anoopmb
/
frappe
1
0
Vork 0
Code Kwesties 0 Pull-aanvragen 0 Publicaties 0 Wiki Activiteit
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1337 Commits
1 Branch
314 MiB
 
 
 
 
 
 
Tree: bab9f3c7ef
Branches Labels
${ item.name }
Maak branch ${ searchTerm }
van 'bab9f3c7ef'
${ noResults }
frappe/py/webnotes/profile.py

297 regels
8.5 KiB
Ruw Blame Geschiedenis 

  1. # Copyright (c) 2012 Web Notes Technologies Pvt Ltd (http://erpnext.com)

  2. # 

  3. # MIT License (MIT)

  4. # 

  5. # Permission is hereby granted, free of charge, to any person obtaining a 

  6. # copy of this software and associated documentation files (the "Software"), 

  7. # to deal in the Software without restriction, including without limitation 

  8. # the rights to use, copy, modify, merge, publish, distribute, sublicense, 

  9. # and/or sell copies of the Software, and to permit persons to whom the 

  10. # Software is furnished to do so, subject to the following conditions:

  11. # 

  12. # The above copyright notice and this permission notice shall be included in 

  13. # all copies or substantial portions of the Software.

  14. # 

  15. # THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, 

  16. # INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A 

  17. # PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT 

  18. # HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF 

  19. # CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE 

  20. # OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

  21. # 

  22. 

  23. from __future__ import unicode_literals

  24. import webnotes

  25. 

  26. class Profile:

  27. 	"""

  28. 	A profile object is created at the beginning of every request with details of the use.

  29. 	The global profile object is `webnotes.user`

  30. 	"""

  31. 	def __init__(self, name=''):

  32. 		self.name = name or webnotes.session.get('user')

  33. 		self.roles = []

  34. 		

  35. 		self.all_read = []

  36. 		self.can_create = []

  37. 		self.can_read = []

  38. 		self.can_write = []

  39. 		self.can_cancel = []

  40. 		self.can_search = []

  41. 		self.can_get_report = []

  42. 		self.allow_modules = []

  43. 		

  44. 	def _load_roles(self):

  45. 		self.roles = webnotes.get_roles()

  46. 		return self.roles

  47. 

  48. 	def get_roles(self):

  49. 		"""get list of roles"""

  50. 		if self.roles:

  51. 			return self.roles

  52. 			

  53. 		return self._load_roles()

  54. 	

  55. 	def build_doctype_map(self):

  56. 		"""build map of special doctype properties"""

  57. 			

  58. 		self.doctype_map = {}

  59. 		for r in webnotes.conn.sql("""select name, in_create, issingle, istable, 

  60. 			read_only, module from tabDocType""", as_dict=1):

  61. 			r['child_tables'] = []

  62. 			self.doctype_map[r['name']] = r

  63. 			

  64. 		for r in webnotes.conn.sql("""select parent, options from tabDocField 

  65. 			where fieldtype="Table"

  66. 			and parent not like "old_parent:%%" 

  67. 			and ifnull(docstatus,0)=0

  68. 			"""):

  69. 			if r[0] in self.doctype_map:

  70. 				self.doctype_map[r[0]]['child_tables'].append(r[1])

  71. 	

  72. 	def build_perm_map(self):

  73. 		"""build map of permissions at level 0"""

  74. 		

  75. 		self.perm_map = {}

  76. 		for r in webnotes.conn.sql("""select parent, `read`, `write`, `create`, `submit`, `cancel` 

  77. 			from tabDocPerm where docstatus=0 

  78. 			and ifnull(permlevel,0)=0

  79. 			and parent not like "old_parent:%%" 

  80. 			and role in ('%s')""" % "','".join(self.get_roles()), as_dict=1):

  81. 			

  82. 			dt = r['parent']

  83. 			

  84. 			if not dt in  self.perm_map:

  85. 				self.perm_map[dt] = {}

  86. 				

  87. 			for k in ('read', 'write', 'create', 'submit', 'cancel'):

  88. 				if not self.perm_map[dt].get(k):

  89. 					self.perm_map[dt][k] = r.get(k)

  90. 						

