crans/scripts
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Import initial des fichiers de la version 1.5.3 de MoinMoin (mj Etch).

Browse source 
darcs-hash:20070601130042-68412-6e583291d0079b28e4c0cc18a7c8428051d37cb0.gz
This commit is contained in:
glondu 2007-06-01 15:00:42 +02:00
parent 7d86a17433
commit 329eea2862
4 changed files with 1730 additions and 1165 deletions
Download patch file Download diff file Expand all files Collapse all files

1525
wiki/request.py
View file

File diff suppressed because it is too large Load diff

637
wiki/user.py
View file

@ -6,7 +6,7 @@
@license: GNU GPL, see COPYING for details. @license: GNU GPL, see COPYING for details.
""" """
import os, string, time, Cookie, sha, codecs import os, time, sha, codecs
try: try:
import cPickle as pickle import cPickle as pickle
@ -14,16 +14,10 @@ except ImportError:
import pickle import pickle
# Set pickle protocol, see http://docs.python.org/lib/node64.html # Set pickle protocol, see http://docs.python.org/lib/node64.html
try: PICKLE_PROTOCOL = pickle.HIGHEST_PROTOCOL
# Requires 2.3
PICKLE_PROTOCOL = pickle.HIGHEST_PROTOCOL
except AttributeError:
# Use protocol 1, binary format compatible with all python versions
PICKLE_PROTOCOL = 1
from MoinMoin import config, caching, wikiutil from MoinMoin import config, caching, wikiutil
from MoinMoin.util import datetime from MoinMoin.util import filesys, timefuncs
def getUserList(request): def getUserList(request):
@ -36,9 +30,10 @@ def getUserList(request):
import re, dircache import re, dircache
user_re = re.compile(r'^\d+\.\d+(\.\d+)?$') user_re = re.compile(r'^\d+\.\d+(\.\d+)?$')
files = dircache.listdir(request.cfg.user_dir) files = dircache.listdir(request.cfg.user_dir)
userlist = filter(user_re.match, files) userlist = [f for f in files if user_re.match(f)]
return userlist return userlist
def getUserId(request, searchName): def getUserId(request, searchName):
""" """
Get the user ID for a specific user NAME. Get the user ID for a specific user NAME.
@ -74,6 +69,7 @@ def getUserId(request, searchName):
id = _name2id.get(searchName, None) id = _name2id.get(searchName, None)
return id return id
def getUserIdentification(request, username=None): def getUserIdentification(request, username=None):
""" """
Return user name or IP or '<unknown>' indicator. Return user name or IP or '<unknown>' indicator.
@ -96,7 +92,7 @@ def encodePassword(pwd, charset='utf-8'):
Compatible to Apache htpasswd SHA encoding. Compatible to Apache htpasswd SHA encoding.
When using different encoding then 'utf-8', the encoding might fail When using different encoding than 'utf-8', the encoding might fail
and raise UnicodeError. and raise UnicodeError.
@param pwd: the cleartext password, (unicode) @param pwd: the cleartext password, (unicode)
@ -116,6 +112,7 @@ def encodePassword(pwd, charset='utf-8'):
pwd = '{SHA}' + base64.encodestring(pwd).rstrip() pwd = '{SHA}' + base64.encodestring(pwd).rstrip()
return pwd return pwd
def normalizeName(name): def normalizeName(name):
""" Make normalized user name """ Make normalized user name
@ -132,8 +129,11 @@ def normalizeName(name):
@rtype: unicode @rtype: unicode
@return: user name that can be used in acl lines @return: user name that can be used in acl lines
""" """
# Strip non alpha numeric characters, keep white space name = name.replace('_', ' ') # we treat _ as a blank
name = ''.join([c for c in name if c.isalnum() or c.isspace()]) username_allowedchars = "'@." # ' for names like O'Brian or email addresses.
# "," and ":" must not be allowed (ACL delimiters).
# Strip non alpha numeric characters (except username_allowedchars), keep white space
name = ''.join([c for c in name if c.isalnum() or c.isspace() or c in username_allowedchars])
# Normalize white space. Each name can contain multiple # Normalize white space. Each name can contain multiple
# words separated with only one space. # words separated with only one space.
@ -148,6 +148,7 @@ def isValidName(request, name):
@param name: user name, unicode @param name: user name, unicode
""" """
normalized = normalizeName(name) normalized = normalizeName(name)
name = name.replace('_', ' ') # we treat _ as a blank
return (name == normalized) and not wikiutil.isGroupPage(request, name) return (name == normalized) and not wikiutil.isGroupPage(request, name)
@ -190,42 +191,44 @@ def decodeList(line):
class User: class User:
"""A MoinMoin User""" """A MoinMoin User"""
_checkbox_fields = [ def __init__(self, request, id=None, name="", password=None, auth_username="", **kw):
('edit_on_doubleclick', lambda _: _('Open editor on double click')), """ Initialize User object
('remember_last_visit', lambda _: _('Remember last page visited')),
('show_fancy_links', lambda _: _('Show fancy links')),
('show_nonexist_qm', lambda _: _('Show question mark for non-existing pagelinks')),
('show_page_trail', lambda _: _('Show page trail')),
('show_toolbar', lambda _: _('Show icon toolbar')),
('show_topbottom', lambda _: _('Show top/bottom links in headings')),
('show_fancy_diff', lambda _: _('Show fancy diffs')),
('wikiname_add_spaces', lambda _: _('Add spaces to displayed wiki names')),
('remember_me', lambda _: _('Remember login information')),
('want_trivial', lambda _: _('Subscribe to trivial changes')),
('disabled', lambda _: _('Disable this account forever')),
]
_transient_fields = ['id', 'valid', 'may', 'auth_username', 'trusted']
def __init__(self, request, id=None, name="", password=None, auth_username=""):
"""
Initialize user object
@param request: the request object @param request: the request object
@param id: (optional) user ID @param id: (optional) user ID
@param name: (optional) user name @param name: (optional) user name
@param password: (optional) user password @param password: (optional) user password
@param auth_username: (optional) already authenticated user name (e.g. apache basic auth) @param auth_username: (optional) already authenticated user name
(e.g. when using http basic auth)
@keyword auth_method: method that was used for authentication,
default: 'internal'
@keyword auth_attribs: tuple of user object attribute names that are
determined by auth method and should not be
changed by UserPreferences form, default: ().
First tuple element was used for authentication.
""" """
self._cfg = request.cfg self._cfg = request.cfg
self.valid = 0 self.valid = 0
self.trusted = 0
self.id = id self.id = id
if auth_username:
self.auth_username = auth_username self.auth_username = auth_username
elif request: self.auth_method = kw.get('auth_method', 'internal')
self.auth_username = request.auth_username self.auth_attribs = kw.get('auth_attribs', ())
else:
self.auth_username = "" # create some vars automatically
for tuple in self._cfg.user_form_fields:
key = tuple[0]
default = self._cfg.user_form_defaults.get(key, '')
setattr(self, key, default)
if name:
self.name = name self.name = name
elif auth_username: # this is needed for user_autocreate
self.name = auth_username
# create checkbox fields (with default 0)
for key, label in self._cfg.user_checkbox_fields:
setattr(self, key, self._cfg.user_checkbox_defaults.get(key, 0))
self.enc_password = "" self.enc_password = ""
if password: if password:
@ -237,68 +240,40 @@ class User:
except UnicodeError: except UnicodeError:
pass # Should never happen pass # Should never happen
self.trusted = 0
self.email = ""
self.edit_rows = self._cfg.edit_rows
#self.edit_cols = 80 #self.edit_cols = 80
self.tz_offset = int(float(self._cfg.tz_offset) * 3600) self.tz_offset = int(float(self._cfg.tz_offset) * 3600)
self.last_saved = str(time.time())
self.css_url = ""
self.language = "" self.language = ""
self.quicklinks = []
self.date_fmt = "" self.date_fmt = ""
self.datetime_fmt = "" self.datetime_fmt = ""
self.quicklinks = []
self.subscribed_pages = [] self.subscribed_pages = []
self.theme_name = self._cfg.theme_default self.theme_name = self._cfg.theme_default
