anoopmb
/
frappe
1
0
Vork 0
Code Kwesties 0 Pull-aanvragen 0 Publicaties 0 Wiki Activiteit
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1299 Commits
1 Branch
314 MiB
 
 
 
 
 
 
Tree: 7c6c2bc2ca
Branches Labels
${ item.name }
Maak branch ${ searchTerm }
van '7c6c2bc2ca'
${ noResults }
frappe/py/webnotes/profile.py

295 regels
8.4 KiB
Ruw Blame Geschiedenis 

  1. # Copyright (c) 2012 Web Notes Technologies Pvt Ltd (http://erpnext.com)

  2. # 

  3. # MIT License (MIT)

  4. # 

  5. # Permission is hereby granted, free of charge, to any person obtaining a 

  6. # copy of this software and associated documentation files (the "Software"), 

  7. # to deal in the Software without restriction, including without limitation 

  8. # the rights to use, copy, modify, merge, publish, distribute, sublicense, 

  9. # and/or sell copies of the Software, and to permit persons to whom the 

  10. # Software is furnished to do so, subject to the following conditions:

  11. # 

  12. # The above copyright notice and this permission notice shall be included in 

  13. # all copies or substantial portions of the Software.

  14. # 

  15. # THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, 

  16. # INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A 

  17. # PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT 

  18. # HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF 

  19. # CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE 

  20. # OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

  21. # 

  22. 

  23. import webnotes

  24. 

  25. class Profile:

  26. 	"""

  27. 	A profile object is created at the beginning of every request with details of the use.

  28. 	The global profile object is `webnotes.user`

  29. 	"""

  30. 	def __init__(self, name=''):

  31. 		self.name = name or webnotes.session.get('user')

  32. 		self.roles = []

  33. 		

  34. 		self.all_read = []

  35. 		self.can_create = []

  36. 		self.can_read = []

  37. 		self.can_write = []

  38. 		self.can_cancel = []

  39. 		self.can_search = []

  40. 		self.can_get_report = []

  41. 		self.allow_modules = []

  42. 		

  43. 	def _load_roles(self):

  44. 		self.roles = webnotes.get_roles()

  45. 		return self.roles

  46. 

  47. 	def get_roles(self):

  48. 		"""get list of roles"""

  49. 		if self.roles:

  50. 			return self.roles

  51. 			

  52. 		return self._load_roles()

  53. 	

  54. 	def build_doctype_map(self):

  55. 		"""build map of special doctype properties"""

  56. 			

  57. 		self.doctype_map = {}

  58. 		for r in webnotes.conn.sql("""select name, in_create, issingle, istable, 

  59. 			read_only, module from tabDocType""", as_dict=1):

  60. 			r['child_tables'] = []

  61. 			self.doctype_map[r['name']] = r

  62. 			

  63. 		for r in webnotes.conn.sql("""select parent, options from tabDocField 

  64. 			where fieldtype="Table"

  65. 			and parent not like "old_parent:%%" 

  66. 			and ifnull(docstatus,0)=0

  67. 			"""):

  68. 			if r[0] in self.doctype_map:

  69. 				self.doctype_map[r[0]]['child_tables'].append(r[1])

  70. 	

  71. 	def build_perm_map(self):

  72. 		"""build map of permissions at level 0"""

  73. 		

  74. 		self.perm_map = {}

  75. 		for r in webnotes.conn.sql("""select parent, `read`, `write`, `create`, `submit`, `cancel` 

  76. 			from tabDocPerm where docstatus=0 

  77. 			and ifnull(permlevel,0)=0

  78. 			and parent not like "old_parent:%%" 

  79. 			and role in ('%s')""" % "','".join(self.get_roles()), as_dict=1):

  80. 			

  81. 			dt = r['parent']

  82. 			

  83. 			if not dt in  self.perm_map:

  84. 				self.perm_map[dt] = {}

  85. 				

  86. 			for k in ('read', 'write', 'create', 'submit', 'cancel'):

  87. 				if not self.perm_map[dt].get(k):

  88. 					self.perm_map[dt][k] = r.get(k)

  89. 						

