liquid_feedback_frontend: 7806dc3f693f model/member.lua

252 selector:join("privilege", "__model_member__privilege", { "member.id = __model_member__privilege.member_id AND __model_member__privilege.voting_right AND __model_member__privilege.unit_id = ?", args.voting_right_for_unit_id })

253 end

254 if args.admin_search then

255 local search_string = "%" .. args.admin_search .. "%"

256 selector:add_where{ "member.identification ILIKE ? OR member.name ILIKE ?", search_string, search_string }

257 end

258 if args.order then

259 if args.order == "id" then

260 selector:add_order_by("id")

261 elseif args.order == "identification" then

262 selector:add_order_by("identification")

263 elseif args.order == "name" then

264 selector:add_order_by("name")

265 else

266 error("invalid order")

267 end

268 end

269 return selector

270 end

271

272 function Member.object:set_password(password)

273 local hash = os.crypt(

274 password,

275 "$1$" .. multirand.string(

276 8,

277 "0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz./"

278 )

279 )

280 assert(hash, "os.crypt failed")

281 self.password = hash

282 end

283

284 function Member.object:check_password(password)

285 if type(password) == "string" and type(self.password) == "string" then

286 return os.crypt(password, self.password) == self.password

287 else

288 return false

289 end

290 end

291

292 function Member.object_get:published_contacts()

293 return Member:new_selector()

294 :join('"contact"', nil, '"contact"."other_member_id" = "member"."id"')

295 :add_where{ '"contact"."member_id" = ?', self.id }

296 :add_where("public")

297 :exec()

298 end

299

300 function Member:by_login_and_password(login, password)

301 local selector = self:new_selector()

302 selector:add_where{'"login" = ?', login }

303 selector:add_where('NOT "locked"')

304 selector:optional_object_mode()

305 local member = selector:exec()

306 if member and member:check_password(password) then

307 return member

308 else

309 return nil

310 end

311 end

312

313 function Member:by_login(login)

314 local selector = self:new_selector()

315 selector:add_where{'"login" = ?', login }

316 selector:optional_object_mode()

317 return selector:exec()

318 end

319

320 function Member:by_name(name)

321 local selector = self:new_selector()

322 selector:add_where{'"name" = ?', name }

323 selector:optional_object_mode()

324 return selector:exec()

325 end

326

327 function Member:get_search_selector(search_string)

328 return self:new_selector()

329 :add_field( {'"highlight"("member"."name", ?)', search_string }, "name_highlighted")

330 :add_where{ '"member"."text_search_data" @@ "text_search_query"(?)', search_string }

331 :add_where("activated NOTNULL AND active")

332 end

333

334 function Member.object:send_invitation(template_file, subject)

335 trace.disable()

336 self.invite_code = multirand.string( 24, "23456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz" )

337 self:save()

338

339 local subject = subject

340 local content

341

342 if template_file then

343 local fh = io.open(template_file, "r")

344 content = fh:read("*a")

345 content = (content:gsub("#{invite_code}", self.invite_code))

346 else

347 subject = config.mail_subject_prefix .. _"Invitation to LiquidFeedback"

348 content = slot.use_temporary(function()

349 slot.put(_"Hello\n\n")

350 slot.put(_"You are invited to LiquidFeedback. To register please click the following link:\n\n")

351 slot.put(request.get_absolute_baseurl() .. "index/register.html?invite=" .. self.invite_code .. "\n\n")

352 slot.put(_"If this link is not working, please open following url in your web browser:\n\n")

353 slot.put(request.get_absolute_baseurl() .. "index/register.html\n\n")

354 slot.put(_"On that page please enter the invite key:\n\n")

355 slot.put(self.invite_code .. "\n\n")

356 end)

357 end

358

359 local success = net.send_mail{

360 envelope_from = config.mail_envelope_from,

361 from = config.mail_from,

362 reply_to = config.mail_reply_to,

363 to = self.notify_email_unconfirmed or self.notify_email,

364 subject = subject,

365 content_type = "text/plain; charset=UTF-8",

366 content = content

367 }

368 return success

369 end

370

371 function Member.object:set_notify_email(notify_email)

372 trace.disable()

373 local expiry = db:query("SELECT now() + '7 days'::interval as expiry", "object").expiry

374 self.notify_email_unconfirmed = notify_email

375 self.notify_email_secret = multirand.string( 24, "23456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz" )

376 self.notify_email_secret_expiry = expiry

377 local content = slot.use_temporary(function()

378 slot.put(_"Hello " .. self.name .. ",\n\n")

379 slot.put(_"Please confirm your email address by clicking the following link:\n\n")

380 slot.put(request.get_absolute_baseurl() .. "index/confirm_notify_email.html?secret=" .. self.notify_email_secret .. "\n\n")

