2016-04-16 13:07:33 +00:00
|
|
|
import datetime
|
2016-04-24 07:47:58 +00:00
|
|
|
import hashlib
|
2016-04-03 20:03:58 +00:00
|
|
|
import re
|
2016-04-06 15:12:40 +00:00
|
|
|
from sqlalchemy import func
|
2016-04-03 20:03:58 +00:00
|
|
|
from szurubooru import config, db, errors
|
2016-04-20 09:59:30 +00:00
|
|
|
from szurubooru.func import auth, util, files, images
|
2016-04-03 20:03:58 +00:00
|
|
|
|
2016-04-16 13:07:33 +00:00
|
|
|
class UserNotFoundError(errors.NotFoundError): pass
|
|
|
|
|
class UserAlreadyExistsError(errors.ValidationError): pass
|
2016-04-19 09:50:47 +00:00
|
|
|
class InvalidUserNameError(errors.ValidationError): pass
|
2016-04-16 13:07:33 +00:00
|
|
|
class InvalidEmailError(errors.ValidationError): pass
|
|
|
|
|
class InvalidPasswordError(errors.ValidationError): pass
|
|
|
|
|
class InvalidRankError(errors.ValidationError): pass
|
|
|
|
|
class InvalidAvatarError(errors.ValidationError): pass
|
|
|
|
|
|
2016-04-24 07:47:58 +00:00
|
|
|
def serialize_user(user, authenticated_user):
|
|
|
|
|
if not user:
|
|
|
|
|
return {}
|
|
|
|
|
|
|
|
|
|
ret = {
|
|
|
|
|
'name': user.name,
|
|
|
|
|
'rank': user.rank,
|
|
|
|
|
'rankName': config.config['rank_names'].get(user.rank, 'Unknown'),
|
|
|
|
|
'creationTime': user.creation_time,
|
|
|
|
|
'lastLoginTime': user.last_login_time,
|
|
|
|
|
'avatarStyle': user.avatar_style
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if user.avatar_style == user.AVATAR_GRAVATAR:
|
|
|
|
|
md5 = hashlib.md5()
|
|
|
|
|
md5.update((user.email or user.name).lower().encode('utf-8'))
|
|
|
|
|
digest = md5.hexdigest()
|
|
|
|
|
ret['avatarUrl'] = 'http://gravatar.com/avatar/%s?d=retro&s=%d' % (
|
|
|
|
|
digest, config.config['thumbnails']['avatar_width'])
|
|
|
|
|
else:
|
|
|
|
|
ret['avatarUrl'] = '%s/avatars/%s.jpg' % (
|
|
|
|
|
config.config['data_url'].rstrip('/'), user.name.lower())
|
|
|
|
|
|
|
|
|
|
if authenticated_user.user_id == user.user_id:
|
|
|
|
|
ret['email'] = user.email
|
|
|
|
|
|
|
|
|
|
return ret
|
|
|
|
|
|
2016-04-18 20:41:39 +00:00
|
|
|
def get_user_count():
|
|
|
|
|
return db.session.query(db.User).count()
|
|
|
|
|
|
|
|
|
|
def get_user_by_name(name):
|
2016-04-19 15:39:16 +00:00
|
|
|
return db.session \
|
|
|
|
|
.query(db.User) \
|
2016-04-16 13:07:33 +00:00
|
|
|
.filter(func.lower(db.User.name) == func.lower(name)) \
|
|
|
|
|
.first()
|
|
|
|
|
|
2016-04-18 20:41:39 +00:00
|
|
|
def get_user_by_name_or_email(name_or_email):
|
2016-04-19 15:39:16 +00:00
|
|
|
return db.session \
|
|
|
|
|
.query(db.User) \
|
2016-04-16 13:07:33 +00:00
|
|
|
.filter(
|
|
|
|
|
(func.lower(db.User.name) == func.lower(name_or_email))
|
|
|
|
|
| (func.lower(db.User.email) == func.lower(name_or_email))) \
|
|
|
|
|
.first()
|
|
|
|
|
|
2016-04-18 20:41:39 +00:00
|
|
|
def create_user(name, password, email, auth_user):
|
2016-04-03 20:03:58 +00:00
|
|
|
user = db.User()
|
2016-04-18 20:41:39 +00:00
|
|
|
update_name(user, name, auth_user)
|
2016-04-03 20:03:58 +00:00
|
|
|
update_password(user, password)
|
|
|
|
|
update_email(user, email)
|
2016-04-18 20:41:39 +00:00
|
|
|
if get_user_count() > 0:
|
2016-04-08 17:46:59 +00:00
|
|
|
user.rank = config.config['default_rank']
|
2016-04-18 20:41:39 +00:00
|
|
|
else:
|
|
|
|
|
user.rank = 'admin'
|
2016-04-16 13:07:33 +00:00
|
|
|
user.creation_time = datetime.datetime.now()
|
2016-04-03 20:03:58 +00:00
|
|
|
user.avatar_style = db.User.AVATAR_GRAVATAR
|
|
|
|
|
return user
|
|
|
|
|
|
2016-04-18 20:41:39 +00:00
|
|
|
def update_name(user, name, auth_user):
|
2016-04-19 09:50:47 +00:00
|
|
|
if not name:
|
|
|
|
|
raise InvalidUserNameError('Name cannot be empty.')
|
2016-04-20 09:59:30 +00:00
|
|
|
if util.value_exceeds_column_size(name, db.User.name):
|
2016-04-19 09:50:47 +00:00
|
|
|
raise InvalidUserNameError('User name is too long.')
