django-orchestra/orchestra/contrib/accounts/models.py

from django.contrib.auth import models as auth
from django.core import validators
from django.db import models
from django.apps import apps
from django.utils import timezone
from django.utils.translation import ugettext_lazy as _

from orchestra.contrib.orchestration.middlewares import OperationsMiddleware
from orchestra.contrib.orchestration import Operation
from orchestra.core import services, accounts
from orchestra.utils import send_email_template

from . import settings


class Account(auth.AbstractBaseUser):
    # Username max_length determined by LINUX system user lentgh: 32
    username = models.CharField(_("username"), max_length=32, unique=True,
        help_text=_("Required. 64 characters or fewer. Letters, digits and ./-/_ only."),
        validators=[
            validators.RegexValidator(r'^[\w.-]+$', _("Enter a valid username."), 'invalid')
        ])
    main_systemuser = models.ForeignKey(settings.ACCOUNTS_SYSTEMUSER_MODEL, null=True,
        related_name='accounts_main', editable=False)
    short_name = models.CharField(_("short name"), max_length=64, blank=True)
    full_name = models.CharField(_("full name"), max_length=256)
    email = models.EmailField(_('email address'), help_text=_("Used for password recovery"))
    type = models.CharField(_("type"), choices=settings.ACCOUNTS_TYPES,
        max_length=32, default=settings.ACCOUNTS_DEFAULT_TYPE)
    language = models.CharField(_("language"), max_length=2,
        choices=settings.ACCOUNTS_LANGUAGES,
        default=settings.ACCOUNTS_DEFAULT_LANGUAGE)
    comments = models.TextField(_("comments"), max_length=256, blank=True)
    is_superuser = models.BooleanField(_("superuser status"), default=False,
        help_text=_("Designates that this user has all permissions without "
                    "explicitly assigning them."))
    is_active = models.BooleanField(_("active"), default=True,
        help_text=_("Designates whether this account should be treated as active. "
                    "Unselect this instead of deleting accounts."))
    date_joined = models.DateTimeField(_("date joined"), default=timezone.now)
    
    objects = auth.UserManager()
    
    USERNAME_FIELD = 'username'
    REQUIRED_FIELDS = ['email']
    
    def __str__(self):
        return self.name
    
    @property
    def name(self):
        return self.username
    
    @property
    def is_staff(self):
        return self.is_superuser
    
#    @property
#    def main_systemuser(self):
#        return self.systemusers.get(is_main=True)
    
    @classmethod
    def get_main(cls):
        return cls.objects.get(pk=settings.ACCOUNTS_MAIN_PK)
    
    def save(self, active_systemuser=False, *args, **kwargs):
        created = not self.pk
        if not created:
            was_active = Account.objects.filter(pk=self.pk).values_list('is_active', flat=True)[0]
        super(Account, self).save(*args, **kwargs)
        if created:
            self.main_systemuser = self.systemusers.create(account=self, username=self.username,
                    password=self.password, is_active=active_systemuser)
            self.save(update_fields=['main_systemuser'])
        elif was_active != self.is_active:
            self.notify_related()
    
    def clean(self):
        self.short_name = self.short_name.strip()
        self.full_name = self.full_name.strip()
    
    def disable(self):
        self.is_active = False
        self.save(update_fields=['is_active'])
        self.notify_related()
    
    def notify_related(self):
        # Trigger save() on related objects that depend on this account
        for rel in self._meta.get_all_related_objects():
            source = getattr(rel, 'related_model', rel.model)
            if source in services and hasattr(source, 'active'):
                for obj in getattr(self, rel.get_accessor_name()).all():
                    OperationsMiddleware.collect(Operation.SAVE, instance=obj, update_fields=[])
    
    def send_email(self, template, context, contacts=[], attachments=[], html=None):
        contacts = self.contacts.filter(email_usages=contacts)
        email_to = contacts.values_list('email', flat=True)
        send_email_template(template, context, email_to, html=html, attachments=attachments)
    
    def get_full_name(self):
        return self.full_name or self.short_name or self.username
    
    def get_short_name(self):
        """ Returns the short name for the user """
        return self.short_name or self.username or self.full_name
    
