Show More
Commit Description:
fixed admin authorization bug in single user mode
Commit Description:
fixed admin authorization bug in single user mode
References:
File last commit:
Show/Diff file:
Action:
Last Author
Show All-
Jittat Fakcharoenphol-
app/models/user.rb
| 261 lines
| 6.3 KiB
| text/x-ruby
| RubyLexer
|
pramook
|
r0 | require 'digest/sha1' | ||
| class User < ActiveRecord::Base | ||||
| has_and_belongs_to_many :roles | ||||
jittat
|
r64 | has_many :test_requests, :order => "submitted_at DESC" | ||
|
jittat
|
r36 | |||
|
jittat
|
r102 | has_many :messages, | ||
| :class_name => "Message", | ||||
| :foreign_key => "sender_id", | ||||
| :order => 'created_at DESC' | ||||
| has_many :replied_messages, | ||||
| :class_name => "Message", | ||||
| :foreign_key => "receiver_id", | ||||
| :order => 'created_at DESC' | ||||
Jittat Fakcharoenphol
|
r247 | has_one :contest_stat, :class_name => "UserContestStat", :dependent => :destroy | ||
|
Jittat Fakcharoenphol
|
r217 | |||
|
jittat
|
r85 | belongs_to :site | ||
|
jittat
|
r106 | belongs_to :country | ||
|
jittat
|
r85 | |||
|
Jittat Fakcharoenphol
|
r280 | has_and_belongs_to_many :contests, :uniq => true | ||
|
Jittat Fakcharoenphol
|
r268 | |||
|
jittat
|
r158 | named_scope :activated_users, :conditions => {:activated => true} | ||
|
jittat
|
r157 | |||
|
pramook
|
r0 | validates_presence_of :login | ||
|
jittat
|
r157 | validates_uniqueness_of :login | ||
|
jittat
|
r162 | validates_format_of :login, :with => /^[\_A-Za-z0-9]+$/ | ||
| validates_length_of :login, :within => 3..30 | ||||
|
jittat
|
r157 | |||
|
pramook
|
r0 | validates_presence_of :full_name | ||
|
jittat
|
r23 | validates_length_of :full_name, :minimum => 1 | ||
|
pramook
|
r0 | |||
| validates_presence_of :password, :if => :password_required? | ||||
| validates_length_of :password, :within => 4..20, :if => :password_required? | ||||
| validates_confirmation_of :password, :if => :password_required? | ||||
|
jittat
|
r162 | validates_format_of :email, | ||
| :with => /\A([^@\s]+)@((?:[-a-z0-9]+\.)+[a-z]{2,})\Z/i, | ||||
| :if => :email_validation? | ||||
| validate :uniqueness_of_email_from_activated_users, | ||||
| :if => :email_validation? | ||||
| validate :enough_time_interval_between_same_email_registrations, | ||||
| :if => :email_validation? | ||||
|
jittat
|
r157 | |||
|
jittat
|
r162 | # these are for ytopc | ||
| # disable for now | ||||
| #validates_presence_of :province | ||||
|
jittat
|
r157 | |||
|
pramook
|
r0 | attr_accessor :password | ||
| before_save :encrypt_new_password | ||||
|
jittat
|
r162 | before_save :assign_default_site | ||
|
pramook
|
r0 | |||
| def self.authenticate(login, password) | ||||
| user = find_by_login(login) | ||||
| return user if user && user.authenticated?(password) | ||||
| end | ||||
| def authenticated?(password) | ||||
|
jittat
|
r155 | if self.activated | ||
| hashed_password == User.encrypt(password,self.salt) | ||||
| else | ||||
| false | ||||
| end | ||||
|
pramook
|
r0 | end | ||
| def admin? | ||||
| self.roles.detect {|r| r.name == 'admin' } | ||||
| end | ||||
|
jittat
|
r18 | def email_for_editing | ||
|
jittat
|
r23 | if self.email==nil | ||
| "(unknown)" | ||||
| elsif self.email=='' | ||||
| "(blank)" | ||||
| else | ||||
|
jittat
|
r18 | self.email | ||
| end | ||||
| end | ||||
| def email_for_editing=(e) | ||||
| self.email=e | ||||
| end | ||||
| def alias_for_editing | ||||
|
jittat
|
r23 | if self.alias==nil | ||
| "(unknown)" | ||||
| elsif self.alias=='' | ||||
| "(blank)" | ||||
| else | ||||
|
jittat
|
r18 | self.alias | ||
| end | ||||
| end | ||||
| def alias_for_editing=(e) | ||||
| self.alias=e | ||||
| end | ||||
|
jittat
|
r155 | def activation_key | ||
|
jittat
|
r158 | if self.hashed_password==nil | ||
| encrypt_new_password | ||||
| end | ||||
|
jittat
|
r155 | Digest::SHA1.hexdigest(self.hashed_password)[0..7] | ||
| end | ||||
| def verify_activation_key(key) | ||||
| key == activation_key | ||||
| end | ||||
|
jittat
|
r157 | def self.random_password(length=5) | ||
| chars = 'abcdefghjkmnopqrstuvwxyz' | ||||
| password = '' | ||||
| length.times { password << chars[rand(chars.length - 1)] } | ||||
| password | ||||
| end | ||||
|
jittat
|
r200 | def self.find_non_admin_with_prefix(prefix='') | ||
| users = User.find(:all) | ||||
