addons-server/apps/users/models.py

from datetime import datetime
import hashlib
import random
import re
import string
import time

from django.conf import settings
from django.contrib.auth.models import User as DjangoUser
from django.db import models

import amo
import amo.models

from amo.urlresolvers import reverse
from translations.fields import PurifiedField


def get_hexdigest(algorithm, salt, raw_password):
    return hashlib.new(algorithm, salt + raw_password).hexdigest()


def rand_string(length):
    return ''.join(random.choice(string.letters) for i in xrange(length))


def create_password(algorithm, raw_password):
    salt = get_hexdigest(algorithm, rand_string(12), rand_string(12))[:64]
    hsh = get_hexdigest(algorithm, salt, raw_password)
    return '$'.join([algorithm, salt, hsh])


class UserProfile(amo.models.ModelBase):

    nickname = models.CharField(max_length=255, unique=True, default='')
    firstname = models.CharField(max_length=255, default='')
    lastname = models.CharField(max_length=255, default='')
    password = models.CharField(max_length=255, default='')
    email = models.EmailField(unique=True)

    averagerating = models.CharField(max_length=255, blank=True)
    bio = PurifiedField()
    confirmationcode = models.CharField(max_length=255, default='',
                                        blank=True)
    deleted = models.BooleanField(default=True)
    display_collections = models.BooleanField(default=False)
    display_collections_fav = models.BooleanField(default=False)
    emailhidden = models.BooleanField(default=False)
    homepage = models.CharField(max_length=765, blank=True, default='')
    location = models.CharField(max_length=765, blank=True, default='')
    notes = models.TextField(blank=True)
    notifycompat = models.BooleanField(default=True)
    notifyevents = models.BooleanField(default=True)
    occupation = models.CharField(max_length=765, default='', blank=True)
    picture_type = models.CharField(max_length=75, default='', blank=True)
    resetcode = models.CharField(max_length=255, default='', blank=True)
    resetcode_expires = models.DateTimeField(default=datetime.now,
                                             blank=True)
    sandboxshown = models.BooleanField(default=False)

    user = models.ForeignKey(DjangoUser, null=True, editable=False, blank=True)

    class Meta:
        db_table = 'users'

    def __unicode__(self):
        return '%s: %s' % (self.id, self.display_name)

    def get_url_path(self):
        return reverse('users.profile', args=[self.id])

    @amo.cached_property
    def addons_listed(self):
        """public add-ons this user is listed as author of"""
        return self.addons.valid().filter(addonuser__listed=True)

    @property
    def picture_url(self):
        split_id = re.match(r'((\d*?)(\d{0,3}?))\d{1,3}$', str(self.id))
        if not self.picture_type:
            return settings.MEDIA_URL + '/img/zamboni/anon_user.png'
        else:
            return settings.USER_PIC_URL % (
                split_id.group(2) or 0, split_id.group(1) or 0, self.id,
                int(time.mktime(self.modified.timetuple())))

    @amo.cached_property
    def is_developer(self):
        return bool(self.addons.filter(authors=self,
                                       addonuser__listed=True)[:1])

    @property
    def display_name(self):
        if not self.nickname:
            return '%s %s' % (self.firstname, self.lastname)
        else:
            return self.nickname

    @property
    def welcome_name(self):
        if self.firstname:
            return self.firstname
        elif self.nickname:
            return self.nickname
        elif self.lastname:
            return self.lastname

        return ''

    def save(self, force_insert=False, force_update=False, using=None):
        # we have to fix stupid things that we defined poorly in remora
        if self.resetcode_expires is None:
            self.resetcode_expires = datetime.now()

        super(UserProfile, self).save(force_insert, force_update, using)

    def check_password(self, raw_password):
        if '$' not in self.password:
            valid = (get_hexdigest('md5', '', raw_password) == self.password)
            if valid:
                # Upgrade an old password.
                self.set_password(raw_password)
                self.save()
            return valid

        algo, salt, hsh = self.password.split('$')
        return hsh == get_hexdigest(algo, salt, raw_password)

    def set_password(self, raw_password, algorithm='sha512'):
        self.password = create_password(algorithm, raw_password)

    def create_django_user(self):
        """Make a django.contrib.auth.User for this UserProfile."""
        # Reusing the id will make our life easier, because we can use the
        # OneToOneField as pk for Profile linked back to the auth.user
        # in the future.
        self.user = DjangoUser(id=self.pk)
        self.user.first_name = self.firstname
        self.user.last_name = self.lastname
        self.user.username = self.email
        self.user.email = self.email
        self.user.password = self.password
        self.user.date_joined = self.created

