Mercurial > hg > soundsoftware-site

annotate app/models/.svn/text-base/user.rb.svn-base @ 128:07fa8a8b56a8

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Update to Redmine trunk rev 4732
author Chris Cannam
date Wed, 19 Jan 2011 15:04:22 +0000
parents 8661b858af72
children 5e974759e8b2 0579821a129a
rev   line source
Chris@0 1 # Redmine - project management software
Chris@0 2 # Copyright (C) 2006-2009 Jean-Philippe Lang
Chris@0 3 #
Chris@0 4 # This program is free software; you can redistribute it and/or
Chris@0 5 # modify it under the terms of the GNU General Public License
Chris@0 6 # as published by the Free Software Foundation; either version 2
Chris@0 7 # of the License, or (at your option) any later version.
Chris@0 8 #
Chris@0 9 # This program is distributed in the hope that it will be useful,
Chris@0 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
Chris@0 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
Chris@0 12 # GNU General Public License for more details.
Chris@0 13 #
Chris@0 14 # You should have received a copy of the GNU General Public License
Chris@0 15 # along with this program; if not, write to the Free Software
Chris@0 16 # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
Chris@0 17
Chris@0 18 require "digest/sha1"
Chris@0 19
Chris@0 20 class User < Principal
Chris@119 21 include Redmine::SafeAttributes
Chris@119 22
Chris@0 23 # Account statuses
Chris@0 24 STATUS_ANONYMOUS = 0
Chris@0 25 STATUS_ACTIVE = 1
Chris@0 26 STATUS_REGISTERED = 2
Chris@0 27 STATUS_LOCKED = 3
Chris@0 28
Chris@0 29 USER_FORMATS = {
Chris@0 30 :firstname_lastname => '#{firstname} #{lastname}',
Chris@0 31 :firstname => '#{firstname}',
Chris@0 32 :lastname_firstname => '#{lastname} #{firstname}',
Chris@0 33 :lastname_coma_firstname => '#{lastname}, #{firstname}',
Chris@0 34 :username => '#{login}'
Chris@0 35 }
Chris@0 36
chris@37 37 MAIL_NOTIFICATION_OPTIONS = [
Chris@119 38 ['all', :label_user_mail_option_all],
Chris@119 39 ['selected', :label_user_mail_option_selected],
Chris@119 40 ['only_my_events', :label_user_mail_option_only_my_events],
Chris@119 41 ['only_assigned', :label_user_mail_option_only_assigned],
Chris@119 42 ['only_owner', :label_user_mail_option_only_owner],
Chris@119 43 ['none', :label_user_mail_option_none]
Chris@119 44 ]
chris@37 45
Chris@0 46 has_and_belongs_to_many :groups, :after_add => Proc.new {|user, group| group.user_added(user)},
Chris@0 47 :after_remove => Proc.new {|user, group| group.user_removed(user)}
Chris@0 48 has_many :issue_categories, :foreign_key => 'assigned_to_id', :dependent => :nullify
Chris@0 49 has_many :changesets, :dependent => :nullify
Chris@0 50 has_one :preference, :dependent => :destroy, :class_name => 'UserPreference'
Chris@128 51 has_one :rss_token, :class_name => 'Token', :conditions => "action='feeds'"
Chris@128 52 has_one :api_token, :class_name => 'Token', :conditions => "action='api'"
Chris@0 53 belongs_to :auth_source
Chris@0 54
Chris@0 55 # Active non-anonymous users scope
Chris@0 56 named_scope :active, :conditions => "#{User.table_name}.status = #{STATUS_ACTIVE}"
Chris@0 57
Chris@0 58 acts_as_customizable
Chris@0 59
Chris@0 60 attr_accessor :password, :password_confirmation
Chris@0 61 attr_accessor :last_before_login_on
Chris@0 62 # Prevents unauthorized assignments
Chris@119 63 attr_protected :login, :admin, :password, :password_confirmation, :hashed_password
Chris@0 64
Chris@0 65 validates_presence_of :login, :firstname, :lastname, :mail, :if => Proc.new { |user| !user.is_a?(AnonymousUser) }
Chris@0 66 validates_uniqueness_of :login, :if => Proc.new { |user| !user.login.blank? }, :case_sensitive => false
Chris@0 67 validates_uniqueness_of :mail, :if => Proc.new { |user| !user.mail.blank? }, :case_sensitive => false
Chris@0 68 # Login must contain lettres, numbers, underscores only
Chris@0 69 validates_format_of :login, :with => /^[a-z0-9_\-@\.]*$/i
Chris@0 70 validates_length_of :login, :maximum => 30
Chris@0 71 validates_length_of :firstname, :lastname, :maximum => 30
Chris@0 72 validates_format_of :mail, :with => /^([^@\s]+)@((?:[-a-z0-9]+\.)+[a-z]{2,})$/i, :allow_nil => true
Chris@0 73 validates_length_of :mail, :maximum => 60, :allow_nil => true
Chris@0 74 validates_confirmation_of :password, :allow_nil => true
Chris@119 75 validates_inclusion_of :mail_notification, :in => MAIL_NOTIFICATION_OPTIONS.collect(&:first), :allow_blank => true
Chris@0 76
Chris@128 77 before_destroy :remove_references_before_destroy
Chris@128 78
Chris@0 79 def before_create
chris@37 80 self.mail_notification = Setting.default_notification_option if self.mail_notification.blank?
