anoopmb
/
frappe
1
0
フォーク 0
コード 課題 0 プルリクエスト 0 リリース 0 Wiki アクティビティ
選択できるのは25トピックまでです。 トピックは、先頭が英数字で、英数字とダッシュ('-')を使用した35文字以内のものにしてください。
4365 コミット
1 ブランチ
314 MiB
ツリー: 87fa6bee40
ブランチ タグ
${ item.name }
ブランチ ${ searchTerm } を作成
'87fa6bee40' から
${ noResults }
frappe/webnotes/profile.py

profile.py 6.3 KiB
Raw 通常表示 履歴

[copyright] added Contributors
11年前
[minor] [license] Standardizied license string in py an js code files
12年前
added license files
13年前
added unicode_literals import at start of each file
13年前
moved recent to memcache
12年前
Sourced WebNotes Framework from Google Code.
14年前
permission, user_default fix
12年前
Sourced WebNotes Framework from Google Code.
14年前
fix in search
13年前
added all_read condition to check if user can read
13年前
Sourced WebNotes Framework from Google Code.
14年前
listing with stats
13年前
fix in search
13年前
Sourced WebNotes Framework from Google Code.
14年前
fixed permissions
13年前
added in_create in profile's permission info, as it represents create permission, but for a doc which is not supposed to be created using New button
13年前
Sourced WebNotes Framework from Google Code.
14年前
fixed permissions
13年前
webnotes.user.roles deprecated to webnotes.user.get_roles()
12年前
[minor] optimized webnotes.has_permission
11年前
webnotes.user.roles deprecated to webnotes.user.get_roles()
12年前
Sourced WebNotes Framework from Google Code.
14年前
fixed permissions
13年前
added 'report' permission
12年前
fixed permissions
13年前
added 'report' permission
12年前
fixed permissions
13年前
Sourced WebNotes Framework from Google Code.
14年前
fixed permissions
13年前
added language to pages
12年前
fixed permissions
13年前
fix in search
13年前
added in_create in profile's permission info, as it represents create permission, but for a doc which is not supposed to be created using New button
13年前
fix in search
13年前
listing with stats
13年前
fix in search
13年前
not in search, should be allowed in reports and loading place holder for reports
13年前
added 'report' permission
12年前
fix in search
13年前
not in search, should be allowed in reports and loading place holder for reports
13年前
fix in search
13年前
added in_create in profile's permission info, as it represents create permission, but for a doc which is not supposed to be created using New button
13年前
fix in search
13年前
Sourced WebNotes Framework from Google Code.
14年前
refactored defaults, bin material request wip
12年前
defaults cleanup
12年前
Sourced WebNotes Framework from Google Code.
14年前
fixes to profile and added sendmail_md
13年前
Sourced WebNotes Framework from Google Code.
14年前
fixes to sessions
12年前
rewrote session management:added copy in memcache that is looked up first before updating db
12年前
utf issue in recent
14年前
rewrote session management:added copy in memcache that is looked up first before updating db
12年前
[commit] unified notifications
12年前
Sourced WebNotes Framework from Google Code.
14年前
moved recent to memcache
12年前
[fix] [minor] do not allow website user access to app
12年前
moved recent to memcache
12年前
fixed permissions
13年前
browse support and images
13年前
Sourced WebNotes Framework from Google Code.
14年前
moved recent to memcache
12年前
Sourced WebNotes Framework from Google Code.
14年前
fixed permissions
13年前
listing with stats
13年前
fixed permissions
13年前
added all_read condition to check if user can read
13年前
fix in search
13年前
added in_create in profile's permission info, as it represents create permission, but for a doc which is not supposed to be created using New button
13年前
Sourced WebNotes Framework from Google Code.
14年前
added add_role method in profile
12年前
Fix in reset pwd
13年前
added comma_and function, shifted get_system_managers function to profile.py
12年前
[minor] [scheduler] send scheduler errors as email digest
11年前
added comma_and function, shifted get_system_managers function to profile.py
12年前
[minor] get system managers sends formatted email address
11年前
added comma_and function, shifted get_system_managers function to profile.py
12年前
[minor] get system managers sends formatted email address
11年前
added comma_and function, shifted get_system_managers function to profile.py
12年前
[minor] [scheduler] send scheduler errors as email digest
11年前
added add_role method in profile
12年前
model_wrapper is now bean, refactoring defaults
12年前
added add_role method in profile
12年前
[minor] add system manager, webnotes.conn.count
11年前
[minor] optimized webnotes.has_permission
11年前
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220 
  1. # Copyright (c) 2013, Web Notes Technologies Pvt. Ltd. and Contributors

  2. # MIT License. See license.txt 

  3. 

