mirror of
https://github.com/haiwen/seahub.git
synced 2025-09-19 10:26:17 +00:00
99a9ece04e
* delete thridpart/social_django
* delete social_django in seahub/urls.py
* delete social_django in seahub/settings.py
* delete seahub/notifications/management/commands/send_wxwork_notices.py
* delete social_django in code annotation
* delete seahub/social_core
* delete tests/seahub/social_core
* delete social_core in seahub/urls.py
* delete social_core in seahub/settings.py
* change app_label to auth in SocialAuthUser model
* 2to3 asserts
* 2to3 basestring
* 2to3 dict
* 2to3 except
* 2to3 filter
* 2to3 future
* 2to3 has_key
* 2to3 idioms
* 2to3 import
* 2to3 imports
* 2to3 long
* 2to3 map
* 2to3 next
* 2to3 numliterals
* 2to3 print
* 2to3 raise
* 2to3 raw_input
* 2to3 reduce
* 2to3 reload
* 2to3 set_literal
* 2to3 unicode
* 2to3 urllib
* 2to3 ws_comma
* 2to3 xrange
* 2to3 zip
* add pymysql in __init__.py
* fix encode and decode in seahub/cconvert.py
* fix seafserv_rpc.is_passwd_set in seahub/views/__init__.py
* fix smart_unicode to smart_text
* fix force_unicode to force_text
* delete seaserv.get_session_info
* delete seaserv.ccnet_rpc
* fix indent error in seahub/auth/middleware.py
* update dev-requirements
* update test-requirements
* update requirements
* fix StringIO to BytesIO in thumbnail
* fix seaserv.list_inner_pub_repos to seafile_api.get_inner_pub_repo_list
* fix seaserv.list_org_inner_pub_repos to seafile_api.list_org_inner_pub_repos
* add logger in seahub/utils/__init__.py
* fix sort cmp in seahub/views/__init__.py
* fix sort cmp in seahub/base/management/commands/export_file_access_log.py
* fix sort cmp in seahub/api2/endpoints/repo_trash.py
* fix sort cmp in seahub/api2/endpoints/shared_repos.py
* fix sort cmp in seahub/api2/endpoints/shared_folders.py
* fix sort cmp in seahub/wiki/views.py
* fix sort cmp in seahub/api2/endpoints/wiki_pages.py
* fix sort cmp in seahub/api2/endpoints/group_libraries.py
* fix sort cmp in seahub/base/models.py
* fix sort cmp in seahub/api2/endpoints/upload_links.py
* fix sort cmp in seahub/views/ajax.py
* fix sort cmp in seahub/api2/views.py
* fix sort cmp in seahub/views/wiki.py
* fix sort cmp in seahub/api2/endpoints/repos.py
* fix sort cmp in seahub/api2/endpoints/starred_items.py
* fix sort cmp in seahub/views/file.py
* fix sort cmp in seahub/api2/endpoints/dir.py
* fix sort cmp in seahub/api2/endpoints/share_links.py
* fix cmp to cmp_to_key in seahub/api2/endpoints/admin/device_trusted_ip.py
* fix cmp to cmp_to_key in tests/api/endpoints/admin/test_device_trusted_ip.py
* delete encode('utf-8') in seafile_api.list_dir_by_commit_and_path
* delete encode('utf-8') in is_file_starred
* delete encode('utf-8') in seafile_api.list_dir_by_path
* delete path.encode('utf-8') in seahub/views/file.py
* fix os.write to add encode('utf-8')
* add encode('utf-8') for hashlib
* add encode('utf-8') for hmac
* fix with open(file, 'wb') for binary file
* fix encode and decode in seahub/utils/hasher.py
* fix next in thirdpart/shibboleth/views.py
* fix next in seahub/profile/views.py
* fix next in seahub/notifications/views.py
* fix next in seahub/institutions/views.py
* fix next in seahub/options/views.py
* fix next in seahub/share/views.py
* fix next in seahub/avatar/views.py
* fix next in seahub/views/__init__.py
* fix next in seahub/group/views.py
* fix next in seahub/views/wiki.py
* fix next in seahub/views/sysadmin.py
* fix next in seahub/views/file.py
* fix string.lowercase to string.ascii_lowercase in test
* fix open file add 'rb' in test
* fix self.user.username in test
* add migrations in file_participants
* fix list_org_inner_pub_repos to list_org_inner_pub_repos_by_owner
