liquid_feedback_frontend: 774c0188a4a0 model/member.lua

253 selector:join("privilege", "__model_member__privilege", { "member.id = __model_member__privilege.member_id AND __model_member__privilege.voting_right AND __model_member__privilege.unit_id = ?", args.voting_right_for_unit_id })

254 end

255 if args.order then

256 if args.order == "id" then

257 selector:add_order_by("id")

258 elseif args.order == "login" then

259 selector:add_order_by("login")

260 elseif args.order == "name" then

261 selector:add_order_by("name")

262 else

263 error("invalid order")

264 end

265 end

266 return selector

267 end

268

269 function Member.object:set_password(password)

270 local hash = os.crypt(

271 password,

272 "$1$" .. multirand.string(

273 8,

274 "0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz./"

275 )

276 )

277 assert(hash, "os.crypt failed")

278 self.password = hash

279 end

280

281 function Member.object:check_password(password)

282 if type(password) == "string" and type(self.password) == "string" then

283 return os.crypt(password, self.password) == self.password

284 else

285 return false

286 end

287 end

288

289 function Member.object_get:published_contacts()

290 return Member:new_selector()

291 :join('"contact"', nil, '"contact"."other_member_id" = "member"."id"')

292 :add_where{ '"contact"."member_id" = ?', self.id }

293 :add_where("public")

294 :exec()

295 end

296

297 function Member:by_login_and_password(login, password)

298 local selector = self:new_selector()

299 selector:add_where{'"login" = ?', login }

300 selector:add_where('NOT "locked"')

301 selector:optional_object_mode()

302 local member = selector:exec()

303 if member and member:check_password(password) then

304 return member

305 else

306 return nil

307 end

308 end

309

310 function Member:by_login(login)

311 local selector = self:new_selector()

312 selector:add_where{'"login" = ?', login }

313 selector:optional_object_mode()

314 return selector:exec()

315 end

316

317 function Member:by_name(name)

318 local selector = self:new_selector()

319 selector:add_where{'"name" = ?', name }

320 selector:optional_object_mode()

321 return selector:exec()

322 end

323

324 function Member:get_search_selector(search_string)

325 return self:new_selector()

326 :add_field( {'"highlight"("member"."name", ?)', search_string }, "name_highlighted")

327 :add_where{ '"member"."text_search_data" @@ "text_search_query"(?)', search_string }

328 :add_where("active")

329 end

330

331 function Member.object:send_invitation()

332 trace.disable()

333 self.invite_code = multirand.string( 24, "23456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz" )

334 local content = slot.use_temporary(function()

335 slot.put(_"Hello\n\n")

336 slot.put(_"You are invited to LiquidFeedback. To register please click the following link:\n\n")

337 slot.put(config.absolute_base_url .. "index/register.html?invite_key=" .. self.invite_code .. "\n\n")

338 slot.put(_"If this link is not working, please open following url in your web browser:\n\n")

339 slot.put(config.absolute_base_url .. "index/register.html\n\n")

340 slot.put(_"On that page please enter the invite key:\n\n")

341 slot.put(self.invite_code .. "\n\n")

342 end)

343 local success = net.send_mail{

344 envelope_from = config.mail_envelope_from,

345 from = config.mail_from,

346 reply_to = config.mail_reply_to,

347 to = self.notify_email_unconfirmed or self.notify_email,

348 subject = config.mail_subject_prefix .. _"Invitation to LiquidFeedback",

349 content_type = "text/plain; charset=UTF-8",

350 content = content

351 }

352 return success

353 end

354

355 function Member.object:set_notify_email(notify_email)

356 trace.disable()

357 local expiry = db:query("SELECT now() + '7 days'::interval as expiry", "object").expiry

358 self.notify_email_unconfirmed = notify_email

359 self.notify_email_secret = multirand.string( 24, "23456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz" )

360 self.notify_email_secret_expiry = expiry

361 local content = slot.use_temporary(function()

362 slot.put(_"Hello " .. self.name .. ",\n\n")

363 slot.put(_"Please confirm your email address by clicking the following link:\n\n")

