Class: CortexReaver::User

Inherits:

Object

• Object
• CortexReaver::User

Defined in:

lib/cortex_reaver/model/user.rb

Class Method Summary

• .anonymous ⇒ Object

  An anonymous proxy user, with no permissions.

• .anonymous? ⇒ Boolean
• .authenticate(login, password) ⇒ Object

  Returns an authenticated user by login and password, or nil.

• .can_create?(other) ⇒ Boolean

  These functions are embedded for speed.

• .can_delete?(other) ⇒ Boolean
• .can_edit?(other) ⇒ Boolean
• .canonical_name_attr ⇒ Object

  CRUD uses this to construct URLs.

• .get(id) ⇒ Object

  Get a user.

• .url ⇒ Object

  Class URL.

Instance Method Summary

• #admin? ⇒ Boolean

  Returns true if the user is an administrator.

• #anonymous? ⇒ Boolean

  Is this the special anonymous user?.

• #authenticate(test_password) ⇒ Object

  Authenticate with password.

• #before_destroy ⇒ Object

  Ensure that we don’t destroy the only admin.

• #can_create?(other) ⇒ Boolean
• #can_delete?(other) ⇒ Boolean
• #can_edit?(other) ⇒ Boolean
• #can_view?(other) ⇒ Boolean
• #contributor? ⇒ Boolean

  Returns true if user is a contributor.

• #editor? ⇒ Boolean

  Returns true if user is an editor.

• #moderator? ⇒ Boolean

  Returns true if user is a moderator.

• #name ⇒ Object

  Name falls back to login if blank.

• #password=(password) ⇒ Object

  Set user password.

• #password_confirmation ⇒ Object
• #password_confirmation=(password) ⇒ Object

  Password confirmation.

• #password_length ⇒ Object

  A cache for password length, so we can validate without keeping the password as plaintext.

• #to_s ⇒ Object
• #url ⇒ Object

  A URL to view this user.

• #validate ⇒ Object

Class Method Details

.anonymous ⇒ Object

An anonymous proxy user, with no permissions.

# File 'lib/cortex_reaver/model/user.rb', line 36

def self.anonymous
  # Return singleton if stored
  return @anonymous_user if @anonymous_user

  # Create anonymous user
  @anonymous_user = self.new(:name => "Anonymous")

  # These functions are embedded for speed. Much faster public browsing!
  def @anonymous_user.can_create? other
    false
  end
  def @anonymous_user.can_edit? other
    false
  end
  def @anonymous_user.can_delete? other
    false
  end
  def @anonymous_user.anonymous?
    true
  end
  
  @anonymous_user
end

.anonymous? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/cortex_reaver/model/user.rb', line 53

def @anonymous_user.anonymous?
  true
end

.authenticate(login, password) ⇒ Object

Returns an authenticated user by login and password, or nil.

# File 'lib/cortex_reaver/model/user.rb', line 26

def self.authenticate(login, password)
  user = self[:login => login]
  if user and user.authenticate(password)
    user
  else
    nil
  end
end

.can_create?(other) ⇒ Boolean

These functions are embedded for speed. Much faster public browsing!

Returns:

• (Boolean)

# File 'lib/cortex_reaver/model/user.rb', line 44

def @anonymous_user.can_create? other
  false
end

.can_delete?(other) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/cortex_reaver/model/user.rb', line 50

def @anonymous_user.can_delete? other
  false
end

.can_edit?(other) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/cortex_reaver/model/user.rb', line 47

def @anonymous_user.can_edit? other
  false
end

.canonical_name_attr ⇒ Object

CRUD uses this to construct URLs. Even though we don’t need the full power of Canonical, CRUD is pretty useful. :)

# File 'lib/cortex_reaver/model/user.rb', line 62

def self.canonical_name_attr
  :login
end

.get(id) ⇒ Object

Get a user

# File 'lib/cortex_reaver/model/user.rb', line 67

def self.get(id)
  self[:login => id] || self[id]
end

.url ⇒ Object

Class URL

# File 'lib/cortex_reaver/model/user.rb', line 72

def self.url
  '/users'
end

Instance Method Details

#admin? ⇒ Boolean

Returns true if the user is an administrator.

Returns:

• (Boolean)

# File 'lib/cortex_reaver/model/user.rb', line 77

def admin?
  self.admin
end

#anonymous? ⇒ Boolean

Is this the special anonymous user?

Returns:

• (Boolean)

# File 'lib/cortex_reaver/model/user.rb', line 21

def anonymous?
  false
end

#authenticate(test_password) ⇒ Object

Authenticate with password

# File 'lib/cortex_reaver/model/user.rb', line 82

def authenticate(test_password)
  if self[:password] == self.class.crypt(test_password, self.salt)
    true
  else
    false
  end
end

#before_destroy ⇒ Object

Ensure that we don’t destroy the only admin.