self.editor_default = self._cfg.editor_default
# if an account is disabled, it may be used for looking up self.editor_ui = self._cfg.editor_ui
# id -> username for page info and recent changes, but it self.last_saved = str(time.time())
# is not usable for the user any more:
# self.disabled = 0
# is handled by checkbox now.
# attrs not saved to profile # attrs not saved to profile
self._request = request self._request = request
self._trail = [] self._trail = []
# create checkbox fields (with default 0)
for key, label in self._checkbox_fields:
setattr(self, key, 0)
self.wikiname_add_spaces = 1
self.show_page_trail = 1
self.show_fancy_links = 1
#self.show_emoticons = 1
self.show_toolbar = 1
self.show_nonexist_qm = self._cfg.nonexist_qm
self.show_fancy_diff = 1
self.want_trivial = 0
self.remember_me = 1
if not self.id and not self.auth_username:
try:
cookie = Cookie.SimpleCookie(request.saved_cookie)
except Cookie.CookieError:
# ignore invalid cookies, else user can't re login
cookie = None
if cookie and cookie.has_key('MOIN_ID'):
self.id = cookie['MOIN_ID'].value
# we got an already authenticated username: # we got an already authenticated username:
check_pass = 0
if not self.id and self.auth_username: if not self.id and self.auth_username:
self.id = getUserId(request, self.auth_username) self.id = getUserId(request, self.auth_username)
if not password is None:
check_pass = 1
if self.id: if self.id:
self.load_from_id() self.load_from_id(check_pass)
if self.name == self.auth_username: if self.name == self.auth_username:
self.trusted = 1 self.trusted = 1
elif self.name: elif self.name:
self.load() self.id = getUserId(self._request, self.name)
if self.id:
self.load_from_id(1)
else: else:
#!!! this should probably be a hash of REMOTE_ADDR, HTTP_USER_AGENT self.id = self.make_id()
# and some other things identifying remote users, then we could also else:
# use it reliably in edit locking self.id = self.make_id()
from random import randint
self.id = "%s.%d" % (str(time.time()), randint(0,65535))
# "may" so we can say "if user.may.read(pagename):" # "may" so we can say "if user.may.read(pagename):"
if self._cfg.SecurityPolicy: if self._cfg.SecurityPolicy:
@ -311,40 +286,53 @@ class User:
if self.language and not languages.has_key(self.language): if self.language and not languages.has_key(self.language):
self.language = 'en' self.language = 'en'
def __repr__(self):
return "<%s.%s at 0x%x name:%r id:%s valid:%r>" % (
self.__class__.__module__, self.__class__.__name__,
id(self), self.name, self.id, self.valid)
def make_id(self):
""" make a new unique user id """
#!!! this should probably be a hash of REMOTE_ADDR, HTTP_USER_AGENT
# and some other things identifying remote users, then we could also
# use it reliably in edit locking
from random import randint
return "%s.%d" % (str(time.time()), randint(0,65535))
def create_or_update(self, changed=False):
""" Create or update a user profile
@param changed: bool, set this to True if you updated the user profile values
"""
if self._cfg.user_autocreate:
if not self.valid and not self.disabled or changed: # do we need to save/update?
self.save() # yes, create/update user profile
def __filename(self): def __filename(self):
""" """ Get filename of the user's file on disk
get filename of the user's file on disk
@rtype: string @rtype: string
@return: full path and filename of user account file @return: full path and filename of user account file
""" """
return os.path.join(self._cfg.user_dir, self.id or "...NONE...") return os.path.join(self._cfg.user_dir, self.id or "...NONE...")
def __bookmark_filename(self):
if self._cfg.interwikiname:
return (self.__filename() + "." + self._cfg.interwikiname +
".bookmark")
else:
return self.__filename() + ".bookmark"
def exists(self): def exists(self):
""" """ Do we have a user account for this user?
Do we have a user account for this user?
@rtype: bool @rtype: bool
@return: true, if we have a user account @return: true, if we have a user account
""" """
return os.path.exists(self.__filename()) return os.path.exists(self.__filename())
def load(self):
"""
Lookup user ID by user name and load user account.
Can load user data if the user name is known, but only if the password is set correctly.
"""
self.id = getUserId(self._request, self.name)
if self.id:
self.load_from_id(1)
#print >>sys.stderr, "self.id: %s, self.name: %s" % (self.id, self.name)
def load_from_id(self, check_pass=0): def load_from_id(self, check_pass=0):
""" """ Load user account data from disk.
Load user account data from disk.
Can only load user data if the id number is already known. Can only load user data if the id number is already known.
@ -354,7 +342,8 @@ class User:
@param check_pass: If 1, then self.enc_password must match the @param check_pass: If 1, then self.enc_password must match the
password in the user account file. password in the user account file.
""" """
if not self.exists(): return if not self.exists():
return
data = codecs.open(self.__filename(), "r", config.charset).readlines() data = codecs.open(self.__filename(), "r", config.charset).readlines()
user_data = {'enc_password': ''} user_data = {'enc_password': ''}
@ -364,7 +353,7 @@ class User:
try: try:
key, val = line.strip().split('=', 1) key, val = line.strip().split('=', 1)
if key not in self._transient_fields and key[0] != '_': if key not in self._cfg.user_transient_fields and key[0] != '_':
# Decode list values # Decode list values
if key in ['quicklinks', 'subscribed_pages']: if key in ['quicklinks', 'subscribed_pages']:
val = decodeList(val) val = decodeList(val)
@ -387,6 +376,11 @@ class User:
else: else:
self.trusted = 1 self.trusted = 1
# Remove ignored checkbox values from user data
for key, label in self._cfg.user_checkbox_fields:
if user_data.has_key(key) and key in self._cfg.user_checkbox_disable:
del user_data[key]
# Copy user data into user object # Copy user data into user object
for key, val in user_data.items(): for key, val in user_data.items():
vars(self)[key] = val vars(self)[key] = val
@ -394,14 +388,14 @@ class User:
self.tz_offset = int(self.tz_offset) self.tz_offset = int(self.tz_offset)
# Remove old unsupported attributes from user data file. # Remove old unsupported attributes from user data file.
remove_attributes = ['password', 'passwd', 'show_emoticons'] remove_attributes = ['passwd', 'show_emoticons']
for attr in remove_attributes: for attr in remove_attributes:
if hasattr(self, attr): if hasattr(self, attr):
delattr(self, attr) delattr(self, attr)
changed = 1 changed = 1
# make sure checkboxes are boolean # make sure checkboxes are boolean
for key, label in self._checkbox_fields: for key, label in self._cfg.user_checkbox_fields:
try: try:
setattr(self, key, int(getattr(self, key))) setattr(self, key, int(getattr(self, key)))
except ValueError: except ValueError:
@ -467,7 +461,6 @@ class User:
return False, False return False, False
# First get all available pre13 charsets on this system # First get all available pre13 charsets on this system
import codecs
pre13 = ['iso-8859-1', 'iso-8859-2', 'euc-jp', 'gb2312', 'big5',] pre13 = ['iso-8859-1', 'iso-8859-2', 'euc-jp', 'gb2312', 'big5',]
available = [] available = []
for charset in pre13: for charset in pre13:
@ -496,8 +489,7 @@ class User:
return False, False return False, False
def save(self): def save(self):
""" """ Save user account data to user account file on disk.
Save user account data to user account file on disk.
This saves all member variables, except "id" and "valid" and This saves all member variables, except "id" and "valid" and
those starting with an underscore. those starting with an underscore.
@ -506,9 +498,7 @@ class User:
return return
user_dir = self._cfg.user_dir user_dir = self._cfg.user_dir
if not os.path.isdir(user_dir): filesys.makeDirs(user_dir)
os.mkdir(user_dir, 0777 & config.umask)
os.chmod(user_dir, 0777 & config.umask)
self.last_saved = str(time.time()) self.last_saved = str(time.time())
@ -522,7 +512,7 @@ class User:
attrs = vars(self).items() attrs = vars(self).items()
attrs.sort() attrs.sort()
for key, value in attrs: for key, value in attrs:
if key not in self._transient_fields and key[0] != '_': if key not in self._cfg.user_transient_fields and key[0] != '_':
# Encode list values # Encode list values
if key in ['quicklinks', 'subscribed_pages']: if key in ['quicklinks', 'subscribed_pages']:
value = encodeList(value) value = encodeList(value)
@ -538,20 +528,21 @@ class User:
if not self.disabled: if not self.disabled:
self.valid = 1 self.valid = 1
# -----------------------------------------------------------------
# Time and date formatting
def getTime(self, tm): def getTime(self, tm):
""" """ Get time in user's timezone.