    def has_perm(self, perm, obj=None):
        """
        Returns True if the user has the specified permission. This method
        queries all available auth backends, but returns immediately if any
        backend returns True. Thus, a user who has permission from a single
        auth backend is assumed to have permission in general. If an object is
        provided, permissions for this specific object are checked.
        """
        # Active superusers have all permissions.
        if self.is_active and self.is_superuser:
            return True
        # Otherwise we need to check the backends.
        return auth._user_has_perm(self, perm, obj)
    
    def has_perms(self, perm_list, obj=None):
        """
        Returns True if the user has each of the specified permissions. If
        object is passed, it checks if the user has all required perms for this
        object.
        """
        for perm in perm_list:
            if not self.has_perm(perm, obj):
                return False
        return True
    
    def has_module_perms(self, app_label):
        """
        Returns True if the user has any permissions in the given app label.
        Uses pretty much the same logic as has_perm, above.
        """
        # Active superusers have all permissions.
        if self.is_active and self.is_superuser:
            return True
        return auth._user_has_module_perms(self, app_label)
    
    def get_related_passwords(self):
        related = [
            self.main_systemuser,
        ]
        for model, key, related_kwargs, __ in settings.ACCOUNTS_CREATE_RELATED:
            if 'password' not in related_kwargs:
                continue
            model = apps.get_model(model)
            kwargs = {
                key: eval(related_kwargs[key], {'account': self})
            }
            try:
                rel = model.objects.get(account=self, **kwargs)
            except model.DoesNotExist:
                continue
            related.append(rel)
        return related


services.register(Account, menu=False)
accounts.register(Account)
Account-centric alternative user model initial implementation 2014-09-29 13:34:38 +00:00			`from django.contrib.auth import models as auth`
			`from django.core import validators`
Initial commit 2014-05-08 16:59:35 +00:00			`from django.db import models`
removed some django warnings 2015-05-01 17:23:22 +00:00			`from django.apps import apps`
Account-centric alternative user model initial implementation 2014-09-29 13:34:38 +00:00			`from django.utils import timezone`
Initial commit 2014-05-08 16:59:35 +00:00			`from django.utils.translation import ugettext_lazy as _`

Moved apps to contrib 2015-04-05 10:46:24 +00:00			`from orchestra.contrib.orchestration.middlewares import OperationsMiddleware`
Split Operation and BackendOperation 2015-04-07 15:14:49 +00:00			`from orchestra.contrib.orchestration import Operation`
Split services into plans 2014-11-18 13:59:21 +00:00			`from orchestra.core import services, accounts`
Refactor payment methods plugability 2014-09-04 15:55:43 +00:00			`from orchestra.utils import send_email_template`
Resource monitoring implementation 2014-07-10 10:03:22 +00:00
Initial commit 2014-05-08 16:59:35 +00:00			`from . import settings`


Account-centric alternative user model initial implementation 2014-09-29 13:34:38 +00:00			`class Account(auth.AbstractBaseUser):`
Fixed ftp traffic backend 2015-03-02 12:07:27 +00:00			`# Username max_length determined by LINUX system user lentgh: 32`
			`username = models.CharField(_("username"), max_length=32, unique=True,`
Moved apps to contrib 2015-04-05 10:46:24 +00:00			`help_text=_("Required. 64 characters or fewer. Letters, digits and ./-/_ only."),`
			`validators=[`
			`validators.RegexValidator(r'^[\w.-]+$', _("Enter a valid username."), 'invalid')`
			`])`
Random improvements 2014-10-23 15:38:46 +00:00			`main_systemuser = models.ForeignKey(settings.ACCOUNTS_SYSTEMUSER_MODEL, null=True,`
Moved apps to contrib 2015-04-05 10:46:24 +00:00			`related_name='accounts_main', editable=False)`
Random fixes 2014-10-30 16:34:02 +00:00			`short_name = models.CharField(_("short name"), max_length=64, blank=True)`
			`full_name = models.CharField(_("full name"), max_length=256)`
Progress on implementing alternative usermodel 2014-09-30 09:49:07 +00:00			`email = models.EmailField(_('email address'), help_text=_("Used for password recovery"))`
Fixes on DD payment method 2014-07-29 20:10:37 +00:00			`type = models.CharField(_("type"), choices=settings.ACCOUNTS_TYPES,`
Moved apps to contrib 2015-04-05 10:46:24 +00:00			`max_length=32, default=settings.ACCOUNTS_DEFAULT_TYPE)`
Initial commit 2014-05-08 16:59:35 +00:00			`language = models.CharField(_("language"), max_length=2,`
Moved apps to contrib 2015-04-05 10:46:24 +00:00			`choices=settings.ACCOUNTS_LANGUAGES,`
			`default=settings.ACCOUNTS_DEFAULT_LANGUAGE)`
Initial commit 2014-05-08 16:59:35 +00:00			`comments = models.TextField(_("comments"), max_length=256, blank=True)`
Progress on implementing alternative usermodel 2014-09-30 09:49:07 +00:00			`is_superuser = models.BooleanField(_("superuser status"), default=False,`
Moved apps to contrib 2015-04-05 10:46:24 +00:00			`help_text=_("Designates that this user has all permissions without "`
			`"explicitly assigning them."))`
Account-centric alternative user model initial implementation 2014-09-29 13:34:38 +00:00			`is_active = models.BooleanField(_("active"), default=True,`
Moved apps to contrib 2015-04-05 10:46:24 +00:00			`help_text=_("Designates whether this account should be treated as active. "`
			`"Unselect this instead of deleting accounts."))`
Account-centric alternative user model initial implementation 2014-09-29 13:34:38 +00:00			`date_joined = models.DateTimeField(_("date joined"), default=timezone.now)`