|
2016-04-18 20:41:39 +00:00
|
|
|
other_user = get_user_by_name(name)
|
2016-04-16 13:07:33 +00:00
|
|
|
if other_user and other_user.user_id != auth_user.user_id:
|
|
|
|
|
raise UserAlreadyExistsError('User %r already exists.' % name)
|
2016-04-03 20:03:58 +00:00
|
|
|
name = name.strip()
|
2016-04-06 18:38:45 +00:00
|
|
|
name_regex = config.config['user_name_regex']
|
2016-04-03 20:03:58 +00:00
|
|
|
if not re.match(name_regex, name):
|
2016-04-19 09:50:47 +00:00
|
|
|
raise InvalidUserNameError(
|
2016-04-16 13:07:33 +00:00
|
|
|
'User name %r must satisfy regex %r.' % (name, name_regex))
|
2016-04-03 20:03:58 +00:00
|
|
|
user.name = name
|
|
|
|
|
|
|
|
|
|
def update_password(user, password):
|
2016-04-19 09:50:47 +00:00
|
|
|
if not password:
|
|
|
|
|
raise InvalidPasswordError('Password cannot be empty.')
|
2016-04-06 18:38:45 +00:00
|
|
|
password_regex = config.config['password_regex']
|
2016-04-03 20:03:58 +00:00
|
|
|
if not re.match(password_regex, password):
|
2016-04-16 13:07:33 +00:00
|
|
|
raise InvalidPasswordError(
|
2016-04-03 20:03:58 +00:00
|
|
|
'Password must satisfy regex %r.' % password_regex)
|
|
|
|
|
user.password_salt = auth.create_password()
|
|
|
|
|
user.password_hash = auth.get_password_hash(user.password_salt, password)
|
|
|
|
|
|
|
|
|
|
def update_email(user, email):
|
2016-04-19 09:50:47 +00:00
|
|
|
if email:
|
|
|
|
|
email = email.strip()
|
|
|
|
|
if not email:
|
|
|
|
|
email = None
|
2016-04-20 09:59:30 +00:00
|
|
|
if email and util.value_exceeds_column_size(email, db.User.email):
|
2016-04-16 13:07:33 +00:00
|
|
|
raise InvalidEmailError('Email is too long.')
|
2016-04-20 09:59:30 +00:00
|
|
|
if not util.is_valid_email(email):
|
2016-04-16 13:07:33 +00:00
|
|
|
raise InvalidEmailError('E-mail is invalid.')
|
2016-04-03 20:03:58 +00:00
|
|
|
user.email = email
|
|
|
|
|
|
2016-04-18 20:41:39 +00:00
|
|
|
def update_rank(user, rank, authenticated_user):
|
2016-04-19 09:50:47 +00:00
|
|
|
if not rank:
|
|
|
|
|
raise InvalidRankError('Rank cannot be empty.')
|
2016-04-03 20:03:58 +00:00
|
|
|
rank = rank.strip()
|
2016-04-06 18:38:45 +00:00
|
|
|
available_ranks = config.config['ranks']
|
2016-04-06 17:16:44 +00:00
|
|
|
if not rank in available_ranks:
|
2016-04-16 13:07:33 +00:00
|
|
|
raise InvalidRankError(
|
|
|
|
|
'Rank %r is invalid. Valid ranks: %r' % (rank, available_ranks))
|
2016-04-06 17:16:44 +00:00
|
|
|
if available_ranks.index(authenticated_user.rank) \
|
2016-04-18 20:41:39 +00:00
|
|
|
< available_ranks.index(rank) and get_user_count() > 0:
|
2016-04-09 19:41:10 +00:00
|
|
|
raise errors.AuthError('Trying to set higher rank than your own.')
|
2016-04-06 17:16:44 +00:00
|
|
|
user.rank = rank
|
2016-04-03 20:03:58 +00:00
|
|
|
|
2016-04-09 19:41:10 +00:00
|
|
|
def update_avatar(user, avatar_style, avatar_content):
|
|
|
|
|
if avatar_style == 'gravatar':
|
|
|
|
|
user.avatar_style = user.AVATAR_GRAVATAR
|
|
|
|
|
elif avatar_style == 'manual':
|
|
|
|
|
user.avatar_style = user.AVATAR_MANUAL
|
|
|
|
|
if not avatar_content:
|
2016-04-16 13:07:33 +00:00
|
|
|
raise InvalidAvatarError('Avatar content missing.')
|
2016-04-09 19:41:10 +00:00
|
|
|
image = images.Image(avatar_content)
|
|
|
|
|
image.resize_fill(
|
|
|
|
|
int(config.config['thumbnails']['avatar_width']),
|
|
|
|
|
int(config.config['thumbnails']['avatar_height']))
|
|
|
|
|
files.save('avatars/' + user.name.lower() + '.jpg', image.to_jpeg())
|
|
|
|
|
else:
|
2016-04-16 13:07:33 +00:00
|
|
|
raise InvalidAvatarError(
|
|
|
|
|
'Avatar style %r is invalid. Valid avatar styles: %r.' % (
|
|
|
|
|
avatar_style, ['gravatar', 'manual']))
|
2016-04-09 19:41:10 +00:00
|
|
|
|
2016-04-03 20:03:58 +00:00
|
|
|
def bump_login_time(user):
|
2016-04-16 13:07:33 +00:00
|
|
|
user.last_login_time = datetime.datetime.now()
|
2016-04-03 20:03:58 +00:00
|
|
|
|
|
|
|
|
def reset_password(user):
|
|
|
|
|
password = auth.create_password()
|
|
|
|
|
user.password_salt = auth.create_password()
|
|
|
|
|
user.password_hash = auth.get_password_hash(user.password_salt, password)
|
|
|
|
|
return password
|