| return users.find_all { |u| !(u.admin?) and u.login.index(prefix)==0 } | ||||
| end | ||||
|
Jittat Fakcharoenphol
|
r217 | # Contest information | ||
| def contest_time_left | ||||
| if Configuration.contest_mode? | ||||
| return nil if site==nil | ||||
| return site.time_left | ||||
| elsif Configuration.indv_contest_mode? | ||||
| time_limit = Configuration.contest_time_limit | ||||
|
Jittat Fakcharoenphol
|
r275 | if time_limit == nil | ||
| return nil | ||||
| end | ||||
|
Jittat Fakcharoenphol
|
r217 | if contest_stat==nil | ||
| return (Time.now.gmtime + time_limit) - Time.now.gmtime | ||||
| else | ||||
| finish_time = contest_stat.started_at + time_limit | ||||
| current_time = Time.now.gmtime | ||||
| if current_time > finish_time | ||||
| return 0 | ||||
| else | ||||
| return finish_time - current_time | ||||
| end | ||||
| end | ||||
| else | ||||
| return nil | ||||
| end | ||||
| end | ||||
| def contest_finished? | ||||
| if Configuration.contest_mode? | ||||
| return false if site==nil | ||||
| return site.finished? | ||||
| elsif Configuration.indv_contest_mode? | ||||
| time_limit = Configuration.contest_time_limit | ||||
| return false if contest_stat==nil | ||||
| return contest_time_left == 0 | ||||
| else | ||||
| return false | ||||
| end | ||||
| end | ||||
| def contest_started? | ||||
| if Configuration.contest_mode? | ||||
| return true if site==nil | ||||
| return site.started | ||||
| else | ||||
| return true | ||||
| end | ||||
| end | ||||
|
Jittat Fakcharoenphol
|
r275 | def update_start_time | ||
| stat = self.contest_stat | ||||
| if stat == nil | ||||
| stat = UserContestStat.new(:user => self, | ||||
| :started_at => Time.now.gmtime) | ||||
| stat.save | ||||
| end | ||||
| end | ||||
|
Jittat Fakcharoenphol
|
r282 | def problem_in_user_contests?(problem) | ||
| problem_contests = problem.contests.all | ||||
| if problem_contests.length == 0 # this is public contest | ||||
| return true | ||||
| end | ||||
| contests.each do |contest| | ||||
| if problem_contests.find {|c| c.id == contest.id } | ||||
| return true | ||||
| end | ||||
| end | ||||
| return false | ||||
| end | ||||
| def can_view_problem?(problem) | ||||
| if not Configuration.multicontests? | ||||
| return problem.available | ||||
| else | ||||
| return problem_in_user_contests? problem | ||||
| end | ||||
| end | ||||
|
jittat
|
r18 | protected | ||
|
pramook
|
r0 | def encrypt_new_password | ||
| return if password.blank? | ||||
| self.salt = (10+rand(90)).to_s | ||||
|
jittat
|
r58 | self.hashed_password = User.encrypt(self.password,self.salt) | ||
|
pramook
|
r0 | end | ||
|
jittat
|
r162 | def assign_default_site | ||
| # have to catch error when migrating (because self.site is not available). | ||||
| begin | ||||
| if self.site==nil | ||||
| self.site = Site.find_by_name('default') | ||||
|
jittat
|
r190 | if self.site==nil | ||
| self.site = Site.find(1) # when 'default has be renamed' | ||||
| end | ||||
|
jittat
|
r162 | end | ||
| rescue | ||||
| end | ||||
| end | ||||
|
pramook
|
r0 | def password_required? | ||
|
jittat
|
r58 | self.hashed_password.blank? || !self.password.blank? | ||
|
pramook
|
r0 | end | ||
|
jittat
|
r58 | def self.encrypt(string,salt) | ||
|
pramook
|
r0 | Digest::SHA1.hexdigest(salt + string) | ||
| end | ||||
|
jittat
|
r157 | |||
| def uniqueness_of_email_from_activated_users | ||||
|
jittat
|
r158 | user = User.activated_users.find_by_email(self.email) | ||
| if user and (user.login != self.login) | ||||
|
jittat
|
r157 | self.errors.add_to_base("Email has already been taken") | ||
| end | ||||
| end | ||||
|
jittat
|
r158 | |||
| def enough_time_interval_between_same_email_registrations | ||||
|
jittat
|
r160 | return if !self.new_record? | ||
|
jittat
|
r162 | return if self.activated | ||
|
jittat
|
r158 | open_user = User.find_by_email(self.email, | ||
| :order => 'created_at DESC') | ||||
| if open_user and open_user.created_at and | ||||
| (open_user.created_at > Time.now.gmtime - 5.minutes) | ||||
| self.errors.add_to_base("There are already unactivated registrations with this e-mail address (please wait for 5 minutes)") | ||||
| end | ||||
| end | ||||
|
jittat
|
r162 | |||
| def email_validation? | ||||
| begin | ||||
| return VALIDATE_USER_EMAILS | ||||
| rescue | ||||
| return false | ||||
| end | ||||
| end | ||||
|
pramook
|
r0 | end | ||