Get time in user's timezone.
@param tm: time (UTC UNIX timestamp) @param tm: time (UTC UNIX timestamp)
@rtype: int @rtype: int
@return: tm tuple adjusted for user's timezone @return: tm tuple adjusted for user's timezone
""" """
return datetime.tmtuple(tm + self.tz_offset) return timefuncs.tmtuple(tm + self.tz_offset)
def getFormattedDate(self, tm): def getFormattedDate(self, tm):
""" """ Get formatted date adjusted for user's timezone.
Get formatted date adjusted for user's timezone.
@param tm: time (UTC UNIX timestamp) @param tm: time (UTC UNIX timestamp)
@rtype: string @rtype: string
@ -562,8 +553,7 @@ class User:
def getFormattedDateTime(self, tm): def getFormattedDateTime(self, tm):
""" """ Get formatted date and time adjusted for user's timezone.
Get formatted date and time adjusted for user's timezone.
@param tm: time (UTC UNIX timestamp) @param tm: time (UTC UNIX timestamp)
@rtype: string @rtype: string
@ -572,69 +562,58 @@ class User:
datetime_fmt = self.datetime_fmt or self._cfg.datetime_fmt datetime_fmt = self.datetime_fmt or self._cfg.datetime_fmt
return time.strftime(datetime_fmt, self.getTime(tm)) return time.strftime(datetime_fmt, self.getTime(tm))
# -----------------------------------------------------------------
# Bookmark
def setBookmark(self, tm=None): def setBookmark(self, tm):
""" """ Set bookmark timestamp.
Set bookmark timestamp.
@param tm: time (UTC UNIX timestamp), default: current time @param tm: timestamp
""" """
if self.valid: if self.valid:
if tm is None: bm_fn = self.__bookmark_filename()
tm = time.time() bmfile = open(bm_fn, "w")
bmfile = open(self.__filename() + ".bookmark", "w")
bmfile.write(str(tm)+"\n") bmfile.write(str(tm)+"\n")
bmfile.close() bmfile.close()
try: try:
os.chmod(self.__filename() + ".bookmark", 0666 & config.umask) os.chmod(bm_fn, 0666 & config.umask)
except OSError: except OSError:
pass pass
# XXX Do we need that???
#try:
# os.utime(self.__filename() + ".bookmark", (tm, tm))
#except OSError:
# pass
def getBookmark(self): def getBookmark(self):
""" """ Get bookmark timestamp.
Get bookmark timestamp.
@rtype: int @rtype: int
@return: bookmark time (UTC UNIX timestamp) or None @return: bookmark timestamp or None
""" """
if self.valid and os.path.exists(self.__filename() + ".bookmark"): bm = None
try: bm_fn = self.__bookmark_filename()
return int(open(self.__filename() + ".bookmark", 'r').readline())
except (OSError, ValueError):
return None
return None
if self.valid and os.path.exists(bm_fn):
try:
bm = long(open(bm_fn, 'r').readline()) # must be long for py 2.2
except (OSError, ValueError):
pass
return bm
def delBookmark(self): def delBookmark(self):
""" """ Removes bookmark timestamp.
Removes bookmark timestamp.
@rtype: int @rtype: int
@return: 0 on success, 1 on failure @return: 0 on success, 1 on failure
""" """
bm_fn = self.__bookmark_filename()
if self.valid: if self.valid:
if os.path.exists(self.__filename() + ".bookmark"): if os.path.exists(bm_fn):
try: try:
os.unlink(self.__filename() + ".bookmark") os.unlink(bm_fn)
except OSError: except OSError:
return 1 return 1
return 0 return 0
return 1 return 1
def getQuickLinks(self): # -----------------------------------------------------------------
""" Get list of pages this user wants in the navibar # Subscribe
@rtype: list
@return: quicklinks from user account
"""
return self.quicklinks
def getSubscriptionList(self): def getSubscriptionList(self):
""" Get list of pages this user has subscribed to """ Get list of pages this user has subscribed to
@ -645,71 +624,210 @@ class User:
return self.subscribed_pages return self.subscribed_pages
def isSubscribedTo(self, pagelist): def isSubscribedTo(self, pagelist):
""" """ Check if user subscription matches any page in pagelist.
Check if user subscription matches any page in pagelist.
The subscription list may contain page names or interwiki page
names. e.g 'Page Name' or 'WikiName:Page_Name'
TODO: check if its fast enough when calling with many users
from page.getSubscribersList()
@param pagelist: list of pages to check for subscription @param pagelist: list of pages to check for subscription
@rtype: int @rtype: bool
@return: 1, if user has subscribed any page in pagelist @return: if user is subscribed any page in pagelist
0, if not
""" """
if not self.valid:
return False
import re import re
# Create a new list with both names and interwiki names.
pages = pagelist[:]
if self._cfg.interwikiname:
pages += [self._interWikiName(pagename) for pagename in pagelist]
# Create text for regular expression search
text = '\n'.join(pages)
matched = 0
if self.valid:
pagelist_lines = '\n'.join(pagelist)
for pattern in self.getSubscriptionList(): for pattern in self.getSubscriptionList():
# check if pattern matches one of the pages in pagelist # Try simple match first
matched = pattern in pagelist if pattern in pages:
if matched: break return True
# Try regular expression search, skipping bad patterns
try: try:
rexp = re.compile("^"+pattern+"$", re.M) pattern = re.compile(r'^%s$' % pattern, re.M)
except re.error: except re.error:
# skip bad regex
continue continue
matched = rexp.search(pagelist_lines) if pattern.search(text):
if matched: break return True
if matched:
return 1
else:
return 0
return False
def subscribePage(self, pagename, remove=False): def subscribe(self, pagename):
""" Subscribe or unsubscribe to a wiki page. """ Subscribe to a wiki page.
Note that you need to save the user data to make this stick! To enable shared farm users, if the wiki has an interwiki name,
page names are saved as interwiki names.
@param pagename: name of the page to subscribe @param pagename: name of the page to subscribe
@param remove: unsubscribe pagename if set @type pagename: unicode
@type remove: bool
@rtype: bool @rtype: bool
@return: true, if page was NEWLY subscribed. @return: if page was subscribed
""" """
if remove: if self._cfg.interwikiname:
if pagename in self.subscribed_pages: pagename = self._interWikiName(pagename)
self.subscribed_pages.remove(pagename)
return 1
else:
if pagename not in self.subscribed_pages: if pagename not in self.subscribed_pages:
self.subscribed_pages.append(pagename) self.subscribed_pages.append(pagename)
return 1 self.save()
return 0 return True
return False
def unsubscribe(self, pagename):
""" Unsubscribe a wiki page.
Try to unsubscribe by removing non-interwiki name (leftover
from old use files) and interwiki name from the subscription
list.
Its possible that the user will be subscribed to a page by more
then one pattern. It can be both pagename and interwiki name,
or few patterns that all of them match the page. Therefore, we
must check if the user is still subscribed to the page after we
try to remove names from the list.
TODO: should we remove non-interwiki subscription? what if the
user want to subscribe to the same page in multiple wikis?
@param pagename: name of the page to subscribe
@type pagename: unicode
@rtype: bool
@return: if unsubscrieb was successful. If the user has a
regular expression that match, it will always fail.
"""
changed = False
if pagename in self.subscribed_pages:
self.subscribed_pages.remove(pagename)
changed = True
interWikiName = self._interWikiName(pagename)
if interWikiName and interWikiName in self.subscribed_pages:
self.subscribed_pages.remove(interWikiName)
changed = True
if changed:
self.save()
return not self.isSubscribedTo([pagename])
# -----------------------------------------------------------------
# Quicklinks
def getQuickLinks(self):
""" Get list of pages this user wants in the navibar
@rtype: list
@return: quicklinks from user account
"""
return self.quicklinks
def isQuickLinkedTo(self, pagelist):
""" Check if user quicklink matches any page in pagelist.