			`objects = auth.UserManager()`

			`USERNAME_FIELD = 'username'`
			`REQUIRED_FIELDS = ['email']`
Initial commit 2014-05-08 16:59:35 +00:00
Ported to python 3.4 2015-04-02 16:14:55 +00:00			`def __str__(self):`
Initial commit 2014-05-08 16:59:35 +00:00			`return self.name`

Billing 2014-09-14 09:52:45 +00:00			`@property`
Initial commit 2014-05-08 16:59:35 +00:00			`def name(self):`
Account-centric alternative user model initial implementation 2014-09-29 13:34:38 +00:00			`return self.username`

			`@property`
			`def is_staff(self):`
			`return self.is_superuser`
Improvements on bills app 2014-08-19 18:59:23 +00:00
Random improvements 2014-10-23 15:38:46 +00:00			`# @property`
			`# def main_systemuser(self):`
			`# return self.systemusers.get(is_main=True)`
initial web tests 2014-10-10 14:39:46 +00:00
Improvements on bills app 2014-08-19 18:59:23 +00:00			`@classmethod`
			`def get_main(cls):`
			`return cls.objects.get(pk=settings.ACCOUNTS_MAIN_PK)`
Refactor payment methods plugability 2014-09-04 15:55:43 +00:00
Random fixes 2014-10-24 10:16:46 +00:00			`def save(self, active_systemuser=False, args, *kwargs):`
Random improvements 2014-10-23 15:38:46 +00:00			`created = not self.pk`
Added seafile incon andn fixed random bugs 2015-03-26 16:00:30 +00:00			`if not created:`
			`was_active = Account.objects.filter(pk=self.pk).values_list('is_active', flat=True)[0]`
Random improvements 2014-10-23 15:38:46 +00:00			`super(Account, self).save(args, *kwargs)`
			`if created:`
			`self.main_systemuser = self.systemusers.create(account=self, username=self.username,`
Random fixes 2014-10-24 10:16:46 +00:00			`password=self.password, is_active=active_systemuser)`
Random improvements 2014-10-23 15:38:46 +00:00			`self.save(update_fields=['main_systemuser'])`
Added seafile incon andn fixed random bugs 2015-03-26 16:00:30 +00:00			`elif was_active != self.is_active:`
			`self.notify_related()`
Random improvements 2014-10-23 15:38:46 +00:00
Added clean methods stripping withespaces 2014-10-21 16:13:18 +00:00			`def clean(self):`
Improved mailman backend 2014-10-27 14:31:04 +00:00			`self.short_name = self.short_name.strip()`
			`self.full_name = self.full_name.strip()`
Added clean methods stripping withespaces 2014-10-21 16:13:18 +00:00
Disable account 2014-10-07 13:50:59 +00:00			`def disable(self):`
			`self.is_active = False`
Improvements on databases, webapps and websites 2014-10-14 13:50:19 +00:00			`self.save(update_fields=['is_active'])`
Added seafile incon andn fixed random bugs 2015-03-26 16:00:30 +00:00			`self.notify_related()`