* fix from seaserv import is_passwd_set to seafile_api.is_password_set
* fix assert bytes resp.content in test
* fix seafile_api.get_inner_pub_repo_list to seafile_api.list_inner_pub_repos_by_owner
* fix seafile_api.is_passwd_set to seafile_api.is_password_set
* fix AccountsApiTest assert length
* rewrite sort_devices cmp to operator.lt
* fix bytes + str in seahub/api2/views.py
* fix assert bytes resp.content in test
* fix hashlib encode in seahub/thirdpart/registration/models.py
* change app_label to base in SocialAuthUser
* fix base64 encode in seahub/base/database_storage/database_storage.py
* fix assert bytes resp.content
* remove path.decode in def mkstemp()
* remove path.decode in FpathToLinkTest
* remove str decode in FileTagTest
* remove mock_write_xls.assert_called_once() in SysUserAdminExportExcelTest
* fix urllib assert in FilesApiTest
* fix link fields in FileCommentsTest
* fix get_related_users_by_repo()
* fix assert list in GetRepoSharedUsersTest
* fix create user in AccountTest
* fix repeated key in dict seahub/api2/views.py
* add drone.yml
* update nginx conf in test
* update test conf in test
* update dist and push after test success
* update drone conf to dist and push
* fix assert in BeSharedReposTest
* fix seafile_api.list_org_inner_pub_repos_by_owner(org_id, username) to seafile_api.list_org_inner_pub_repos(org_id)
* fix seafile_api.list_inner_pub_repos_by_owner(username) to seafile_api.get_inner_pub_repo_list()
* update pyjwt requirement
* update dist branch in drone
* add SKIP in dist and push
* fix StringIO to BytesIO in seahub/avatar/models.py
* fix if org_id > 0 to if org_id and org_id > 0
* remove payment
* fix StringIO to BytesIO in seahub/base/database_storage/database_storage.py
* fix send_message to seafile_api.publish_event in seahub/drafts/utils.py
* fix send_message to seafile_api.publish_event in seahub/api2/views.py
* fix send_message to seafile_api.publish_event in seahub/api2/endpoints/repos.py
* fix send_message to seafile_api.publish_event in seahub/views/file.py
* fix send_message to seafile_api.publish_event in seahub/utils/__init__.py
* fix image_file.read encode in seahub/base/database_storage/database_storage.py
* fix DatabaseStorageTest
* remove .travis.yml
* drone branch include master
368 lines
14 KiB
Python
368 lines
14 KiB
Python
import datetime
|
|
import hashlib
|
|
import random
|
|
import re
|
|
|
|
from django.conf import settings
|
|
|
|
from django.db import models
|
|
# from django.db import transaction
|
|
from django.template.loader import render_to_string
|
|
from django.utils.translation import ugettext_lazy as _
|
|
|
|
from seahub.base.accounts import User
|
|
from seahub.utils import send_html_email
|
|
|
|
SHA1_RE = re.compile('^[a-f0-9]{40}$')
|
|
|
|
|
|
class RegistrationManager(models.Manager):
|
|
"""
|
|
Custom manager for the ``RegistrationProfile`` model.
|
|
|
|
The methods defined here provide shortcuts for account creation
|
|
and activation (including generation and emailing of activation
|
|
keys), and for cleaning out expired inactive accounts.
|
|
|
|
"""
|
|
def activate_user(self, activation_key):
|
|
"""
|
|
Validate an activation key and activate the corresponding
|
|
``User`` if valid.
|
|
|
|
If the key is valid and has not expired, return the ``User``
|
|
after activating.
|
|
|
|
If the key is not valid or has expired, return ``False``.
|
|
|
|
If the key is valid but the ``User`` is already active,
|
|
return ``False``.
|
|
|
|
To prevent reactivation of an account which has been
|
|
deactivated by site administrators, the activation key is
|
|
reset to the string constant ``RegistrationProfile.ACTIVATED``
|
|
after successful activation.