@param pagelist: list of pages to check for quicklinks
@rtype: bool
@return: if user has quicklinked any page in pagelist
"""
if not self.valid:
return False
for pagename in pagelist:
if pagename in self.quicklinks:
return True
interWikiName = self._interWikiName(pagename)
if interWikiName and interWikiName in self.quicklinks:
return True
return False
def addQuicklink(self, pagename):
""" Adds a page to the user quicklinks
If the wiki has an interwiki name, all links are saved as
interwiki names. If not, as simple page name.
@param pagename: page name
@type pagename: unicode
@rtype: bool
@return: if pagename was added
"""
changed = False
interWikiName = self._interWikiName(pagename)
if interWikiName:
if pagename in self.quicklinks:
self.quicklinks.remove(pagename)
changed = True
if interWikiName not in self.quicklinks:
self.quicklinks.append(interWikiName)
changed = True
else:
if pagename not in self.quicklinks:
self.quicklinks.append(pagename)
changed = True
if changed:
self.save()
return changed
def removeQuicklink(self, pagename):
""" Remove a page from user quicklinks
Remove both interwiki and simple name from quicklinks.
@param pagename: page name
@type pagename: unicode
@rtype: bool
@return: if pagename was removed
"""
changed = False
interWikiName = self._interWikiName(pagename)
if interWikiName and interWikiName in self.quicklinks:
self.quicklinks.remove(interWikiName)
changed = True
if pagename in self.quicklinks:
self.quicklinks.remove(pagename)
changed = True
if changed:
self.save()
return changed
def _interWikiName(self, pagename):
""" Return the inter wiki name of a page name
@param pagename: page name
@type pagename: unicode
"""
if not self._cfg.interwikiname:
return None
# Interwiki links must use _ e.g Wiki:Main_Page
pagename = pagename.replace(" ", "_")
return "%s:%s" % (self._cfg.interwikiname, pagename)
# -----------------------------------------------------------------
# Trail
def addTrail(self, pagename): def addTrail(self, pagename):
""" """ Add page to trail.
Add page to trail.
@param pagename: the page name to add to the trail @param pagename: the page name to add to the trail
""" """
# TODO: acquire lock here, so multiple processes don't clobber
# each one trail.
if self.valid and (self.show_page_trail or self.remember_last_visit): if self.valid and (self.show_page_trail or self.remember_last_visit):
# load trail if not known # load trail if not known
self.getTrail() self.getTrail()
# don't append tail to trail ;)
if self._trail and self._trail[-1] == pagename: return
# Add only existing pages that the user may read # Add only existing pages that the user may read
if self._request: if self._request:
from MoinMoin.Page import Page from MoinMoin.Page import Page
@ -718,25 +836,47 @@ class User:
self._request.user.may.read(page.page_name)): self._request.user.may.read(page.page_name)):
return return
# append new page, limiting the length # Save interwiki links internally
self._trail = filter(lambda p, pn=pagename: p != pn, self._trail) if self._cfg.interwikiname:
pagename = self._interWikiName(pagename)
# Don't append tail to trail ;)
if self._trail and self._trail[-1] == pagename:
return
# Append new page, limiting the length
self._trail = [p for p in self._trail if p != pagename]
self._trail = self._trail[-(self._cfg.trail_size-1):] self._trail = self._trail[-(self._cfg.trail_size-1):]
self._trail.append(pagename) self._trail.append(pagename)
self.saveTrail()
# save new trail # TODO: release lock here
trailfile = codecs.open(self.__filename() + ".trail", "w", config.charset)
for t in self._trail: def saveTrail(self):
trailfile.write('%s\n' % t) """ Save trail file
trailfile.close()
Save using one write call, which should be fine in most cases,
but will fail in rare cases without real file locking.
"""
data = '\n'.join(self._trail) + '\n'
path = self.__filename() + ".trail"
try: try:
os.chmod(self.__filename() + ".trail", 0666 & config.umask) file = codecs.open(path, "w", config.charset)
except OSError: try:
pass file.write(data)
finally:
file.close()
try:
os.chmod(path, 0666 & config.umask)
except OSError, err:
self._request.log("Can't change mode of trail file: %s" %
str(err))
except (IOError, OSError), err:
self._request.log("Can't save trail file: %s" % str(err))
def getTrail(self): def getTrail(self):
""" """ Return list of recently visited pages.
Return list of recently visited pages.
@rtype: list @rtype: list
@return: pages in trail @return: pages in trail
@ -745,12 +885,99 @@ class User:
and not self._trail \ and not self._trail \
and os.path.exists(self.__filename() + ".trail"): and os.path.exists(self.__filename() + ".trail"):
try: try:
self._trail = codecs.open(self.__filename() + ".trail", 'r', config.charset).readlines() trail = codecs.open(self.__filename() + ".trail", 'r', config.charset).readlines()
except (OSError, ValueError): except (OSError, ValueError):
self._trail = [] trail = []
else: trail = [t.strip() for t in trail]
self._trail = filter(None, map(string.strip, self._trail)) trail = [t for t in trail if t]
self._trail = self._trail[-self._cfg.trail_size:] self._trail = trail[-self._cfg.trail_size:]
return self._trail return self._trail
# -----------------------------------------------------------------
# Other
def isCurrentUser(self):
return self._request.user.name == self.name
def isSuperUser(self):
superusers = self._request.cfg.superuser
assert isinstance(superusers, (list, tuple))
return self.valid and self.name and self.name in superusers
def host(self):
""" Return user host """
_ = self._request.getText
host = self.isCurrentUser() and self._cfg.show_hosts and self._request.remote_addr
return host or _("<unknown>")
def signature(self):
""" Return user signature using markup
Users sign with a link to their homepage, or with text if they
don't have one. The text may be parsed as a link if it's using
CamelCase. Visitors return their host address.
TODO: The signature use wiki format only, for example, it will
not create a link when using rst format. It will also break if
we change wiki syntax.
"""
if not self.name:
return self.host()
wikiname, pagename = wikiutil.getInterwikiHomePage(self._request,
self.name)
if wikiname == 'Self':
if not wikiutil.isStrictWikiname(self.name):
markup = '["%s"]' % pagename
else:
markup = pagename
else:
markup = '%s:%s' % (wikiname, pagename.replace(" ","_"))
return markup
def mailAccountData(self, cleartext_passwd=None):
from MoinMoin.util import mail
from MoinMoin.wikiutil import getSysPage
_ = self._request.getText
if not self.enc_password: # generate pw if there is none yet
from random import randint
import base64
charset = 'utf-8'
pwd = "%s%d" % (str(time.time()), randint(0, 65535))
pwd = pwd.encode(charset)
pwd = sha.new(pwd).digest()
pwd = '{SHA}%s' % base64.encodestring(pwd).rstrip()
self.enc_password = pwd
self.save()
text = '\n' + _("""\
Login Name: %s
Login Password: %s
Login URL: %s/%s
""", formatted=False) % (
self.name, self.enc_password, self._request.getBaseURL(), getSysPage(self._request, 'UserPreferences').page_name)
text = _("""\
Somebody has requested to submit your account data to this email address.
If you lost your password, please use the data below and just enter the
password AS SHOWN into the wiki's password form field (use copy and paste
for that).
After successfully logging in, it is of course a good idea to set a new and known password.
""", formatted=False) + text
subject = _('[%(sitename)s] Your wiki account data',
formatted=False) % {'sitename': self._cfg.sitename or "Wiki"}
mailok, msg = mail.sendmail(self._request, [self.email], subject,
text, mail_from=self._cfg.mail_from)
return msg

511
wiki/userform.py
View file

@ -6,15 +6,13 @@
@license: GNU GPL, see COPYING for details. @license: GNU GPL, see COPYING for details.
