone.now() - self.lock_timeout > timedelta(minutes=5)
|
|
):
|
|
# print("Lock timed out")
|
|
self.unset_lock()
|
|
return (
|
|
self.lock_user
|
|
and self.lock_timeout
|
|
and (timezone.now() - self.lock_timeout < timedelta(minutes=5))
|
|
)
|
|
|
|
def set_lock(self, user):
|
|
"""
|
|
Sets a lock on the current page or raise an AlreadyLocked exception
|
|
"""
|
|
if self.is_locked() and self.get_lock() != user:
|
|
raise AlreadyLocked("The page is already locked by someone else")
|
|
self.lock_user = user
|
|
self.lock_timeout = timezone.now()
|
|
super(Page, self).save()
|
|
# print("Locking page")
|
|
|
|
def set_lock_recursive(self, user):
|
|
"""
|
|
Locks recursively all the child pages for editing properties
|
|
"""
|
|
for p in self.children.all():
|
|
p.set_lock_recursive(user)
|
|
self.set_lock(user)
|
|
|
|
def unset_lock_recursive(self):
|
|
"""
|
|
Unlocks recursively all the child pages
|
|
"""
|
|
for p in self.children.all():
|
|
p.unset_lock_recursive()
|
|
self.unset_lock()
|
|
|
|
def unset_lock(self):
|
|
"""Always try to unlock, even if there is no lock"""
|
|
self.lock_user = None
|
|
self.lock_timeout = None
|
|
super(Page, self).save()
|
|
# print("Unlocking page")
|
|
|
|
def get_lock(self):
|
|
"""
|
|
Returns the page's mutex containing the time and the user in a dict
|
|
"""
|
|
if self.lock_user:
|
|
return self.lock_user
|
|
raise NotLocked("The page is not locked and thus can not return its user")
|
|
|
|
def get_absolute_url(self):
|
|
"""
|
|
This is needed for black magic powered UpdateView's children
|
|
"""
|
|
return reverse("core:page", kwargs={"page_name": self._full_name})
|
|
|
|
def __str__(self):
|
|
return self.get_full_name()
|
|
|
|
def get_full_name(self):
|
|
"""
|
|
Computes the real full_name of the page based on its name and its parent's name
|
|
You can and must rely on this function when working on a page object that is not freshly fetched from the DB
|
|
(For example when treating a Page object coming from a form)
|
|
"""
|
|
if self.parent is None:
|
|
return self.name
|
|
return "/".join([self.parent.get_full_name(), self.name])
|
|
|
|
def get_display_name(self):
|
|
try:
|
|
return self.revisions.last().title
|
|
except:
|
|
return self.name
|
|
|
|
@cached_property
|
|
def is_club_page(self):
|
|
club_root_page = Page.objects.filter(name=settings.SITH_CLUB_ROOT_PAGE).first()
|
|
return club_root_page is not None and (
|
|
self == club_root_page or club_root_page in self.get_parent_list()
|
|
)
|
|
|
|
@cached_property
|
|
def need_club_redirection(self):
|
|
return self.is_club_page and self.name != settings.SITH_CLUB_ROOT_PAGE
|
|
|
|
def delete(self):
|
|
self.unset_lock_recursive()
|
|
self.set_lock_recursive(User.objects.get(id=0))
|
|
for child in self.children.all():
|
|
child.parent = self.parent
|
|
child.save()
|
|
child.unset_lock_recursive()
|
|
super(Page, self).delete()
|
|
|
|
|
|
class PageRev(models.Model):
|
|
"""
|
|
This is the true content of the page.
|
|
Each page object has a revisions field that is a list of PageRev, ordered by date.
|
|
my_page.revisions.last() gives the PageRev object that is the most up-to-date, and thus,
|
|
is the real content of the page.
|
|
The content is in PageRev.title and PageRev.content .
