anoopmb
/
frappe
1
0
派生 0
代码 工单 0 合并请求 0 版本发布 0 百科 动态
您最多选择25个主题 主题必须以字母或数字开头,可以包含连字符 (-),并且长度不得超过35个字符
6279 提交
1 分支
314 MiB
 
 
 
 
 
 
目录树: 12eb2fa7f2
分支列表 标签列表
${ item.name }
创建分支 ${ searchTerm }
从 '12eb2fa7f2'
${ noResults }
frappe/frappe/utils/user.py

242 行
6.8 KiB
原始文件 Blame 文件历史 

  1. # Copyright (c) 2013, Web Notes Technologies Pvt. Ltd. and Contributors

  2. # MIT License. See license.txt

  3. 

  4. from __future__ import unicode_literals

  5. 

  6. import frappe, json

  7. 

  8. class User:

  9. 	"""

  10. 	A user object is created at the beginning of every request with details of the use.

  11. 	The global user object is `frappe.user`

  12. 	"""

  13. 	def __init__(self, name=''):

  14. 		self.defaults = None

  15. 		self.name = name or frappe.session.get('user')

  16. 		self.roles = []

  17. 

  18. 		self.all_read = []

  19. 		self.can_create = []

  20. 		self.can_read = []

  21. 		self.can_write = []

  22. 		self.can_cancel = []

  23. 		self.can_delete = []

  24. 		self.can_search = []

  25. 		self.can_get_report = []

  26. 		self.can_import = []

  27. 		self.can_export = []

  28. 		self.can_print = []

  29. 		self.can_email = []

  30. 		self.can_set_user_permissions = []

  31. 		self.allow_modules = []

  32. 		self.in_create = []

  33. 

  34. 	def get_roles(self):

  35. 		"""get list of roles"""

  36. 		if not self.roles:

  37. 			self.roles = get_roles(self.name)

  38. 		return self.roles

  39. 

  40. 	def build_doctype_map(self):

  41. 		"""build map of special doctype properties"""

  42. 

  43. 		self.doctype_map = {}

  44. 		for r in frappe.db.sql("""select name, in_create, issingle, istable,

  45. 			read_only, module from tabDocType""", as_dict=1):

  46. 			self.doctype_map[r['name']] = r

  47. 

  48. 	def build_perm_map(self):

  49. 		"""build map of permissions at level 0"""

  50. 		self.perm_map = {}

  51. 		roles = self.get_roles()

  52. 		for r in frappe.db.sql("""select * from tabDocPerm where docstatus=0

  53. 			and ifnull(permlevel,0)=0

  54. 			and role in ({roles})""".format(roles=", ".join(["%s"]*len(roles))), tuple(roles), as_dict=1):

  55. 			dt = r['parent']

  56. 

  57. 			if not dt in  self.perm_map:

  58. 				self.perm_map[dt] = {}

  59. 

  60. 			for k in frappe.permissions.rights:

  61. 				if not self.perm_map[dt].get(k):

  62. 					self.perm_map[dt][k] = r.get(k)

  63. 

  64. 	def build_permissions(self):

  65. 		"""build lists of what the user can read / write / create

  66. 		quirks:

  67. 			read_only => Not in Search

  68. 			in_create => Not in create

  69. 		"""

  70. 		self.build_doctype_map()

  71. 		self.build_perm_map()

  72. 

  73. 		for dt in self.doctype_map:

  74. 			dtp = self.doctype_map[dt]

  75. 			p = self.perm_map.get(dt, {})

  76. 

  77. 			if not dtp.get('istable'):

  78. 				if p.get('create') and not dtp.get('issingle'):

  79. 					if dtp.get('in_create'):

  80. 						self.in_create.append(dt)

  81. 					else:

  82. 						self.can_create.append(dt)

  83. 				elif p.get('write'):

  84. 					self.can_write.append(dt)

  85. 				elif p.get('read'):

  86. 					if dtp.get('read_only'):

  87. 						self.all_read.append(dt)

  88. 					else:

  89. 						self.can_read.append(dt)

  90. 

  91. 			if p.get('cancel'):

  92. 				self.can_cancel.append(dt)

  93. 

  94. 			if p.get('delete'):

  95. 				self.can_delete.append(dt)

  96. 

  97. 			if (p.get('read') or p.get('write') or p.get('create')):

  98. 				if p.get('report'):

  99. 					self.can_get_report.append(dt)

  100. 				for key in ("import", "export", "print", "email", "set_user_permissions"):

  101. 					if p.get(key):

  102. 						getattr(self, "can_" + key).append(dt)

  103. 

  104. 				if not dtp.get('istable'):

  105. 					if not dtp.get('issingle') and not dtp.get('read_only'):

  106. 						self.can_search.append(dt)

  107. 					if not dtp.get('module') in self.allow_modules:

  108. 						self.allow_modules.append(dtp.get('module'))

  109. 

  110. 		self.can_write += self.can_create

  111. 		self.can_write += self.in_create

  112. 		self.can_read += self.can_write

  113. 		self.all_read += self.can_read

  114. 

  115. 	def get_defaults(self):

  116. 		import frappe.defaults

  117. 		self.defaults = frappe.defaults.get_defaults(self.name)

  118. 		return self.defaults

  119. 