|
|
|
|
"""
|
|
# Make sure the key we're trying conforms to the pattern of a
|
|
# SHA1 hash; if it doesn't, no point trying to look it up in
|
|
# the database.
|
|
if SHA1_RE.search(activation_key):
|
|
try:
|
|
profile = self.get(activation_key=activation_key)
|
|
except self.model.DoesNotExist:
|
|
return False
|
|
if not profile.activation_key_expired():
|
|
# Activate user
|
|
try:
|
|
user = User.objects.get(id=profile.emailuser_id)
|
|
user.is_active = True
|
|
user.save()
|
|
profile.activation_key = self.model.ACTIVATED
|
|
profile.save()
|
|
return user
|
|
except User.DoesNotExist:
|
|
return False
|
|
return False
|
|
|
|
def create_email_user(self, username, email, password,
|
|
site, send_email=True, is_active=False):
|
|
"""
|
|
Create a new, inactive ``User``, generate a
|
|
``RegistrationProfile`` and email its activation key to the
|
|
``User``, returning the new ``User``.
|
|
|
|
By default, an activation email will be sent to the new
|
|
user. To disable this, pass ``send_email=False``.
|
|
|
|
"""
|
|
|
|
user = User.objects.create_user(username, password, False, is_active)
|
|
|
|
registration_profile = self.create_profile(user)
|
|
|
|
if send_email:
|
|
registration_profile.send_activation_email(site)
|
|
|
|
return user
|
|
|
|
def create_inactive_user(self, username, email, password,
|
|
site, send_email=True):
|
|
|
|
return self.create_email_user(username, email, password, site,
|
|
send_email, is_active=False)
|
|
# create_inactive_user = transaction.commit_on_success(create_inactive_user)
|
|
|
|
def create_active_user(self, username, email, password,
|
|
site, send_email=True):
|
|
|
|
return self.create_email_user(username, email, password, site,
|
|
send_email, is_active=True)
|
|
# create_inactive_user = transaction.commit_on_success(create_inactive_user)
|
|
|
|
def create_profile(self, user):
|
|
"""
|
|
Create a ``RegistrationProfile`` for a given
|
|
``User``, and return the ``RegistrationProfile``.
|
|
|
|
The activation key for the ``RegistrationProfile`` will be a
|
|
SHA1 hash, generated from a combination of the ``User``'s
|
|
username and a random salt.
|
|
|
|
"""
|
|
salt = hashlib.sha1(str(random.random()).encode('utf-8')).hexdigest()[:5].encode('utf-8')
|
|
username = user.username
|
|
if isinstance(username, str):
|
|
username = username.encode('utf-8')
|
|
activation_key = hashlib.sha1(salt+username).hexdigest()
|
|
return self.create(emailuser_id=user.id,
|
|
activation_key=activation_key)
|
|
|
|
def delete_expired_users(self):
|
|
"""
|
|
Remove expired instances of ``RegistrationProfile`` and their
|
|
associated ``User``s.
|
|
|
|
Accounts to be deleted are identified by searching for
|
|
instances of ``RegistrationProfile`` with expired activation
|
|
keys, and then checking to see if their associated ``User``
|
|
instances have the field ``is_active`` set to ``False``; any
|
|
``User`` who is both inactive and has an expired activation
|
|
key will be deleted.
|
|
|
|
It is recommended that this method be executed regularly as
|
|
part of your routine site maintenance; this application
|
|
provides a custom management command which will call this
|
|
method, accessible as ``manage.py cleanupregistration``.
|
|
|
|
Regularly clearing out accounts which have never been
|
|
activated serves two useful purposes:
|
|
|
|
1. It alleviates the ocasional need to reset a
|
|
``RegistrationProfile`` and/or re-send an activation email
|
|
when a user does not receive or does not act upon the
|
|
initial activation email; since the account will be
|
|
deleted, the user will be able to simply re-register and
|
|
receive a new activation key.
|
|
|
|
2. It prevents the possibility of a malicious user registering
|
|
one or more accounts and never activating them (thus
|
|
denying the use of those usernames to anyone else); since
|
|
those accounts will be deleted, the usernames will become
|
|
available for use again.