Chris@0 81 true
Chris@0 82 end
Chris@0 83
Chris@0 84 def before_save
Chris@0 85 # update hashed_password if password was set
Chris@0 86 self.hashed_password = User.hash_password(self.password) if self.password && self.auth_source_id.blank?
Chris@0 87 end
Chris@0 88
Chris@0 89 def reload(*args)
Chris@0 90 @name = nil
Chris@0 91 super
Chris@0 92 end
Chris@0 93
Chris@1 94 def mail=(arg)
Chris@1 95 write_attribute(:mail, arg.to_s.strip)
Chris@1 96 end
Chris@1 97
Chris@0 98 def identity_url=(url)
Chris@0 99 if url.blank?
Chris@0 100 write_attribute(:identity_url, '')
Chris@0 101 else
Chris@0 102 begin
Chris@0 103 write_attribute(:identity_url, OpenIdAuthentication.normalize_identifier(url))
Chris@0 104 rescue OpenIdAuthentication::InvalidOpenId
Chris@0 105 # Invlaid url, don't save
Chris@0 106 end
Chris@0 107 end
Chris@0 108 self.read_attribute(:identity_url)
Chris@0 109 end
Chris@0 110
Chris@0 111 # Returns the user that matches provided login and password, or nil
Chris@0 112 def self.try_to_login(login, password)
Chris@0 113 # Make sure no one can sign in with an empty password
Chris@0 114 return nil if password.to_s.empty?
Chris@0 115 user = find_by_login(login)
Chris@0 116 if user
Chris@0 117 # user is already in local database
Chris@0 118 return nil if !user.active?
Chris@0 119 if user.auth_source
Chris@0 120 # user has an external authentication method
Chris@0 121 return nil unless user.auth_source.authenticate(login, password)
Chris@0 122 else
Chris@0 123 # authentication with local password
Chris@0 124 return nil unless User.hash_password(password) == user.hashed_password
Chris@0 125 end
Chris@0 126 else
Chris@0 127 # user is not yet registered, try to authenticate with available sources
Chris@0 128 attrs = AuthSource.authenticate(login, password)
Chris@0 129 if attrs
Chris@0 130 user = new(attrs)
Chris@0 131 user.login = login
Chris@0 132 user.language = Setting.default_language
Chris@0 133 if user.save
Chris@0 134 user.reload
Chris@0 135 logger.info("User '#{user.login}' created from external auth source: #{user.auth_source.type} - #{user.auth_source.name}") if logger && user.auth_source
Chris@0 136 end
Chris@0 137 end
Chris@0 138 end
Chris@0 139 user.update_attribute(:last_login_on, Time.now) if user && !user.new_record?
Chris@0 140 user
Chris@0 141 rescue => text
Chris@0 142 raise text
Chris@0 143 end
Chris@0 144
Chris@0 145 # Returns the user who matches the given autologin +key+ or nil
Chris@0 146 def self.try_to_autologin(key)
Chris@0 147 tokens = Token.find_all_by_action_and_value('autologin', key)
Chris@0 148 # Make sure there's only 1 token that matches the key
Chris@0 149 if tokens.size == 1
Chris@0 150 token = tokens.first
Chris@0 151 if (token.created_on > Setting.autologin.to_i.day.ago) && token.user && token.user.active?
