addons-server/apps/users/models.py

from datetime import datetime
import hashlib
import random
import re
import string
import time

from django.conf import settings
from django.contrib.auth.models import User as DjangoUser
from django.core.mail import send_mail
from django.db import models
from django.template import Context, loader

import commonware.log
from tower import ugettext as _

import amo
import amo.models
from amo.urlresolvers import reverse
from translations.fields import PurifiedField

log = commonware.log.getLogger('z.users')


def get_hexdigest(algorithm, salt, raw_password):
    return hashlib.new(algorithm, salt + raw_password).hexdigest()


def rand_string(length):
    return ''.join(random.choice(string.letters) for i in xrange(length))


def create_password(algorithm, raw_password):
    salt = get_hexdigest(algorithm, rand_string(12), rand_string(12))[:64]
    hsh = get_hexdigest(algorithm, salt, raw_password)
    return '$'.join([algorithm, salt, hsh])


class UserProfile(amo.models.ModelBase):

    nickname = models.CharField(max_length=255, unique=True, default='',
                                null=True, blank=True)
    firstname = models.CharField(max_length=255, default='', blank=True)
    lastname = models.CharField(max_length=255, default='', blank=True)
    password = models.CharField(max_length=255, default='')
    email = models.EmailField(unique=True)

    averagerating = models.CharField(max_length=255, blank=True)
    bio = PurifiedField()
    confirmationcode = models.CharField(max_length=255, default='',
                                        blank=True)
    deleted = models.BooleanField(default=False)
    display_collections = models.BooleanField(default=False)
    display_collections_fav = models.BooleanField(default=False)
    emailhidden = models.BooleanField(default=False)
    homepage = models.CharField(max_length=255, blank=True, default='')
    location = models.CharField(max_length=255, blank=True, default='')
    notes = models.TextField(blank=True)
    notifycompat = models.BooleanField(default=True)
    notifyevents = models.BooleanField(default=True)
    occupation = models.CharField(max_length=255, default='', blank=True)
    # This is essentially a "has_picture" flag right now
    picture_type = models.CharField(max_length=75, default='', blank=True)
    resetcode = models.CharField(max_length=255, default='', blank=True)
    resetcode_expires = models.DateTimeField(default=datetime.now,
                                             blank=True)
    sandboxshown = models.BooleanField(default=False)

    user = models.ForeignKey(DjangoUser, null=True, editable=False, blank=True)

    class Meta:
        db_table = 'users'

    def __unicode__(self):
        return '%s: %s' % (self.id, self.display_name)

    def get_url_path(self):
        return reverse('users.profile', args=[self.id])

    @amo.cached_property
    def addons_listed(self):
        """Public add-ons this user is listed as author of."""
        return self.addons.valid().filter(addonuser__listed=True).distinct()

    @property
    def name(self):
        """Can be used while we're transitioning from separate first/last names
        to a single field.  Bug 546818#6"""
        return (u'%s %s' % (self.firstname, self.lastname)).strip()

    @property
    def picture_url(self):
        split_id = re.match(r'((\d*?)(\d{0,3}?))\d{1,3}$', str(self.id))
        if not self.picture_type:
            return settings.MEDIA_URL + '/img/zamboni/anon_user.png'
        else:
            return settings.USER_PIC_URL % (
                split_id.group(2) or 0, split_id.group(1) or 0, self.id,
                int(time.mktime(self.modified.timetuple())))

    @amo.cached_property
    def is_developer(self):
        return bool(self.addons.filter(authors=self,
                                       addonuser__listed=True)[:1])

    @property
    def display_name(self):
        if not self.nickname:
            return '%s %s' % (self.firstname, self.lastname)
        else:
            return self.nickname

    @property
    def welcome_name(self):
        if self.firstname:
            return self.firstname
        elif self.nickname:
            return self.nickname
        elif self.lastname:
            return self.lastname

        return ''

