webaccount.py
No OneTemporary
Actions

Subscribers

None

File Metadata

Created: Sat, Nov 2, 09:56

webaccount.py
View Options

	## $Id$

	## This file is part of CDS Invenio.
	## Copyright (C) 2002, 2003, 2004, 2005, 2006, 2007, 2008 CERN.
	##
	## CDS Invenio is free software; you can redistribute it and/or
	## modify it under the terms of the GNU General Public License as
	## published by the Free Software Foundation; either version 2 of the
	## License, or (at your option) any later version.
	##
	## CDS Invenio is distributed in the hope that it will be useful, but
	## WITHOUT ANY WARRANTY; without even the implied warranty of
	## MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
	## General Public License for more details.
	##
	## You should have received a copy of the GNU General Public License
	## along with CDS Invenio; if not, write to the Free Software Foundation, Inc.,
	## 59 Temple Place, Suite 330, Boston, MA 02111-1307, USA.

	__revision__ = "$Id$"

	import sys
	import string
	import cgi
	import re

	from invenio.config import \
	CFG_ACCESS_CONTROL_LEVEL_ACCOUNTS, \
	CFG_CERN_SITE, \
	CFG_SITE_LANG, \
	CFG_SITE_NAME, \
	CFG_SITE_SUPPORT_EMAIL, \
	CFG_SITE_SECURE_URL, \
	CFG_VERSION, \
	CFG_SITE_URL
	from invenio.access_control_config import CFG_EXTERNAL_AUTHENTICATION, SUPERADMINROLE
	from invenio.webpage import page
	from invenio.dbquery import run_sql
	from invenio.webuser import getUid,isGuestUser, get_user_preferences, \
	set_user_preferences, collect_user_info
	from invenio.access_control_admin import acc_find_user_role_actions
	from invenio.messages import gettext_set_language
	from invenio.external_authentication import InvenioWebAccessExternalAuthError

	import invenio.template
	websession_templates = invenio.template.load('websession')

	def perform_info(req, ln):
	"""Display the main features of CDS personalize"""
	out = ""
	uid = getUid(req)

	return websession_templates.tmpl_account_info(
	ln = ln,
	uid = uid,
	guest = isGuestUser(uid),
	CFG_CERN_SITE = CFG_CERN_SITE,
	);

	def perform_display_external_user_settings(settings, ln):
	"""show external user settings which is a dictionary."""
	_ = gettext_set_language(ln)
	html_settings = ""
	print_settings = False
	settings_keys = settings.keys()
	settings_keys.sort()
	for key in settings_keys:
	value = settings[key]
	if key.startswith("EXTERNAL_") and not "HIDDEN_" in key:
	print_settings = True
	key = key[9:].capitalize()
	html_settings += websession_templates.tmpl_external_setting(ln, key, value)
	return print_settings and websession_templates.tmpl_external_user_settings(ln, html_settings) or ""

	def perform_youradminactivities(user_info, ln):
	"""Return text for the `Your Admin Activities' box. Analyze
	whether user UID has some admin roles, and if yes, then print
	suitable links for the actions he can do. If he's not admin,
	print a simple non-authorized message."""
	your_role_actions = acc_find_user_role_actions(user_info)
	your_roles = []
	your_admin_activities = []
	guest = isGuestUser(user_info['uid'])
	for (role, action) in your_role_actions:
	if role not in your_roles:
	your_roles.append(role)
	if action not in your_admin_activities:
	your_admin_activities.append(action)

	if SUPERADMINROLE in your_roles:
	for action in ["runbibedit", "cfgbibformat", "cfgbibharvest", "cfgoairepository", "cfgbibrank", "cfgbibindex", "cfgwebaccess", "cfgwebcomment", "cfgwebsearch", "cfgwebsubmit"]:
	if action not in your_admin_activities:
	your_admin_activities.append(action)

	return websession_templates.tmpl_account_adminactivities(
	ln = ln,
	uid = user_info['uid'],
	guest = guest,
	roles = your_roles,
	activities = your_admin_activities,
	)

	def perform_display_account(req,username,bask,aler,sear,msgs,grps,ln):
	"""Display a dynamic page that shows the user's account."""