""" """
import string, time, re, Cookie import string, time, re
from MoinMoin import config, user, util, wikiutil from MoinMoin import user, util, wikiutil
from MoinMoin.util import web, mail, datetime from MoinMoin.util import web, mail, timefuncs
from MoinMoin.widget import html from MoinMoin.widget import html
from MoinMoin.PageEditor import PageEditor
_debug = 0 _debug = 0
############################################################################# #############################################################################
### Form POST Handling ### Form POST Handling
############################################################################# #############################################################################
@ -56,8 +54,9 @@ class UserSettingsHandler:
if not item: if not item:
continue continue
# Normalize names - except [name_with_spaces label] # Normalize names - except [name_with_spaces label]
if not (item.startswith('[') and item.endswith(']')): # Commented out to allow URLs
item = self.request.normalizePagename(item) #if not (item.startswith('[') and item.endswith(']')):
# item = self.request.normalizePagename(item)
items.append(item) items.append(item)
return items return items
@ -65,15 +64,11 @@ class UserSettingsHandler:
_ = self._ _ = self._
form = self.request.form form = self.request.form
if form.has_key('logout'): if form.has_key('cancel'):
# clear the cookie in the browser and locally. Does not return
# check if we have a valid user logged, just make sure we
# don't have one after this call.
self.request.deleteCookie()
return _("Cookie deleted. You are now logged out.")
if form.has_key('login_sendmail'): if form.has_key('account_sendmail'):
if not self.cfg.mail_smarthost: if not self.cfg.mail_enabled:
return _("""This wiki is not enabled for mail processing. return _("""This wiki is not enabled for mail processing.
Contact the owner of the wiki, who can enable email.""") Contact the owner of the wiki, who can enable email.""")
try: try:
@ -81,83 +76,32 @@ Contact the owner of the wiki, who can enable email.""")
except KeyError: except KeyError:
return _("Please provide a valid email address!") return _("Please provide a valid email address!")
text = ''
users = user.getUserList(self.request) users = user.getUserList(self.request)
for uid in users: for uid in users:
theuser = user.User(self.request, uid) theuser = user.User(self.request, uid)
if theuser.valid and theuser.email.lower() == email: if theuser.valid and theuser.email.lower() == email:
text = "%s\n\nID: %s\nName: %s\nPassword: %s\nLogin URL: %s/?action=userform&amp;uid=%s" % ( msg = theuser.mailAccountData()
text, theuser.id, theuser.name, theuser.enc_password, self.request.getBaseURL(), theuser.id)
if not text:
return _("Found no account matching the given email address '%(email)s'!") % {'email': wikiutil.escape(email)}
mailok, msg = util.mail.sendmail(self.request, [email],
'Your wiki account data', text, mail_from=self.cfg.mail_from)
return wikiutil.escape(msg) return wikiutil.escape(msg)
if form.has_key('login'): return _("Found no account matching the given email address '%(email)s'!") % {'email': wikiutil.escape(email)}
# Trying to login with a user name and a password
# Require valid user name
name = form.get('username', [''])[0]
if not user.isValidName(self.request, name):
return _("""Invalid user name {{{'%s'}}}.
Name may contain any Unicode alpha numeric character, with optional one
space between words. Group page name is not allowed.""") % wikiutil.escape(name)
# Check that user exists
if not user.getUserId(self.request, name):
return _('Unknown user name: {{{"%s"}}}. Please enter'
' user name and password.') % name
# Require password
password = form.get('password',[None])[0]
if not password:
return _("Missing password. Please enter user name and"
" password.")
# Load the user data and check for validness
theuser = user.User(self.request, name=name, password=password)
if not theuser.valid:
return _("Sorry, wrong password.")
# Save the user and send a cookie
self.request.user = theuser
self.request.setCookie()
elif form.has_key('uid'):
# Trying to login with the login URL, soon to be removed!
try:
uid = form['uid'][0]
except KeyError:
return _("Bad relogin URL.")
# Load the user data and check for validness
theuser = user.User(self.request, uid)
if not theuser.valid:
return _("Unknown user.")
# Save the user and send a cookie
self.request.user = theuser
self.request.setCookie()
if (form.has_key('create') or
form.has_key('create_only') or
form.has_key('create_and_mail')):
if self.request.request_method != 'POST':
return _("Use UserPreferences to change your settings or create an account.")
# Create user profile
if form.has_key('create'):
theuser = self.request.get_user_from_form()
else: else:
# Save user profile theuser = user.User(self.request, auth_method="request:152")
theuser = user.User(self.request)
# Require non-empty name # Require non-empty name
try: try:
theuser.name = form['username'][0] theuser.name = form['name'][0]
except KeyError: except KeyError:
return _("Empty user name. Please enter a user name.") return _("Empty user name. Please enter a user name.")
#### HACK CRANS : oblige les utilistaeurs a créer un WikiNom valide
if not wikiutil.isStrictWikiname(theuser.name):
return (u"""Nom d'utilisateur invalide {{{'%s'}}}.
Le login doit être de la forme WikiNom, WikiPseudo, PrenomNom... (voir ci dessous pour plus d'informations).""" % wikiutil.escape(theuser.name))
#### FIN HACK
# Don't allow users with invalid names # Don't allow users with invalid names
if not user.isValidName(self.request, theuser.name): if not user.isValidName(self.request, theuser.name):
return _("""Invalid user name {{{'%s'}}}. return _("""Invalid user name {{{'%s'}}}.
@ -173,16 +117,6 @@ space between words. Group page name is not allowed.""") % wikiutil.escape(theus
else: else:
newuser = 0 newuser = 0
#### HACK SAUVAGE
if newuser and not self.cfg.ip_autorised_create_account(self.request.remote_addr):
return _(u"""Création de compte impossible.
Pour des raisons de sécurité, la fonction de création d'un compte n'est
possible que depuis la zone CRANS.
Si vous possédez un compte sur zamok, vous pouvez y exécuter
creer_compte_wiki.""")
#### FIN DU HACK
# try to get the password and pw repeat # try to get the password and pw repeat
password = form.get('password', [''])[0] password = form.get('password', [''])[0]
password2 = form.get('password2',[''])[0] password2 = form.get('password2',[''])[0]
@ -200,30 +134,126 @@ creer_compte_wiki.""")
# Should never happen # Should never happen
return "Can't encode password: %s" % str(err) return "Can't encode password: %s" % str(err)
# try to get the (optional) email # try to get the (required) email
email = form.get('email', [''])[0] email = form.get('email', [''])[0]
theuser.email = email.strip() theuser.email = email.strip()
if not theuser.email:
# Require email if acl is enabled return _("Please provide your email address. If you lose your"
if not theuser.email and self.cfg.acl_enabled:
return _("Please provide your email address. If you loose your"
" login information, you can get it by email.") " login information, you can get it by email.")
# Email required to be unique # Email should be unique - see also MoinMoin/script/accounts/moin_usercheck.py
# See also MoinMoin/scripts/moin_usercheck.py if theuser.email and self.request.cfg.user_email_unique:
if theuser.email:
users = user.getUserList(self.request) users = user.getUserList(self.request)
for uid in users: for uid in users:
if uid == theuser.id: if uid == theuser.id:
continue continue
thisuser = user.User(self.request, uid) thisuser = user.User(self.request, uid)
if thisuser.email == theuser.email and not thisuser.disabled:
return _("This email already belongs to somebody else.")
# save data
theuser.save()
if form.has_key('create_and_mail'):
theuser.mailAccountData()
result = _("User account created! You can use this account to login now...")
if _debug:
result = result + util.dumpFormData(form)
return result
# Select user profile (su user) - only works with cookie auth active.
if form.has_key('select_user'):
if (wikiutil.checkTicket(self.request.form['ticket'][0]) and
self.request.request_method == 'POST' and
self.request.user.isSuperUser()):
su_user = form.get('selected_user', [''])[0]
uid = user.getUserId(self.request, su_user)
theuser = user.User(self.request, uid)
theuser.disabled = None
theuser.save()
from MoinMoin import auth
auth.setCookie(self.request, theuser)
self.request.user = theuser
return _("Use UserPreferences to change settings of the selected user account")
else:
return _("Use UserPreferences to change your settings or create an account.")
if form.has_key('save'): # Save user profile
if self.request.request_method != 'POST':
return _("Use UserPreferences to change your settings or create an account.")
theuser = self.request.get_user_from_form()
if not 'name' in theuser.auth_attribs:
# Require non-empty name
theuser.name = form.get('name', [theuser.name])[0]
if not theuser.name:
return _("Empty user name. Please enter a user name.")
# Don't allow users with invalid names
if not user.isValidName(self.request, theuser.name):
return _("""Invalid user name {{{'%s'}}}.
