Siobhan Tully | 5343728 | 2013-04-26 19:30:27 -0400 | [diff] [blame] | 1 | import os |
| 2 | import datetime |
Tony Mack | c14de8f | 2013-05-09 21:44:17 -0400 | [diff] [blame] | 3 | from collections import defaultdict |
Siobhan Tully | 5343728 | 2013-04-26 19:30:27 -0400 | [diff] [blame] | 4 | from django.db import models |
Tony Mack | 5b06147 | 2014-02-04 07:57:10 -0500 | [diff] [blame] | 5 | from django.db.models import F, Q |
Siobhan Tully | bfd11dc | 2013-09-03 12:59:24 -0400 | [diff] [blame] | 6 | from core.models import PlCoreBase,Site |
Tony Mack | e4be32f | 2014-03-11 20:45:25 -0400 | [diff] [blame] | 7 | from core.models.deployment import Deployment |
Siobhan Tully | 30fd429 | 2013-05-10 08:59:56 -0400 | [diff] [blame] | 8 | from django.contrib.auth.models import AbstractBaseUser, BaseUserManager |
Scott Baker | 9266e6b | 2013-05-19 15:54:48 -0700 | [diff] [blame] | 9 | from timezones.fields import TimeZoneField |
Siobhan Tully | 5343728 | 2013-04-26 19:30:27 -0400 | [diff] [blame] | 10 | |
| 11 | # Create your models here. |
Siobhan Tully | 30fd429 | 2013-05-10 08:59:56 -0400 | [diff] [blame] | 12 | class UserManager(BaseUserManager): |
Siobhan Tully | 5343728 | 2013-04-26 19:30:27 -0400 | [diff] [blame] | 13 | def create_user(self, email, firstname, lastname, password=None): |
| 14 | """ |
| 15 | Creates and saves a User with the given email, date of |
| 16 | birth and password. |
| 17 | """ |
| 18 | if not email: |
| 19 | raise ValueError('Users must have an email address') |
| 20 | |
| 21 | user = self.model( |
Siobhan Tully | 30fd429 | 2013-05-10 08:59:56 -0400 | [diff] [blame] | 22 | email=UserManager.normalize_email(email), |
Siobhan Tully | 5343728 | 2013-04-26 19:30:27 -0400 | [diff] [blame] | 23 | firstname=firstname, |
Siobhan Tully | 30fd429 | 2013-05-10 08:59:56 -0400 | [diff] [blame] | 24 | lastname=lastname, |
| 25 | password=password |
Siobhan Tully | 5343728 | 2013-04-26 19:30:27 -0400 | [diff] [blame] | 26 | ) |
Siobhan Tully | 30fd429 | 2013-05-10 08:59:56 -0400 | [diff] [blame] | 27 | #user.set_password(password) |
Siobhan Tully | 5343728 | 2013-04-26 19:30:27 -0400 | [diff] [blame] | 28 | user.is_admin = True |
| 29 | user.save(using=self._db) |
| 30 | return user |
| 31 | |
| 32 | def create_superuser(self, email, firstname, lastname, password): |
| 33 | """ |
| 34 | Creates and saves a superuser with the given email, date of |
| 35 | birth and password. |
| 36 | """ |
| 37 | user = self.create_user(email, |
| 38 | password=password, |
| 39 | firstname=firstname, |
| 40 | lastname=lastname |
| 41 | ) |
| 42 | user.is_admin = True |
| 43 | user.save(using=self._db) |
| 44 | return user |
| 45 | |
| 46 | |
Siobhan Tully | 30fd429 | 2013-05-10 08:59:56 -0400 | [diff] [blame] | 47 | class User(AbstractBaseUser): |
Siobhan Tully | 5343728 | 2013-04-26 19:30:27 -0400 | [diff] [blame] | 48 | |
| 49 | class Meta: |
| 50 | app_label = "core" |
| 51 | |
| 52 | email = models.EmailField( |
| 53 | verbose_name='email address', |
| 54 | max_length=255, |
| 55 | unique=True, |
| 56 | db_index=True, |
| 57 | ) |
