OpenSlides/openslides/users/models.py

207 lines
6.2 KiB
Python
Raw Normal View History

from random import choice
from django.contrib.auth.hashers import make_password
2015-09-16 00:55:27 +02:00
from django.contrib.auth.models import (
AbstractBaseUser,
BaseUserManager,
Group,
2016-08-30 09:16:47 +02:00
Permission,
PermissionsMixin,
)
from django.db import models
2016-08-30 09:16:47 +02:00
from django.db.models import Q
2016-01-03 15:33:51 +01:00
from openslides.utils.search import user_name_helper
2015-09-16 00:55:27 +02:00
from ..utils.models import RESTModelMixin
from .access_permissions import UserAccessPermissions
class UserManager(BaseUserManager):
"""
2015-09-16 00:55:27 +02:00
Customized manager that creates new users only with a password and a
2016-09-30 20:42:58 +02:00
username. It also supports our get_full_queryset method.
"""
def get_full_queryset(self):
2016-09-30 20:42:58 +02:00
"""
Returns the normal queryset with all users. In the background all
groups are prefetched from the database.
"""
return self.get_queryset().prefetch_related('groups')
def create_user(self, username, password, **kwargs):
2015-09-16 00:55:27 +02:00
"""
Creates a new user only with a password and a username.
"""
user = self.model(username=username, **kwargs)
user.set_password(password)
user.save(using=self._db)
return user
def create_or_reset_admin_user(self):
"""
2015-09-16 00:55:27 +02:00
Creates an user with the username 'admin'. If such a user already
exists, resets it. The password is (re)set to 'admin'. The user
2016-08-30 09:16:47 +02:00
becomes member of the group 'Staff'. The two important permissions
'users.can_see_name' and 'users.can_manage' are added to this group,
so that the admin can manage all other permissions.
"""
2016-08-30 09:16:47 +02:00
query_can_see_name = Q(content_type__app_label='users') & Q(codename='can_see_name')
query_can_manage = Q(content_type__app_label='users') & Q(codename='can_manage')
staff, _ = Group.objects.get_or_create(name='Staff')
staff.permissions.add(Permission.objects.get(query_can_see_name))
staff.permissions.add(Permission.objects.get(query_can_manage))
admin, created = self.get_or_create(
username='admin',
defaults={'last_name': 'Administrator'})
admin.default_password = 'admin'
admin.password = make_password(admin.default_password, '', 'md5')
admin.save()
admin.groups.add(staff)
return created
def generate_username(self, first_name, last_name):
"""
Generates a username from first name and last name.
"""
first_name = first_name.strip()
last_name = last_name.strip()
if first_name and last_name:
base_name = ' '.join((first_name, last_name))
else:
base_name = first_name or last_name
if not base_name:
raise ValueError("Either 'first_name' or 'last_name' must not be "
2015-09-16 00:55:27 +02:00
"empty.")
if not self.filter(username=base_name).exists():
generated_username = base_name
else:
counter = 0
while True:
counter += 1
test_name = '%s %d' % (base_name, counter)
if not self.filter(username=test_name).exists():
generated_username = test_name
break
return generated_username
def generate_password(self):
"""
2015-09-16 00:55:27 +02:00
Generates a random passwort. Do not use l, o, I, O, 1 or 0.
"""
chars = 'abcdefghijkmnpqrstuvwxyzABCDEFGHJKLMNPQRSTUVWXYZ23456789'
size = 8
return ''.join([choice(chars) for i in range(size)])
2015-06-29 13:31:07 +02:00
class User(RESTModelMixin, PermissionsMixin, AbstractBaseUser):
"""
2015-09-16 00:55:27 +02:00
Model for users in OpenSlides. A client can login as an user with
credentials. An user can also just be used as representation for a person
in other OpenSlides apps like motion submitter or (assignment) election
candidates.
"""
access_permissions = UserAccessPermissions()
USERNAME_FIELD = 'username'
username = models.CharField(
2015-09-16 00:55:27 +02:00
max_length=255,
unique=True,
blank=True)
first_name = models.CharField(
2015-09-16 00:55:27 +02:00
max_length=255,
blank=True)
last_name = models.CharField(
2015-09-16 00:55:27 +02:00
max_length=255,
blank=True)
# TODO: Try to remove the default argument in the following fields.
structure_level = models.CharField(
2015-09-16 00:55:27 +02:00
max_length=255,
blank=True,
default='')
title = models.CharField(
2015-09-16 00:55:27 +02:00
max_length=50,
blank=True,
default='')
number = models.CharField(
max_length=50,
blank=True,
default='')
about_me = models.TextField(
2015-09-16 00:55:27 +02:00
blank=True,
default='')
comment = models.TextField(
2015-09-16 00:55:27 +02:00
blank=True,
default='')
default_password = models.CharField(
2015-09-16 00:55:27 +02:00
max_length=100,
blank=True,
default='')
is_active = models.BooleanField(
default=True)
is_present = models.BooleanField(
default=False)
is_committee = models.BooleanField(
default=False)
objects = UserManager()
class Meta:
2015-12-10 00:20:59 +01:00
default_permissions = ()
permissions = (
('can_see_name', 'Can see names of users'),
('can_see_extra_data', 'Can see extra data of users (e.g. present and comment)'),
('can_manage', 'Can manage users'),
)
2015-09-16 00:55:27 +02:00
ordering = ('last_name', 'first_name', 'username', )
def __str__(self):
# Strip white spaces from the name parts
first_name = self.first_name.strip()
last_name = self.last_name.strip()
# The user has a last_name and a first_name
if first_name and last_name:
name = ' '.join((self.first_name, self.last_name))
# The user has only a first_name or a last_name or no name
else:
name = first_name or last_name or self.username
2015-09-16 00:55:27 +02:00
# Return result
return name
# TODO: remove this function after PR#2476 is merged. (see Issue#2594)
def get_full_name(self):
return ''
# TODO: remove this function after PR#2476 is merged. (see Issue#2594)
def get_short_name(self):
return ''
2016-01-03 15:33:51 +01:00
def get_search_index_string(self):
"""
Returns a string that can be indexed for the search.
"""
return " ".join((
user_name_helper(self),
self.structure_level,
self.about_me))