|
|
|
|
If you have a troublesome ``User`` and wish to disable their
|
|
account while keeping it in the database, simply delete the
|
|
associated ``RegistrationProfile``; an inactive ``User`` which
|
|
does not have an associated ``RegistrationProfile`` will not
|
|
be deleted.
|
|
|
|
"""
|
|
for profile in self.all():
|
|
if profile.activation_key_expired():
|
|
try:
|
|
user = User.objects.get(id=profile.emailuser_id)
|
|
if not user.is_active:
|
|
user.delete()
|
|
except User.DoesNotExist:
|
|
pass
|
|
|
|
|
|
class RegistrationProfile(models.Model):
|
|
"""
|
|
A simple profile which stores an activation key for use during
|
|
user account registration.
|
|
|
|
Generally, you will not want to interact directly with instances
|
|
of this model; the provided manager includes methods
|
|
for creating and activating new accounts, as well as for cleaning
|
|
out accounts which have never been activated.
|
|
|
|
While it is possible to use this model as the value of the
|
|
``AUTH_PROFILE_MODULE`` setting, it's not recommended that you do
|
|
so. This model's sole purpose is to store data temporarily during
|
|
account registration and activation.
|
|
|
|
"""
|
|
ACTIVATED = "ALREADY_ACTIVATED"
|
|
|
|
# user = models.ForeignKey(User, unique=True, verbose_name=_('user'))
|
|
emailuser_id = models.IntegerField()
|
|
activation_key = models.CharField(_('activation key'), max_length=40)
|
|
|
|
objects = RegistrationManager()
|
|
|
|
class Meta:
|
|
verbose_name = _('registration profile')
|
|
verbose_name_plural = _('registration profiles')
|
|
|
|
def __unicode__(self):
|
|
return "Registration information for %s" % self.emailuser_id
|
|
|
|
def activation_key_expired(self):
|
|
"""
|
|
Determine whether this ``RegistrationProfile``'s activation
|
|
key has expired, returning a boolean -- ``True`` if the key
|
|
has expired.
|
|
|
|
Key expiration is determined by a two-step process:
|
|
|
|
1. If the user has already activated, the key will have been
|
|
reset to the string constant ``ACTIVATED``. Re-activating
|
|
is not permitted, and so this method returns ``True`` in
|
|
this case.
|
|
|
|
2. Otherwise, the date the user signed up is incremented by
|
|
the number of days specified in the setting
|
|
``ACCOUNT_ACTIVATION_DAYS`` (which should be the number of
|
|
days after signup during which a user is allowed to
|
|
activate their account); if the result is less than or
|
|
equal to the current date, the key has expired and this
|
|
method returns ``True``.
|
|
|
|
"""
|
|
expiration_date = datetime.timedelta(days=settings.ACCOUNT_ACTIVATION_DAYS)
|
|
|
|
try:
|
|
user = User.objects.get(id=self.emailuser_id)
|
|
except User.DoesNotExist:
|
|
return False
|
|
|
|
return self.activation_key == self.ACTIVATED or \
|
|
(datetime.datetime.fromtimestamp(user.ctime/1000000) + expiration_date <= datetime.datetime.now())
|
|
|
|
activation_key_expired.boolean = True
|
|
|
|
def send_activation_email(self, site):
|
|
"""
|
|
Send an activation email to the user associated with this
|
|
``RegistrationProfile``.
|
|
|
|
The activation email will make use of two templates:
|
|
|
|
``registration/activation_email_subject.txt``
|
|
This template will be used for the subject line of the
|
|
email. Because it is used as the subject line of an email,
|
|
this template's output **must** be only a single line of
|
|
text; output longer than one line will be forcibly joined
|
|
into only a single line.
|
|
|
|
``registration/activation_email.txt``
|
|
This template will be used for the body of the email.
|
|
|
|
These templates will each receive the following context
|
|
variables:
|
|
|
|
``activation_key``
|
|
The activation key for the new account.
|
|
|
|
``expiration_days``
|
|
The number of days remaining during which the account may
|
|
be activated.
