anoopmb
/
frappe
1
0
Fork 0
Koodi Ongelmat 0 Pull-pyynnöt 0 Julkaisut 0 Wiki Toiminta
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
790 Commitit
1 Haara
314 MiB
 
 
 
 
 
 
Puu: d0c74286d0
Branchit Tagit
${ item.name }
Create branch ${ searchTerm }
from 'd0c74286d0'
${ noResults }
frappe/py/webnotes/profile.py

308 rivejä
8.8 KiB
Raaka Blame Historia 

  1. # Copyright (c) 2012 Web Notes Technologies Pvt Ltd (http://erpnext.com)

  2. # 

  3. # MIT License (MIT)

  4. # 

  5. # Permission is hereby granted, free of charge, to any person obtaining a 

  6. # copy of this software and associated documentation files (the "Software"), 

  7. # to deal in the Software without restriction, including without limitation 

  8. # the rights to use, copy, modify, merge, publish, distribute, sublicense, 

  9. # and/or sell copies of the Software, and to permit persons to whom the 

  10. # Software is furnished to do so, subject to the following conditions:

  11. # 

  12. # The above copyright notice and this permission notice shall be included in 

  13. # all copies or substantial portions of the Software.

  14. # 

  15. # THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, 

  16. # INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A 

  17. # PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT 

  18. # HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF 

  19. # CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE 

  20. # OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

  21. # 

  22. 

  23. import webnotes

  24. 

  25. class Profile:

  26. 	"""

  27. 	A profile object is created at the beginning of every request with details of the use.

  28. 	The global profile object is `webnotes.user`

  29. 	"""

  30. 	def __init__(self, name=''):

  31. 		self.name = name or webnotes.session.get('user')

  32. 		self.roles = []

  33. 		

  34. 		self.all_read = []

  35. 		self.can_create = []

  36. 		self.can_read = []

  37. 		self.can_write = []

  38. 		self.can_cancel = []

  39. 		self.can_search = []

  40. 		self.can_get_report = []

  41. 		self.allow_modules = []

  42. 		

  43. 	def _load_roles(self):

  44. 		self.roles = webnotes.get_roles()

  45. 		return self.roles

  46. 

  47. 	def get_roles(self):

  48. 		"""get list of roles"""

  49. 		if self.roles:

  50. 			return self.roles

  51. 			

  52. 		return self._load_roles()

  53. 	

  54. 	def build_doctype_map(self):

  55. 		"""build map of special doctype properties"""

  56. 			

  57. 		self.doctype_map = {}

  58. 		for r in webnotes.conn.sql("""select name, in_create, issingle, istable, 

  59. 			read_only, module from tabDocType""", as_dict=1):

  60. 			r['child_tables'] = []

  61. 			self.doctype_map[r['name']] = r

  62. 			

  63. 		for r in webnotes.conn.sql("""select parent, options from tabDocField 

  64. 			where fieldtype="Table"

  65. 			and parent not like "old_parent:%%" 

  66. 			and ifnull(docstatus,0)=0

  67. 			"""):

  68. 			if r[0] in self.doctype_map:

  69. 				self.doctype_map[r[0]]['child_tables'].append(r[1])

  70. 	

  71. 	def build_perm_map(self):

  72. 		"""build map of permissions at level 0"""

  73. 		

  74. 		self.perm_map = {}

  75. 		for r in webnotes.conn.sql("""select parent, `read`, `write`, `create`, `submit`, `cancel` 

  76. 			from tabDocPerm where docstatus=0 

  77. 			and ifnull(permlevel,0)=0

  78. 			and parent not like "old_parent:%%" 

  79. 			and role in ('%s')""" % "','".join(self.get_roles()), as_dict=1):

  80. 			

  81. 			dt = r['parent']

  82. 			

  83. 			if not dt in  self.perm_map:

  84. 				self.perm_map[dt] = {}

  85. 				

  86. 			for k in ('read', 'write', 'create', 'submit', 'cancel'):

  87. 				if not self.perm_map[dt].get(k):

  88. 					self.perm_map[dt][k] = r.get(k)

  89. 						

  90. 	def build_permissions(self):

  91. 		"""build lists of what the user can read / write / create

  92. 		quirks: 

  93. 			read_only => Not in Search

  94. 			in_create => Not in create

  95. 		

  96. 		"""

  97. 		

