2009-01-08 16:33:27 +01:00
|
|
|
# == Schema Information
|
|
|
|
# Schema version: 20090102171850
|
|
|
|
#
|
|
|
|
# Table name: users
|
|
|
|
#
|
|
|
|
# id :integer(4) not null, primary key
|
|
|
|
# nick :string(255) default(""), not null
|
|
|
|
# password_hash :string(255) default(""), not null
|
|
|
|
# password_salt :string(255) default(""), not null
|
|
|
|
# first_name :string(255) default(""), not null
|
|
|
|
# last_name :string(255) default(""), not null
|
|
|
|
# email :string(255) default(""), not null
|
|
|
|
# phone :string(255)
|
|
|
|
# address :string(255)
|
|
|
|
# created_on :datetime not null
|
|
|
|
# reset_password_token :string(255)
|
|
|
|
# reset_password_expires :datetime
|
|
|
|
# last_login :datetime
|
|
|
|
#
|
2009-01-06 11:49:19 +01:00
|
|
|
|
2009-01-08 16:33:27 +01:00
|
|
|
require 'digest/sha1'
|
2009-01-06 11:49:19 +01:00
|
|
|
# specific user rights through memberships (see Group)
|
|
|
|
class User < ActiveRecord::Base
|
|
|
|
has_many :memberships, :dependent => :destroy
|
|
|
|
has_many :groups, :through => :memberships
|
2009-01-14 12:46:01 +01:00
|
|
|
has_many :ordergroups, :through => :memberships, :source => :group
|
2009-01-06 11:49:19 +01:00
|
|
|
has_many :assignments, :dependent => :destroy
|
|
|
|
has_many :tasks, :through => :assignments
|
2009-01-15 18:26:37 +01:00
|
|
|
has_many :send_messages, :class_name => "Message", :foreign_key => "sender_id"
|
2009-01-06 11:49:19 +01:00
|
|
|
|
2009-01-12 18:26:09 +01:00
|
|
|
attr_accessor :password, :setting_attributes
|
|
|
|
|
|
|
|
validates_presence_of :nick, :email
|
|
|
|
validates_presence_of :password_hash, :message => "Password is required."
|
2009-01-06 11:49:19 +01:00
|
|
|
validates_length_of :nick, :in => 2..25
|
|
|
|
validates_uniqueness_of :nick
|
|
|
|
validates_format_of :email, :with => /^([^@\s]+)@((?:[-a-z0-9]+\.)+[a-z]{2,})$/i
|
|
|
|
validates_uniqueness_of :email
|
|
|
|
validates_length_of :first_name, :in => 2..50
|
2009-01-12 18:26:09 +01:00
|
|
|
validates_confirmation_of :password
|
|
|
|
validates_length_of :password, :in => 5..25, :allow_blank => true
|
|
|
|
|
|
|
|
before_validation :set_password
|
|
|
|
after_save :update_settings
|
2009-01-06 11:49:19 +01:00
|
|
|
|
|
|
|
# Adds support for configuration settings (through "settings" attribute).
|
|
|
|
acts_as_configurable
|
|
|
|
|
|
|
|
# makes the current_user (logged-in-user) available in models
|
|
|
|
cattr_accessor :current_user
|
|
|
|
|
|
|
|
# User settings keys
|
|
|
|
# returns the User-settings and the translated description
|
|
|
|
def self.setting_keys
|
2009-01-12 18:26:09 +01:00
|
|
|
{
|
|
|
|
"notify.orderFinished" => 'Get message with order result',
|
|
|
|
"notify.negativeBalance" => 'Get message if negative account balance',
|
|
|
|
"messages.sendAsEmail" => 'Get messages as emails',
|
|
|
|
"profile.phoneIsPublic" => 'Phone is visible for foodcoop members',
|
|
|
|
"profile.emailIsPublic" => 'Email is visible for foodcoop members',
|
|
|
|
"profile.nameIsPublic" => 'Name is visible for foodcoop members'
|
2009-01-06 11:49:19 +01:00
|
|
|
}
|
|
|
|
end
|
|
|
|
# retuns the default setting for a NEW user
|
|
|
|
# for old records nil will returned
|
|
|
|
# TODO: integrate default behaviour in acts_as_configurable plugin
|
|
|
|
def settings_default(setting)
|
|
|
|
# define a default for the settings
|
|
|
|
defaults = {
|
|
|
|
"messages.sendAsEmail" => true
|
|
|
|
}
|
|
|
|
return true if self.new_record? && defaults[setting]
|
|
|
|
end
|
2009-01-12 18:26:09 +01:00
|
|
|
|
|
|
|
def update_settings
|
2009-01-13 19:01:56 +01:00
|
|
|
unless setting_attributes.nil?