	# load the right message language
	_ = gettext_set_language(ln)

	uid = getUid(req)
	user_info = collect_user_info(req)
	#your account
	if isGuestUser(uid):
	user = "guest"
	login = "%s/youraccount/login?ln=%s" % (CFG_SITE_SECURE_URL, ln)
	accBody = _("You are logged in as guest. You may want to %(x_url_open)slogin%(x_url_close)s as a regular user.") %\
	{'x_url_open': '<a href="' + login + '">',
	'x_url_close': '</a>'}
	accBody += "<br /><br />"
	bask=aler=msgs= _("The %(x_fmt_open)sguest%(x_fmt_close)s users need to %(x_url_open)sregister%(x_url_close)s first") %\
	{'x_fmt_open': '<strong class="headline">',
	'x_fmt_close': '</strong>',
	'x_url_open': '<a href="' + login + '">',
	'x_url_close': '</a>'}
	sear= _("No queries found")
	else:
	user = username
	accBody = websession_templates.tmpl_account_body(
	ln = ln,
	user = user,
	)

	return websession_templates.tmpl_account_page(
	ln = ln,
	accBody = accBody,
	baskets = bask,
	alerts = aler,
	searches = sear,
	messages = msgs,
	groups = grps,
	administrative = perform_youradminactivities(user_info, ln)
	)

	def template_account(title, body, ln):
	"""It is a template for print each of the options from the user's account."""
	return websession_templates.tmpl_account_template(
	ln = ln,
	title = title,
	body = body
	)

	def warning_guest_user(type, ln=CFG_SITE_LANG):
	"""It returns an alert message,showing that the user is a guest user and should log into the system."""

	# load the right message language
	_ = gettext_set_language(ln)

	return websession_templates.tmpl_warning_guest_user(
	ln = ln,
	type = type,
	)


	def perform_delete(ln):
	"""Delete the account of the user, not implement yet."""
	# TODO
	return websession_templates.tmpl_account_delete(ln = ln)

	def perform_set(email, ln, verbose=0):
	"""Perform_set(email,password): edit your account parameters, email and
	password.
	"""

	try:
	res = run_sql("SELECT id, nickname FROM user WHERE email=%s", (email,))
	uid = res[0][0]
	nickname = res[0][1]
	except:
	uid = 0
	nickname = ""

	CFG_ACCESS_CONTROL_LEVEL_ACCOUNTS_LOCAL = CFG_ACCESS_CONTROL_LEVEL_ACCOUNTS
	prefs = get_user_preferences(uid)
	if CFG_EXTERNAL_AUTHENTICATION.has_key(prefs['login_method']) and CFG_EXTERNAL_AUTHENTICATION[prefs['login_method']][0]:
	CFG_ACCESS_CONTROL_LEVEL_ACCOUNTS_LOCAL = 3

	out = websession_templates.tmpl_user_preferences(
	ln = ln,
	email = email,
	email_disabled = (CFG_ACCESS_CONTROL_LEVEL_ACCOUNTS_LOCAL >= 2),
	password_disabled = (CFG_ACCESS_CONTROL_LEVEL_ACCOUNTS_LOCAL >= 3),
	nickname = nickname,
	)
	if len(CFG_EXTERNAL_AUTHENTICATION) > 1:
	try:
	uid = run_sql("SELECT id FROM user where email=%s", (email,))
	uid = uid[0][0]
	except:
	uid = 0
	current_login_method = prefs['login_method']
	methods = CFG_EXTERNAL_AUTHENTICATION.keys()

	# Filtering out methods that don't provide user_exists to check if
	# a user exists in the external auth method before letting him/her
	# to switch.