# File 'lib/cortex_reaver/model/user.rb', line 91

def before_destroy
  return false if super == false

  if admins = User.filter(:admin => true) and admins.count == 1 and admins.first.id == self.id
    self.errors.add nil, "Can't destroy the only administrator."
    return false
  end
end

#can_create?(other) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/cortex_reaver/model/user.rb', line 100

def can_create?(other)
  if admin?
    # Administrators may create anything
    true
  elsif contributor?
    # Contributors may create anything but users
    case other
    when User
      false
    else
      true
    end
  else
    # Anyone may create a comment.
    case other
    when Comment
      true
    else
      false
    end
  end
end

#can_delete?(other) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/cortex_reaver/model/user.rb', line 123

def can_delete?(other)
  if admin?
    # Administrators may delete anything
    true
  elsif other.respond_to? :created_by and other.created_by == self.id
    # Anybody may delete their own records.
    true
  elsif editor? and not User === other
    # Editors may delete anything but users.
    true
  elsif moderator? and Comment === other
    # Moderators may delete comments.
    true
  else
    false
  end
end

#can_edit?(other) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/cortex_reaver/model/user.rb', line 141

def can_edit?(other)
  if admin?
    # Administrators may edit anything
    true
  elsif other.respond_to? :created_by and other.created_by == self.id
    # Anybody may edit their own records
    true
  elsif editor? and not User === other
    # Editors may edit anything but other users.
    true
  elsif moderator and Comment === other
    # Moderators may edit comments
    true
  else
    false
  end
end

#can_view?(other) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/cortex_reaver/model/user.rb', line 159

def can_view?(other)
  if other.respond_to? :draft and other.draft
    # Draft
    if admin? or can_edit? other
      # User can edit this draft
      true
    else
      # Nope, not yet!
      false
    end
  else
    # Not a draft
    true
  end
end

#contributor? ⇒ Boolean

Returns true if user is a contributor

Returns:

• (Boolean)

# File 'lib/cortex_reaver/model/user.rb', line 176

def contributor?
  self.contributor
end

#editor? ⇒ Boolean

Returns true if user is an editor

Returns:

• (Boolean)

# File 'lib/cortex_reaver/model/user.rb', line 181

def editor?
  self.editor
end

#moderator? ⇒ Boolean

Returns true if user is a moderator

Returns:

• (Boolean)

# File 'lib/cortex_reaver/model/user.rb', line 186

def moderator?
  self.moderator
end

#name ⇒ Object

Name falls back to login if blank

# File 'lib/cortex_reaver/model/user.rb', line 191

def name
  name = self[:name]
  name.blank? ? login : name
end

#password=(password) ⇒ Object

Set user password

# File 'lib/cortex_reaver/model/user.rb', line 197

def password=(password)
  self.salt ||= self.class.new_salt
  self[:password] = self.class.crypt(password, self.salt)
  @password_length = '*' * password.length
end

#password_confirmation ⇒ Object

# File 'lib/cortex_reaver/model/user.rb', line 209

def password_confirmation
  # If password_confirmation was set, use that. Otherwise, fall back
  # to the normal password, so we don't need set the confirmation every
  # time the password is updated programmatically.
  @password_confirmation || self.password
end

#password_confirmation=(password) ⇒ Object

Password confirmation

# File 'lib/cortex_reaver/model/user.rb', line 204

def password_confirmation=(password)
  self.salt ||= self.class.new_salt
  @password_confirmation = self.class.crypt(password, self.salt)
end

#password_length ⇒ Object

A cache for password length, so we can validate without keeping the password as plaintext.

# File 'lib/cortex_reaver/model/user.rb', line 218

def password_length
  @password_length
end

#to_s ⇒ Object

# File 'lib/cortex_reaver/model/user.rb', line 222

def to_s
  if name.blank?
    login
  else
    name
  end
end

#url ⇒ Object

A URL to view this user

# File 'lib/cortex_reaver/model/user.rb', line 231

def url
  '/users/show/' + login
end

#validate ⇒ Object

# File 'lib/cortex_reaver/model/user.rb', line 235

def validate
  validates_unique(:login, :message => "Already taken.")
  validates_max_length(255, :login, :message => "Please enter a username shorter than 255 characters.")
  validates_format(/^[A-Za-z0-9\-_]+$/, :login, :message => "Logins can only contain alphanumeric characters, dashes, and underscores.")
  validates_max_length(255, :name, :allow_blank => true, :message => "Please enter a name shorter than 255 characters.")
  validates_max_length(255, :http, :allow_blank => true, :message => "Please enter an HTTP address shorter than 255 characters.")
  validates_unique(:email, :message => "Already taken.")
  validates_max_length(255, :email, :message => "Please enter an email address shorter than 255 characters.")
  validates_format(/^([^@\s]+)@((?:[-a-z0-9]+\.)+[a-z]{2,})$/, :email, :message => "Please enter a valid email address.")
  validates_confirmation(:password, :message => "Make sure your passwords match.")
  validates_min_length(8, :password_length, :message => "Passwords must be at least 8 characters.", :allow_nil => true)
  validates_max_length(255, :password_length, :message => "Passwords must be at most 255 characters.", :allow_nil => true)

  # Ensure an administrator is always available.
  if admins = User.filter(:admin => true) and admins.count == 1 and admins.first.id == self.id and not admin?
    errors[:admin] << "can't be unset; only one administrator left!"
  end
end