-
Notifications
You must be signed in to change notification settings - Fork 89
Expand file tree
/
Copy pathuser.py
More file actions
288 lines (225 loc) · 9.38 KB
/
user.py
File metadata and controls
288 lines (225 loc) · 9.38 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
# -*- coding: utf-8 -*-
from __future__ import print_function
from __future__ import unicode_literals
from __future__ import division
import collections
from registration.models import RegistrationProfile
from django.conf import settings
from django.contrib.sites.requests import RequestSite
from django.core.exceptions import ValidationError
from django.core.urlresolvers import reverse
from django.db.models.expressions import RawSQL
from django.db.models.functions import Length
from django.http import HttpResponseRedirect
from django.http.request import QueryDict
from django.shortcuts import render, get_object_or_404
from django.template.loader import render_to_string
from django.utils.translation import ugettext as _
from opentreemap.util import json_from_request, dotted_split
from treemap.decorators import get_instance_or_404
from treemap.images import save_image_from_request
from treemap.util import package_field_errors
from treemap.models import User, Favorite, MapFeaturePhoto, InstanceUser
from treemap.lib.user import get_audits, get_user_instances, get_audits_params
USER_PROFILE_FIELDS = collections.OrderedDict([
('first_name',
{'label': _('First Name'),
'identifier': 'user.first_name',
'visibility': 'public'}),
('last_name',
{'label': _('Last Name'),
'identifier': 'user.last_name',
'visibility': 'public'}),
('organization',
{'label': _('Organization'),
'identifier': 'user.organization',
'visibility': 'public'}),
('make_info_public',
{'label': _('Make Info Visible'),
'identifier': 'user.make_info_public',
'visibility': 'private',
'template': "treemap/field/make_info_public_div.html"}),
('email',
{'label': _('Email'),
'identifier': 'user.email',
'visibility': 'private'}),
('allow_email_contact',
{'label': _('Email Updates'),
'identifier': 'user.allow_email_contact',
'visibility': 'private',
'template': "treemap/field/email_subscription_div.html"})
])
def user_audits(request, username):
user = get_object_or_404(User, username=username)
instance_id = request.GET.get('instance_id', None)
instance = (get_instance_or_404(pk=instance_id)
if instance_id else None)
params = get_audits_params(request)
return get_audits(request.user, instance, request.GET.copy(), user=user,
**params)
def instance_user_audits(request, instance_url_name, username):
instance = get_instance_or_404(url_name=instance_url_name)
return HttpResponseRedirect(
reverse('user_audits', kwargs={'username': username})
+ '?instance_id=%s' % instance.pk)
def update_user(request, user):
new_values = json_from_request(request) or {}
for key in new_values:
try:
model, field = dotted_split(key, 2, cls=ValueError)
if model != 'user':
raise ValidationError(
'All fields should be prefixed with "user."')
if field not in USER_PROFILE_FIELDS:
raise ValidationError(field + ' is not an updatable field')
except ValueError:
raise ValidationError('All fields should be prefixed with "user."')
setattr(user, field, new_values[key])
try:
user.save()
return {"ok": True}
except ValidationError as ve:
raise ValidationError(package_field_errors('user', ve))
def upload_user_photo(request, user):
"""
Saves a user profile photo whose data is in the request.