  4. from __future__ import unicode_literals

  5. 

  6. import webnotes, json

  7. 

  8. class Profile:

  9. 	"""

  10. 	A profile object is created at the beginning of every request with details of the use.

  11. 	The global profile object is `webnotes.user`

  12. 	"""

  13. 	def __init__(self, name=''):

  14. 		self.defaults = None

  15. 		self.name = name or webnotes.session.get('user')

  16. 		self.roles = []

  17. 		

  18. 		self.all_read = []

  19. 		self.can_create = []

  20. 		self.can_read = []

  21. 		self.can_write = []

  22. 		self.can_cancel = []

  23. 		self.can_search = []

  24. 		self.can_get_report = []

  25. 		self.allow_modules = []

  26. 		self.in_create = []

  27. 

  28. 	def get_roles(self):

  29. 		"""get list of roles"""

  30. 		if not self.roles:

  31. 			self.roles = get_roles(self.name)

  32. 		return self.roles

  33. 	

  34. 	def build_doctype_map(self):

  35. 		"""build map of special doctype properties"""

  36. 			

  37. 		self.doctype_map = {}

  38. 		for r in webnotes.conn.sql("""select name, in_create, issingle, istable, 

  39. 			read_only, module from tabDocType""", as_dict=1):

  40. 			self.doctype_map[r['name']] = r

  41. 			

  42. 	def build_perm_map(self):

  43. 		"""build map of permissions at level 0"""

  44. 		

  45. 		self.perm_map = {}

  46. 		for r in webnotes.conn.sql("""select parent, `read`, `write`, `create`, `submit`, `cancel`, `report` 

  47. 			from tabDocPerm where docstatus=0 

  48. 			and ifnull(permlevel,0)=0

  49. 			and parent not like "old_parent:%%" 

  50. 			and role in ('%s')""" % "','".join(self.get_roles()), as_dict=1):

  51. 			

  52. 			dt = r['parent']

  53. 			

  54. 			if not dt in  self.perm_map:

  55. 				self.perm_map[dt] = {}

  56. 				

  57. 			for k in ('read', 'write', 'create', 'submit', 'cancel', 'report'):

  58. 				if not self.perm_map[dt].get(k):

  59. 					self.perm_map[dt][k] = r.get(k)

  60. 						

  61. 	def build_permissions(self):

  62. 		"""build lists of what the user can read / write / create

  63. 		quirks: 

  64. 			read_only => Not in Search

  65. 			in_create => Not in create

  66. 		"""

  67. 		self.build_doctype_map()

  68. 		self.build_perm_map()

  69. 				

  70. 		for dt in self.doctype_map:

  71. 			dtp = self.doctype_map[dt]

  72. 			p = self.perm_map.get(dt, {})

  73. 

  74. 			if not dtp.get('istable'):

  75. 				if p.get('create') and not dtp.get('issingle'):

  76. 					if dtp.get('in_create'):

  77. 						self.in_create.append(dt)

  78. 					else:

  79. 						self.can_create.append(dt)

  80. 				elif p.get('write'):

  81. 					self.can_write.append(dt)

  82. 				elif p.get('read'):

  83. 					if dtp.get('read_only'):

  84. 						self.all_read.append(dt)

  85. 					else:

  86. 						self.can_read.append(dt)

  87. 

  88. 			if p.get('cancel'):

  89. 				self.can_cancel.append(dt)

  90. 

  91. 			if (p.get('read') or p.get('write') or p.get('create')):

  92. 				if p.get('report'):

  93. 					self.can_get_report.append(dt)

  94. 				if not dtp.get('istable'):

  95. 					if not dtp.get('issingle') and not dtp.get('read_only'):

  96. 						self.can_search.append(dt)

  97. 					if not dtp.get('module') in self.allow_modules:

  98. 						self.allow_modules.append(dtp.get('module'))

  99. 

  100. 		self.can_write += self.can_create

  101. 		self.can_write += self.in_create

  102. 		self.can_read += self.can_write

  103. 		self.all_read += self.can_read

  104. 

  105. 	def get_defaults(self):

  106. 		import webnotes.defaults

  107. 		self.defaults = webnotes.defaults.get_defaults(self.name)

  108. 		return self.defaults

  109. 			

  110. 	# update recent documents

  111. 	def update_recent(self, dt, dn):

  112. 		rdl = webnotes.cache().get_value("recent:" + self.name) or []	

  113. 		new_rd = [dt, dn]

  114. 		