        if self.group_set.filter(rules='*:*').count():
            self.user.is_superuser = self.user.is_staff = True

        self.user.save()
        self.save()
        return self.user
filling out user model and admin 2010-01-05 00:41:32 +03:00			`from datetime import datetime`
password management for amo Users 2010-01-13 04:22:26 +03:00			`import hashlib`
			`import random`
user profile (bug 543597) 2010-02-12 21:46:44 +03:00			`import re`
password management for amo Users 2010-01-13 04:22:26 +03:00			`import string`
Making user pic configurable (bug 549483) 2010-03-15 21:48:35 +03:00			`import time`
filling out user model and admin 2010-01-05 00:41:32 +03:00
user profile (bug 543597) 2010-02-12 21:46:44 +03:00			`from django.conf import settings`
importing django User model as DjangoUser so no-one can mistake it as our own user model (bug 539861) 2010-01-18 13:51:34 +03:00			`from django.contrib.auth.models import User as DjangoUser`
made /user/123 the path for user profiles. adjusted redirects and tests. 2010-02-02 20:03:47 +03:00			`from django.db import models`
users app 2009-10-23 02:37:15 +04:00
Use the new activate() to pull in the AMO .mo files and use the new _() everywhere else 2010-02-22 10:57:38 +03:00			`import amo`
import amo.models to avoid circular imports, move constants to __init__ 2010-01-29 04:59:26 +03:00			`import amo.models`
We should be using amo.urlresolvers 2010-02-24 02:26:11 +03:00
			`from amo.urlresolvers import reverse`
replacing translated fields with purified/linkified fields 2010-02-23 22:47:16 +03:00			`from translations.fields import PurifiedField`
users app 2009-10-23 02:37:15 +04:00

password management for amo Users 2010-01-13 04:22:26 +03:00			`def get_hexdigest(algorithm, salt, raw_password):`
			`return hashlib.new(algorithm, salt + raw_password).hexdigest()`


			`def rand_string(length):`
			`return ''.join(random.choice(string.letters) for i in xrange(length))`


			`def create_password(algorithm, raw_password):`
			`salt = get_hexdigest(algorithm, rand_string(12), rand_string(12))[:64]`
			`hsh = get_hexdigest(algorithm, salt, raw_password)`
			`return '$'.join([algorithm, salt, hsh])`