  98. 		self.build_doctype_map()

  99. 		self.build_perm_map()

  100. 		

  101. 		for dt in self.doctype_map:

  102. 			dtp = self.doctype_map[dt]

  103. 			p = self.perm_map.get(dt, {})

  104. 

  105. 			if not dtp.get('istable'):

  106. 				if p.get('create') and not dtp.get('in_create') and \

  107. 						not dtp.get('issingle'):

  108. 					self.can_create.append(dt)

  109. 				elif p.get('write'):

  110. 					self.can_write.append(dt)

  111. 				elif p.get('read'):

  112. 					if dtp.get('read_only'):

  113. 						self.all_read.append(dt)

  114. 					else:

  115. 						self.can_read.append(dt)

  116. 

  117. 			if p.get('cancel'):

  118. 				self.can_cancel.append(dt)

  119. 

  120. 			if (p.get('read') or p.get('write') or p.get('create')) and \

  121. 					not dtp.get('read_only'):

  122. 				self.can_get_report.append(dt)

  123. 				self.can_get_report += dtp['child_tables']

  124. 				if not dtp.get('istable'):

  125. 					if not dtp.get('issingle'):

  126. 						self.can_search.append(dt)

  127. 					if not dtp.get('module') in self.allow_modules:

  128. 						self.allow_modules.append(dtp.get('module'))

  129. 

  130. 		self.can_write += self.can_create

  131. 		self.can_read += self.can_write

  132. 		self.all_read += self.can_read

  133. 

  134. 	def get_home_page(self):

  135. 		"""

  136. 		Get the name of the user's home page from the `Control Panel`

  137. 		"""

  138. 		hpl = webnotes.conn.sql("""select home_page from `tabDefault Home Page` 

  139. 			where parent='Control Panel' 

  140. 			and role in ('%s') order by idx asc limit 1""" % "', '".join(self.get_roles()))

  141. 			

  142. 		if hpl:

  143. 			return hpl[0][0]

  144. 		else:

  145. 			return webnotes.conn.get_value('Control Panel',None,'home_page') or 'Login Page'

  146. 

  147. 	def get_defaults(self):

  148. 		"""

  149. 		Get the user's default values based on user and role profile

  150. 		"""

  151. 		roles = self.get_roles() + [self.name]

  152. 		res = webnotes.conn.sql("""select defkey, defvalue 

  153. 		from `tabDefaultValue` where parent in ("%s")""" % '", "'.join(roles))

  154. 	

  155. 		self.defaults = {'owner': [self.name,]}

  156. 

  157. 		for rec in res: 

  158. 			if not self.defaults.has_key(rec[0]): 

  159. 				self.defaults[rec[0]] = []

  160. 			self.defaults[rec[0]].append(rec[1] or '')

  161. 

  162. 		return self.defaults

  163. 		

  164. 	def get_hide_tips(self):

  165. 		try:

  166. 			return webnotes.conn.sql("select hide_tips from tabProfile where name=%s", self.name)[0][0] or 0

  167. 		except:

  168. 			return 0

  169. 			

  170. 	# update recent documents

  171. 	def update_recent(self, dt, dn):

  172. 		"""

  173. 		Update the user's `Recent` list with the given `dt` and `dn`

  174. 		"""

  175. 		conn = webnotes.conn

  176. 		from webnotes.utils import cstr

  177. 		import json

  178. 

  179. 	

  180. 		# get list of child tables, so we know what not to add in the recent list

  181. 		child_tables = [t[0] for t in conn.sql('select name from tabDocType where ifnull(istable,0) = 1')]

  182. 		

  183. 		if not (dt in ['Print Format', 'Start Page', 'Event', 'ToDo Item', 'Search Criteria']) \

  184. 			and not (dt in child_tables):

  185. 			r = webnotes.conn.sql("select recent_documents from tabProfile where name=%s", \

  186. 				self.name)[0][0] or ''

  187. 

  188. 			if '~~~' in r:

  189. 				r = '[]'

  190. 			

  191. 			rdl = json.loads(r or '[]')

  192. 			new_rd = [dt, dn]

  193. 			

  194. 			# clear if exists

  195. 			for i in range(len(rdl)):

  196. 				rd = rdl[i]

  197. 				if rd==new_rd:

  198. 					del rdl[i]

  199. 					break

  200. 

  201. 			if len(rdl) > 19:

  202. 				rdl = rdl[:19]

  203. 			

