antville/antville
antville/antville
1
1
Fork 0
Code Issues 48 Pull requests 9 Projects Releases 9 Wiki Activity Actions
antville/code/User/User.js

484 lines
12 KiB
JavaScript
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

// The Antville Project
// http://code.google.com/p/antville
//
// Copyright 20012014 by the Workers of Antville.
//
// Licensed under the Apache License, Version 2.0 (the ``License'');
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an ``AS IS'' BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
/**
* @fileOverview Defines the User prototype.
*/
markgettext('User');
markgettext('user');
this.handleMetadata('hash');
this.handleMetadata('salt');
this.handleMetadata('url');
disableMacro(User, 'hash');
disableMacro(User, 'salt');
/** @constant */
User.COOKIE = getProperty('userCookie', 'antvilleUser');
/** @constant */
User.HASHCOOKIE = getProperty('hashCookie', 'antvilleHash');
/**
* @param {Object} data
* @returns {User}
*/
User.add = function(data) {
HopObject.confirmConstructor(this);
var user = new User;
var now = new Date;
user.map({
created: now,
email: data.email,
hash: data.hash,
name: data.name,
salt: session.data.token,
status: User.REGULAR,
url: data.url
});
root.users.add(user);
return user;
}
/**
* FIXME: Still needs a solution whether and how to remove a users sites
*/
User.remove = function() {
return; // FIXME: Disabled until thoroughly tested
if (this.constructor === User) {
HopObject.remove.call(this.comments);
HopObject.remove.call(this.files);
HopObject.remove.call(this.images);
//HopObject.remove.call(this.sites);
HopObject.remove.call(this.stories);
this.deleteMetadata();
this.remove();
}
return;
}
/**
*
* @param {String} name
* @returns {User}
*/
User.getByName = function(name) {
return root.users.get(name);
}
/**
* @function
* @returns {String[]}
* @see defineConstants
*/
User.getStatus = defineConstants(User, markgettext('Blocked'),
markgettext('Regular'), markgettext('Trusted'),
markgettext('Privileged'));
/**
* @returns {String}
*/
User.getSalt = function() {
var salt = java.lang.reflect.Array.newInstance(java.lang.Byte.TYPE, 8);
var random = java.security.SecureRandom.getInstance('SHA1PRNG');
random.nextBytes(salt);
return Packages.sun.misc.BASE64Encoder().encode(salt);
}
/**
*
* @param {Object} data
* @throws {Error}
* @returns {User}
*/
User.register = function(data) {
if (!data.name) {
throw Error(gettext('Please enter a username.'));
}
data.name = data.name.trim();
if (data.name.length > 30) {
throw Error(gettext('Sorry, the username you entered is too long. Please choose a shorter one.'));
} else if (data.name !== stripTags(data.name) || NAMEPATTERN.test(data.name)) {
throw Error(gettext('Please avoid special characters or HTML code in the name field.'));
} else if (data.name !== root.users.getAccessName(data.name)) {
throw Error(gettext('Sorry, the user name you entered already exists. Please enter a different one.'));
}
data.email && (data.email = data.email.trim());
if (!validateEmail(data.email)) {
throw Error(gettext('Please enter a valid e-mail address'));
}
if (User.isBlacklisted(data)) {
throw Error('Sequere pecuniam ad meliora.');
}
// Create hash from password for JavaScript-disabled browsers
if (!data.hash) {
// Check if passwords match
if (!data.password || !data.passwordConfirm) {
throw Error(gettext('Could not verify your password. Please repeat your input.'))