|
|
"""
|
|
|
|
revision = models.IntegerField(_("revision"))
|
|
title = models.CharField(_("page title"), max_length=255, blank=True)
|
|
content = models.TextField(_("page content"), blank=True)
|
|
date = models.DateTimeField(_("date"), auto_now=True)
|
|
author = models.ForeignKey(User, related_name="page_rev", on_delete=models.CASCADE)
|
|
page = models.ForeignKey(Page, related_name="revisions", on_delete=models.CASCADE)
|
|
|
|
class Meta:
|
|
ordering = ["date"]
|
|
|
|
def get_absolute_url(self):
|
|
"""
|
|
This is needed for black magic powered UpdateView's children
|
|
"""
|
|
return reverse("core:page", kwargs={"page_name": self.page._full_name})
|
|
|
|
def __str__(self):
|
|
return str(self.__dict__)
|
|
|
|
def __getattribute__(self, attr):
|
|
if attr == "owner_group":
|
|
return self.page.owner_group
|
|
elif attr == "edit_groups":
|
|
return self.page.edit_groups
|
|
elif attr == "view_groups":
|
|
return self.page.view_groups
|
|
elif attr == "unset_lock":
|
|
return self.page.unset_lock
|
|
else:
|
|
return object.__getattribute__(self, attr)
|
|
|
|
def can_be_edited_by(self, user):
|
|
return self.page.can_be_edited_by(user)
|
|
|
|
def save(self, *args, **kwargs):
|
|
if self.revision is None:
|
|
self.revision = self.page.revisions.all().count() + 1
|
|
super(PageRev, self).save(*args, **kwargs)
|
|
# Don't forget to unlock, otherwise, people will have to wait for the page's timeout
|
|
self.page.unset_lock()
|
|
|
|
|
|
class Notification(models.Model):
|
|
user = models.ForeignKey(
|
|
User, related_name="notifications", on_delete=models.CASCADE
|
|
)
|
|
url = models.CharField(_("url"), max_length=255)
|
|
param = models.CharField(_("param"), max_length=128, default="")
|
|
type = models.CharField(
|
|
_("type"), max_length=32, choices=settings.SITH_NOTIFICATIONS, default="GENERIC"
|
|
)
|
|
date = models.DateTimeField(_("date"), default=timezone.now)
|
|
viewed = models.BooleanField(_("viewed"), default=False, db_index=True)
|
|
|
|
def __str__(self):
|
|
if self.param:
|
|
return self.get_type_display() % self.param
|
|
return self.get_type_display()
|
|
|
|
def callback(self):
|
|
# Get the callback defined in settings to update existing
|
|
# notifications
|
|
mod_name, func_name = settings.SITH_PERMANENT_NOTIFICATIONS[self.type].rsplit(
|
|
".", 1
|
|
)
|
|
mod = importlib.import_module(mod_name)
|
|
getattr(mod, func_name)(self)
|
|
|
|
def save(self, *args, **kwargs):
|
|
if not self.id and self.type in settings.SITH_PERMANENT_NOTIFICATIONS:
|
|
old_notif = self.user.notifications.filter(type=self.type).last()
|
|
if old_notif:
|
|
old_notif.callback()
|
|
old_notif.save()
|
|
return
|
|
super(Notification, self).save(*args, **kwargs)
|
|
|
|
|
|
class Gift(models.Model):
|
|
label = models.CharField(_("label"), max_length=255)
|
|
date = models.DateTimeField(_("date"), default=timezone.now)
|
|
user = models.ForeignKey(User, related_name="gifts", on_delete=models.CASCADE)
|
|
|
|
def __str__(self):
|
|
return "%s - %s" % (self.translated_label, self.date.strftime("%d %b %Y"))
|
|
|
|
@property
|
|
def translated_label(self):
|
|
translations = [
|
|
label[1] for label in settings.SITH_GIFT_LIST if label[0] == self.label
|
|
]
|
|
if len(translations) > 0:
|
|
return translations[0]
|
|
return self.label
|
|
|
|
def is_owned_by(self, user):
|
|
if user.is_anonymous:
|
|
return False
|
|
return user.is_board_member or user.is_root
|
|
|
|
|
|
class OperationLog(models.Model):
|
|
"""
|
|
General purpose log object to register operations
|
|
"""
|
|
|
|
date = models.DateTimeField(_("date"), auto_now_add=True)
|
|
label = models.CharField(_("label"), max_length=255)
|
|
operator = models.ForeignKey(
|
|
User, related_name="logs", on_delete=models.SET_NULL, null=True
|
|
)
|
|
operation_type = models.CharField(
|
|
_("operation type"), max_length=40, choices=settings.SITH_LOG_OPERATION_TYPE
|
|
)
|
|
|
|
def is_owned_by(self, user):
|
|
return user.is_root
|
|
|
|
def __str__(self):
|
|
return "%s - %s - %s" % (self.operation_type, self.label, self.operator)
|