  204. 			rdl = [new_rd] + rdl

  205. 			

  206. 			self.recent = json.dumps(rdl)

  207. 						

  208. 			webnotes.conn.sql("""update tabProfile set 

  209. 				recent_documents=%s where name=%s""", (self.recent, self.name))

  210. 			

  211. 	def load_profile(self):

  212. 		"""

  213. 	      	Return a dictionary of user properites to be stored in the session

  214. 		"""

  215. 		t = webnotes.conn.sql("""select email, first_name, last_name, 

  216. 			recent_documents from tabProfile where name = %s""", self.name)[0]

  217. 

  218. 		if not self.can_read:

  219. 			self.build_permissions()

  220. 

  221. 		d = {}

  222. 		d['name'] = self.name

  223. 		d['email'] = t[0] or ''

  224. 		d['first_name'] = t[1] or ''

  225. 		d['last_name'] = t[2] or ''

  226. 		d['recent'] = t[3] or ''

  227. 		

  228. 		d['hide_tips'] = self.get_hide_tips()

  229. 		

  230. 		d['roles'] = self.roles

  231. 		d['defaults'] = self.get_defaults()

  232. 		

  233. 		d['can_create'] = self.can_create

  234. 		d['can_write'] = self.can_write

  235. 		d['can_read'] = list(set(self.can_read))

  236. 		d['can_cancel'] = list(set(self.can_cancel))

  237. 		d['can_get_report'] = list(set(self.can_get_report))

  238. 		d['allow_modules'] = self.allow_modules

  239. 		d['all_read'] = self.all_read

  240. 		d['can_search'] = list(set(self.can_search))

  241. 		

  242. 		return d

  243. 		

  244. 	def load_from_session(self, d):

  245. 		"""

  246. 		Setup the user profile from the dictionary saved in the session (generated by `load_profile`)

  247. 		"""

  248. 		self.can_create = d['can_create']

  249. 		self.can_read = d['can_read']

  250. 		self.can_write = d['can_write']

  251. 		self.can_get_report = d['can_get_report']

  252. 		self.allow_modules = d['allow_modules']

  253. 		self.all_read = d['all_read']

  254. 

  255. 		self.roles = d['roles']

  256. 		self.defaults = d['defaults']

  257. 

  258. 	

  259. 	def reset_password(self):

  260. 		"""reset password"""

  261. 		from webnotes.utils import random_string, now

  262. 		pwd = random_string(8)

  263. 		

  264. 		# update tab Profile

  265. 		webnotes.conn.sql("""UPDATE tabProfile SET password=password(%s), modified=%s 

  266. 			WHERE name=%s""", (pwd, now(), self.name))

  267. 

  268. 		return pwd

  269. 

  270. 

  271. 	def send_new_pwd(self, pwd):

  272. 		"""

  273. 			Send new password to user

  274. 		"""

  275. 		import os

  276. 		# send email

  277. 		with open(os.path.join(os.path.dirname(__file__), 'password_reset.txt'), 'r') as f:

  278. 			reset_password_mail = f.read()

  279. 		

  280. 		from webnotes.utils.email_lib import sendmail_md

  281. 		sendmail_md(recipients= self.name, \

  282. 			msg = reset_password_mail % {"user": get_user_fullname(self.name), "password": pwd}, \

  283. 			subject = 'Password Reset', from_defs=1)

  284. 

  285. 

  286. 

  287. 

  288. @webnotes.whitelist()

  289. def get_user_img():

  290. 	if not webnotes.form.getvalue('username'):

  291. 		webnotes.response['message'] = 'no_img_m'

  292. 		return

  293. 

  294. 	f = webnotes.conn.sql("select file_list from tabProfile where name=%s", webnotes.form.getvalue('username',''))

  295. 	if f:

  296. 		if f[0][0]:

  297. 			lst = f[0][0].split('\n')	

  298. 			webnotes.response['message'] = lst[0].split(',')[1]

  299. 		else:

  300. 			webnotes.response['message'] = 'no_img_m'		

  301. 	else:

  302. 		webnotes.response['message'] = 'no_img_m'

  303. 

  304. 

  305. def get_user_fullname(user):

  306. 	fullname = webnotes.conn.sql("SELECT CONCAT_WS(' ', first_name, last_name) FROM `tabProfile` WHERE name=%s", user)

  307. 	return fullname and fullname[0][0] or ''