} else if (data.password !== data.passwordConfirm) {
throw Error(gettext('Unfortunately, your passwords did not match. Please repeat your input.'));
}
data.hash = (data.password + session.data.token).md5();
}
var user = User.add(data);
// grant trust and sysadmin-rights if there's no sysadmin 'til now
if (root.admins.size() < 1) {
user.status = User.PRIVILEGED;
}
session.login(user);
return user;
}
/**
*
* @param {Object} data
* @returns {Boolean}
*/
User.isBlacklisted = function(data) {
var url;
var name = encodeURIComponent(data.name);
var email = encodeURIComponent(data.email);
var ip = encodeURIComponent(data.http_remotehost);
var key = getProperty('botscout.apikey');
if (key) {
url = ['http://botscout.com/test/?multi', '&key=', key, '&mail=', email, '&ip=', ip];
try {
mime = getURL(url.join(String.EMPTY));
if (mime && mime.text && mime.text.startsWith('Y')) {
return true;
}
} catch (ex) {
app.log('Exception while trying to check blacklist URL ' + url);
app.log(ex);
}
}
//return false;
// We only get here if botscout.com does not already blacklist the ip or email address
url = ['http://www.stopforumspam.com/api?f=json', '&email=', email];
if (ip.match(/^(?:\d{1,3}\.){3}\d{1,3}$/)) {
url.push('&ip=', ip);
}
try {
mime = getURL(url.join(String.EMPTY));
} catch (ex) {
app.log('Exception while trying to check blacklist URL ' + url);
app.log(ex);
}
if (mime && mime.text) {
var result = JSON.parse(mime.text);
if (result.success) {
return !!(result.email.appears || (result.ip && result.ip.appears));
}
}
return false;
}
/**
*
*/
User.autoLogin = function() {
if (session.user) {
return;
}
var name = req.cookies[User.COOKIE];
var hash = req.cookies[User.HASHCOOKIE];
if (!name || !hash) {
return;
}
var user = User.getByName(name);
if (!user) {
return;
}
var ip = req.data.http_remotehost.clip(getProperty('cookieLevel', '4'),
String.EMPTY, '\\.');
if ((user.hash + ip).md5() !== hash) {
return;
}
session.login(user);
user.touch();
res.message = gettext('Welcome to {0}, {1}. Have fun!',
res.handlers.site.title, user.name);
return;
}
/**
*
* @param {Object} data
* @returns {User}
*/
User.login = function(data) {
var user = User.getByName(data.name);
if (!user) {
throw Error(gettext('Unfortunately, your login failed. Maybe a typo?'));
}
var digest = data.digest;
// Calculate digest for JavaScript-disabled browsers
if (!digest) {
app.logger.warn('Received clear text password from ' + req.data.http_referer);
digest = ((data.password + user.salt).md5() + session.data.token).md5();
}
// Check if login is correct
if (digest !== user.getDigest(session.data.token)) {
throw Error(gettext('Unfortunately, your login failed. Maybe a typo?'))
}
if (data.remember) {
// Set long running cookies for automatic login
res.setCookie(User.COOKIE, user.name, 365);
var ip = req.data.http_remotehost.clip(getProperty('cookieLevel', '4'), String.EMPTY, '\\.');
res.setCookie(User.HASHCOOKIE, (user.hash + ip).md5(), 365);
}
user.touch();
session.login(user);
return user;
}
/**
*
*/
User.logout = function() {
session.logout();
res.unsetCookie(User.COOKIE);
res.unsetCookie(User.HASHCOOKIE);
Layout.sandbox(false);
User.getLocation();
return;
}
/**
*
* @param {String} requiredStatus
* @returns {Boolean}
*/
User.require = function(requiredStatus) {
var status = [User.BLOCKED, User.REGULAR, User.TRUSTED, User.PRIVILEGED];
if (requiredStatus && session.user) {
return status.indexOf(session.user.status) >= status.indexOf(requiredStatus);
}
return false;
}
/**
* @returns {String}
*/
User.getCurrentStatus = function() {
if (session.user) {
return session.user.status;
}
return null;
}
/**
* @returns {Membership}
*/
User.getMembership = function() {
var membership;
if (session.user) {
membership = Membership.getByName(session.user.name);
}
HopObject.confirmConstructor(Membership);
return membership || new Membership;
}
/**
*
* @param {String} url
*/
User.setLocation = function(url) {
session.data.location = url || req.data.http_referer;
//app.debug('Pushed location ' + session.data.location);
return;
}
/**
* @returns {String}
*/
User.getLocation = function() {
var url = session.data.location;
delete session.data.location;
//app.debug('Popped location ' + url);
return url;
}
/**
* Rename a user account.