Chris@0 152 token.user.update_attribute(:last_login_on, Time.now)
Chris@0 153 token.user
Chris@0 154 end
Chris@0 155 end
Chris@0 156 end
Chris@0 157
Chris@0 158 # Return user's full name for display
Chris@0 159 def name(formatter = nil)
Chris@0 160 if formatter
Chris@0 161 eval('"' + (USER_FORMATS[formatter] || USER_FORMATS[:firstname_lastname]) + '"')
Chris@0 162 else
Chris@0 163 @name ||= eval('"' + (USER_FORMATS[Setting.user_format] || USER_FORMATS[:firstname_lastname]) + '"')
Chris@0 164 end
Chris@0 165 end
Chris@0 166
Chris@0 167 def active?
Chris@0 168 self.status == STATUS_ACTIVE
Chris@0 169 end
Chris@0 170
Chris@0 171 def registered?
Chris@0 172 self.status == STATUS_REGISTERED
Chris@0 173 end
Chris@0 174
Chris@0 175 def locked?
Chris@0 176 self.status == STATUS_LOCKED
Chris@0 177 end
Chris@0 178
Chris@14 179 def activate
Chris@14 180 self.status = STATUS_ACTIVE
Chris@14 181 end
Chris@14 182
Chris@14 183 def register
Chris@14 184 self.status = STATUS_REGISTERED
Chris@14 185 end
Chris@14 186
Chris@14 187 def lock
Chris@14 188 self.status = STATUS_LOCKED
Chris@14 189 end
Chris@14 190
Chris@14 191 def activate!
Chris@14 192 update_attribute(:status, STATUS_ACTIVE)
Chris@14 193 end
Chris@14 194
Chris@14 195 def register!
Chris@14 196 update_attribute(:status, STATUS_REGISTERED)
Chris@14 197 end
Chris@14 198
Chris@14 199 def lock!
Chris@14 200 update_attribute(:status, STATUS_LOCKED)
Chris@14 201 end
Chris@14 202
Chris@0 203 def check_password?(clear_password)
Chris@0 204 if auth_source_id.present?
Chris@0 205 auth_source.authenticate(self.login, clear_password)
Chris@0 206 else
Chris@0 207 User.hash_password(clear_password) == self.hashed_password
Chris@0 208 end
Chris@0 209 end
Chris@0 210
Chris@0 211 # Does the backend storage allow this user to change their password?
Chris@0 212 def change_password_allowed?
Chris@0 213 return true if auth_source_id.blank?
Chris@0 214 return auth_source.allow_password_changes?
Chris@0 215 end
Chris@0 216
Chris@0 217 # Generate and set a random password. Useful for automated user creation
Chris@0 218 # Based on Token#generate_token_value
Chris@0 219 #
Chris@0 220 def random_password
Chris@0 221 chars = ("a".."z").to_a + ("A".."Z").to_a + ("0".."9").to_a
Chris@0 222 password = ''
Chris@0 223 40.times { |i| password << chars[rand(chars.size-1)] }
Chris@0 224 self.password = password
Chris@0 225 self.password_confirmation = password
Chris@0 226 self
Chris@0 227 end
Chris@0 228
Chris@0 229 def pref
Chris@0 230 self.preference ||= UserPreference.new(:user => self)
Chris@0 231 end
Chris@0 232
Chris@0 233 def time_zone
Chris@0 234 @time_zone ||= (self.pref.time_zone.blank? ? nil : ActiveSupport::TimeZone[self.pref.time_zone])
Chris@0 235 end
Chris@0 236
Chris@0 237 def wants_comments_in_reverse_order?
Chris@0 238 self.pref[:comments_sorting] == 'desc'
Chris@0 239 end
Chris@0 240
Chris@0 241 # Return user's RSS key (a 40 chars long string), used to access feeds
Chris@0 242 def rss_key
Chris@0 243 token = self.rss_token || Token.create(:user => self, :action => 'feeds')
Chris@0 244 token.value
Chris@0 245 end
Chris@0 246
Chris@0 247 # Return user's API key (a 40 chars long string), used to access the API
Chris@0 248 def api_key
Chris@0 249 token = self.api_token || self.create_api_token(:action => 'api')
Chris@0 250 token.value
Chris@0 251 end
Chris@0 252
Chris@0 253 # Return an array of project ids for which the user has explicitly turned mail notifications on
Chris@0 254 def notified_projects_ids
Chris@0 255 @notified_projects_ids ||= memberships.select {|m| m.mail_notification?}.collect(&:project_id)
Chris@0 256 end
Chris@0 257
Chris@0 258 def notified_project_ids=(ids)
Chris@0 259 Member.update_all("mail_notification = #{connection.quoted_false}", ['user_id = ?', id])
Chris@0 260 Member.update_all("mail_notification = #{connection.quoted_true}", ['user_id = ? AND project_id IN (?)', id, ids]) if ids && !ids.empty?
