apps
/
rophako
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
A Python content management system designed for kirsle.net featuring a blog, comments and photo albums. https://rophako.kirsle.net/
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
138 Commits
1 Branch
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
rophako/rophako/model/user.py

177 lines
4.6KB
Raw Permalink Blame History 

  1. # -*- coding: utf-8 -*-

  2. from __future__ import unicode_literals, absolute_import

  3. 

  4. """User account models."""

  5. 

  6. import bcrypt

  7. import time

  8. 

  9. from rophako.settings import Config

  10. import rophako.jsondb as JsonDB

  11. import rophako.model.photo as Photo

  12. from rophako.log import logger

  13. 

  14. def create(username, password, name=None, uid=None, role="user"):

  15.     """Create a new user account.

  16. 

  17.     Returns the user ID number assigned to this user."""

  18.     # Name defaults to username.

  19.     if name is None:

  20.         name = username

  21. 

  22.     username = username.lower()

  23. 

  24.     # Provided with a user ID?

  25.     if uid is not None:

  26.         # See if it's available.

  27.         if exists(uid=uid):

  28.             logger.warning("Wanted to use UID {} for user {} but it wasn't available.".format(uid, username))

  29.             uid = None

  30. 

  31.     # Need to generate a UID?

  32.     if uid is None:

  33.         uid = get_next_uid()

  34. 

  35.     uid = int(uid)

  36. 

  37.     # Username musn't exist.

  38.     if exists(username):

  39.         # The front-end shouldn't let this happen.

  40.         raise Exception("Can't create username {}: already exists!".format(username))

  41. 

  42.     # Crypt their password.

  43.     hashedpass = hash_password(password)

  44. 

  45.     logger.info("Create user {} with username {}".format(uid, username))

  46. 

  47.     # Create the user file.

  48.     JsonDB.commit("users/by-id/{}".format(uid), dict(

  49.         uid=uid,

  50.         username=username,

  51.         name=name,

  52.         picture="",

  53.         role=role,

  54.         password=hashedpass,

  55.         created=time.time(),

  56.     ))

  57. 

  58.     # And their username to ID map.

  59.     JsonDB.commit("users/by-name/{}".format(username), dict(

  60.         uid=uid,

  61.     ))

  62. 

  63.     return uid

  64. 

  65. 

  66. def update_user(uid, data):

  67.     """Update the user's data."""

  68.     if not exists(uid=uid):

  69.         raise Exception("Can't update user {}: doesn't exist!".format(uid))

  70. 

  71.     db = get_user(uid=uid)

  72. 

  73.     # Change of username?

  74.     if "username" in data and len(data["username"]) and data["username"] != db["username"]:

  75.         JsonDB.delete("users/by-name/{}".format(db["username"]))

  76.         JsonDB.commit("users/by-name/{}".format(data["username"]), dict(

  77.             uid=int(uid),

  78.         ))

  79. 

  80.     db.update(data)

  81.     JsonDB.commit("users/by-id/{}".format(uid), db)

  82. 

  83. 

  84. def delete_user(uid):

  85.     """Delete a user account."""

  86.     if not exists(uid=uid):

  87.         return

  88. 

  89.     db = get_user(uid=uid)

  90.     username = db["username"]

  91. 

  92.     # Mark the account deleted.

  93.     update_user(uid, dict(

  94.         username="",

  95.         name="",

  96.         role="deleted",

  97.         password="!",

  98.     ))

  99. 

  100.     # Delete their username.

  101.     JsonDB.delete("users/by-name/{}".format(username))

  102. 

  103. 

  104. def list_users():

  105.     """Get a sorted list of all users."""

  106.     uids  = JsonDB.list_docs("users/by-id")

  107.     users = list()

  108.     for uid in sorted(map(lambda x: int(x), uids)):

  109.         db = get_user(uid=uid)

  110.         if db["role"] == "deleted": continue

  111.         users.append(db)

  112.     return users

  113. 

  114. 

  115. def get_uid(username):

  116.     """Turn a username into a user ID."""

  117.     db = JsonDB.get("users/by-name/{}".format(username))

  118.     if db:

  119.         return int(db["uid"])

  120.     return None

  121. 

  122. 

  123. def get_user(uid=None, username=None):

  124.     """Get a user's DB file, or None if not found."""

  125.     if username:

  126.         uid = get_uid(username)

  127.         logger.debug("get_user: resolved username {} to UID {}".format(username, uid))

  128.     return JsonDB.get("users/by-id/{}".format(uid))

  129. 

  130. 

  131. def get_picture(uid):

  132.     """Get the chosen profile photo for the user."""

  133.     data = get_user(uid=uid)

  134.     pic = data["picture"]

  135.     if len(pic):

  136.         photo = Photo.get_photo(pic)

  137.         if photo:

  138.             return photo["avatar"]

  139.     return None

  140. 

  141. 

  142. def exists(uid=None, username=None):

  143.     """Query whether a user ID or name exists."""

  144.     if uid:

  145.         return JsonDB.exists("users/by-id/{}".format(uid))

  146.     elif username:

  147.         return JsonDB.exists("users/by-name/{}".format(username.lower()))

  148. 

  149. 

  150. def hash_password(password):

  151.     return bcrypt.hashpw(str(password).encode("utf-8"), bcrypt.gensalt(int(Config.security.bcrypt_iterations))).decode("utf-8")

  152. 

  153. 

  154. def check_auth(username, password):

  155.     """Check the authentication credentials for the username and password.

  156. 

  157.     Returns a boolean true or false. On error, an error is logged."""

  158.     # Check if the username exists.

  159.     if not exists(username=username):

  160.         logger.error("User authentication failed: username {} not found!".format(username))

  161.         return False

  162. 

  163.     # Get the user's file.

  164.     db = get_user(username=username)

  165. 

  166.     # Check the password.

  167.     test = bcrypt.hashpw(str(password).encode("utf-8"), str(db["password"]).encode("utf-8")).decode("utf-8")

  168.     return test == db["password"]

  169. 

  170. 

  171. def get_next_uid():

  172.     """Get the next available user ID."""

  173.     uid = 1

  174.     while exists(uid=uid):

  175.         uid += 1

  176.     return uid