    @amo.cached_property
    def reviews(self):
        """All reviews that are not dev replies."""
        return self._reviews_all.filter(reply_to=None)

    def anonymize(self):
        log.info("User (%s: <%s>) is being anonymized." % (self, self.email))
        self.email = ""
        self.password = "sha512$Anonymous$Password"
        self.firstname = ""
        self.lastname = ""
        self.nickname = None
        self.homepage = ""
        self.deleted = True
        self.picture_type = ""
        self.save()

    def save(self, force_insert=False, force_update=False, using=None):
        # we have to fix stupid things that we defined poorly in remora
        if self.resetcode_expires is None:
            self.resetcode_expires = datetime.now()

        super(UserProfile, self).save(force_insert, force_update, using)

    def check_password(self, raw_password):
        if '$' not in self.password:
            valid = (get_hexdigest('md5', '', raw_password) == self.password)
            if valid:
                # Upgrade an old password.
                self.set_password(raw_password)
                self.save()
            return valid

        algo, salt, hsh = self.password.split('$')
        return hsh == get_hexdigest(algo, salt, raw_password)

    def set_password(self, raw_password, algorithm='sha512'):
        self.password = create_password(algorithm, raw_password)

    def email_confirmation_code(self):
        log.debug("Sending account confirmation code for user (%s)", self)

        url = "%s%s" % (settings.SITE_URL,
                        reverse('users.confirm',
                                args=[self.id, self.confirmationcode]))
        domain = settings.DOMAIN
        t = loader.get_template('users/email/confirm.ltxt')
        c = {'domain': domain, 'url': url, }
        send_mail(_("Please confirm your email address"),
                  t.render(Context(c)), None, [self.email])

    def create_django_user(self):
        """Make a django.contrib.auth.User for this UserProfile."""
        # Reusing the id will make our life easier, because we can use the
        # OneToOneField as pk for Profile linked back to the auth.user
        # in the future.
        self.user = DjangoUser(id=self.pk)
        self.user.first_name = self.firstname
        self.user.last_name = self.lastname
        self.user.username = self.email
        self.user.email = self.email
        self.user.password = self.password
        self.user.date_joined = self.created

        if self.groups.filter(rules='*:*').count():
            self.user.is_superuser = self.user.is_staff = True

        self.user.save()
        self.save()
        return self.user
filling out user model and admin 2010-01-05 00:41:32 +03:00			`from datetime import datetime`
password management for amo Users 2010-01-13 04:22:26 +03:00			`import hashlib`
			`import random`
user profile (bug 543597) 2010-02-12 21:46:44 +03:00			`import re`
password management for amo Users 2010-01-13 04:22:26 +03:00			`import string`
Making user pic configurable (bug 549483) 2010-03-15 21:48:35 +03:00			`import time`
filling out user model and admin 2010-01-05 00:41:32 +03:00
user profile (bug 543597) 2010-02-12 21:46:44 +03:00			`from django.conf import settings`
importing django User model as DjangoUser so no-one can mistake it as our own user model (bug 539861) 2010-01-18 13:51:34 +03:00			`from django.contrib.auth.models import User as DjangoUser`
Add Registration, Confirmation, and Confirmation resend 2010-03-29 19:09:52 +04:00			`from django.core.mail import send_mail`
made /user/123 the path for user profiles. adjusted redirects and tests. 2010-02-02 20:03:47 +03:00			`from django.db import models`
Add Registration, Confirmation, and Confirmation resend 2010-03-29 19:09:52 +04:00			`from django.template import Context, loader`
users app 2009-10-23 02:37:15 +04:00
using a LoggerAdapter in commonware for proper line numbers (bug 564452) 2010-05-20 01:05:20 +04:00			`import commonware.log`
			`from tower import ugettext as _`