|
|
|
|
for setting in User::setting_keys.keys
|
|
|
|
self.settings[setting] = setting_attributes[setting] && setting_attributes[setting] == '1' ? '1' : nil
|
|
|
|
end
|
2009-01-12 18:26:09 +01:00
|
|
|
end
|
|
|
|
end
|
2009-01-06 11:49:19 +01:00
|
|
|
|
|
|
|
|
|
|
|
# Sets the user's password. It will be stored encrypted along with a random salt.
|
2009-01-12 18:26:09 +01:00
|
|
|
def set_password
|
|
|
|
unless password.blank?
|
|
|
|
salt = [Array.new(6){rand(256).chr}.join].pack("m").chomp
|
|
|
|
self.password_hash, self.password_salt = Digest::SHA1.hexdigest(password + salt), salt
|
|
|
|
end
|
2009-01-06 11:49:19 +01:00
|
|
|
end
|
|
|
|
|
|
|
|
# Returns true if the password argument matches the user's password.
|
|
|
|
def has_password(password)
|
|
|
|
Digest::SHA1.hexdigest(password + self.password_salt) == self.password_hash
|
|
|
|
end
|
|
|
|
|
2009-01-12 18:26:09 +01:00
|
|
|
# # Sets the passwort, and if fails it returns error-messages (see above)
|
|
|
|
# def set_password(options = {:required => false}, password = nil, confirmation = nil)
|
|
|
|
# required = options[:required]
|
|
|
|
# if required && (password.nil? || password.empty?)
|
|
|
|
# self.errors.add_to_base 'Password is required'
|
|
|
|
# elsif !password.nil? && !password.empty?
|
|
|
|
# if password != confirmation
|
|
|
|
# self.errors.add_to_base "Passwords doesn't match"
|
|
|
|
# elsif password.length < 5 || password.length > 25
|
|
|
|
# self.errors.add_to_base 'Password-length has to be between 5 and 25 characters'
|
|
|
|
# else
|
|
|
|
# self.password = password
|
|
|
|
# end
|
|
|
|
# end
|
|
|
|
# end
|
2009-01-06 11:49:19 +01:00
|
|
|
|
|
|
|
# Returns a random password.
|
|
|
|
def new_random_password(size = 3)
|
|
|
|
c = %w(b c d f g h j k l m n p qu r s t v w x z ch cr fr nd ng nk nt ph pr rd sh sl sp st th tr)
|
|
|
|
v = %w(a e i o u y)
|
|
|
|
f, r = true, ''
|
|
|
|
(size * 2).times do
|
|
|
|
r << (f ? c[rand * c.size] : v[rand * v.size])
|
|
|
|
f = !f
|
|
|
|
end
|
|
|
|
r
|
|
|
|
end
|
|
|
|
|
|
|
|
# Checks the admin role
|
|
|
|
def role_admin?
|
|
|
|
groups.detect {|group| group.role_admin?}
|
|
|
|
end
|
|
|
|
|
|
|
|
# Checks the finance role
|
|
|
|
def role_finance?