Siobhan Tully | fece0d5 | 2013-09-06 12:57:05 -0400 | [diff] [blame] | 58 | |
| 59 | username = models.CharField(max_length=255, default="Something" ) |
| 60 | |
Siobhan Tully | 5343728 | 2013-04-26 19:30:27 -0400 | [diff] [blame] | 61 | firstname = models.CharField(help_text="person's given name", max_length=200) |
| 62 | lastname = models.CharField(help_text="person's surname", max_length=200) |
| 63 | |
| 64 | phone = models.CharField(null=True, blank=True, help_text="phone number contact", max_length=100) |
| 65 | user_url = models.URLField(null=True, blank=True) |
Siobhan Tully | bfd11dc | 2013-09-03 12:59:24 -0400 | [diff] [blame] | 66 | site = models.ForeignKey(Site, related_name='users', help_text="Site this user will be homed too", null=True) |
Tony Mack | 5cbadf8 | 2013-06-10 13:56:07 -0400 | [diff] [blame] | 67 | public_key = models.TextField(null=True, blank=True, max_length=1024, help_text="Public key string") |
Siobhan Tully | 5343728 | 2013-04-26 19:30:27 -0400 | [diff] [blame] | 68 | |
| 69 | is_active = models.BooleanField(default=True) |
| 70 | is_admin = models.BooleanField(default=True) |
| 71 | is_staff = models.BooleanField(default=True) |
Siobhan Tully | cf04fb6 | 2014-01-11 11:25:57 -0500 | [diff] [blame] | 72 | is_readonly = models.BooleanField(default=False) |
Siobhan Tully | 5343728 | 2013-04-26 19:30:27 -0400 | [diff] [blame] | 73 | |
Tony Mack | 0553f28 | 2013-06-10 22:54:50 -0400 | [diff] [blame] | 74 | created = models.DateTimeField(auto_now_add=True) |
| 75 | updated = models.DateTimeField(auto_now=True) |
| 76 | enacted = models.DateTimeField(null=True, default=None) |
| 77 | |
Scott Baker | 9266e6b | 2013-05-19 15:54:48 -0700 | [diff] [blame] | 78 | timezone = TimeZoneField() |
| 79 | |
Siobhan Tully | 30fd429 | 2013-05-10 08:59:56 -0400 | [diff] [blame] | 80 | objects = UserManager() |
Siobhan Tully | 5343728 | 2013-04-26 19:30:27 -0400 | [diff] [blame] | 81 | |
| 82 | USERNAME_FIELD = 'email' |
| 83 | REQUIRED_FIELDS = ['firstname', 'lastname'] |
| 84 | |
Siobhan Tully | cf04fb6 | 2014-01-11 11:25:57 -0500 | [diff] [blame] | 85 | def isReadOnlyUser(self): |
| 86 | return self.is_readonly |
| 87 | |
Siobhan Tully | 5343728 | 2013-04-26 19:30:27 -0400 | [diff] [blame] | 88 | def get_full_name(self): |
| 89 | # The user is identified by their email address |
| 90 | return self.email |
| 91 | |
| 92 | def get_short_name(self): |
| 93 | # The user is identified by their email address |
| 94 | return self.email |
| 95 | |
Tony Mack | b0d9742 | 2013-06-10 09:57:45 -0400 | [diff] [blame] | 96 | @property |
| 97 | def keyname(self): |
| 98 | return self.email[:self.email.find('@')] |
| 99 | |
Siobhan Tully | 5343728 | 2013-04-26 19:30:27 -0400 | [diff] [blame] | 100 | def __unicode__(self): |
| 101 | return self.email |
| 102 | |
| 103 | def has_perm(self, perm, obj=None): |
| 104 | "Does the user have a specific permission?" |
| 105 | # Simplest possible answer: Yes, always |
| 106 | return True |
| 107 | |
| 108 | def has_module_perms(self, app_label): |
| 109 | "Does the user have permissions to view the app `app_label`?" |