import amo.models to avoid circular imports, move constants to __init__ 2010-01-29 04:59:26 +03:00			`class UserProfile(amo.models.ModelBase):`
users app 2009-10-23 02:37:15 +04:00
Cake-cookie based authentication * Wrote a test to see if we can log in using a cake session. * Middleware can read cookie * Wrote an authenticator backend that reads the session data from the db * Rewrote users.User as users.UserProfile and linked it to d.c.a.User and included migrations * Got templates to work, and wrote a test to validate things * logout * Signals! We can now log a user out using the logout view, send a signal, and have it intercepted by the Cake app which will destroy its session and attempt to destroy the relevent cookies. * Updated models to use UserProfile * added media/js as a submodule * Prettied up the html so the remora JS works 2009-12-14 23:34:11 +03:00			`nickname = models.CharField(max_length=255, unique=True, default='')`
filling out user model and admin 2010-01-05 00:41:32 +03:00			`firstname = models.CharField(max_length=255, default='')`
			`lastname = models.CharField(max_length=255, default='')`
			`password = models.CharField(max_length=255, default='')`
Cake-cookie based authentication * Wrote a test to see if we can log in using a cake session. * Middleware can read cookie * Wrote an authenticator backend that reads the session data from the db * Rewrote users.User as users.UserProfile and linked it to d.c.a.User and included migrations * Got templates to work, and wrote a test to validate things * logout * Signals! We can now log a user out using the logout view, send a signal, and have it intercepted by the Cake app which will destroy its session and attempt to destroy the relevent cookies. * Updated models to use UserProfile * added media/js as a submodule * Prettied up the html so the remora JS works 2009-12-14 23:34:11 +03:00			`email = models.EmailField(unique=True)`
filling out user model and admin 2010-01-05 00:41:32 +03:00
Cake-cookie based authentication * Wrote a test to see if we can log in using a cake session. * Middleware can read cookie * Wrote an authenticator backend that reads the session data from the db * Rewrote users.User as users.UserProfile and linked it to d.c.a.User and included migrations * Got templates to work, and wrote a test to validate things * logout * Signals! We can now log a user out using the logout view, send a signal, and have it intercepted by the Cake app which will destroy its session and attempt to destroy the relevent cookies. * Updated models to use UserProfile * added media/js as a submodule * Prettied up the html so the remora JS works 2009-12-14 23:34:11 +03:00			`averagerating = models.CharField(max_length=255, blank=True)`
replacing translated fields with purified/linkified fields 2010-02-23 22:47:16 +03:00			`bio = PurifiedField()`
adding a GroupUser inline, marking optional fields 2010-02-09 04:02:15 +03:00			`confirmationcode = models.CharField(max_length=255, default='',`
			`blank=True)`
Cake-cookie based authentication * Wrote a test to see if we can log in using a cake session. * Middleware can read cookie * Wrote an authenticator backend that reads the session data from the db * Rewrote users.User as users.UserProfile and linked it to d.c.a.User and included migrations * Got templates to work, and wrote a test to validate things * logout * Signals! We can now log a user out using the logout view, send a signal, and have it intercepted by the Cake app which will destroy its session and attempt to destroy the relevent cookies. * Updated models to use UserProfile * added media/js as a submodule * Prettied up the html so the remora JS works 2009-12-14 23:34:11 +03:00			`deleted = models.BooleanField(default=True)`
filling out user model and admin 2010-01-05 00:41:32 +03:00			`display_collections = models.BooleanField(default=False)`
			`display_collections_fav = models.BooleanField(default=False)`
Cake-cookie based authentication * Wrote a test to see if we can log in using a cake session. * Middleware can read cookie * Wrote an authenticator backend that reads the session data from the db * Rewrote users.User as users.UserProfile and linked it to d.c.a.User and included migrations * Got templates to work, and wrote a test to validate things * logout * Signals! We can now log a user out using the logout view, send a signal, and have it intercepted by the Cake app which will destroy its session and attempt to destroy the relevent cookies. * Updated models to use UserProfile * added media/js as a submodule * Prettied up the html so the remora JS works 2009-12-14 23:34:11 +03:00			`emailhidden = models.BooleanField(default=False)`
			`homepage = models.CharField(max_length=765, blank=True, default='')`
			`location = models.CharField(max_length=765, blank=True, default='')`
			`notes = models.TextField(blank=True)`
filling out user model and admin 2010-01-05 00:41:32 +03:00			`notifycompat = models.BooleanField(default=True)`
			`notifyevents = models.BooleanField(default=True)`
adding a GroupUser inline, marking optional fields 2010-02-09 04:02:15 +03:00			`occupation = models.CharField(max_length=765, default='', blank=True)`
			`picture_type = models.CharField(max_length=75, default='', blank=True)`
			`resetcode = models.CharField(max_length=255, default='', blank=True)`
			`resetcode_expires = models.DateTimeField(default=datetime.now,`
			`blank=True)`
Cake-cookie based authentication * Wrote a test to see if we can log in using a cake session. * Middleware can read cookie * Wrote an authenticator backend that reads the session data from the db * Rewrote users.User as users.UserProfile and linked it to d.c.a.User and included migrations * Got templates to work, and wrote a test to validate things * logout * Signals! We can now log a user out using the logout view, send a signal, and have it intercepted by the Cake app which will destroy its session and attempt to destroy the relevent cookies. * Updated models to use UserProfile * added media/js as a submodule * Prettied up the html so the remora JS works 2009-12-14 23:34:11 +03:00			`sandboxshown = models.BooleanField(default=False)`
filling out user model and admin 2010-01-05 00:41:32 +03:00
adding a GroupUser inline, marking optional fields 2010-02-09 04:02:15 +03:00			`user = models.ForeignKey(DjangoUser, null=True, editable=False, blank=True)`
users app 2009-10-23 02:37:15 +04:00
			`class Meta:`
			`db_table = 'users'`

filling out user model and admin 2010-01-05 00:41:32 +03:00			`def __unicode__(self):`
			`return '%s: %s' % (self.id, self.display_name)`

Renamed get_absolute_url to get_url_path, but also assigned it in order to maintain compatibility with django.contrib apps. 2010-02-26 21:41:49 +03:00			`def get_url_path(self):`
made /user/123 the path for user profiles. adjusted redirects and tests. 2010-02-02 20:03:47 +03:00			`return reverse('users.profile', args=[self.id])`
users app 2009-10-23 02:37:15 +04:00
user profile (bug 543597) 2010-02-12 21:46:44 +03:00			`@amo.cached_property`
			`def addons_listed(self):`
			`"""public add-ons this user is listed as author of"""`
			`return self.addons.valid().filter(addonuser__listed=True)`