  90. 	def build_permissions(self):

  91. 		"""build lists of what the user can read / write / create

  92. 		quirks: 

  93. 			read_only => Not in Search

  94. 			in_create => Not in create

  95. 		

  96. 		"""

  97. 		

  98. 		self.build_doctype_map()

  99. 		self.build_perm_map()

  100. 		

  101. 		for dt in self.doctype_map:

  102. 			dtp = self.doctype_map[dt]

  103. 			p = self.perm_map.get(dt, {})

  104. 

  105. 			if not dtp.get('istable'):

  106. 				if p.get('create') and not dtp.get('in_create') and \

  107. 						not dtp.get('issingle'):

  108. 					self.can_create.append(dt)

  109. 				elif p.get('write'):

  110. 					self.can_write.append(dt)

  111. 				elif p.get('read'):

  112. 					if dtp.get('read_only'):

  113. 						self.all_read.append(dt)

  114. 					else:

  115. 						self.can_read.append(dt)

  116. 

  117. 			if p.get('cancel'):

  118. 				self.can_cancel.append(dt)

  119. 

  120. 			if (p.get('read') or p.get('write') or p.get('create')):

  121. 				self.can_get_report.append(dt)

  122. 				self.can_get_report += dtp['child_tables']

  123. 				if not dtp.get('istable'):

  124. 					if not dtp.get('issingle') and not dtp.get('read_only'):

  125. 						self.can_search.append(dt)

  126. 					if not dtp.get('module') in self.allow_modules:

  127. 						self.allow_modules.append(dtp.get('module'))

  128. 

  129. 		self.can_write += self.can_create

  130. 		self.can_read += self.can_write

  131. 		self.all_read += self.can_read

  132. 

  133. 	def get_defaults(self):

  134. 		"""

  135. 		Get the user's default values based on user and role profile

  136. 		"""

  137. 		roles = self.get_roles() + [self.name]

  138. 		res = webnotes.conn.sql("""select defkey, defvalue 

  139. 		from `tabDefaultValue` where parent in ("%s")""" % '", "'.join(roles))

  140. 	

  141. 		self.defaults = {'owner': [self.name,]}

  142. 

  143. 		for rec in res: 

  144. 			if not self.defaults.has_key(rec[0]): 

  145. 				self.defaults[rec[0]] = []

  146. 			self.defaults[rec[0]].append(rec[1] or '')

  147. 

  148. 		return self.defaults

  149. 		

  150. 	def get_hide_tips(self):

  151. 		try:

  152. 			return webnotes.conn.sql("select hide_tips from tabProfile where name=%s", self.name)[0][0] or 0

  153. 		except:

  154. 			return 0

  155. 			

  156. 	# update recent documents

  157. 	def update_recent(self, dt, dn):

  158. 		"""

  159. 		Update the user's `Recent` list with the given `dt` and `dn`

  160. 		"""

  161. 		conn = webnotes.conn

  162. 		from webnotes.utils import cstr

  163. 		import json

  164. 

  165. 	

  166. 		# get list of child tables, so we know what not to add in the recent list

  167. 		child_tables = [t[0] for t in conn.sql('select name from tabDocType where ifnull(istable,0) = 1')]

  168. 		

  169. 		if not (dt in ['Print Format', 'Start Page', 'Event', 'ToDo', 'Search Criteria']) \

  170. 			and not (dt in child_tables):

  171. 			r = webnotes.conn.sql("select recent_documents from tabProfile where name=%s", \

  172. 				self.name)[0][0] or ''

  173. 

  174. 			if '~~~' in r:

  175. 				r = '[]'

  176. 			

  177. 			rdl = json.loads(r or '[]')

  178. 			new_rd = [dt, dn]

  179. 			

  180. 			# clear if exists

  181. 			for i in range(len(rdl)):

  182. 				rd = rdl[i]

  183. 				if rd==new_rd:

  184. 					del rdl[i]

  185. 					break

  186. 

  187. 			if len(rdl) > 19:

  188. 				rdl = rdl[:19]

  189. 			

  190. 			rdl = [new_rd] + rdl

  191. 			

  192. 			self.recent = json.dumps(rdl)

  193. 						

  194. 			webnotes.conn.sql("""update tabProfile set 

  195. 				recent_documents=%s where name=%s""", (self.recent, self.name))

  196. 			