Use the new activate() to pull in the AMO .mo files and use the new _() everywhere else 2010-02-22 10:57:38 +03:00			`import amo`
import amo.models to avoid circular imports, move constants to __init__ 2010-01-29 04:59:26 +03:00			`import amo.models`
We should be using amo.urlresolvers 2010-02-24 02:26:11 +03:00			`from amo.urlresolvers import reverse`
replacing translated fields with purified/linkified fields 2010-02-23 22:47:16 +03:00			`from translations.fields import PurifiedField`
users app 2009-10-23 02:37:15 +04:00
using a LoggerAdapter in commonware for proper line numbers (bug 564452) 2010-05-20 01:05:20 +04:00			`log = commonware.log.getLogger('z.users')`
Add basic user edit functionality as well as password reset functionality 2010-03-12 09:56:44 +03:00
users app 2009-10-23 02:37:15 +04:00
password management for amo Users 2010-01-13 04:22:26 +03:00			`def get_hexdigest(algorithm, salt, raw_password):`
			`return hashlib.new(algorithm, salt + raw_password).hexdigest()`


			`def rand_string(length):`
			`return ''.join(random.choice(string.letters) for i in xrange(length))`


			`def create_password(algorithm, raw_password):`
			`salt = get_hexdigest(algorithm, rand_string(12), rand_string(12))[:64]`
			`hsh = get_hexdigest(algorithm, salt, raw_password)`
			`return '$'.join([algorithm, salt, hsh])`