			`@property`
			`def picture_url(self):`
			`split_id = re.match(r'((\d*?)(\d{0,3}?))\d{1,3}$', str(self.id))`
Making user pic configurable (bug 549483) 2010-03-15 21:48:35 +03:00			`if not self.picture_type:`
			`return settings.MEDIA_URL + '/img/zamboni/anon_user.png'`
			`else:`
			`return settings.USER_PIC_URL % (`
			`split_id.group(2) or 0, split_id.group(1) or 0, self.id,`
			`int(time.mktime(self.modified.timetuple())))`
user profile (bug 543597) 2010-02-12 21:46:44 +03:00
			`@amo.cached_property`
			`def is_developer(self):`
replacing translated fields with purified/linkified fields 2010-02-23 22:47:16 +03:00			`return bool(self.addons.filter(authors=self,`
			`addonuser__listed=True)[:1])`
user profile (bug 543597) 2010-02-12 21:46:44 +03:00
users app 2009-10-23 02:37:15 +04:00			`@property`
			`def display_name(self):`
			`if not self.nickname:`
			`return '%s %s' % (self.firstname, self.lastname)`
			`else:`
			`return self.nickname`
Cake-cookie based authentication * Wrote a test to see if we can log in using a cake session. * Middleware can read cookie * Wrote an authenticator backend that reads the session data from the db * Rewrote users.User as users.UserProfile and linked it to d.c.a.User and included migrations * Got templates to work, and wrote a test to validate things * logout * Signals! We can now log a user out using the logout view, send a signal, and have it intercepted by the Cake app which will destroy its session and attempt to destroy the relevent cookies. * Updated models to use UserProfile * added media/js as a submodule * Prettied up the html so the remora JS works 2009-12-14 23:34:11 +03:00
			`@property`
			`def welcome_name(self):`
			`if self.firstname:`
			`return self.firstname`
			`elif self.nickname:`
			`return self.nickname`
			`elif self.lastname:`
			`return self.lastname`

			`return ''`

these tests should run in db create/destroy loop 2010-01-15 04:04:08 +03:00			`def save(self, force_insert=False, force_update=False, using=None):`
Cake-cookie based authentication * Wrote a test to see if we can log in using a cake session. * Middleware can read cookie * Wrote an authenticator backend that reads the session data from the db * Rewrote users.User as users.UserProfile and linked it to d.c.a.User and included migrations * Got templates to work, and wrote a test to validate things * logout * Signals! We can now log a user out using the logout view, send a signal, and have it intercepted by the Cake app which will destroy its session and attempt to destroy the relevent cookies. * Updated models to use UserProfile * added media/js as a submodule * Prettied up the html so the remora JS works 2009-12-14 23:34:11 +03:00			`# we have to fix stupid things that we defined poorly in remora`
			`if self.resetcode_expires is None:`
			`self.resetcode_expires = datetime.now()`

these tests should run in db create/destroy loop 2010-01-15 04:04:08 +03:00			`super(UserProfile, self).save(force_insert, force_update, using)`
password management for amo Users 2010-01-13 04:22:26 +03:00
			`def check_password(self, raw_password):`
			`if '$' not in self.password:`
			`valid = (get_hexdigest('md5', '', raw_password) == self.password)`
			`if valid:`
			`# Upgrade an old password.`
			`self.set_password(raw_password)`
			`self.save()`
			`return valid`

			`algo, salt, hsh = self.password.split('$')`
			`return hsh == get_hexdigest(algo, salt, raw_password)`

			`def set_password(self, raw_password, algorithm='sha512'):`
			`self.password = create_password(algorithm, raw_password)`
backend for authenticating amo users by email and password 2010-01-13 04:26:20 +03:00
			`def create_django_user(self):`
			`"""Make a django.contrib.auth.User for this UserProfile."""`
			`# Reusing the id will make our life easier, because we can use the`
			`# OneToOneField as pk for Profile linked back to the auth.user`
			`# in the future.`
Forgot an instance of User/DjangoUser, which Hudson, like a good butler, promptly reminded me. bug 539861. 2010-01-18 22:45:23 +03:00			`self.user = DjangoUser(id=self.pk)`
backend for authenticating amo users by email and password 2010-01-13 04:26:20 +03:00			`self.user.first_name = self.firstname`
			`self.user.last_name = self.lastname`
put amo.email into django.user.username 2010-01-15 02:26:46 +03:00			`self.user.username = self.email`
backend for authenticating amo users by email and password 2010-01-13 04:26:20 +03:00			`self.user.email = self.email`
			`self.user.password = self.password`
			`self.user.date_joined = self.created`

			`if self.group_set.filter(rules=':').count():`
			`self.user.is_superuser = self.user.is_staff = True`

			`self.user.save()`
			`self.save()`
			`return self.user`