Chris@0 261 @notified_projects_ids = nil
Chris@0 262 notified_projects_ids
Chris@0 263 end
Chris@0 264
Chris@128 265 def valid_notification_options
Chris@128 266 self.class.valid_notification_options(self)
Chris@128 267 end
Chris@128 268
chris@37 269 # Only users that belong to more than 1 project can select projects for which they are notified
Chris@128 270 def self.valid_notification_options(user=nil)
chris@37 271 # Note that @user.membership.size would fail since AR ignores
chris@37 272 # :include association option when doing a count
Chris@128 273 if user.nil? || user.memberships.length < 1
Chris@128 274 MAIL_NOTIFICATION_OPTIONS.reject {|option| option.first == 'selected'}
chris@37 275 else
chris@37 276 MAIL_NOTIFICATION_OPTIONS
chris@37 277 end
chris@37 278 end
chris@37 279
Chris@0 280 # Find a user account by matching the exact login and then a case-insensitive
Chris@0 281 # version. Exact matches will be given priority.
Chris@0 282 def self.find_by_login(login)
Chris@0 283 # force string comparison to be case sensitive on MySQL
Chris@0 284 type_cast = (ActiveRecord::Base.connection.adapter_name == 'MySQL') ? 'BINARY' : ''
Chris@0 285
Chris@0 286 # First look for an exact match
Chris@0 287 user = first(:conditions => ["#{type_cast} login = ?", login])
Chris@0 288 # Fail over to case-insensitive if none was found
Chris@0 289 user ||= first(:conditions => ["#{type_cast} LOWER(login) = ?", login.to_s.downcase])
Chris@0 290 end
Chris@0 291
Chris@0 292 def self.find_by_rss_key(key)
Chris@0 293 token = Token.find_by_value(key)
Chris@0 294 token && token.user.active? ? token.user : nil
Chris@0 295 end
Chris@0 296
Chris@0 297 def self.find_by_api_key(key)
Chris@0 298 token = Token.find_by_action_and_value('api', key)
Chris@0 299 token && token.user.active? ? token.user : nil
Chris@0 300 end
Chris@0 301
Chris@0 302 # Makes find_by_mail case-insensitive
Chris@0 303 def self.find_by_mail(mail)
Chris@0 304 find(:first, :conditions => ["LOWER(mail) = ?", mail.to_s.downcase])
Chris@0 305 end
Chris@0 306
Chris@0 307 def to_s
Chris@0 308 name
Chris@0 309 end
Chris@0 310
Chris@0 311 # Returns the current day according to user's time zone
Chris@0 312 def today
Chris@0 313 if time_zone.nil?
Chris@0 314 Date.today
Chris@0 315 else
Chris@0 316 Time.now.in_time_zone(time_zone).to_date
Chris@0 317 end
Chris@0 318 end
Chris@0 319
Chris@0 320 def logged?
Chris@0 321 true
Chris@0 322 end
Chris@0 323
Chris@0 324 def anonymous?
Chris@0 325 !logged?
Chris@0 326 end
Chris@0 327
Chris@0 328 # Return user's roles for project
Chris@0 329 def roles_for_project(project)
Chris@0 330 roles = []
Chris@0 331 # No role on archived projects
Chris@0 332 return roles unless project && project.active?
Chris@0 333 if logged?
Chris@0 334 # Find project membership
Chris@0 335 membership = memberships.detect {|m| m.project_id == project.id}
Chris@0 336 if membership
Chris@0 337 roles = membership.roles
Chris@0 338 else
Chris@0 339 @role_non_member ||= Role.non_member
Chris@0 340 roles << @role_non_member
Chris@0 341 end
Chris@0 342 else
Chris@0 343 @role_anonymous ||= Role.anonymous
Chris@0 344 roles << @role_anonymous
Chris@0 345 end
Chris@0 346 roles
Chris@0 347 end
Chris@0 348
Chris@0 349 # Return true if the user is a member of project
Chris@0 350 def member_of?(project)
Chris@0 351 !roles_for_project(project).detect {|role| role.member?}.nil?