import amo.models to avoid circular imports, move constants to __init__ 2010-01-29 04:59:26 +03:00			`class UserProfile(amo.models.ModelBase):`
users app 2009-10-23 02:37:15 +04:00
Add delete (anonymize) user functionality and a couple other tweaks 2010-03-26 03:41:29 +03:00			`nickname = models.CharField(max_length=255, unique=True, default='',`
			`null=True, blank=True)`
			`firstname = models.CharField(max_length=255, default='', blank=True)`
			`lastname = models.CharField(max_length=255, default='', blank=True)`
filling out user model and admin 2010-01-05 00:41:32 +03:00			`password = models.CharField(max_length=255, default='')`
Cake-cookie based authentication * Wrote a test to see if we can log in using a cake session. * Middleware can read cookie * Wrote an authenticator backend that reads the session data from the db * Rewrote users.User as users.UserProfile and linked it to d.c.a.User and included migrations * Got templates to work, and wrote a test to validate things * logout * Signals! We can now log a user out using the logout view, send a signal, and have it intercepted by the Cake app which will destroy its session and attempt to destroy the relevent cookies. * Updated models to use UserProfile * added media/js as a submodule * Prettied up the html so the remora JS works 2009-12-14 23:34:11 +03:00			`email = models.EmailField(unique=True)`
filling out user model and admin 2010-01-05 00:41:32 +03:00
Cake-cookie based authentication * Wrote a test to see if we can log in using a cake session. * Middleware can read cookie * Wrote an authenticator backend that reads the session data from the db * Rewrote users.User as users.UserProfile and linked it to d.c.a.User and included migrations * Got templates to work, and wrote a test to validate things * logout * Signals! We can now log a user out using the logout view, send a signal, and have it intercepted by the Cake app which will destroy its session and attempt to destroy the relevent cookies. * Updated models to use UserProfile * added media/js as a submodule * Prettied up the html so the remora JS works 2009-12-14 23:34:11 +03:00			`averagerating = models.CharField(max_length=255, blank=True)`
replacing translated fields with purified/linkified fields 2010-02-23 22:47:16 +03:00			`bio = PurifiedField()`
adding a GroupUser inline, marking optional fields 2010-02-09 04:02:15 +03:00			`confirmationcode = models.CharField(max_length=255, default='',`
			`blank=True)`
minor adjustments, fix merges, model 2010-04-02 03:16:59 +04:00			`deleted = models.BooleanField(default=False)`
filling out user model and admin 2010-01-05 00:41:32 +03:00			`display_collections = models.BooleanField(default=False)`
			`display_collections_fav = models.BooleanField(default=False)`
Cake-cookie based authentication * Wrote a test to see if we can log in using a cake session. * Middleware can read cookie * Wrote an authenticator backend that reads the session data from the db * Rewrote users.User as users.UserProfile and linked it to d.c.a.User and included migrations * Got templates to work, and wrote a test to validate things * logout * Signals! We can now log a user out using the logout view, send a signal, and have it intercepted by the Cake app which will destroy its session and attempt to destroy the relevent cookies. * Updated models to use UserProfile * added media/js as a submodule * Prettied up the html so the remora JS works 2009-12-14 23:34:11 +03:00			`emailhidden = models.BooleanField(default=False)`
minor adjustments, fix merges, model 2010-04-02 03:16:59 +04:00			`homepage = models.CharField(max_length=255, blank=True, default='')`
			`location = models.CharField(max_length=255, blank=True, default='')`
Cake-cookie based authentication * Wrote a test to see if we can log in using a cake session. * Middleware can read cookie * Wrote an authenticator backend that reads the session data from the db * Rewrote users.User as users.UserProfile and linked it to d.c.a.User and included migrations * Got templates to work, and wrote a test to validate things * logout * Signals! We can now log a user out using the logout view, send a signal, and have it intercepted by the Cake app which will destroy its session and attempt to destroy the relevent cookies. * Updated models to use UserProfile * added media/js as a submodule * Prettied up the html so the remora JS works 2009-12-14 23:34:11 +03:00			`notes = models.TextField(blank=True)`
filling out user model and admin 2010-01-05 00:41:32 +03:00			`notifycompat = models.BooleanField(default=True)`
			`notifyevents = models.BooleanField(default=True)`
minor adjustments, fix merges, model 2010-04-02 03:16:59 +04:00			`occupation = models.CharField(max_length=255, default='', blank=True)`
Adding a script to fix up picture types in the database; bug 568892 2010-06-10 06:23:22 +04:00			`# This is essentially a "has_picture" flag right now`
adding a GroupUser inline, marking optional fields 2010-02-09 04:02:15 +03:00			`picture_type = models.CharField(max_length=75, default='', blank=True)`
			`resetcode = models.CharField(max_length=255, default='', blank=True)`
			`resetcode_expires = models.DateTimeField(default=datetime.now,`
			`blank=True)`
Cake-cookie based authentication * Wrote a test to see if we can log in using a cake session. * Middleware can read cookie * Wrote an authenticator backend that reads the session data from the db * Rewrote users.User as users.UserProfile and linked it to d.c.a.User and included migrations * Got templates to work, and wrote a test to validate things * logout * Signals! We can now log a user out using the logout view, send a signal, and have it intercepted by the Cake app which will destroy its session and attempt to destroy the relevent cookies. * Updated models to use UserProfile * added media/js as a submodule * Prettied up the html so the remora JS works 2009-12-14 23:34:11 +03:00			`sandboxshown = models.BooleanField(default=False)`
filling out user model and admin 2010-01-05 00:41:32 +03:00
adding a GroupUser inline, marking optional fields 2010-02-09 04:02:15 +03:00			`user = models.ForeignKey(DjangoUser, null=True, editable=False, blank=True)`
users app 2009-10-23 02:37:15 +04:00
			`class Meta:`
			`db_table = 'users'`

filling out user model and admin 2010-01-05 00:41:32 +03:00			`def __unicode__(self):`
			`return '%s: %s' % (self.id, self.display_name)`