|
|
|
|
groups.detect {|group| group.role_finance?}
|
|
|
|
end
|
|
|
|
|
|
|
|
# Checks the article_meta role
|
|
|
|
def role_article_meta?
|
|
|
|
groups.detect {|group| group.role_article_meta?}
|
|
|
|
end
|
|
|
|
|
|
|
|
# Checks the suppliers role
|
|
|
|
def role_suppliers?
|
|
|
|
groups.detect {|group| group.role_suppliers?}
|
|
|
|
end
|
|
|
|
|
|
|
|
# Checks the orders role
|
|
|
|
def role_orders?
|
|
|
|
groups.detect {|group| group.role_orders?}
|
|
|
|
end
|
|
|
|
|
2009-01-14 12:46:01 +01:00
|
|
|
# Returns the user's Ordergroup or nil if none found.
|
2009-01-06 15:45:19 +01:00
|
|
|
def find_ordergroup
|
2009-01-14 12:46:01 +01:00
|
|
|
ordergroups.first
|
|
|
|
#groups.find(:first, :conditions => "type = 'Ordergroup'")
|
2009-01-06 11:49:19 +01:00
|
|
|
end
|
|
|
|
|
|
|
|
# Find all tasks, for which the current user should be responsible
|
|
|
|
# but which aren't accepted yet
|
|
|
|
def unaccepted_tasks
|
|
|
|
# this doesn't work. Produces "undefined method", when later use task.users... Rails Bug?
|
|
|
|
# self.tasks.find :all, :conditions => ["accepted = ?", false], :order => "due_date DESC"
|
|
|
|
Task.find_by_sql ["SELECT t.* FROM tasks t, assignments a, users u
|
|
|
|
WHERE u.id = a.user_id
|
|
|
|
AND t.id = a.task_id
|
|
|
|
AND u.id = ?
|
|
|
|
AND a.accepted = ?
|
|
|
|
AND t.done = ?
|
|
|
|
ORDER BY t.due_date ASC", self.id, false, false]
|
|
|
|
end
|
|
|
|
|
|
|
|
# Find all accepted tasks, which aren't done
|
|
|
|
def accepted_tasks
|
|
|
|
Task.find_by_sql ["SELECT t.* FROM tasks t, assignments a, users u
|
|
|
|
WHERE u.id = a.user_id
|
|
|
|
AND t.id = a.task_id
|
|
|
|
AND u.id = ?
|
|
|
|
AND a.accepted = ?
|
|
|
|
AND t.done = ?
|
|
|
|
ORDER BY t.due_date ASC", self.id, true, false]
|
|
|
|
end
|
|
|
|
|
|
|
|
# find all tasks in the next week (or another number of days)
|
|
|
|
def next_tasks(number = 7)
|
|
|
|
Task.find_by_sql ["SELECT t.* FROM tasks t, assignments a, users u
|
|
|
|
WHERE u.id = a.user_id
|
|
|
|
AND t.id = a.task_id
|
|
|
|
AND u.id = ?
|
|
|
|
AND t.due_date >= ?
|
|
|
|
AND t.due_date <= ?
|
|
|
|
AND t.done = ?
|
|
|
|
AND a.accepted = ?
|
|
|
|
ORDER BY t.due_date ASC", self.id, Time.now, number.days.from_now, false, true]
|
|
|
|
end
|
|
|
|
|
|
|
|
# returns true if user is a member of a given group
|
|
|
|
def is_member_of(group)
|
|
|
|
return true if group.users.detect {|user| user == self}
|
|
|
|
end
|
|
|
|
|
2009-01-14 12:46:01 +01:00
|
|
|
#Returns an array with the users groups (but without the Ordergroups -> because tpye=>"")
|
2009-01-06 11:49:19 +01:00
|
|
|
def member_of_groups()
|
|
|
|
self.groups.find(:all, :conditions => {:type => ""})
|
|
|
|
end
|
|
|
|
|
2009-01-08 16:33:27 +01:00
|
|
|
end
|