2 # Copyright (C) 2018 rubenwardy
4 # This program is free software: you can redistribute it and/or modify
5 # it under the terms of the GNU General Public License as published by
6 # the Free Software Foundation, either version 3 of the License, or
7 # (at your option) any later version.
9 # This program is distributed in the hope that it will be useful,
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 # GNU General Public License for more details.
14 # You should have received a copy of the GNU General Public License
15 # along with this program. If not, see <https://www.gnu.org/licenses/>.
18 from flask import Flask, url_for
19 from flask_sqlalchemy import SQLAlchemy
21 from datetime import datetime
22 from sqlalchemy.orm import validates
23 from flask_user import login_required, UserManager, UserMixin, SQLAlchemyAdapter
30 class UserRank(enum.Enum):
38 def atLeast(self, min):
39 return self.value >= min.value
42 return self.name.replace("_", " ").title()
45 return self.name.lower()
52 return [(choice, choice.getTitle()) for choice in cls]
55 def coerce(cls, item):
56 return item if type(item) == UserRank else UserRank[item]
59 class Permission(enum.Enum):
60 EDIT_PACKAGE = "EDIT_PACKAGE"
61 APPROVE_CHANGES = "APPROVE_CHANGES"
62 DELETE_PACKAGE = "DELETE_PACKAGE"
63 CHANGE_AUTHOR = "CHANGE_AUTHOR"
64 MAKE_RELEASE = "MAKE_RELEASE"
65 APPROVE_RELEASE = "APPROVE_RELEASE"
66 APPROVE_NEW = "APPROVE_NEW"
67 CHANGE_RELEASE_URL = "CHANGE_RELEASE_URL"
68 CHANGE_RANK = "CHANGE_RANK"
69 CHANGE_EMAIL = "CHANGE_EMAIL"
70 EDIT_EDITREQUEST = "EDIT_EDITREQUEST"
72 # Only return true if the permission is valid for *all* contexts
73 # See Package.checkPerm for package-specific contexts
74 def check(self, user):
75 if not user.is_authenticated:
78 if self == Permission.APPROVE_NEW or \
79 self == Permission.APPROVE_CHANGES or \
80 self == Permission.APPROVE_RELEASE:
81 return user.rank.atLeast(UserRank.EDITOR)
83 raise Exception("Non-global permission checked globally. Use Package.checkPerm or User.checkPerm instead.")
86 class User(db.Model, UserMixin):
87 id = db.Column(db.Integer, primary_key=True)
89 # User authentication information
90 username = db.Column(db.String(50), nullable=False, unique=True)
91 password = db.Column(db.String(255), nullable=False, server_default="")
92 reset_password_token = db.Column(db.String(100), nullable=False, server_default="")
94 rank = db.Column(db.Enum(UserRank))
97 github_username = db.Column(db.String(50), nullable=True, unique=True)
98 forums_username = db.Column(db.String(50), nullable=True, unique=True)
100 # User email information
101 email = db.Column(db.String(255), nullable=True, unique=True)
102 confirmed_at = db.Column(db.DateTime())
105 active = db.Column("is_active", db.Boolean, nullable=False, server_default="0")
106 display_name = db.Column(db.String(100), nullable=False, server_default="")
109 notifications = db.relationship("Notification", primaryjoin="User.id==Notification.user_id")
111 # causednotifs = db.relationship("Notification", backref="causer", lazy="dynamic")
112 packages = db.relationship("Package", backref="author", lazy="dynamic")
113 requests = db.relationship("EditRequest", backref="author", lazy="dynamic")
115 def __init__(self, username):
118 self.username = username
119 self.confirmed_at = datetime.datetime.now() - datetime.timedelta(days=6000)
120 self.display_name = username
121 self.rank = UserRank.NOT_JOINED
123 def canAccessTodoList(self):
124 return Permission.APPROVE_NEW.check(self) or \
125 Permission.APPROVE_RELEASE.check(self) or \