Renamed get_absolute_url to get_url_path, but also assigned it in order to maintain compatibility with django.contrib apps. 2010-02-26 21:41:49 +03:00			`def get_url_path(self):`
made /user/123 the path for user profiles. adjusted redirects and tests. 2010-02-02 20:03:47 +03:00			`return reverse('users.profile', args=[self.id])`
users app 2009-10-23 02:37:15 +04:00
user profile (bug 543597) 2010-02-12 21:46:44 +03:00			`@amo.cached_property`
			`def addons_listed(self):`
make sure we're returning distinct user add-ons (bug 573774) 2010-06-22 21:51:29 +04:00			`"""Public add-ons this user is listed as author of."""`
			`return self.addons.valid().filter(addonuser__listed=True).distinct()`
user profile (bug 543597) 2010-02-12 21:46:44 +03:00
Add delete (anonymize) user functionality and a couple other tweaks 2010-03-26 03:41:29 +03:00			`@property`
			`def name(self):`
			`"""Can be used while we're transitioning from separate first/last names`
			`to a single field. Bug 546818#6"""`
Updates from jbalogh's review 2010-04-06 08:17:31 +04:00			`return (u'%s %s' % (self.firstname, self.lastname)).strip()`
Add delete (anonymize) user functionality and a couple other tweaks 2010-03-26 03:41:29 +03:00
user profile (bug 543597) 2010-02-12 21:46:44 +03:00			`@property`
			`def picture_url(self):`
			`split_id = re.match(r'((\d*?)(\d{0,3}?))\d{1,3}$', str(self.id))`
Making user pic configurable (bug 549483) 2010-03-15 21:48:35 +03:00			`if not self.picture_type:`
			`return settings.MEDIA_URL + '/img/zamboni/anon_user.png'`
			`else:`
			`return settings.USER_PIC_URL % (`
			`split_id.group(2) or 0, split_id.group(1) or 0, self.id,`
			`int(time.mktime(self.modified.timetuple())))`
user profile (bug 543597) 2010-02-12 21:46:44 +03:00
			`@amo.cached_property`
			`def is_developer(self):`
replacing translated fields with purified/linkified fields 2010-02-23 22:47:16 +03:00			`return bool(self.addons.filter(authors=self,`
			`addonuser__listed=True)[:1])`
user profile (bug 543597) 2010-02-12 21:46:44 +03:00
users app 2009-10-23 02:37:15 +04:00			`@property`
			`def display_name(self):`
			`if not self.nickname:`
			`return '%s %s' % (self.firstname, self.lastname)`
			`else:`
			`return self.nickname`
Cake-cookie based authentication * Wrote a test to see if we can log in using a cake session. * Middleware can read cookie * Wrote an authenticator backend that reads the session data from the db * Rewrote users.User as users.UserProfile and linked it to d.c.a.User and included migrations * Got templates to work, and wrote a test to validate things * logout * Signals! We can now log a user out using the logout view, send a signal, and have it intercepted by the Cake app which will destroy its session and attempt to destroy the relevent cookies. * Updated models to use UserProfile * added media/js as a submodule * Prettied up the html so the remora JS works 2009-12-14 23:34:11 +03:00
			`@property`
			`def welcome_name(self):`
			`if self.firstname:`
			`return self.firstname`
			`elif self.nickname:`
			`return self.nickname`
			`elif self.lastname:`
			`return self.lastname`

			`return ''`

Do not include developer replies in user review lists (bug 555859) 2010-03-31 11:59:08 +04:00			`@amo.cached_property`
			`def reviews(self):`
			`"""All reviews that are not dev replies."""`
			`return self._reviews_all.filter(reply_to=None)`

Add delete (anonymize) user functionality and a couple other tweaks 2010-03-26 03:41:29 +03:00			`def anonymize(self):`
			`log.info("User (%s: <%s>) is being anonymized." % (self, self.email))`
			`self.email = ""`
			`self.password = "sha512$Anonymous$Password"`
			`self.firstname = ""`
			`self.lastname = ""`
minor adjustments, fix merges, model 2010-04-02 03:16:59 +04:00			`self.nickname = None`
Add delete (anonymize) user functionality and a couple other tweaks 2010-03-26 03:41:29 +03:00			`self.homepage = ""`
			`self.deleted = True`
			`self.picture_type = ""`
			`self.save()`