381 slot.put(_"If this link is not working, please open following url in your web browser:\n\n")

382 slot.put(request.get_absolute_baseurl() .. "index/confirm_notify_email.html\n\n")

383 slot.put(_"On that page please enter the confirmation code:\n\n")

384 slot.put(self.notify_email_secret .. "\n\n")

385 end)

386 local success = net.send_mail{

387 envelope_from = config.mail_envelope_from,

388 from = config.mail_from,

389 reply_to = config.mail_reply_to,

390 to = self.notify_email_unconfirmed,

391 subject = config.mail_subject_prefix .. _"Email confirmation request",

392 content_type = "text/plain; charset=UTF-8",

393 content = content

394 }

395 if success then

396 local lock_expiry = db:query("SELECT now() + '1 hour'::interval AS lock_expiry", "object").lock_expiry

397 self.notify_email_lock_expiry = lock_expiry

398 end

399 self:save()

400 return success

401 end

402

403 function Member.object:get_setting(key)

404 return Setting:by_pk(self.id, key)

405 end

406

407 function Member.object:get_setting_value(key)

408 local setting = Setting:by_pk(self.id, key)

409 if setting then

410 return setting.value

411 end

412 end

413

414 function Member.object:set_setting(key, value)

415 local setting = self:get_setting(key)

416 if not setting then

417 setting = Setting:new()

418 setting.member_id = self.id

419 setting.key = key

420 end

421 setting.value = value

422 setting:save()

423 end

424

425 function Member.object:get_setting_maps_by_key(key)

426 return SettingMap:new_selector()

427 :add_where{ "member_id = ?", self.id }

428 :add_where{ "key = ?", key }

429 :add_order_by("subkey")

430 :exec()

431 end

432

433 function Member.object:get_setting_map_by_key_and_subkey(key, subkey)

434 return SettingMap:new_selector()

435 :add_where{ "member_id = ?", self.id }

436 :add_where{ "key = ?", key }

437 :add_where{ "subkey = ?", subkey }

438 :add_order_by("subkey")

439 :optional_object_mode()

440 :exec()

441 end

442

443 function Member.object:set_setting_map(key, subkey, value)

444 setting_map = self:get_setting_map_by_key_and_subkey(key, subkey)

445 if not setting_map then

446 setting_map = SettingMap:new()

447 setting_map.member_id = self.id

448 setting_map.key = key

449 setting_map.subkey = subkey

450 end

451 setting_map.value = value

452 setting_map:save()

453 end

454

455 function Member.object_get:notify_email_locked()

456 return(

457 Member:new_selector()

458 :add_where{ "id = ?", app.session.member.id }

459 :add_where("notify_email_lock_expiry > now()")

460 :count() == 1

461 )

462 end

463

464 function Member.object_get:units_with_voting_right()

465 return(Unit:new_selector()

466 :join("privilege", nil, { "privilege.unit_id = unit.id AND privilege.member_id = ? AND privilege.voting_right", self.id })

467 :exec()

468 )

469 end

470

471 function Member.object:ui_field_text(args)

472 args = args or {}

473 if app.session.member_id or config.public_access == "pseudonym" or config.public_access == "full" then

474 -- ugly workaround for getting html into a replaced string and to the user

475 ui.container{label = args.label, label_attr={class="ui_field_label"}, content = function()

476 slot.put(string.format('<span><a href="%s">%s</a></span>',

477 encode.url{

478 module = "member",

479 view = "show",

480 id = self.id,

481 },

482 encode.html(self.name)))

483 end

484 }

485 else

486 ui.field.text{ label = args.label, value = _"[not displayed public]" }

487 end

488 end

489

490 function Member.object:has_voting_right_for_unit_id(unit_id)

491 if not self.__units_with_voting_right_hash then

492 local privileges = Privilege:new_selector()

493 :add_where{ "member_id = ?", self.id }

494 :add_where("voting_right")

495 :for_share()

496 :exec()

497 self.__units_with_voting_right_hash = {}

498 for i, privilege in ipairs(privileges) do

499 self.__units_with_voting_right_hash[privilege.unit_id] = true

500 end

501 end

502 return self.__units_with_voting_right_hash[unit_id] and true or false

503 end

504

505 function Member.object:get_delegatee_member(unit_id, area_id, issue_id)

506 local selector = Member:new_selector()

507 if unit_id then

508 selector:join("delegation", nil, { "delegation.trustee_id = member.id AND delegation.scope = 'unit' AND delegation.unit_id = ? AND delegation.truster_id = ?", unit_id, self.id })

509 end

510 selector:optional_object_mode()

511 return selector:exec()

512 end