126 Permission.APPROVE_CHANGES.check(self)
129 return self.rank.atLeast(UserRank.NEW_MEMBER)
131 def checkPerm(self, user, perm):
132 if not user.is_authenticated:
135 if type(perm) == str:
136 perm = Permission[perm]
137 elif type(perm) != Permission:
138 raise Exception("Unknown permission given to User.checkPerm()")
140 # Members can edit their own packages, and editors can edit any packages
141 if perm == Permission.CHANGE_AUTHOR:
142 return user.rank.atLeast(UserRank.EDITOR)
143 elif perm == Permission.CHANGE_RANK:
144 return user.rank.atLeast(UserRank.MODERATOR)
145 elif perm == Permission.CHANGE_EMAIL:
146 return user == self or (user.rank.atLeast(UserRank.MODERATOR) and user.rank.atLeast(self.rank))
148 raise Exception("Permission {} is not related to users".format(perm.name))
150 class UserEmailVerification(db.Model):
151 id = db.Column(db.Integer, primary_key=True)
152 user_id = db.Column(db.Integer, db.ForeignKey("user.id"))
153 email = db.Column(db.String(100))
154 token = db.Column(db.String(32))
155 user = db.relationship("User", foreign_keys=[user_id])
157 class Notification(db.Model):
158 id = db.Column(db.Integer, primary_key=True)
159 user_id = db.Column(db.Integer, db.ForeignKey("user.id"))
160 causer_id = db.Column(db.Integer, db.ForeignKey("user.id"))
161 user = db.relationship("User", foreign_keys=[user_id])
162 causer = db.relationship("User", foreign_keys=[causer_id])
164 title = db.Column(db.String(100), nullable=False)
165 url = db.Column(db.String(200), nullable=True)
167 def __init__(self, us, cau, titl, ur):
174 class License(db.Model):
175 id = db.Column(db.Integer, primary_key=True)
176 name = db.Column(db.String(50), nullable=False, unique=True)
177 packages = db.relationship("Package", backref="license", lazy="dynamic")
179 def __init__(self, v):
186 class PackageType(enum.Enum):
192 return self.name.lower()
199 return [(choice, choice.value) for choice in cls]
202 def coerce(cls, item):
203 return item if type(item) == PackageType else PackageType[item]
206 class PackagePropertyKey(enum.Enum):
209 shortDesc = "Short Description"
216 issueTracker = "Issue Tracker"
217 forums = "Forum Topic ID"
219 def convert(self, value):
220 if self == PackagePropertyKey.tags:
221 return ",".join([t.title for t in value])
225 tags = db.Table("tags",
226 db.Column("tag_id", db.Integer, db.ForeignKey("tag.id"), primary_key=True),
227 db.Column("package_id", db.Integer, db.ForeignKey("package.id"), primary_key=True)
230 harddeps = db.Table("harddeps",
231 db.Column("package_id", db.Integer, db.ForeignKey("package.id"), primary_key=True),
232 db.Column("dependency_id", db.Integer, db.ForeignKey("package.id"), primary_key=True)
235 softdeps = db.Table("softdeps",
236 db.Column("package_id", db.Integer, db.ForeignKey("package.id"), primary_key=True),
237 db.Column("dependency_id", db.Integer, db.ForeignKey("package.id"), primary_key=True)
240 class Package(db.Model):
241 id = db.Column(db.Integer, primary_key=True)
244 author_id = db.Column(db.Integer, db.ForeignKey("user.id"))
245 name = db.Column(db.String(100), nullable=False)
246 title = db.Column(db.String(100), nullable=False)
247 shortDesc = db.Column(db.String(200), nullable=False)
248 desc = db.Column(db.Text, nullable=True)
249 type = db.Column(db.Enum(PackageType))
251 license_id = db.Column(db.Integer, db.ForeignKey("license.id"))
253 approved = db.Column(db.Boolean, nullable=False, default=False)
256 repo = db.Column(db.String(200), nullable=True)
257 website = db.Column(db.String(200), nullable=True)
258 issueTracker = db.Column(db.String(200), nullable=True)