  91. 	def build_permissions(self):

  92. 		"""build lists of what the user can read / write / create

  93. 		quirks: 

  94. 			read_only => Not in Search

  95. 			in_create => Not in create

  96. 		

  97. 		"""

  98. 		

  99. 		self.build_doctype_map()

  100. 		self.build_perm_map()

  101. 		

  102. 		for dt in self.doctype_map:

  103. 			dtp = self.doctype_map[dt]

  104. 			p = self.perm_map.get(dt, {})

  105. 

  106. 			if not dtp.get('istable'):

  107. 				if p.get('create') and not dtp.get('in_create') and \

  108. 						not dtp.get('issingle'):

  109. 					self.can_create.append(dt)

  110. 				elif p.get('write'):

  111. 					self.can_write.append(dt)

  112. 				elif p.get('read'):

  113. 					if dtp.get('read_only'):

  114. 						self.all_read.append(dt)

  115. 					else:

  116. 						self.can_read.append(dt)

  117. 

  118. 			if p.get('cancel'):

  119. 				self.can_cancel.append(dt)

  120. 

  121. 			if (p.get('read') or p.get('write') or p.get('create')):

  122. 				self.can_get_report.append(dt)

  123. 				self.can_get_report += dtp['child_tables']

  124. 				if not dtp.get('istable'):

  125. 					if not dtp.get('issingle') and not dtp.get('read_only'):

  126. 						self.can_search.append(dt)

  127. 					if not dtp.get('module') in self.allow_modules:

  128. 						self.allow_modules.append(dtp.get('module'))

  129. 

  130. 		self.can_write += self.can_create

  131. 		self.can_read += self.can_write

  132. 		self.all_read += self.can_read

  133. 

  134. 	def get_defaults(self):

  135. 		"""

  136. 		Get the user's default values based on user and role profile

  137. 		"""

  138. 		roles = self.get_roles() + [self.name]

  139. 		res = webnotes.conn.sql("""select defkey, defvalue 

  140. 		from `tabDefaultValue` where parent in ("%s") order by idx""" % '", "'.join(roles))

  141. 	

  142. 		self.defaults = {'owner': [self.name,]}

  143. 

  144. 		for rec in res: 

  145. 			if not self.defaults.has_key(rec[0]): 

  146. 				self.defaults[rec[0]] = []

  147. 			self.defaults[rec[0]].append(rec[1] or '')

  148. 

  149. 		return self.defaults

  150. 		

  151. 	def get_hide_tips(self):

  152. 		try:

  153. 			return webnotes.conn.sql("select hide_tips from tabProfile where name=%s", self.name)[0][0] or 0

  154. 		except:

  155. 			return 0

  156. 			

  157. 	# update recent documents

  158. 	def update_recent(self, dt, dn):

  159. 		"""

  160. 		Update the user's `Recent` list with the given `dt` and `dn`

  161. 		"""

  162. 		conn = webnotes.conn

  163. 		from webnotes.utils import cstr

  164. 		import json

  165. 

  166. 	

  167. 		# get list of child tables, so we know what not to add in the recent list

  168. 		child_tables = [t[0] for t in conn.sql('select name from tabDocType where ifnull(istable,0) = 1')]

  169. 		

  170. 		if not (dt in ['Print Format', 'Start Page', 'Event', 'ToDo', 'Search Criteria']) \

  171. 			and not (dt in child_tables):

  172. 			r = webnotes.conn.sql("select recent_documents from tabProfile where name=%s", \

  173. 				self.name)[0][0] or ''

  174. 

  175. 			if '~~~' in r:

  176. 				r = '[]'

  177. 			

  178. 			rdl = json.loads(r or '[]')

  179. 			new_rd = [dt, dn]

  180. 			

  181. 			# clear if exists

  182. 			for i in range(len(rdl)):

  183. 				rd = rdl[i]

  184. 				if rd==new_rd:

  185. 					del rdl[i]

  186. 					break

  187. 

  188. 			if len(rdl) > 19:

  189. 				rdl = rdl[:19]

  190. 			

  191. 			rdl = [new_rd] + rdl

  192. 			

  193. 			self.recent = json.dumps(rdl)

  194. 						

  195. 			webnotes.conn.sql("""update tabProfile set 

  196. 				recent_documents=%s where name=%s""", (self.recent, self.name))

  197. 			

