anoopmb
/
frappe


			
				
					
						
						
							
							# Copyright (c) 2013, Web Notes Technologies Pvt. Ltd. and Contributors
# MIT License. See license.txt 

from __future__ import unicode_literals

import webnotes, json

class Profile:
	"""
	A profile object is created at the beginning of every request with details of the use.
	The global profile object is `webnotes.user`
	"""
	def __init__(self, name=''):
		self.defaults = None
		self.name = name or webnotes.session.get('user')
		self.roles = []
		
		self.all_read = []
		self.can_create = []
		self.can_read = []
		self.can_write = []
		self.can_cancel = []
		self.can_delete = []
		self.can_search = []
		self.can_get_report = []
		self.can_import = []
		self.can_export = []
		self.can_print = []
		self.can_email = []
		self.can_restrict = []
		self.allow_modules = []
		self.in_create = []

	def get_roles(self):
		"""get list of roles"""
		if not self.roles:
			self.roles = get_roles(self.name)
		return self.roles
	
	def build_doctype_map(self):
		"""build map of special doctype properties"""
			
		self.doctype_map = {}
		for r in webnotes.conn.sql("""select name, in_create, issingle, istable, 
			read_only, module from tabDocType""", as_dict=1):
			self.doctype_map[r['name']] = r
			
	def build_perm_map(self):
		"""build map of permissions at level 0"""
		self.perm_map = {}
		for r in webnotes.conn.sql("""select parent, `read`, `write`, `create`, `delete`, `submit`, 
			`cancel`,`report`, `import`, `export`, `print`, `email`, `restrict`
			from tabDocPerm where docstatus=0 
			and ifnull(permlevel,0)=0
			and parent not like "old_parent:%%" 
			and role in ('%s')""" % "','".join(self.get_roles()), as_dict=1):
			dt = r['parent']
			
			if not dt in  self.perm_map:
				self.perm_map[dt] = {}
				
			for k in ('read', 'write', 'create', 'submit', 'cancel', 'amend', 'delete',
				'report', 'import', 'export', 'print', 'email', 'restrict'):
				if not self.perm_map[dt].get(k):
					self.perm_map[dt][k] = r.get(k)
							
	def build_permissions(self):
		"""build lists of what the user can read / write / create
		quirks: 
			read_only => Not in Search
			in_create => Not in create
		"""
		self.build_doctype_map()
		self.build_perm_map()
		
		for dt in self.doctype_map:
			dtp = self.doctype_map[dt]
			p = self.perm_map.get(dt, {})
			
			if not dtp.get('istable'):
				if p.get('create') and not dtp.get('issingle'):
					if dtp.get('in_create'):
						self.in_create.append(dt)
					else:
						self.can_create.append(dt)
				elif p.get('write'):
					self.can_write.append(dt)
				elif p.get('read'):
					if dtp.get('read_only'):
						self.all_read.append(dt)
					else:
						self.can_read.append(dt)

			if p.get('cancel'):
				self.can_cancel.append(dt)

			if p.get('delete'):
				self.can_delete.append(dt)

			if (p.get('read') or p.get('write') or p.get('create')):
				if p.get('report'):
					self.can_get_report.append(dt)
				for key in ("import", "export", "print", "email", "restrict"):
					if p.get(key):
						getattr(self, "can_" + key).append(dt)
					
				if not dtp.get('istable'):
					if not dtp.get('issingle') and not dtp.get('read_only'):
						self.can_search.append(dt)
					if not dtp.get('module') in self.allow_modules:
						self.allow_modules.append(dtp.get('module'))

		self.can_write += self.can_create
		self.can_write += self.in_create
		self.can_read += self.can_write
		self.all_read += self.can_read
		
	def get_defaults(self):
		import webnotes.defaults
		self.defaults = webnotes.defaults.get_defaults(self.name)
		return self.defaults
			
	# update recent documents
	def update_recent(self, dt, dn):
		rdl = webnotes.cache().get_value("recent:" + self.name) or []	
		new_rd = [dt, dn]
		
		# clear if exists
		for i in range(len(rdl)):
			rd = rdl[i]
			if rd==new_rd:
				del rdl[i]
				break

		if len(rdl) > 19:
			rdl = rdl[:19]
		
		rdl = [new_rd] + rdl
		r = webnotes.cache().set_value("recent:" + self.name, rdl)
		
	def _get(self, key):
		if not self.can_read:
			self.build_permissions()
		return getattr(self, key)
	
	def get_can_read(self):
		"""return list of doctypes that the user can read"""
		if not self.can_read:
			self.build_permissions()
		return self.can_read
	
	def load_profile(self):
		d = webnotes.conn.sql("""select email, first_name, last_name, 
			email_signature, background_image, user_type, language
			from tabProfile where name = %s""", (self.name,), as_dict=1)[0]

		if not self.can_read:
			self.build_permissions()

		d.name = self.name
		d.recent = json.dumps(webnotes.cache().get_value("recent:" + self.name) or [])
				
		d['roles'] = self.get_roles()
		d['defaults'] = self.get_defaults()
		
		for key in ("can_create", "can_write", "can_read", "can_cancel", "can_delete",
			"can_get_report", "allow_modules", "all_read", "can_search",
			"in_create", "can_export", "can_import", "can_print", "can_email",
			"can_restrict"):
			
			d[key] = list(set(getattr(self, key)))
		
		return d
		
def get_user_fullname(user):
	fullname = webnotes.conn.sql("SELECT CONCAT_WS(' ', first_name, last_name) FROM `tabProfile` WHERE name=%s", (user,))
	return fullname and fullname[0][0] or ''

def get_system_managers(only_name=False):
	"""returns all system manager's profile details"""
	import email.utils
	system_managers = webnotes.conn.sql("""select distinct name,
		concat_ws(" ", if(first_name="", null, first_name), if(last_name="", null, last_name))
		as fullname from tabProfile p 
		where docstatus < 2 and enabled = 1
		and name not in ("Administrator", "Guest")
		and exists (select * from tabUserRole ur
			where ur.parent = p.name and ur.role="System Manager")""", as_dict=True)
	
	if only_name:
		return [p.name for p in system_managers]
	else:
		return [email.utils.formataddr((p.fullname, p.name)) for p in system_managers]
	
def add_role(profile, role):
	profile_wrapper = webnotes.bean("Profile", profile).get_controller().add_roles(role)

def add_system_manager(email, first_name=None, last_name=None):
	# add profile
	profile = webnotes.new_bean("Profile")
	profile.doc.fields.update({
		"name": email,
		"email": email,
		"enabled": 1,
		"first_name": first_name or email,
		"last_name": last_name,
		"user_type": "System User"
	})
	profile.insert()
	
	# add roles
	roles = webnotes.conn.sql_list("""select name from `tabRole`
		where name not in ("Administrator", "Guest", "All")""")
	profile.get_controller().add_roles(*roles)
	
def get_roles(username=None, with_standard=True):
	"""get roles of current user"""
	if not username:
		username = webnotes.session.user

	if username=='Guest':
		return ['Guest']
	
	roles = [r[0] for r in webnotes.conn.sql("""select role from tabUserRole 
		where parent=%s and role!='All'""", (username,))] + ['All']
		
	# filter standard if required
	if not with_standard:
		roles = filter(lambda x: x not in ['All', 'Guest', 'Administrator'], roles)
		
	return roles