			`def notify_related(self):`
Improvements on databases, webapps and websites 2014-10-14 13:50:19 +00:00			`# Trigger save() on related objects that depend on this account`
Disable account 2014-10-07 13:50:59 +00:00			`for rel in self._meta.get_all_related_objects():`
Fixed bug with m2m without intermediary model backends not being executed 2015-02-27 16:57:39 +00:00			`source = getattr(rel, 'related_model', rel.model)`
Random fixes 2015-03-18 21:51:12 +00:00			`if source in services and hasattr(source, 'active'):`
Disable account 2014-10-07 13:50:59 +00:00			`for obj in getattr(self, rel.get_accessor_name()).all():`
Added seafile incon andn fixed random bugs 2015-03-26 16:00:30 +00:00			`OperationsMiddleware.collect(Operation.SAVE, instance=obj, update_fields=[])`
Added initial migrations 2015-04-08 14:41:09 +00:00
Refactor payment methods plugability 2014-09-04 15:55:43 +00:00			`def send_email(self, template, context, contacts=[], attachments=[], html=None):`
			`contacts = self.contacts.filter(email_usages=contacts)`
			`email_to = contacts.values_list('email', flat=True)`
Optimized save model operations with update_fields kwarg 2014-09-30 16:06:42 +00:00			`send_email_template(template, context, email_to, html=html, attachments=attachments)`
Account-centric alternative user model initial implementation 2014-09-29 13:34:38 +00:00
			`def get_full_name(self):`
Improved mailman backend 2014-10-27 14:31:04 +00:00			`return self.full_name or self.short_name or self.username`
Account-centric alternative user model initial implementation 2014-09-29 13:34:38 +00:00
			`def get_short_name(self):`
			`""" Returns the short name for the user """`
Improved mailman backend 2014-10-27 14:31:04 +00:00			`return self.short_name or self.username or self.full_name`
Account-centric alternative user model initial implementation 2014-09-29 13:34:38 +00:00
			`def has_perm(self, perm, obj=None):`
			`"""`
			`Returns True if the user has the specified permission. This method`
			`queries all available auth backends, but returns immediately if any`
			`backend returns True. Thus, a user who has permission from a single`
			`auth backend is assumed to have permission in general. If an object is`
			`provided, permissions for this specific object are checked.`
			`"""`
			`# Active superusers have all permissions.`
			`if self.is_active and self.is_superuser:`
			`return True`
			`# Otherwise we need to check the backends.`
			`return auth._user_has_perm(self, perm, obj)`

			`def has_perms(self, perm_list, obj=None):`
			`"""`
			`Returns True if the user has each of the specified permissions. If`
			`object is passed, it checks if the user has all required perms for this`
			`object.`
			`"""`
			`for perm in perm_list:`
			`if not self.has_perm(perm, obj):`
			`return False`
			`return True`

			`def has_module_perms(self, app_label):`
			`"""`
			`Returns True if the user has any permissions in the given app label.`
			`Uses pretty much the same logic as has_perm, above.`
			`"""`
			`# Active superusers have all permissions.`
			`if self.is_active and self.is_superuser:`
			`return True`
			`return auth._user_has_module_perms(self, app_label)`
Random improvements 2014-10-23 15:38:46 +00:00
Random fixes 2014-10-20 15:51:24 +00:00			`def get_related_passwords(self):`
Random improvements 2014-10-23 15:38:46 +00:00			`related = [`
			`self.main_systemuser,`
			`]`
			`for model, key, related_kwargs, __ in settings.ACCOUNTS_CREATE_RELATED:`
			`if 'password' not in related_kwargs:`
Random fixes 2014-10-20 15:51:24 +00:00			`continue`
removed some django warnings 2015-05-01 17:23:22 +00:00			`model = apps.get_model(model)`
Random fixes 2014-10-20 15:51:24 +00:00			`kwargs = {`
Random improvements 2014-10-23 15:38:46 +00:00			`key: eval(related_kwargs[key], {'account': self})`
Random fixes 2014-10-20 15:51:24 +00:00			`}`
			`try:`
			`rel = model.objects.get(account=self, **kwargs)`
			`except model.DoesNotExist:`
			`continue`
			`related.append(rel)`
			`return related`

Resource monitoring implementation 2014-07-10 10:03:22 +00:00
			`services.register(Account, menu=False)`
Split services into plans 2014-11-18 13:59:21 +00:00			`accounts.register(Account)`