The callee or decorator is reponsible for ensuring request.user == user
"""
user.photo, user.thumbnail = save_image_from_request(
request, name_prefix="user-%s" % user.pk, thumb_size=(85, 85))
user.save_with_user(request.user)
return {'url': user.thumbnail.url}
def instance_user(request, instance_url_name, username):
instance = get_instance_or_404(url_name=instance_url_name)
url = reverse('user', kwargs={'username': username}) +\
'?instance_id=%s' % instance.pk
return HttpResponseRedirect(url)
def profile_to_user(request):
if request.user and request.user.username:
return HttpResponseRedirect('/users/%s/' % request.user.username)
else:
return HttpResponseRedirect(settings.LOGIN_URL)
def forgot_username(request):
user_email = request.POST['email']
if not user_email:
raise ValidationError({
'user.email': [_('Email field is required')]
})
users = User.objects.filter(email=user_email)
# Don't reveal if we don't have that email, to prevent email harvesting
if len(users) == 1:
user = users[0]
password_reset_url = request.build_absolute_uri(
reverse('auth_password_reset'))
subject = _('Account Recovery')
body = render_to_string('treemap/partials/forgot_username_email.txt',
{'user': user,
'password_url': password_reset_url})
user.email_user(subject, body, settings.DEFAULT_FROM_EMAIL)
return {'email': user_email}
def resend_activation_email_page(request):
return {'username': request.GET.get('username')}
def resend_activation_email(request):
username = request.POST['username']
def error(error):
return render(request, 'treemap/resend_activation_email.html',
{'username': username, 'error': error})
if not username:
return error(_('Username field is required'))
users = User.objects \
.filter(username=username)
if len(users) != 1:
return error(_('There is no user with that username'))
user = users[0]
if user.is_active:
return error(_('This user has already been verified'))
success = RegistrationProfile.objects.resend_activation_mail(
users[0].email, RequestSite(request), request)
if not success:
return error(_('Unable to resend activation email'))
return {'user': user}
def _small_feature_photo_url(feature):
feature = feature.cast_to_subtype()
if feature.is_plot:
tree = feature.current_tree()
if tree:
photos = tree.photos()
else:
photos = MapFeaturePhoto.objects.none()
else:
photos = feature.photos()
if len(photos) > 0:
return photos[0].thumbnail.url
else:
return None
def user(request, username):
user = get_object_or_404(User, username__iexact=username)
instance_id = request.GET.get('instance_id', None)
instance = (get_instance_or_404(pk=instance_id)
if instance_id else None)
query_vars = QueryDict(mutable=True)
if instance_id:
query_vars['instance_id'] = instance_id
audit_dict = get_audits(request.user, instance, query_vars,
user=user, should_count=True)
reputation = user.get_reputation(instance) if instance else None
favorites_qs = Favorite.objects.filter(user=user).order_by('-created')
favorites = [{
'map_feature': f.map_feature,
'title': f.map_feature.title(),
'instance': f.map_feature.instance,
'address': f.map_feature.address_full,
'photo': _small_feature_photo_url(f.map_feature)
} for f in favorites_qs]
public_fields = []
private_fields = []
for field in USER_PROFILE_FIELDS.values():
field_tuple = (field['label'], field['identifier'],
field.get('template', "treemap/field/div.html"))
if field['visibility'] == 'public' and user.make_info_public is True:
public_fields.append(field_tuple)
else:
private_fields.append(field_tuple)
return {'user': user,
'its_me': user.id == request.user.id,
'reputation': reputation,
'instance_id': instance_id,
'instances': get_user_instances(request.user, user, instance),
'total_edits': audit_dict['total_count'],
'audits': audit_dict['audits'],
'next_page': audit_dict['next_page'],
'public_fields': public_fields,
'private_fields': private_fields,
'favorites': favorites}
def users(request, instance):
max_items = request.GET.get('max_items', None)
query = request.GET.get('q', None)
users_qs = InstanceUser.objects \
.filter(instance=instance)\
.order_by('user__username')\
.values('user_id', 'user__username',
'user__first_name', 'user__last_name',
'user__make_info_public')
if query:
users_qs = users_qs.filter(user__username__icontains=query)\
.order_by(
RawSQL('treemap_user.username ILIKE %s OR NULL', (query,)),
RawSQL('treemap_user.username ILIKE %s OR NULL',
(query + '%',)),
Length('user__username'),
'user__username'
)
if max_items:
users_qs = users_qs[:int(max_items)]
def annotate_user_dict(udict):
user = {
'id': udict['user_id'],
'username': udict['user__username'],
'first_name': '',
'last_name': ''
}
if udict['user__make_info_public']:
user['first_name'] = udict['user__first_name']
user['last_name'] = udict['user__last_name']
return user
return [annotate_user_dict(user) for user in users_qs]