259 forums = db.Column(db.Integer, nullable=False)
261 tags = db.relationship("Tag", secondary=tags, lazy="subquery",
262 backref=db.backref("packages", lazy=True))
264 harddeps = db.relationship("Package",
266 primaryjoin=id==harddeps.c.package_id,
267 secondaryjoin=id==harddeps.c.dependency_id,
268 backref="dependents")
270 softdeps = db.relationship("Package",
272 primaryjoin=id==softdeps.c.package_id,
273 secondaryjoin=id==softdeps.c.dependency_id,
274 backref="softdependents")
276 releases = db.relationship("PackageRelease", backref="package",
277 lazy="dynamic", order_by=db.desc("package_release_releaseDate"))
279 screenshots = db.relationship("PackageScreenshot", backref="package",
282 requests = db.relationship("EditRequest", backref="package",
285 def getAsDictionary(self, base_url):
289 "author": self.author.display_name,
290 "shortDesc": self.shortDesc,
291 "type": self.type.toName(),
292 "license": self.license.name,
294 "url": base_url + self.getDownloadURL(),
295 "release": self.getDownloadRelease().id if self.getDownloadRelease() is not None else None,
296 "screenshots": [base_url + ss.url for ss in self.screenshots]
299 def getDetailsURL(self):
300 return url_for("package_page",
301 author=self.author.username, name=self.name)
303 def getEditURL(self):
304 return url_for("create_edit_package_page",
305 author=self.author.username, name=self.name)
307 def getApproveURL(self):
308 return url_for("approve_package_page",
309 author=self.author.username, name=self.name)
311 def getNewScreenshotURL(self):
312 return url_for("create_screenshot_page",
313 author=self.author.username, name=self.name)
315 def getCreateReleaseURL(self):
316 return url_for("create_release_page",
317 author=self.author.username, name=self.name)
319 def getCreateEditRequestURL(self):
320 return url_for("create_edit_editrequest_page",
321 author=self.author.username, name=self.name)
323 def getDownloadURL(self):
324 return url_for("package_download_page",
325 author=self.author.username, name=self.name)
327 def getMainScreenshotURL(self):
328 screenshot = self.screenshots.first()
329 return screenshot.url if screenshot is not None else None
331 def getDownloadRelease(self):
332 for rel in self.releases:
338 def checkPerm(self, user, perm):
339 if not user.is_authenticated:
342 if type(perm) == str:
343 perm = Permission[perm]
344 elif type(perm) != Permission:
345 raise Exception("Unknown permission given to Package.checkPerm()")
347 isOwner = user == self.author
349 # Members can edit their own packages, and editors can edit any packages
350 if perm == Permission.MAKE_RELEASE:
351 return isOwner or user.rank.atLeast(UserRank.EDITOR)
353 if perm == Permission.EDIT_PACKAGE or perm == Permission.APPROVE_CHANGES:
354 return user.rank.atLeast(UserRank.MEMBER if isOwner else UserRank.EDITOR)
356 # Editors can change authors, approve new packages, and approve releases
357 elif perm == Permission.CHANGE_AUTHOR or perm == Permission.APPROVE_NEW \
358 or perm == Permission.APPROVE_RELEASE:
359 return user.rank.atLeast(UserRank.EDITOR)
361 # Moderators can delete packages
362 elif perm == Permission.DELETE_PACKAGE or perm == Permission.CHANGE_RELEASE_URL:
363 return user.rank.atLeast(UserRank.MODERATOR)
366 raise Exception("Permission {} is not related to packages".format(perm.name))
369 id = db.Column(db.Integer, primary_key=True)
370 name = db.Column(db.String(100), unique=True, nullable=False)
371 title = db.Column(db.String(100), nullable=False)
372 backgroundColor = db.Column(db.String(6), nullable=False)
373 textColor = db.Column(db.String(6), nullable=False)