Name may contain any Unicode alpha numeric character, with optional one
space between words. Group page name is not allowed.""") % wikiutil.escape(theuser.name)
# Is this an existing user trying to change information or a new user?
# Name required to be unique. Check if name belong to another user.
newuser = 1
if user.getUserId(self.request, theuser.name):
if theuser.name != self.request.user.name:
return _("This user name already belongs to somebody else.")
else:
newuser = 0
if not 'password' in theuser.auth_attribs:
# try to get the password and pw repeat
password = form.get('password', [''])[0]
password2 = form.get('password2',[''])[0]
# Check if password is given and matches with password repeat
if password != password2:
return _("Passwords don't match!")
if not password and newuser:
return _("Please specify a password!")
# Encode password
if password and not password.startswith('{SHA}'):
try:
theuser.enc_password = user.encodePassword(password)
except UnicodeError, err:
# Should never happen
return "Can't encode password: %s" % str(err)
if not 'email' in theuser.auth_attribs:
# try to get the email
email = form.get('email', [theuser.email])[0]
theuser.email = email.strip()
# Require email
if not theuser.email:
return _("Please provide your email address. If you lose your"
" login information, you can get it by email.")
# Email should be unique - see also MoinMoin/script/accounts/moin_usercheck.py
if theuser.email and self.request.cfg.user_email_unique:
users = user.getUserList(self.request)
for uid in users:
if uid == theuser.id:
continue
thisuser = user.User(self.request, uid, auth_method='userform:283')
if thisuser.email == theuser.email: if thisuser.email == theuser.email:
return _("This email already belongs to somebody else.") return _("This email already belongs to somebody else.")
if not 'aliasname' in theuser.auth_attribs:
# aliasname
theuser.aliasname = form.get('aliasname', [''])[0]
# editor size # editor size
theuser.edit_rows = util.web.getIntegerInput(self.request, 'edit_rows', theuser.edit_rows, 10, 60) theuser.edit_rows = util.web.getIntegerInput(self.request, 'edit_rows', theuser.edit_rows, 10, 60)
# try to get the editor
theuser.editor_default = form.get('editor_default', [self.cfg.editor_default])[0]
theuser.editor_ui = form.get('editor_ui', [self.cfg.editor_ui])[0]
# time zone # time zone
theuser.tz_offset = util.web.getIntegerInput(self.request, 'tz_offset', theuser.tz_offset, -84600, 84600) theuser.tz_offset = util.web.getIntegerInput(self.request, 'tz_offset', theuser.tz_offset, -84600, 84600)
@ -232,7 +262,8 @@ creer_compte_wiki.""")
dt_d_combined = UserSettings._date_formats.get(form['datetime_fmt'][0], '') dt_d_combined = UserSettings._date_formats.get(form['datetime_fmt'][0], '')
theuser.datetime_fmt, theuser.date_fmt = dt_d_combined.split(' & ') theuser.datetime_fmt, theuser.date_fmt = dt_d_combined.split(' & ')
except (KeyError, ValueError): except (KeyError, ValueError):
pass theuser.datetime_fmt = '' # default
theuser.date_fmt = '' # default
# try to get the (optional) theme # try to get the (optional) theme
theme_name = form.get('theme_name', [self.cfg.theme_default])[0] theme_name = form.get('theme_name', [self.cfg.theme_default])[0]
@ -248,15 +279,34 @@ creer_compte_wiki.""")
theme_name = wikiutil.escape(theme_name) theme_name = wikiutil.escape(theme_name)
return _("The theme '%(theme_name)s' could not be loaded!") % locals() return _("The theme '%(theme_name)s' could not be loaded!") % locals()
# User CSS URL
theuser.css_url = form.get('css_url', [''])[0]
# try to get the (optional) preferred language # try to get the (optional) preferred language
theuser.language = form.get('language', [''])[0] theuser.language = form.get('language', [''])[0]
# I want to handle all inputs from user_form_fields, but
# don't want to handle the cases that have already been coded
# above.
# This is a horribly fragile kludge that's begging to break.
# Something that might work better would be to define a
# handler for each form field, instead of stuffing them all in
# one long and inextensible method. That would allow for
# plugins to provide methods to validate their fields as well.
already_handled = ['name', 'password', 'password2', 'email',
'aliasname', 'edit_rows', 'editor_default',
'editor_ui', 'tz_offset', 'datetime_fmt',
'theme_name', 'language']
for field in self.cfg.user_form_fields:
key = field[0]
if ((key in self.cfg.user_form_disable)
or (key in already_handled)):
continue
default = self.cfg.user_form_defaults[key]
value = form.get(key, [default])[0]
setattr(theuser, key, value)
# checkbox options # checkbox options
if not newuser: if not newuser:
for key, label in user.User._checkbox_fields: for key, label in self.cfg.user_checkbox_fields:
if key not in self.cfg.user_checkbox_disable and key not in self.cfg.user_checkbox_remove:
value = form.get(key, ["0"])[0] value = form.get(key, ["0"])[0]
try: try:
value = int(value) value = int(value)
@ -271,18 +321,9 @@ creer_compte_wiki.""")
# subscription for page change notification # subscription for page change notification
theuser.subscribed_pages = self.decodePageList('subscribed_pages') theuser.subscribed_pages = self.decodePageList('subscribed_pages')
# save data and send cookie # save data
theuser.save() theuser.save()
self.request.user = theuser self.request.user = theuser
self.request.setCookie()
#### HACK : création de la page WikiNom
try:
p = PageEditor(self.request, theuser.name)
p.saveText( 'Décrire ici %s' % theuser.name, 0)
except:
pass
#### FIN DU HACK
result = _("User preferences saved!") result = _("User preferences saved!")
if _debug: if _debug:
@ -326,7 +367,7 @@ class UserSettings:
options.append(( options.append((
str(offset), str(offset),
'%s [%s%s:%s]' % ( '%s [%s%s:%s]' % (
time.strftime(self.cfg.datetime_fmt, util.datetime.tmtuple(t)), time.strftime(self.cfg.datetime_fmt, timefuncs.tmtuple(t)),
"+-"[offset < 0], "+-"[offset < 0],
string.zfill("%d" % (abs(offset) / 3600), 2), string.zfill("%d" % (abs(offset) / 3600), 2),
string.zfill("%d" % (abs(offset) % 3600 / 60), 2), string.zfill("%d" % (abs(offset) % 3600 / 60), 2),
@ -366,15 +407,44 @@ class UserSettings:
return util.web.makeSelection('language', options, cur_lang) return util.web.makeSelection('language', options, cur_lang)
def _user_select(self):
options = []
users = user.getUserList(self.request)
for uid in users:
name = user.User(self.request, id=uid).name # + '_' + uid # for debugging
options.append((name, name))
options.sort()
size = min(5, len(options))
current_user = self.request.user.name
return util.web.makeSelection('selected_user', options, current_user, size=size)
def _theme_select(self): def _theme_select(self):
""" Create theme selection. """ """ Create theme selection. """
cur_theme = self.request.user.valid and self.request.user.theme_name or self.cfg.theme_default cur_theme = self.request.user.valid and self.request.user.theme_name or self.cfg.theme_default
options = [] options = [("<default>", "<%s>" % self._("Default"))]
for theme in wikiutil.getPlugins('theme', self.request.cfg): for theme in wikiutil.getPlugins('theme', self.request.cfg):
options.append((theme, theme)) options.append((theme, theme))
return util.web.makeSelection('theme_name', options, cur_theme) return util.web.makeSelection('theme_name', options, cur_theme)
def _editor_default_select(self):
""" Create editor selection. """
editor_default = self.request.user.valid and self.request.user.editor_default or self.cfg.editor_default
options = [("<default>", "<%s>" % self._("Default"))]
for editor in ['text','gui',]:
options.append((editor, editor))
return util.web.makeSelection('editor_default', options, editor_default)