364 slot.put(config.absolute_base_url .. "index/confirm_notify_email.html?secret=" .. self.notify_email_secret .. "\n\n")

365 slot.put(_"If this link is not working, please open following url in your web browser:\n\n")

366 slot.put(config.absolute_base_url .. "index/confirm_notify_email.html\n\n")

367 slot.put(_"On that page please enter the confirmation code:\n\n")

368 slot.put(self.notify_email_secret .. "\n\n")

369 end)

370 local success = net.send_mail{

371 envelope_from = config.mail_envelope_from,

372 from = config.mail_from,

373 reply_to = config.mail_reply_to,

374 to = self.notify_email_unconfirmed,

375 subject = config.mail_subject_prefix .. _"Email confirmation request",

376 content_type = "text/plain; charset=UTF-8",

377 content = content

378 }

379 if success then

380 local lock_expiry = db:query("SELECT now() + '1 hour'::interval AS lock_expiry", "object").lock_expiry

381 self.notify_email_lock_expiry = lock_expiry

382 end

383 self:save()

384 return success

385 end

386

387 function Member.object:get_setting(key)

388 return Setting:by_pk(self.id, key)

389 end

390

391 function Member.object:get_setting_value(key)

392 local setting = Setting:by_pk(self.id, key)

393 if setting then

394 return setting.value

395 end

396 end

397

398 function Member.object:set_setting(key, value)

399 local setting = self:get_setting(key)

400 if not setting then

401 setting = Setting:new()

402 setting.member_id = self.id

403 setting.key = key

404 end

405 setting.value = value

406 setting:save()

407 end

408

409 function Member.object:get_setting_maps_by_key(key)

410 return SettingMap:new_selector()

411 :add_where{ "member_id = ?", self.id }

412 :add_where{ "key = ?", key }

413 :add_order_by("subkey")

414 :exec()

415 end

416

417 function Member.object:get_setting_map_by_key_and_subkey(key, subkey)

418 return SettingMap:new_selector()

419 :add_where{ "member_id = ?", self.id }

420 :add_where{ "key = ?", key }

421 :add_where{ "subkey = ?", subkey }

422 :add_order_by("subkey")

423 :optional_object_mode()

424 :exec()

425 end

426

427 function Member.object:set_setting_map(key, subkey, value)

428 setting_map = self:get_setting_map_by_key_and_subkey(key, subkey)

429 if not setting_map then

430 setting_map = SettingMap:new()

431 setting_map.member_id = self.id

432 setting_map.key = key

433 setting_map.subkey = subkey

434 end

435 setting_map.value = value

436 setting_map:save()

437 end

438

439 function Member.object_get:notify_email_locked()

440 return(

441 Member:new_selector()

442 :add_where{ "id = ?", app.session.member.id }

443 :add_where("notify_email_lock_expiry > now()")

444 :count() == 1

445 )

446 end

447

448 function Member.object_get:units_with_voting_right()

449 return(Unit:new_selector()

450 :join("privilege", nil, { "privilege.unit_id = unit.id AND privilege.member_id = ? AND privilege.voting_right", self.id })

451 :exec()

452 )

453 end

454

455 function Member.object:ui_field_text(args)

456 args = args or {}

457 if app.session.member_id or config.public_access == "pseudonym" then

458 -- ugly workaround for getting html into a replaced string and to the user

459 ui.container{label = args.label, label_attr={class="ui_field_label"}, content = function()

460 slot.put(string.format('<span><a href="%s">%s</a></span>',

461 encode.url{

462 module = "member",

463 view = "show",

464 id = self.id,

465 },

466 encode.html(self.name)))

467 end

468 }

469 else

470 ui.field.text{ label = args.label, value = _"[not displayed public]" }

471 end

472 end

473

474 function Member.object:has_voting_right_for_unit_id(unit_id)

475 return (Privilege:new_selector()

476 :add_where{ "member_id = ?", self.id }

477 :add_where{ "unit_id = ?", unit_id }

478 :add_where("voting_right")

479 :optional_object_mode()

480 :for_share()

481 :exec()) and true or false

482 end