  115. 		# clear if exists

  116. 		for i in range(len(rdl)):

  117. 			rd = rdl[i]

  118. 			if rd==new_rd:

  119. 				del rdl[i]

  120. 				break

  121. 

  122. 		if len(rdl) > 19:

  123. 			rdl = rdl[:19]

  124. 		

  125. 		rdl = [new_rd] + rdl

  126. 		r = webnotes.cache().set_value("recent:" + self.name, rdl)

  127. 	

  128. 	def get_can_read(self):

  129. 		"""return list of doctypes that the user can read"""

  130. 		if not self.can_read:

  131. 			self.build_permissions()

  132. 		return self.can_read

  133. 	

  134. 	def load_profile(self):

  135. 		d = webnotes.conn.sql("""select email, first_name, last_name, 

  136. 			email_signature, background_image, user_type

  137. 			from tabProfile where name = %s""", self.name, as_dict=1)[0]

  138. 

  139. 		if not self.can_read:

  140. 			self.build_permissions()

  141. 

  142. 		d.name = self.name

  143. 		d.recent = json.dumps(webnotes.cache().get_value("recent:" + self.name) or [])

  144. 				

  145. 		d['roles'] = self.get_roles()

  146. 		d['defaults'] = self.get_defaults()

  147. 		d['can_create'] = self.can_create

  148. 		d['can_write'] = self.can_write

  149. 		d['can_read'] = list(set(self.can_read))

  150. 		d['can_cancel'] = list(set(self.can_cancel))

  151. 		d['can_get_report'] = list(set(self.can_get_report))

  152. 		d['allow_modules'] = self.allow_modules

  153. 		d['all_read'] = self.all_read

  154. 		d['can_search'] = list(set(self.can_search))

  155. 		d['in_create'] = self.in_create

  156. 		

  157. 		return d

  158. 		

  159. def get_user_fullname(user):

  160. 	fullname = webnotes.conn.sql("SELECT CONCAT_WS(' ', first_name, last_name) FROM `tabProfile` WHERE name=%s", user)

  161. 	return fullname and fullname[0][0] or ''

  162. 

  163. def get_system_managers(only_name=False):

  164. 	"""returns all system manager's profile details"""

  165. 	import email.utils

  166. 	system_managers = webnotes.conn.sql("""select distinct name,

  167. 		concat_ws(" ", if(first_name="", null, first_name), if(last_name="", null, last_name))

  168. 		as fullname from tabProfile p 

  169. 		where docstatus < 2 and enabled = 1

  170. 		and name not in ("Administrator", "Guest")

  171. 		and exists (select * from tabUserRole ur

  172. 			where ur.parent = p.name and ur.role="System Manager")""", as_dict=True)

  173. 	

  174. 	if only_name:

  175. 		return [p.name for p in system_managers]

  176. 	else:

  177. 		return [email.utils.formataddr((p.fullname, p.name)) for p in system_managers]

  178. 	

  179. def add_role(profile, role):

  180. 	profile_wrapper = webnotes.bean("Profile", profile)

  181. 	profile_wrapper.doclist.append({

  182. 		"doctype": "UserRole",

  183. 		"parentfield": "user_roles",

  184. 		"role": role

  185. 	})

  186. 	profile_wrapper.save()

  187. 

  188. def add_system_manager(email, first_name=None, last_name=None):

  189. 	# add profile

  190. 	profile = webnotes.new_bean("Profile")

  191. 	profile.doc.fields.update({

  192. 		"name": email,

  193. 		"email": email,

  194. 		"enabled": 1,

  195. 		"first_name": first_name or email,

  196. 		"last_name": last_name

  197. 	})

  198. 	profile.insert()

  199. 	

  200. 	# add roles

  201. 	roles = webnotes.conn.sql_list("""select name from `tabRole`

  202. 		where name not in ("Administrator", "Guest", "All")""")

  203. 	profile.make_controller().add_roles(*roles)

  204. 	

  205. def get_roles(username=None, with_standard=True):

  206. 	"""get roles of current user"""

  207. 	if not username:

  208. 		username = webnotes.session.user

  209. 

  210. 	if username=='Guest':

  211. 		return ['Guest']

  212. 	

  213. 	roles = [r[0] for r in webnotes.conn.sql("""select role from tabUserRole 

  214. 		where parent=%s and role!='All'""", username)] + ['All']

  215. 		

  216. 	# filter standard if required

  217. 	if not with_standard:

  218. 		roles = filter(lambda x: x not in ['All', 'Guest', 'Administrator'], roles)

  219. 		

  220. 	return roles