def _editor_ui_select(self):
""" Create editor selection. """
editor_ui = self.request.user.valid and self.request.user.editor_ui or self.cfg.editor_ui
options = [("<default>", "<%s>" % self._("Default")),
("theonepreferred", self._("the one preferred")),
("freechoice", self._("free choice")),
]
return util.web.makeSelection('editor_ui', options, editor_ui)
def make_form(self): def make_form(self):
""" Create the FORM, and the TABLE with the input fields """ Create the FORM, and the TABLE with the input fields
""" """
@ -402,96 +472,81 @@ class UserSettings:
])) ]))
def asHTML(self): def asHTML(self, create_only=False):
""" Create the complete HTML form code. """ """ Create the complete HTML form code. """
_ = self._ _ = self._
self.make_form() self.make_form()
if self.request.user.valid: if self.request.user.isSuperUser():
# User preferences interface ticket = wikiutil.createTicket()
buttons = [ self.make_row(_('Select User'), [self._user_select()])
('save', _('Save')), self._form.append(html.INPUT(type="hidden", name="ticket", value="%s" % ticket))
('logout', _('Logout')), buttons = [("select_user", _('Select User'))]
] button_cell = []
for name, label in buttons:
button_cell.extend([
html.INPUT(type="submit", name=name, value=label),
' ',
])
self.make_row('', button_cell)
if self.request.user.valid and not create_only:
buttons = [('save', _('Save')), ('cancel', _('Cancel')), ]
uf_remove = self.cfg.user_form_remove
uf_disable = self.cfg.user_form_disable
for attr in self.request.user.auth_attribs:
if attr == 'password':
uf_remove.append(attr)
uf_remove.append('password2')
else: else:
# Login / register interface uf_disable.append(attr)
buttons = [ for key, label, type, length, textafter in self.cfg.user_form_fields:
# IMPORTANT: login should be first to be the default default = self.cfg.user_form_defaults[key]
# button when a user click enter. if not key in uf_remove:
('login', _('Login')), if key in uf_disable:
("save", _('Create Profile')), self.make_row(_(label),
] [ html.INPUT(type=type, size=length, name=key, disabled="disabled",
if self.cfg.mail_smarthost: value=getattr(self.request.user, key)), ' ', _(textafter), ])
buttons.append(("login_sendmail", _('Mail me my account data'))) else:
self.make_row(_(label),
[ html.INPUT(type=type, size=length, name=key, value=getattr(self.request.user, key)), ' ', _(textafter), ])
self.make_row(_('Name'), [ if not self.cfg.theme_force and not "theme_name" in self.cfg.user_form_remove:
html.INPUT(
type="text", size="36", name="username", value=self.request.user.name
),
' ', _('(Use FirstnameLastname)', formatted=False),
])
self.make_row(_('Password'), [
html.INPUT(
type="password", size="36", name="password",
),
' ',
])
self.make_row(_('Password repeat'), [
html.INPUT(
type="password", size="36", name="password2",
),
' ', _('(Only when changing passwords)'),
])
self.make_row(_('Email'), [
html.INPUT(
type="text", size="36", name="email", value=self.request.user.email
),
' ',
])
# Show options only if already logged in
if self.request.user.valid:
if not self.cfg.theme_force:
self.make_row(_('Preferred theme'), [self._theme_select()]) self.make_row(_('Preferred theme'), [self._theme_select()])
self.make_row(_('User CSS URL'), [ if not self.cfg.editor_force:
html.INPUT( if not "editor_default" in self.cfg.user_form_remove:
type="text", size="40", name="css_url", value=self.request.user.css_url self.make_row(_('Editor Preference'), [self._editor_default_select()])
), if not "editor_ui" in self.cfg.user_form_remove:
' ', _('(Leave it empty for disabling user CSS)'), self.make_row(_('Editor shown on UI'), [self._editor_ui_select()])
])
self.make_row(_('Editor size'), [
html.INPUT(type="text", size="3", maxlength="3",
name="edit_rows", value=str(self.request.user.edit_rows)),
])
if not "tz_offset" in self.cfg.user_form_remove:
self.make_row(_('Time zone'), [ self.make_row(_('Time zone'), [
_('Your time is'), ' ', _('Your time is'), ' ',
self._tz_select(), self._tz_select(),
html.BR(), html.BR(),
_('Server time is'), ' ', _('Server time is'), ' ',
time.strftime(self.cfg.datetime_fmt, util.datetime.tmtuple()), time.strftime(self.cfg.datetime_fmt, timefuncs.tmtuple()),
' (UTC)', ' (UTC)',
]) ])
if not "datetime_fmt" in self.cfg.user_form_remove:
self.make_row(_('Date format'), [self._dtfmt_select()]) self.make_row(_('Date format'), [self._dtfmt_select()])
if not "language" in self.cfg.user_form_remove:
self.make_row(_('Preferred language'), [self._lang_select()]) self.make_row(_('Preferred language'), [self._lang_select()])
# boolean user options # boolean user options
bool_options = [] bool_options = []
checkbox_fields = user.User._checkbox_fields checkbox_fields = self.cfg.user_checkbox_fields
_ = self.request.getText _ = self.request.getText
checkbox_fields.sort(lambda a, b: cmp(a[1](_), b[1](_))) checkbox_fields.sort(lambda a, b: cmp(a[1](_), b[1](_)))
for key, label in checkbox_fields: for key, label in checkbox_fields:
if not key in self.cfg.user_checkbox_remove:
bool_options.extend([ bool_options.extend([
html.INPUT(type="checkbox", name=key, value="1", html.INPUT(type="checkbox", name=key, value="1",
checked=getattr(self.request.user, key, 0)), checked=getattr(self.request.user, key, 0),
disabled=key in self.cfg.user_checkbox_disable and True or None),
' ', label(_), html.BR(), ' ', label(_), html.BR(),
]) ])
self.make_row(_('General options'), bool_options, valign="top") self.make_row(_('General options'), bool_options, valign="top")
@ -502,7 +557,7 @@ class UserSettings:
], valign="top") ], valign="top")
# subscribed pages # subscribed pages
if self.cfg.mail_smarthost: if self.cfg.mail_enabled:
# Get list of subscribe pages, DO NOT sort! it should # Get list of subscribe pages, DO NOT sort! it should
# stay in the order the user entered it in his input # stay in the order the user entered it in his input
# box. # box.
@ -524,10 +579,35 @@ class UserSettings:
] + warning, ] + warning,
valign="top" valign="top"
) )
else: # not logged in
# Login / register interface
buttons = [
# IMPORTANT: login should be first to be the default
# button when a user hits ENTER.
#('login', _('Login')), # we now have a Login macro
('create', _('Create Profile')),
('cancel', _('Cancel')),
]
for key, label, type, length, textafter in self.cfg.user_form_fields:
if key in ('name', 'password', 'password2', 'email'):
self.make_row(_(label),
[ html.INPUT(type=type, size=length, name=key,
value=''),
' ', _(textafter), ])
if self.cfg.mail_enabled:
buttons.append(("account_sendmail", _('Mail me my account data')))
if create_only:
buttons = [("create_only", _('Create Profile'))]
if self.cfg.mail_enabled:
buttons.append(("create_and_mail", "%s + %s" %
(_('Create Profile'), _('Email'))))
# Add buttons # Add buttons
button_cell = [] button_cell = []
for name, label in buttons: for name, label in buttons:
if not name in self.cfg.user_form_remove:
button_cell.extend([ button_cell.extend([
html.INPUT(type="submit", name=name, value=label), html.INPUT(type="submit", name=name, value=label),
' ', ' ',
@ -537,11 +617,76 @@ class UserSettings:
return unicode(self._form) return unicode(self._form)
def getUserForm(request): def getUserForm(request, create_only=False):
""" Return HTML code for the user settings. """ """ Return HTML code for the user settings. """
return UserSettings(request).asHTML() return UserSettings(request).asHTML(create_only=create_only)
class Login:
""" User login. """
def __init__(self, request):
""" Initialize user settings form.
"""
self.request = request
self._ = request.getText
self.cfg = request.cfg
def make_row(self, label, cell, **kw):
""" Create a row in the form table.