| 110 | # Simplest possible answer: Yes, always |
| 111 | return True |
| 112 | |
Siobhan Tully | bfd11dc | 2013-09-03 12:59:24 -0400 | [diff] [blame] | 113 | def is_superuser(self): |
| 114 | return False |
Siobhan Tully | 5343728 | 2013-04-26 19:30:27 -0400 | [diff] [blame] | 115 | |
Siobhan Tully | bfd11dc | 2013-09-03 12:59:24 -0400 | [diff] [blame] | 116 | # def get_roles(self): |
| 117 | # from core.models.site import SitePrivilege |
| 118 | # from core.models.slice import SliceMembership |
| 119 | # |
| 120 | # site_privileges = SitePrivilege.objects.filter(user=self) |
| 121 | # slice_memberships = SliceMembership.objects.filter(user=self) |
| 122 | # roles = defaultdict(list) |
| 123 | # for site_privilege in site_privileges: |
| 124 | # roles[site_privilege.role.role_type].append(site_privilege.site.login_base) |
| 125 | # for slice_membership in slice_memberships: |
| 126 | # roles[slice_membership.role.role_type].append(slice_membership.slice.name) |
| 127 | # return roles |
Siobhan Tully | 5343728 | 2013-04-26 19:30:27 -0400 | [diff] [blame] | 128 | |
Tony Mack | 53106f3 | 2013-04-27 16:43:01 -0400 | [diff] [blame] | 129 | def save(self, *args, **kwds): |
Siobhan Tully | 30fd429 | 2013-05-10 08:59:56 -0400 | [diff] [blame] | 130 | if not self.id: |
| 131 | self.set_password(self.password) |
Siobhan Tully | fece0d5 | 2013-09-06 12:57:05 -0400 | [diff] [blame] | 132 | self.username = self.email |
Tony Mack | 5b06147 | 2014-02-04 07:57:10 -0500 | [diff] [blame] | 133 | super(User, self).save(*args, **kwds) |
| 134 | |
| 135 | @staticmethod |
| 136 | def select_by_user(user): |
| 137 | if user.is_admin: |
| 138 | qs = User.objects.all() |
| 139 | else: |
| 140 | # can see all users at any site where this user has pi role |
| 141 | from core.models.site import SitePrivilege |
| 142 | site_privs = SitePrivilege.objects.filter(user=user) |
| 143 | sites = [sp.site for sp in site_privs if sp.role.role == 'pi'] |
| 144 | # get site privs of users at these sites |
| 145 | site_privs = SitePrivilege.objects.filter(site__in=sites) |
| 146 | user_ids = [sp.user.id for sp in site_privs] + [user.id] |
| 147 | qs = User.objects.filter(Q(site__in=sites) | Q(id__in=user_ids)) |
| 148 | return qs |
| 149 | |
| 150 | |
Tony Mack | e4be32f | 2014-03-11 20:45:25 -0400 | [diff] [blame] | 151 | |
| 152 | class UserDeployments(PlCoreBase): |
| 153 | user = models.ForeignKey(User) |
| 154 | deployment = models.ForeignKey(Deployment) |
| 155 | kuser_id = models.CharField(null=True, blank=True, max_length=200, help_text="Keystone user id") |
| 156 | |
Tony Mack | 69f1bc3 | 2014-03-12 13:20:34 -0400 | [diff] [blame] | 157 | def __unicode__(self): return u'%s %s' % (self.user, self.deployment.name) |
Tony Mack | e4be32f | 2014-03-11 20:45:25 -0400 | [diff] [blame] | 158 | |
| 159 | @staticmethod |
| 160 | def select_by_user(user): |
| 161 | if user.is_admin: |
| 162 | qs = UserDeployments.objects.all() |
| 163 | else: |
| 164 | users = Users.select_by_user(user) |
| 165 | qs = Usereployments.objects.filter(user__in=slices) |
| 166 | return qs |