Chris@0 352 end
Chris@0 353
chris@37 354 # Return true if the user is allowed to do the specified action on a specific context
chris@37 355 # Action can be:
Chris@0 356 # * a parameter-like Hash (eg. :controller => 'projects', :action => 'edit')
Chris@0 357 # * a permission Symbol (eg. :edit_project)
chris@37 358 # Context can be:
chris@37 359 # * a project : returns true if user is allowed to do the specified action on this project
chris@37 360 # * a group of projects : returns true if user is allowed on every project
chris@37 361 # * nil with options[:global] set : check if user has at least one role allowed for this action,
chris@37 362 # or falls back to Non Member / Anonymous permissions depending if the user is logged
chris@37 363 def allowed_to?(action, context, options={})
chris@37 364 if context && context.is_a?(Project)
Chris@0 365 # No action allowed on archived projects
chris@37 366 return false unless context.active?
Chris@0 367 # No action allowed on disabled modules
chris@37 368 return false unless context.allows_to?(action)
Chris@0 369 # Admin users are authorized for anything else
Chris@0 370 return true if admin?
Chris@0 371
chris@37 372 roles = roles_for_project(context)
Chris@0 373 return false unless roles
chris@37 374 roles.detect {|role| (context.is_public? || role.member?) && role.allowed_to?(action)}
Chris@0 375
chris@37 376 elsif context && context.is_a?(Array)
chris@37 377 # Authorize if user is authorized on every element of the array
chris@37 378 context.map do |project|
chris@37 379 allowed_to?(action,project,options)
chris@37 380 end.inject do |memo,allowed|
chris@37 381 memo && allowed
chris@37 382 end
Chris@0 383 elsif options[:global]
Chris@0 384 # Admin users are always authorized
Chris@0 385 return true if admin?
Chris@0 386
Chris@0 387 # authorize if user has at least one role that has this permission
Chris@0 388 roles = memberships.collect {|m| m.roles}.flatten.uniq
Chris@0 389 roles.detect {|r| r.allowed_to?(action)} || (self.logged? ? Role.non_member.allowed_to?(action) : Role.anonymous.allowed_to?(action))
Chris@0 390 else
Chris@0 391 false
Chris@0 392 end
Chris@0 393 end
chris@22 394
chris@22 395 # Is the user allowed to do the specified action on any project?
chris@22 396 # See allowed_to? for the actions and valid options.
chris@22 397 def allowed_to_globally?(action, options)
chris@22 398 allowed_to?(action, nil, options.reverse_merge(:global => true))
chris@22 399 end
Chris@119 400
Chris@119 401 safe_attributes 'login',
Chris@119 402 'firstname',
Chris@119 403 'lastname',
Chris@119 404 'mail',
Chris@119 405 'mail_notification',
Chris@119 406 'language',
Chris@119 407 'custom_field_values',
Chris@119 408 'custom_fields',
Chris@119 409 'identity_url'
Chris@119 410
Chris@119 411 safe_attributes 'status',
Chris@119 412 'auth_source_id',
Chris@119 413 :if => lambda {|user, current_user| current_user.admin?}
Chris@119 414
Chris@119 415 safe_attributes 'group_ids',
Chris@119 416 :if => lambda {|user, current_user| current_user.admin? && !user.new_record?}
Chris@0 417
chris@37 418 # Utility method to help check if a user should be notified about an
chris@37 419 # event.
chris@37 420 #
chris@37 421 # TODO: only supports Issue events currently
chris@37 422 def notify_about?(object)
Chris@119 423 case mail_notification
Chris@119 424 when 'all'
chris@37 425 true
Chris@119 426 when 'selected'
chris@37 427 # Handled by the Project
Chris@119 428 when 'none'
chris@37 429 false
Chris@119 430 when 'only_my_events'
chris@37 431 if object.is_a?(Issue) && (object.author == self || object.assigned_to == self)
chris@37 432 true
chris@37 433 else
chris@37 434 false
chris@37 435 end
Chris@119 436 when 'only_assigned'
chris@37 437 if object.is_a?(Issue) && object.assigned_to == self
chris@37 438 true
chris@37 439 else
chris@37 440 false
chris@37 441 end
Chris@119 442 when 'only_owner'
chris@37 443 if object.is_a?(Issue) && object.author == self
chris@37 444 true
chris@37 445 else
chris@37 446 false
chris@37 447 end
chris@37 448 else
chris@37 449 false
chris@37 450 end
chris@37 451 end
chris@37 452
Chris@0 453 def self.current=(user)
Chris@0 454 @current_user = user
Chris@0 455 end
Chris@0 456
Chris@0 457 def self.current
Chris@0 458 @current_user ||= User.anonymous
Chris@0 459 end
Chris@0 460
Chris@0 461 # Returns the anonymous user. If the anonymous user does not exist, it is created. There can be only
Chris@0 462 # one anonymous user per database.