* @param {String} currentName The current name of the user account.
* @param {String} newName The desired name of the user account.
*/
User.rename = function(currentName, newName) {
var user = User.getByName(currentName);
if (user) {
if (user.name === newName) {
return newName;
}
user.name = root.users.getAccessName(newName);
return user.name;
}
return currentName;
}
/**
* A User object represents a login to Antville.
* @name User
* @constructor
* @extends HopObject
* @property {Membership[]} _children
* @property {Date} created
* @property {Comment[]} comments
* @property {String} email
* @property {File[]} files
* @property {String} hash
* @property {Image[]} images
* @property {Membership[]} memberships
* @property {Metadata} metadata
* @property {Date} modified
* @property {String} name
* @property {String} salt
* @property {Site[]} sites
* @property {Membership[]} subscriptions
* @property {String} status
* @property {Story[]} stories
* @property {String} url
* @extends HopObject
*/
User.prototype.constructor = function(data) {
HopObject.confirmConstructor(User);
return this;
}
/**
*
*/
User.prototype.onLogout = function() { /* ... */ }
/**
*
* @param {String} action
* @returns {Boolean}
*/
User.prototype.getPermission = function(action) {
return User.require(User.PRIVILEGED);
}
/**
*
* @param {Object} data
*/
User.prototype.update = function(data) {
if (!data.digest && data.password) {
data.digest = ((data.password + this.salt).md5() +
session.data.token).md5();
}
if (data.digest) {
if (data.digest !== this.getDigest(session.data.token)) {
throw Error(gettext('Oops, your old password is incorrect. Please re-enter it.'));
}
if (!data.hash) {
if (!data.newPassword || !data.newPasswordConfirm) {
throw Error(gettext('Please specify a new password.'));
} else if (data.newPassword !== data.newPasswordConfirm) {
throw Error(gettext('Unfortunately, your passwords did not match. Please repeat your input.'));
}
data.hash = (data.newPassword + session.data.token).md5();
}
this.map({
hash: data.hash,
salt: session.data.token
});
}
if (!(data.email = validateEmail(data.email))) {
throw Error(gettext('Please enter a valid e-mail address'));
}
if (data.url && !(data.url = validateUrl(data.url))) {
throw Error(gettext('Please enter a valid URL'));
}
this.email = data.email;
this.url = data.url;
this.touch();
return this;
}
/**
*
*/
User.prototype.touch = function() {
this.modified = new Date;
return;
}
/**
*
* @param {String} token
* @returns {String}
*/
User.prototype.getDigest = function(token) {
token || (token = String.EMPTY);
return (this.hash + token).md5();
}
/**
*
* @param {String} name
* @returns {Object}
*/
User.prototype.getFormOptions = function(name) {
switch (name) {
case 'status':
return User.getStatus();
}
}
/**
* Enable <% user.email %> macro for privileged users only
*/
User.prototype.email_macro = function() {
if (User.require(User.PRIVILEGED)) {
res.write(this.email);
}
return;
}
/**
*
* @param {Object} param
* @param {String} type
*/
User.prototype.list_macro = function(param, type) {
switch (type) {
case 'sites':
var memberships = session.user.list();
memberships.sort(function(a, b) {
return b.site.modified - a.site.modified;
});
memberships.forEach(function(membership) {
var site;
if (site = membership.get('site')) {
site.renderSkin('$Site#listItem');
}
return;
});
}
return;
}
Reference in a new issue View git blame Copy permalink