these tests should run in db create/destroy loop 2010-01-15 04:04:08 +03:00			`def save(self, force_insert=False, force_update=False, using=None):`
Cake-cookie based authentication * Wrote a test to see if we can log in using a cake session. * Middleware can read cookie * Wrote an authenticator backend that reads the session data from the db * Rewrote users.User as users.UserProfile and linked it to d.c.a.User and included migrations * Got templates to work, and wrote a test to validate things * logout * Signals! We can now log a user out using the logout view, send a signal, and have it intercepted by the Cake app which will destroy its session and attempt to destroy the relevent cookies. * Updated models to use UserProfile * added media/js as a submodule * Prettied up the html so the remora JS works 2009-12-14 23:34:11 +03:00			`# we have to fix stupid things that we defined poorly in remora`
			`if self.resetcode_expires is None:`
			`self.resetcode_expires = datetime.now()`

these tests should run in db create/destroy loop 2010-01-15 04:04:08 +03:00			`super(UserProfile, self).save(force_insert, force_update, using)`
password management for amo Users 2010-01-13 04:22:26 +03:00
			`def check_password(self, raw_password):`
			`if '$' not in self.password:`
			`valid = (get_hexdigest('md5', '', raw_password) == self.password)`
			`if valid:`
			`# Upgrade an old password.`
			`self.set_password(raw_password)`
			`self.save()`
			`return valid`

			`algo, salt, hsh = self.password.split('$')`
			`return hsh == get_hexdigest(algo, salt, raw_password)`

			`def set_password(self, raw_password, algorithm='sha512'):`
			`self.password = create_password(algorithm, raw_password)`
backend for authenticating amo users by email and password 2010-01-13 04:26:20 +03:00
Add Registration, Confirmation, and Confirmation resend 2010-03-29 19:09:52 +04:00			`def email_confirmation_code(self):`
			`log.debug("Sending account confirmation code for user (%s)", self)`

			`url = "%s%s" % (settings.SITE_URL,`
			`reverse('users.confirm',`
			`args=[self.id, self.confirmationcode]))`
			`domain = settings.DOMAIN`
Namespace all the templates 2010-04-01 07:49:13 +04:00			`t = loader.get_template('users/email/confirm.ltxt')`
Add Registration, Confirmation, and Confirmation resend 2010-03-29 19:09:52 +04:00			`c = {'domain': domain, 'url': url, }`
			`send_mail(_("Please confirm your email address"),`
			`t.render(Context(c)), None, [self.email])`

backend for authenticating amo users by email and password 2010-01-13 04:26:20 +03:00			`def create_django_user(self):`
			`"""Make a django.contrib.auth.User for this UserProfile."""`
			`# Reusing the id will make our life easier, because we can use the`
			`# OneToOneField as pk for Profile linked back to the auth.user`
			`# in the future.`
Forgot an instance of User/DjangoUser, which Hudson, like a good butler, promptly reminded me. bug 539861. 2010-01-18 22:45:23 +03:00			`self.user = DjangoUser(id=self.pk)`
backend for authenticating amo users by email and password 2010-01-13 04:26:20 +03:00			`self.user.first_name = self.firstname`
			`self.user.last_name = self.lastname`
put amo.email into django.user.username 2010-01-15 02:26:46 +03:00			`self.user.username = self.email`
backend for authenticating amo users by email and password 2010-01-13 04:26:20 +03:00			`self.user.email = self.email`
			`self.user.password = self.password`
			`self.user.date_joined = self.created`

Separate edit user links for admin/user (bug 564561) 2010-05-18 15:29:16 +04:00			`if self.groups.filter(rules=':').count():`
backend for authenticating amo users by email and password 2010-01-13 04:26:20 +03:00			`self.user.is_superuser = self.user.is_staff = True`

			`self.user.save()`
			`self.save()`
			`return self.user`