"""
self._table.append(html.TR().extend([
html.TD(**kw).extend([html.B().append(label), ' ']),
html.TD().extend(cell),
]))
def asHTML(self):
""" Create the complete HTML form code. """
_ = self._
request = self.request
sn = request.getScriptname()
pi = request.getPathinfo()
action = u"%s%s" % (sn, pi)
userprefslink = wikiutil.getSysPage(request, "UserPreferences").link_to(request)
hint = _("To create an account or recover a lost password, see the %(userprefslink)s page.") % {
'userprefslink': userprefslink}
self._form = html.FORM(action=action)
self._table = html.TABLE(border="0")
# Use the user interface language and direction
lang_attr = request.theme.ui_lang_attr()
self._form.append(html.Raw('<div class="userprefs"%s>' % lang_attr))
self._form.append(html.INPUT(type="hidden", name="action", value="login"))
self._form.append(self._table)
self._form.append(html.P().append(hint))
self._form.append(html.Raw("</div>"))
self.make_row(_('Name'), [
html.INPUT(
type="text", size="32", name="name",
),
])
self.make_row(_('Password'), [
html.INPUT(
type="password", size="32", name="password",
),
])
self.make_row('', [
html.INPUT(
type="submit", name='login', value=_('Login')
),
])
return unicode(self._form)
def getLogin(request):
""" Return HTML code for the login. """
return Login(request).asHTML()
############################################################################# #############################################################################
### User account administration ### User account administration
############################################################################# #############################################################################
@ -557,7 +702,7 @@ def do_user_browser(request):
#Column('id', label=('ID'), align='right'), #Column('id', label=('ID'), align='right'),
Column('name', label=('Username')), Column('name', label=('Username')),
Column('email', label=('Email')), Column('email', label=('Email')),
#Column('action', label=_('Action')), Column('action', label=_('Action')),
] ]
# Iterate over users # Iterate over users
@ -573,10 +718,14 @@ def do_user_browser(request):
data.addRow(( data.addRow((
#request.formatter.code(1) + uid + request.formatter.code(0), #request.formatter.code(1) + uid + request.formatter.code(0),
request.formatter.rawHTML(namelink), request.formatter.rawHTML(namelink),
(request.formatter.url(1, 'mailto:' + account.email, 'external', pretty_url=1, unescaped=1) + (request.formatter.url(1, 'mailto:' + account.email, css='mailto', do_escape=0) +
request.formatter.text(account.email) + request.formatter.text(account.email) +
request.formatter.url(0)), request.formatter.url(0)),
#'', request.page.link_to(request, text=_('Mail me my account data'),
querystr= {"action":"userform",
"email": account.email,
"account_sendmail": "1",
"sysadm": "users",})
)) ))
if data: if data:

68
wiki/wikiacl.py
View file

@ -8,13 +8,7 @@
""" """
import re import re
from MoinMoin import user, search from MoinMoin import user
#### HACK SAUVAGE 1/4
import sys
sys.path.append('/usr/scripts/gestion/')
from iptools import is_crans
#### FIN DU HACK 1/4
class AccessControlList: class AccessControlList:
''' Access Control List ''' Access Control List
@ -93,10 +87,6 @@ class AccessControlList:
Configuration options Configuration options
cfg.acl_enabled
If true will enable ACL support.
Default: 0
cfg.acl_rights_default cfg.acl_rights_default
It is is ONLY used when no other ACLs are given. It is is ONLY used when no other ACLs are given.
Default: "Known:read,write,delete All:read,write", Default: "Known:read,write,delete All:read,write",
@ -117,10 +107,7 @@ class AccessControlList:
Default: ["read", "write", "delete", "admin"] Default: ["read", "write", "delete", "admin"]
''' '''
#special_users = ["All", "Known", "Trusted"] special_users = ["All", "Known", "Trusted"] # order is important
#### HACK SAUVAGE 2/4
special_users = ["All", "Known", "Trusted", "Conf"]
#### FIN DU HACK 2/4
def __init__(self, request, lines=[]): def __init__(self, request, lines=[]):
"""Initialize an ACL, starting from <nothing>. """Initialize an ACL, starting from <nothing>.
@ -159,7 +146,6 @@ class AccessControlList:
@param aclstring: acl string from page or cfg @param aclstring: acl string from page or cfg
@param remember: should add the line to self.acl_lines @param remember: should add the line to self.acl_lines
""" """
# FIXME: should compile this once and cache (in cfg?)
group_re = re.compile(cfg.page_group_regex) group_re = re.compile(cfg.page_group_regex)
# Remember lines # Remember lines
@ -195,17 +181,6 @@ class AccessControlList:
"""May <name> <dowhat>? """May <name> <dowhat>?
Returns boolean answer. Returns boolean answer.
""" """
if not request.cfg.acl_enabled:
# everybody may read and write:
if dowhat in ["read", "write",]:
return 1
# only known users may do some more dangerous things:
if request.user.valid:
if dowhat in ["delete", "revert",]:
return 1
# in any other case, we better disallow it:
return 0
is_group_member = request.dicts.has_member is_group_member = request.dicts.has_member
allowed = None allowed = None
@ -213,8 +188,16 @@ class AccessControlList:
if entry in self.special_users: if entry in self.special_users:
handler = getattr(self, "_special_"+entry, None) handler = getattr(self, "_special_"+entry, None)
allowed = handler(request, name, dowhat, rightsdict) allowed = handler(request, name, dowhat, rightsdict)
elif self._is_group.get(entry) and is_group_member(entry, name): elif self._is_group.get(entry):
if is_group_member(entry, name):
allowed = rightsdict.get(dowhat) allowed = rightsdict.get(dowhat)
else:
for special in self.special_users:
if is_group_member(entry, special):
handler = getattr(self, "_special_"+ special, None)
allowed = handler(request, name,
dowhat, rightsdict)
break # order of self.special_users is important
elif entry == name: elif entry == name:
allowed = rightsdict.get(dowhat) allowed = rightsdict.get(dowhat)
if allowed is not None: if allowed is not None:
@ -226,8 +209,6 @@ class AccessControlList:
return ''.join(["%s%s%s" % (b,l,e) for l in self.acl_lines]) return ''.join(["%s%s%s" % (b,l,e) for l in self.acl_lines])
def _special_All(self, request, name, dowhat, rightsdict): def _special_All(self, request, name, dowhat, rightsdict):
if dowhat == "read" and self.is_page_public(request):
return True
return rightsdict.get(dowhat) return rightsdict.get(dowhat)
def _special_Known(self, request, name, dowhat, rightsdict): def _special_Known(self, request, name, dowhat, rightsdict):
@ -239,11 +220,6 @@ class AccessControlList:
return rightsdict.get(dowhat) return rightsdict.get(dowhat)
return None return None
#### HACK SAUVAGE 3/4
def _special_Conf(self, request, name, dowhat, rightsdict):
return request.cfg.acl_request(self, request, name, dowhat, rightsdict)
#### FIN Du HACK 3/4
def _special_Trusted(self, request, name, dowhat, rightsdict): def _special_Trusted(self, request, name, dowhat, rightsdict):
""" check if user <name> is known AND even has logged in using a password. """ check if user <name> is known AND even has logged in using a password.
does not work for subsription emails that should be sent to <user>, does not work for subsription emails that should be sent to <user>,
@ -258,22 +234,6 @@ class AccessControlList:
def __ne__(self, other): def __ne__(self, other):
return self.acl_lines != other.acl_lines return self.acl_lines != other.acl_lines
#### HACK SAUVAGE 4/4
def is_page_public(self,request):
## On recherche si la page est publique
if not request.page:
return False
this_page = request.page.page_name
query = search.QueryParser().parse_query(u'CatégoriePagePublique')
page = search.Page(request, this_page)
result = query.search(page)
if result:
return True
else:
return False
#### FIN DU HACK 4/4
class ACLStringIterator: class ACLStringIterator:
""" Iterator for acl string """ Iterator for acl string
@ -291,7 +251,7 @@ class ACLStringIterator:
""" Initialize acl iterator """ Initialize acl iterator
@param rights: the acl rights to consider when parsing @param rights: the acl rights to consider when parsing
@param aclstirng: string to parse @param aclstring: string to parse
""" """
self.rights = rights self.rights = rights
self.rest = aclstring.strip() self.rest = aclstring.strip()
@ -331,7 +291,6 @@ class ACLStringIterator:
else: else:
# Get entries # Get entries
try: try:
# XXX TODO disallow : and , in usernames
entries, self.rest = self.rest.split(':', 1) entries, self.rest = self.rest.split(':', 1)
except ValueError: except ValueError:
self.finished = 1 self.finished = 1
@ -360,9 +319,6 @@ def parseACL(request, body):
Use ACL object may(request, dowhat) to get acl rights. Use ACL object may(request, dowhat) to get acl rights.
""" """
if not request.cfg.acl_enabled:
return AccessControlList(request)
acl_lines = [] acl_lines = []
while body and body[0] == '#': while body and body[0] == '#':
# extract first line # extract first line