Chris@0 463 def self.anonymous
Chris@0 464 anonymous_user = AnonymousUser.find(:first)
Chris@0 465 if anonymous_user.nil?
Chris@0 466 anonymous_user = AnonymousUser.create(:lastname => 'Anonymous', :firstname => '', :mail => '', :login => '', :status => 0)
Chris@0 467 raise 'Unable to create the anonymous user.' if anonymous_user.new_record?
Chris@0 468 end
Chris@0 469 anonymous_user
Chris@0 470 end
Chris@0 471
Chris@0 472 protected
Chris@0 473
Chris@0 474 def validate
Chris@0 475 # Password length validation based on setting
Chris@0 476 if !password.nil? && password.size < Setting.password_min_length.to_i
Chris@0 477 errors.add(:password, :too_short, :count => Setting.password_min_length.to_i)
Chris@0 478 end
Chris@0 479 end
Chris@0 480
Chris@0 481 private
Chris@128 482
Chris@128 483 # Removes references that are not handled by associations
Chris@128 484 # Things that are not deleted are reassociated with the anonymous user
Chris@128 485 def remove_references_before_destroy
Chris@128 486 return if self.id.nil?
Chris@128 487
Chris@128 488 substitute = User.anonymous
Chris@128 489 Attachment.update_all ['author_id = ?', substitute.id], ['author_id = ?', id]
Chris@128 490 Comment.update_all ['author_id = ?', substitute.id], ['author_id = ?', id]
Chris@128 491 Issue.update_all ['author_id = ?', substitute.id], ['author_id = ?', id]
Chris@128 492 Issue.update_all 'assigned_to_id = NULL', ['assigned_to_id = ?', id]
Chris@128 493 Journal.update_all ['user_id = ?', substitute.id], ['user_id = ?', id]
Chris@128 494 JournalDetail.update_all ['old_value = ?', substitute.id.to_s], ["property = 'attr' AND prop_key = 'assigned_to_id' AND old_value = ?", id.to_s]
Chris@128 495 JournalDetail.update_all ['value = ?', substitute.id.to_s], ["property = 'attr' AND prop_key = 'assigned_to_id' AND value = ?", id.to_s]
Chris@128 496 Message.update_all ['author_id = ?', substitute.id], ['author_id = ?', id]
Chris@128 497 News.update_all ['author_id = ?', substitute.id], ['author_id = ?', id]
Chris@128 498 # Remove private queries and keep public ones
Chris@128 499 Query.delete_all ['user_id = ? AND is_public = ?', id, false]
Chris@128 500 Query.update_all ['user_id = ?', substitute.id], ['user_id = ?', id]
Chris@128 501 TimeEntry.update_all ['user_id = ?', substitute.id], ['user_id = ?', id]
Chris@128 502 Token.delete_all ['user_id = ?', id]
Chris@128 503 Watcher.delete_all ['user_id = ?', id]
Chris@128 504 WikiContent.update_all ['author_id = ?', substitute.id], ['author_id = ?', id]
Chris@128 505 WikiContent::Version.update_all ['author_id = ?', substitute.id], ['author_id = ?', id]
Chris@128 506 end
Chris@0 507
Chris@0 508 # Return password digest
Chris@0 509 def self.hash_password(clear_password)
Chris@0 510 Digest::SHA1.hexdigest(clear_password || "")
Chris@0 511 end
Chris@0 512 end
Chris@0 513
Chris@0 514 class AnonymousUser < User
Chris@0 515
Chris@0 516 def validate_on_create
Chris@0 517 # There should be only one AnonymousUser in the database
Chris@0 518 errors.add_to_base 'An anonymous user already exists.' if AnonymousUser.find(:first)
Chris@0 519 end
Chris@0 520
Chris@0 521 def available_custom_fields
Chris@0 522 []
Chris@0 523 end
Chris@0 524
Chris@0 525 # Overrides a few properties
Chris@0 526 def logged?; false end
Chris@0 527 def admin; false end
Chris@0 528 def name(*args); I18n.t(:label_user_anonymous) end
Chris@0 529 def mail; nil end
Chris@0 530 def time_zone; nil end
Chris@0 531 def rss_key; nil end
Chris@128 532
Chris@128 533 # Anonymous user can not be destroyed
Chris@128 534 def destroy
Chris@128 535 false
Chris@128 536 end
Chris@0 537 end