|
|
|
|
``site``
|
|
An object representing the site on which the user
|
|
registered; depending on whether ``django.contrib.sites``
|
|
is installed, this may be an instance of either
|
|
``django.contrib.sites.models.Site`` (if the sites
|
|
application is installed) or
|
|
``django.contrib.sites.models.RequestSite`` (if
|
|
not). Consult the documentation for the Django sites
|
|
framework for details regarding these objects' interfaces.
|
|
|
|
"""
|
|
ctx_dict = { 'activation_key': self.activation_key,
|
|
'expiration_days': settings.ACCOUNT_ACTIVATION_DAYS,
|
|
'site': site,
|
|
'SITE_ROOT': settings.SITE_ROOT }
|
|
subject = render_to_string('registration/activation_email_subject.txt',
|
|
ctx_dict)
|
|
# Email subject *must not* contain newlines
|
|
subject = ''.join(subject.splitlines())
|
|
try:
|
|
user = User.objects.get(id=self.emailuser_id)
|
|
send_html_email(subject, 'registration/activation_email.html',
|
|
ctx_dict, None, [user.username])
|
|
except User.DoesNotExist:
|
|
pass
|
|
|
|
|
|
########## signal handlers
|
|
import logging
|
|
|
|
from django.core.urlresolvers import reverse
|
|
from django.dispatch import receiver
|
|
from django.utils.http import urlquote
|
|
|
|
from registration.signals import user_registered
|
|
from seahub.utils import get_site_scheme_and_netloc
|
|
|
|
from constance import config
|
|
|
|
# Get an instance of a logger
|
|
logger = logging.getLogger(__name__)
|
|
|
|
def notify_admins_on_activate_request(reg_email):
|
|
ctx_dict = {
|
|
"site_name": settings.SITE_NAME,
|
|
"user_search_link": "%s%s?email=%s" % (
|
|
get_site_scheme_and_netloc(), reverse("user_search"),
|
|
urlquote(reg_email)),
|
|
}
|
|
|
|
subject = render_to_string('registration/activate_request_email_subject.txt',
|
|
ctx_dict)
|
|
# Email subject *must not* contain newlines
|
|
subject = ''.join(subject.splitlines())
|
|
|
|
message = render_to_string('registration/activate_request_email.txt',
|
|
ctx_dict)
|
|
|
|
admins = User.objects.get_superusers()
|
|
for admin in admins:
|
|
try:
|
|
admin.email_user(subject, message, settings.DEFAULT_FROM_EMAIL)
|
|
except Exception as e:
|
|
logger.error(e)
|
|
|
|
def notify_admins_on_register_complete(reg_email):
|
|
ctx_dict = {
|
|
"site_name": settings.SITE_NAME,
|
|
"user_search_link": "%s%s?email=%s" % (
|
|
get_site_scheme_and_netloc(), reverse("user_search"),
|
|
urlquote(reg_email)),
|
|
"reg_email": reg_email,
|
|
}
|
|
|
|
subject = render_to_string('registration/register_complete_email_subject.html',
|
|
ctx_dict)
|
|
# Email subject *must not* contain newlines
|
|
subject = ''.join(subject.splitlines())
|
|
|
|
message = render_to_string('registration/register_complete_email.html',
|
|
ctx_dict)
|
|
|
|
admins = User.objects.get_superusers()
|
|
for admin in admins:
|
|
try:
|
|
admin.email_user(subject, message, settings.DEFAULT_FROM_EMAIL)
|
|
except Exception as e:
|
|
logger.error(e)
|
|
|
|
@receiver(user_registered)
|
|
def email_admin_on_registration(sender, **kwargs):
|
|
"""Send an email notification to admin when a newly registered user need
|
|
activate.
|
|
|
|
This email will be sent when both ``ACTIVATE_AFTER_REGISTRATION`` and
|
|
``REGISTRATION_SEND_MAIL`` are set to False.
|
|
"""
|
|
if bool(config.ACTIVATE_AFTER_REGISTRATION) is False and \
|
|
bool(config.REGISTRATION_SEND_MAIL) is False:
|
|
reg_email = kwargs['user'].email
|
|
notify_admins_on_activate_request(reg_email)
|
|
|
|
if settings.NOTIFY_ADMIN_AFTER_REGISTRATION is True:
|
|
reg_email = kwargs['user'].email
|
|
notify_admins_on_register_complete(reg_email)
|