  197. 	def load_profile(self):

  198. 		"""

  199. 	      	Return a dictionary of user properites to be stored in the session

  200. 		"""

  201. 		t = webnotes.conn.sql("""select email, first_name, last_name, 

  202. 			recent_documents from tabProfile where name = %s""", self.name)[0]

  203. 

  204. 		if not self.can_read:

  205. 			self.build_permissions()

  206. 

  207. 		d = {}

  208. 		d['name'] = self.name

  209. 		d['email'] = t[0] or ''

  210. 		d['first_name'] = t[1] or ''

  211. 		d['last_name'] = t[2] or ''

  212. 		d['recent'] = t[3] or ''

  213. 		

  214. 		d['hide_tips'] = self.get_hide_tips()

  215. 		

  216. 		d['roles'] = self.roles

  217. 		d['defaults'] = self.get_defaults()

  218. 		

  219. 		d['can_create'] = self.can_create

  220. 		d['can_write'] = self.can_write

  221. 		d['can_read'] = list(set(self.can_read))

  222. 		d['can_cancel'] = list(set(self.can_cancel))

  223. 		d['can_get_report'] = list(set(self.can_get_report))

  224. 		d['allow_modules'] = self.allow_modules

  225. 		d['all_read'] = self.all_read

  226. 		d['can_search'] = list(set(self.can_search))

  227. 		

  228. 		return d

  229. 		

  230. 	def load_from_session(self, d):

  231. 		"""

  232. 		Setup the user profile from the dictionary saved in the session (generated by `load_profile`)

  233. 		"""

  234. 		self.can_create = d['can_create']

  235. 		self.can_read = d['can_read']

  236. 		self.can_write = d['can_write']

  237. 		self.can_search = d['can_search']

  238. 		self.can_get_report = d['can_get_report']

  239. 		self.allow_modules = d['allow_modules']

  240. 		self.all_read = d['all_read']

  241. 

  242. 		self.roles = d['roles']

  243. 		self.defaults = d['defaults']

  244. 

  245. 	

  246. 	def reset_password(self):

  247. 		"""reset password"""

  248. 		from webnotes.utils import random_string, now

  249. 		pwd = random_string(8)

  250. 		

  251. 		# update tab Profile

  252. 		webnotes.conn.sql("""UPDATE tabProfile SET password=password(%s), modified=%s 

  253. 			WHERE name=%s""", (pwd, now(), self.name))

  254. 

  255. 		return pwd

  256. 

  257. 

  258. 	def send_new_pwd(self, pwd):

  259. 		"""

  260. 			Send new password to user

  261. 		"""

  262. 		import os

  263. 		# send email

  264. 		with open(os.path.join(os.path.dirname(__file__), 'password_reset.txt'), 'r') as f:

  265. 			reset_password_mail = f.read()

  266. 		

  267. 		from webnotes.utils.email_lib import sendmail_md

  268. 		sendmail_md(recipients= self.name, \

  269. 			msg = reset_password_mail % {"user": get_user_fullname(self.name), "password": pwd}, \

  270. 			subject = 'Password Reset')

  271. 

  272. 

  273. 

  274. 

  275. @webnotes.whitelist()

  276. def get_user_img():

  277. 	if not webnotes.form.getvalue('username'):

  278. 		webnotes.response['message'] = 'no_img_m'

  279. 		return

  280. 

  281. 	f = webnotes.conn.sql("select file_list from tabProfile where name=%s", webnotes.form.getvalue('username',''))

  282. 	if f:

  283. 		if f[0][0]:

  284. 			lst = f[0][0].split('\n')	

  285. 			webnotes.response['message'] = lst[0].split(',')[1]

  286. 		else:

  287. 			webnotes.response['message'] = 'no_img_m'		

  288. 	else:

  289. 		webnotes.response['message'] = 'no_img_m'

  290. 

  291. 

  292. def get_user_fullname(user):

  293. 	fullname = webnotes.conn.sql("SELECT CONCAT_WS(' ', first_name, last_name) FROM `tabProfile` WHERE name=%s", user)

  294. 	return fullname and fullname[0][0] or ''