Produits Entr'ouvert » w.c.s. » Au quotidien

try:

    import lasso

except ImportError:

    pass

from quixote import get_publisher, get_request, redirect, get_response, get_session_manager

from quixote.directory import AccessControlled, Directory

from qommon import template

from qommon.form import *

from qommon import get_cfg, get_logger

from qommon import errors

import qommon.ident.password

from qommon.ident.password_accounts import PasswordAccount

from qommon.admin.texts import TextsDirectory

from wcs.formdef import FormDef

import root

class MyspaceDirectory(Directory):

    _q_exports = ['', 'profile', 'new', 'password', 'remove']

    def _q_traverse(self, path):

        if path != ['new'] and (not get_request().user or get_request().user.anonymous):

            raise errors.AccessUnauthorizedError()

        get_response().filter['bigdiv'] = 'profile'

        get_response().breadcrumb.append(('myspace/', _('My Space')))

        return Directory._q_traverse(self, path)

    def _q_index [html] (self):

        user = get_request().user

        if not user:

            raise errors.AccessUnauthorizedError()

        template.html_top(_('My Space'))

        if user.anonymous:

            return redirect('new')

        if user.is_admin or user.roles:

            root_url = get_publisher().get_root_url()

            '<p id="profile-links">'

            '<a href="%sbackoffice/">%s</a>' % (root_url, _('back office'))

            if user.is_admin:

                ' - <a href="%sadmin/">%s</a>' % (root_url, _('admin'))

            '</p>'

        ident_method = get_cfg('identification', {}).get('methods', ['idp'])[0]

        passwords_cfg = get_cfg('passwords', {})

        if get_session().lasso_session_dump:

            ident_method = 'idp'

        formdef = user.get_formdef()

        if formdef:

            '<h3>%s</h3>' % _('My Profile')

            TextsDirectory.get_html_text('aq-top-of-profile')

            if user.form_data:

                '<ul>'

                for field in formdef.fields:

                    value = user.form_data.get(field.id)

                    '<li>'

                    field.label

                    ' : '

                    value

                    '</li>'

                '</ul>'

            else:

                '<p>%s</p>' % _('Empty profile')

            if ident_method != 'idp':

                '<p class="command"><a href="profile" rel="popup">%s</a></p>' % _('Edit My Profile')

        if ident_method == 'password' and passwords_cfg.get('can_change', False):

            '<p class="command"><a href="password" rel="popup">%s</a></p>' % _('Change My Password')

        '<p class="command"><a href="remove" rel="popup">%s</a></p>' % _('Remove My Account')

        if user:

            user_forms = []

            formdefs = FormDef.select(lambda x: not x.disabled, order_by = 'name')

            user_forms = []

            for formdef in formdefs:

                user_forms.extend(formdef.data_class().get_with_indexed_value(

                            'user_id', user.id))

                #user_forms.extend(formdef.data_class().select(

                #            lambda x: x.user_id == user.id))

            user_forms.sort(lambda x,y: cmp(x.receipt_time, y.receipt_time))

            root.FormsRootDirectory().user_forms(user_forms)

    def profile [html] (self):

        user = get_request().user

        if not user or user.anonymous:

            raise errors.AccessUnauthorizedError()

        form = Form(enctype = 'multipart/form-data')

        formdef = user.get_formdef()

        formdef.add_fields_to_form(form, form_data = user.form_data)

        form.add_submit('submit', _('Apply Changes'))

        form.add_submit('cancel', _('Cancel'))

        if form.get_submit() == 'cancel':

            return redirect('.')

        if form.is_submitted() and not form.has_errors():

            self.profile_submit(form, formdef)

            return redirect('.')

        template.html_top(_('Edit Profile'))

        form.render()

    def profile_submit(self, form, formdef):

        user = get_request().user

        data = formdef.get_data(form)

        user.set_attributes_from_formdata(data)

        user.form_data = data

        user.store()

    def password [html] (self):

        ident_method = get_cfg('identification', {}).get('methods', ['idp'])[0]

        if ident_method != 'password':

            raise errors.TraversalError()

        user = get_request().user

        if not user or user.anonymous:

            raise errors.AccessUnauthorizedError()

        form = Form(enctype = 'multipart/form-data')

        form.add(PasswordWidget, 'new_password', title = _('New Password'),

                required=True)

        form.add(PasswordWidget, 'new2_password', title = _('New Password (confirm)'),

                required=True) 

        form.add_submit('submit', _('Change Password'))

        form.add_submit('cancel', _('Cancel'))

        if form.get_submit() == 'cancel':

            return redirect('.')

        if form.is_submitted() and not form.has_errors():

            qommon.ident.password.check_password(form, 'new_password')

            new_password = form.get_widget('new_password').parse()

            new2_password = form.get_widget('new2_password').parse()

            if new_password != new2_password:

                form.set_error('new2_password', _('Passwords do not match'))

        if form.is_submitted() and not form.has_errors():

            passwords_cfg = get_cfg('passwords', {})

            account = PasswordAccount.get(get_session().username)

            account.hashing_algo = passwords_cfg.get('hashing_algo')

            account.set_password(new_password)

            account.store()

            return redirect('.')

        template.html_top(_('Change Password'))

        form.render()

    def new [html] (self):

        if not get_request().user or not get_request().user.anonymous:

            raise errors.AccessUnauthorizedError()

        form = Form(enctype = 'multipart/form-data')

        formdef = get_publisher().user_class.get_formdef()

        if formdef:

            formdef.add_fields_to_form(form)

        else:

            get_logger().error('missing user formdef (in myspace/new)')

        form.add_submit('submit', _('Register'))

        if form.is_submitted() and not form.has_errors():

            user = get_publisher().user_class()

            data = formdef.get_data(form)

            user.set_attributes_from_formdata(data)

            user.name_identifiers = get_request().user.name_identifiers

            user.lasso_dump = get_request().user.lasso_dump

            user.set_attributes_from_formdata(data)

            user.form_data = data

            user.store()

            get_session().set_user(user.id)

            root_url = get_publisher().get_root_url()

            return redirect('%smyspace' % root_url)

        template.html_top(_('Welcome'))

        form.render()

    def remove [html] (self):

        user = get_request().user

        if not user or user.anonymous:

            raise errors.AccessUnauthorizedError()

        form = Form(enctype = 'multipart/form-data')

        form.widgets.append(HtmlWidget('<p>%s</p>' % _(

                        'Are you really sure you want to remove your account?')))

        form.add_submit('submit', _('Remove my account'))

        form.add_submit('cancel', _('Cancel'))

        if form.get_submit() == 'cancel':

            return redirect('.')

        if form.is_submitted() and not form.has_errors():

            user = get_request().user

            account = PasswordAccount.get_on_index(user.id, str('user_id'))

            get_session_manager().expire_session() 

            account.remove_self()

            user.remove_self()

            return redirect(get_publisher().get_root_url())

        template.html_top(_('Removing Account'))

        form.render()

TextsDirectory.register('aq-top-of-profile',

        N_('Text on top of the profile page'))