  120. 	# update recent documents

  121. 	def update_recent(self, dt, dn):

  122. 		rdl = frappe.cache().get_value("recent:" + self.name) or []

  123. 		new_rd = [dt, dn]

  124. 

  125. 		# clear if exists

  126. 		for i in range(len(rdl)):

  127. 			rd = rdl[i]

  128. 			if rd==new_rd:

  129. 				del rdl[i]

  130. 				break

  131. 

  132. 		if len(rdl) > 19:

  133. 			rdl = rdl[:19]

  134. 

  135. 		rdl = [new_rd] + rdl

  136. 		r = frappe.cache().set_value("recent:" + self.name, rdl)

  137. 

  138. 	def _get(self, key):

  139. 		if not self.can_read:

  140. 			self.build_permissions()

  141. 		return getattr(self, key)

  142. 

  143. 	def get_can_read(self):

  144. 		"""return list of doctypes that the user can read"""

  145. 		if not self.can_read:

  146. 			self.build_permissions()

  147. 		return self.can_read

  148. 

  149. 	def load_user(self):

  150. 		d = frappe.db.sql("""select email, first_name, last_name, time_zone,

  151. 			email_signature, background_image, background_style, user_type, language

  152. 			from tabUser where name = %s""", (self.name,), as_dict=1)[0]

  153. 

  154. 		if not self.can_read:

  155. 			self.build_permissions()

  156. 

  157. 		d.name = self.name

  158. 		d.recent = json.dumps(frappe.cache().get_value("recent:" + self.name) or [])

  159. 

  160. 		d['roles'] = self.get_roles()

  161. 		d['defaults'] = self.get_defaults()

  162. 

  163. 		for key in ("can_create", "can_write", "can_read", "can_cancel", "can_delete",

  164. 			"can_get_report", "allow_modules", "all_read", "can_search",

  165. 			"in_create", "can_export", "can_import", "can_print", "can_email",

  166. 			"can_set_user_permissions"):

  167. 

  168. 			d[key] = list(set(getattr(self, key)))

  169. 

  170. 		return d

  171. 

  172. def get_user_fullname(user):

  173. 	fullname = frappe.db.sql("SELECT CONCAT_WS(' ', first_name, last_name) FROM `tabUser` WHERE name=%s", (user,))

  174. 	return fullname and fullname[0][0] or ''

  175. 

  176. def get_fullname_and_avatar(user):

  177. 	first_name, last_name, avatar = frappe.db.get_value("User",

  178. 		user, ["first_name", "last_name", "user_image"])

  179. 	return {

  180. 		"fullname": " ".join(filter(None, [first_name, last_name])),

  181. 		"avatar": avatar

  182. 	}

  183. 

  184. def get_system_managers(only_name=False):

  185. 	"""returns all system manager's user details"""

  186. 	import email.utils

  187. 	from frappe.core.doctype.user.user import STANDARD_USERS

  188. 	system_managers = frappe.db.sql("""select distinct name,

  189. 		concat_ws(" ", if(first_name="", null, first_name), if(last_name="", null, last_name))

  190. 		as fullname from tabUser p

  191. 		where docstatus < 2 and enabled = 1

  192. 		and name not in ({})

  193. 		and exists (select * from tabUserRole ur

  194. 			where ur.parent = p.name and ur.role="System Manager")""".format(", ".join(["%s"]*len(STANDARD_USERS))),

  195. 			STANDARD_USERS, as_dict=True)

  196. 

  197. 	if only_name:

  198. 		return [p.name for p in system_managers]

  199. 	else:

  200. 		return [email.utils.formataddr((p.fullname, p.name)) for p in system_managers]

  201. 

  202. def add_role(user, role):

  203. 	user_wrapper = frappe.get_doc("User", user).add_roles(role)

  204. 

  205. def add_system_manager(email, first_name=None, last_name=None):

  206. 	# add user

  207. 	user = frappe.new_doc("User")

  208. 	user.update({

  209. 		"name": email,

  210. 		"email": email,

  211. 		"enabled": 1,

  212. 		"first_name": first_name or email,

  213. 		"last_name": last_name,

  214. 		"user_type": "System User"

  215. 	})

  216. 	user.insert()

  217. 

  218. 	# add roles

  219. 	roles = frappe.db.sql_list("""select name from `tabRole`

  220. 		where name not in ("Administrator", "Guest", "All")""")

  221. 	user.add_roles(*roles)

  222. 

  223. def get_roles(username=None, with_standard=True):

  224. 	"""get roles of current user"""

  225. 	if not username:

  226. 		username = frappe.session.user

  227. 

  228. 	if username=='Guest':

  229. 		return ['Guest']

  230. 

  231. 	roles = frappe.cache().get_value("roles:" + username)

  232. 	if not roles:

  233. 		roles = [r[0] for r in frappe.db.sql("""select role from tabUserRole

  234. 			where parent=%s and role!='All'""", (username,))] + ['All']

  235. 		frappe.cache().set_value("roles:" + username, roles)

  236. 

  237. 	# filter standard if required

  238. 	if not with_standard:

  239. 		roles = filter(lambda x: x not in ['All', 'Guest', 'Administrator'], roles)

  240. 

  241. 	return roles