	for method in methods:
	if CFG_EXTERNAL_AUTHENTICATION[method][0]:
	try:
	if not CFG_EXTERNAL_AUTHENTICATION[method][0].user_exists(email):
	methods.remove(method)
	except (AttributeError, InvenioWebAccessExternalAuthError):
	methods.remove(method)
	methods.sort()

	if len(methods) > 1:
	out += websession_templates.tmpl_user_external_auth(
	ln = ln,
	methods = methods,
	current = current_login_method,
	method_disabled = (CFG_ACCESS_CONTROL_LEVEL_ACCOUNTS >= 4)
	)

	current_group_records = prefs.get('websearch_group_records', 10)
	show_latestbox = prefs.get('websearch_latestbox', True)
	show_helpbox = prefs.get('websearch_helpbox', True)
	out += websession_templates.tmpl_user_websearch_edit(
	ln = ln,
	current = current_group_records,
	show_latestbox = show_latestbox,
	show_helpbox = show_helpbox,
	)

	preferred_lang = prefs.get('language', ln)
	out += websession_templates.tmpl_user_lang_edit(
	ln = ln,
	preferred_lang = preferred_lang
	)

	if verbose >= 9:
	for key, value in prefs.items():
	out += "<b>%s</b>:%s<br />" % (key, value)
	out += perform_display_external_user_settings(prefs, ln)
	return out

	def create_register_page_box(referer='', ln=CFG_SITE_LANG):
	"""Register a new account."""
	return websession_templates.tmpl_register_page(
	referer = referer,
	ln = ln,
	level = CFG_ACCESS_CONTROL_LEVEL_ACCOUNTS,
	)

	## create_login_page_box(): ask for the user's email and password, for login into the system
	def create_login_page_box(referer='', apache_msg="", ln=CFG_SITE_LANG):
	# List of referer regexep and message to print

	_ = gettext_set_language(ln)

	login_referrer2msg = (
	(re.compile(r"/search"), "<p>" + _("This collection is restricted. If you think you have right to access it, please authenticate yourself.") + "</p>"),
	)

	msg = ""
	for regexp, txt in login_referrer2msg:
	if regexp.search(referer):
	msg = txt
	break

	# FIXME: Temporary Hack to help CDS current migration
	if CFG_CERN_SITE and apache_msg:
	return msg + apache_msg

	if apache_msg:
	msg += apache_msg + "<p>2) Otherwise please authenticate yourself" \
	" in the following form:</p>"

	internal = None
	for system in CFG_EXTERNAL_AUTHENTICATION.keys():
	if not CFG_EXTERNAL_AUTHENTICATION[system][0]:
	internal = system
	break
	register_available = CFG_ACCESS_CONTROL_LEVEL_ACCOUNTS <= 1 and internal
	methods = CFG_EXTERNAL_AUTHENTICATION.keys()
	methods.sort()
	selected = ''
	for method in methods:
	if CFG_EXTERNAL_AUTHENTICATION[method][1]:
	selected = method
	break

	return websession_templates.tmpl_login_form(
	ln = ln,
	referer = referer,
	internal = internal,
	register_available = register_available,
	methods = methods,
	selected_method = selected,
	msg = msg,
	)


	# perform_logout: display the message of not longer authorized,
	def perform_logout(req, ln):
	return websession_templates.tmpl_account_logout(ln = ln)

	#def perform_lost: ask the user for his email, in order to send him the lost password
	def perform_lost(ln):
	return websession_templates.tmpl_lost_password_form(ln)

	#def perform_reset_password: ask the user for a new password to reset the lost one
	def perform_reset_password(ln, email, reset_key, msg=''):
	return websession_templates.tmpl_reset_password_form(ln, email, reset_key, msg)

	# perform_emailSent(email): confirm that the password has been emailed to 'email' address
	def perform_emailSent(email, ln):
	return websession_templates.tmpl_account_emailSent(ln = ln, email = email)

	# peform_emailMessage : display a error message when the email introduced is not correct, and sugest to try again
	def perform_emailMessage(eMsg, ln):
	return websession_templates.tmpl_account_emailMessage( ln = ln,
	msg = eMsg
	)

	# perform_back(): template for return to a previous page, used for login,register and setting
	def perform_back(mess,act,linkname='', ln='en'):
	if not linkname:
	linkname = act

	return websession_templates.tmpl_back_form(
	ln = ln,
	message = mess,
	act = act,
	link = linkname,
	)

webaccount.pyNo OneTemporaryActions

File Metadata

webaccount.pyView Options

Event Timeline

webaccount.py
No OneTemporary
Actions

webaccount.py
View Options