  198. 	def load_profile(self):

  199. 		"""

  200. 	      	Return a dictionary of user properites to be stored in the session

  201. 		"""

  202. 		t = webnotes.conn.sql("""select email, first_name, last_name, 

  203. 			recent_documents from tabProfile where name = %s""", self.name)[0]

  204. 

  205. 		if not self.can_read:

  206. 			self.build_permissions()

  207. 

  208. 		d = {}

  209. 		d['name'] = self.name

  210. 		d['email'] = t[0] or ''

  211. 		d['first_name'] = t[1] or ''

  212. 		d['last_name'] = t[2] or ''

  213. 		d['recent'] = t[3] or ''

  214. 		

  215. 		d['hide_tips'] = self.get_hide_tips()

  216. 		

  217. 		d['roles'] = self.roles

  218. 		d['defaults'] = self.get_defaults()

  219. 		

  220. 		d['can_create'] = self.can_create

  221. 		d['can_write'] = self.can_write

  222. 		d['can_read'] = list(set(self.can_read))

  223. 		d['can_cancel'] = list(set(self.can_cancel))

  224. 		d['can_get_report'] = list(set(self.can_get_report))

  225. 		d['allow_modules'] = self.allow_modules

  226. 		d['all_read'] = self.all_read

  227. 		d['can_search'] = list(set(self.can_search))

  228. 		

  229. 		return d

  230. 		

  231. 	def load_from_session(self, d):

  232. 		"""

  233. 		Setup the user profile from the dictionary saved in the session (generated by `load_profile`)

  234. 		"""

  235. 		self.can_create = d['can_create']

  236. 		self.can_read = d['can_read']

  237. 		self.can_write = d['can_write']

  238. 		self.can_search = d['can_search']

  239. 		self.can_cancel = d['can_cancel']

  240. 		self.can_get_report = d['can_get_report']

  241. 		self.allow_modules = d['allow_modules']

  242. 		self.all_read = d['all_read']

  243. 

  244. 		self.roles = d['roles']

  245. 		self.defaults = d['defaults']

  246. 

  247. 	

  248. 	def reset_password(self):

  249. 		"""reset password"""

  250. 		from webnotes.utils import random_string, now

  251. 		pwd = random_string(8)

  252. 		

  253. 		# update tab Profile

  254. 		webnotes.conn.sql("""UPDATE tabProfile SET password=password(%s), modified=%s 

  255. 			WHERE name=%s""", (pwd, now(), self.name))

  256. 

  257. 		return pwd

  258. 

  259. 

  260. 	def send_new_pwd(self, pwd):

  261. 		"""

  262. 			Send new password to user

  263. 		"""

  264. 		import os

  265. 		# send email

  266. 		with open(os.path.join(os.path.dirname(__file__), 'password_reset.txt'), 'r') as f:

  267. 			reset_password_mail = f.read()

  268. 		

  269. 		from webnotes.utils.email_lib import sendmail_md

  270. 		sendmail_md(recipients= self.name, \

  271. 			msg = reset_password_mail % {"user": get_user_fullname(self.name), "password": pwd}, \

  272. 			subject = 'Password Reset')

  273. 

  274. 

  275. 

  276. 

  277. @webnotes.whitelist()

  278. def get_user_img():

  279. 	if not webnotes.form.getvalue('username'):

  280. 		webnotes.response['message'] = 'no_img_m'

  281. 		return

  282. 

  283. 	f = webnotes.conn.sql("select file_list from tabProfile where name=%s", webnotes.form.getvalue('username',''))

  284. 	if f:

  285. 		if f[0][0]:

  286. 			lst = f[0][0].split('\n')	

  287. 			webnotes.response['message'] = lst[0].split(',')[1]

  288. 		else:

  289. 			webnotes.response['message'] = 'no_img_m'		

  290. 	else:

  291. 		webnotes.response['message'] = 'no_img_m'

  292. 

  293. 

  294. def get_user_fullname(user):

  295. 	fullname = webnotes.conn.sql("SELECT CONCAT_WS(' ', first_name, last_name) FROM `tabProfile` WHERE name=%s", user)

  296. 	return fullname and fullname[0][0] or ''