375 def __init__(self, title, backgroundColor="000000", textColor="ffffff"):
377 self.backgroundColor = backgroundColor
378 self.textColor = textColor
381 regex = re.compile("[^a-z_]")
382 self.name = regex.sub("", self.title.lower().replace(" ", "_"))
384 class PackageRelease(db.Model):
385 id = db.Column(db.Integer, primary_key=True)
387 package_id = db.Column(db.Integer, db.ForeignKey("package.id"))
388 title = db.Column(db.String(100), nullable=False)
389 releaseDate = db.Column(db.DateTime, nullable=False)
390 url = db.Column(db.String(100), nullable=False)
391 approved = db.Column(db.Boolean, nullable=False, default=False)
392 task_id = db.Column(db.String(32), nullable=True)
395 def getEditURL(self):
396 return url_for("edit_release_page",
397 author=self.package.author.username,
398 name=self.package.name,
402 self.releaseDate = datetime.now()
404 class PackageScreenshot(db.Model):
405 id = db.Column(db.Integer, primary_key=True)
406 package_id = db.Column(db.Integer, db.ForeignKey("package.id"))
407 title = db.Column(db.String(100), nullable=False)
408 url = db.Column(db.String(100), nullable=False)
410 def getThumbnailURL(self):
411 return self.url # TODO
413 class EditRequest(db.Model):
414 id = db.Column(db.Integer, primary_key=True)
416 package_id = db.Column(db.Integer, db.ForeignKey("package.id"))
417 author_id = db.Column(db.Integer, db.ForeignKey("user.id"))
419 title = db.Column(db.String(100), nullable=False)
420 desc = db.Column(db.String(1000), nullable=True)
425 status = db.Column(db.Integer, nullable=False, default=0)
427 changes = db.relationship("EditRequestChange", backref="request",
431 return url_for("view_editrequest_page",
432 author=self.package.author.username,
433 name=self.package.name,
436 def getApproveURL(self):
437 return url_for("approve_editrequest_page",
438 author=self.package.author.username,
439 name=self.package.name,
442 def getRejectURL(self):
443 return url_for("reject_editrequest_page",
444 author=self.package.author.username,
445 name=self.package.name,
448 def getEditURL(self):
449 return url_for("create_edit_editrequest_page",
450 author=self.package.author.username,
451 name=self.package.name,
454 def applyAll(self, package):
455 for change in self.changes:
456 change.apply(package)
459 def checkPerm(self, user, perm):
460 if not user.is_authenticated:
463 if type(perm) == str:
464 perm = Permission[perm]
465 elif type(perm) != Permission:
466 raise Exception("Unknown permission given to EditRequest.checkPerm()")
468 isOwner = user == self.author
470 # Members can edit their own packages, and editors can edit any packages
471 if perm == Permission.EDIT_EDITREQUEST:
472 return isOwner or user.rank.atLeast(UserRank.EDITOR)
475 raise Exception("Permission {} is not related to packages".format(perm.name))
480 class EditRequestChange(db.Model):
481 id = db.Column(db.Integer, primary_key=True)
483 request_id = db.Column(db.Integer, db.ForeignKey("edit_request.id"))
484 key = db.Column(db.Enum(PackagePropertyKey), nullable=False)
486 # TODO: make diff instead
487 oldValue = db.Column(db.Text, nullable=True)
488 newValue = db.Column(db.Text, nullable=True)
490 def apply(self, package):
491 if self.key == PackagePropertyKey.tags:
493 for tagTitle in self.newValue.split(","):
494 tag = Tag.query.filter_by(title=tagTitle.strip()).first()
495 package.tags.append(tag)
497 setattr(package, self.key.name, self.newValue)
500 db_adapter = SQLAlchemyAdapter(db, User) # Register the User model
501 user_manager = UserManager(db_adapter, app) # Initialize Flask-User