2 # Copyright (C) 2018 rubenwardy
4 # This program is free software: you can redistribute it and/or modify
5 # it under the terms of the GNU General Public License as published by
6 # the Free Software Foundation, either version 3 of the License, or
7 # (at your option) any later version.
9 # This program is distributed in the hope that it will be useful,
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 # GNU General Public License for more details.
14 # You should have received a copy of the GNU General Public License
15 # along with this program. If not, see <https://www.gnu.org/licenses/>.
18 from flask import Flask, url_for
19 from flask_sqlalchemy import SQLAlchemy
20 from flask_migrate import Migrate
21 from urllib.parse import urlparse
23 from datetime import datetime
24 from sqlalchemy.orm import validates
25 from flask_user import login_required, UserManager, UserMixin, SQLAlchemyAdapter
30 migrate = Migrate(app, db)
33 class UserRank(enum.Enum):
43 def atLeast(self, min):
44 return self.value >= min.value
47 return self.name.replace("_", " ").title()
50 return self.name.lower()
57 return [(choice, choice.getTitle()) for choice in cls]
60 def coerce(cls, item):
61 return item if type(item) == UserRank else UserRank[item]
64 class Permission(enum.Enum):
65 EDIT_PACKAGE = "EDIT_PACKAGE"
66 APPROVE_CHANGES = "APPROVE_CHANGES"
67 DELETE_PACKAGE = "DELETE_PACKAGE"
68 CHANGE_AUTHOR = "CHANGE_AUTHOR"
69 MAKE_RELEASE = "MAKE_RELEASE"
70 ADD_SCREENSHOTS = "ADD_SCREENSHOTS"
71 APPROVE_SCREENSHOT = "APPROVE_SCREENSHOT"
72 APPROVE_RELEASE = "APPROVE_RELEASE"
73 APPROVE_NEW = "APPROVE_NEW"
74 CHANGE_RELEASE_URL = "CHANGE_RELEASE_URL"
75 CHANGE_DNAME = "CHANGE_DNAME"
76 CHANGE_RANK = "CHANGE_RANK"
77 CHANGE_EMAIL = "CHANGE_EMAIL"
78 EDIT_EDITREQUEST = "EDIT_EDITREQUEST"
80 # Only return true if the permission is valid for *all* contexts
81 # See Package.checkPerm for package-specific contexts
82 def check(self, user):
83 if not user.is_authenticated:
86 if self == Permission.APPROVE_NEW or \
87 self == Permission.APPROVE_CHANGES or \
88 self == Permission.APPROVE_RELEASE or \
89 self == Permission.APPROVE_SCREENSHOT:
90 return user.rank.atLeast(UserRank.EDITOR)
92 raise Exception("Non-global permission checked globally. Use Package.checkPerm or User.checkPerm instead.")
95 class User(db.Model, UserMixin):
96 id = db.Column(db.Integer, primary_key=True)
98 # User authentication information
99 username = db.Column(db.String(50), nullable=False, unique=True)
100 password = db.Column(db.String(255), nullable=True)
101 reset_password_token = db.Column(db.String(100), nullable=False, server_default="")
103 rank = db.Column(db.Enum(UserRank))
106 github_username = db.Column(db.String(50), nullable=True, unique=True)
107 forums_username = db.Column(db.String(50), nullable=True, unique=True)
109 # User email information
110 email = db.Column(db.String(255), nullable=True, unique=True)
111 confirmed_at = db.Column(db.DateTime())
114 active = db.Column("is_active", db.Boolean, nullable=False, server_default="0")
115 display_name = db.Column(db.String(100), nullable=False, server_default="")
118 notifications = db.relationship("Notification", primaryjoin="User.id==Notification.user_id")
120 # causednotifs = db.relationship("Notification", backref="causer", lazy="dynamic")
121 packages = db.relationship("Package", backref="author", lazy="dynamic")
122 requests = db.relationship("EditRequest", backref="author", lazy="dynamic")
124 def __init__(self, username, active=False, email=None, password=None):
127 self.username = username
128 self.confirmed_at = datetime.datetime.now() - datetime.timedelta(days=6000)
129 self.display_name = username
132 self.password = password
133 self.rank = UserRank.NOT_JOINED
135 def canAccessTodoList(self):
136 return Permission.APPROVE_NEW.check(self) or \
137 Permission.APPROVE_RELEASE.check(self) or \
138 Permission.APPROVE_CHANGES.check(self)
141 return self.rank.atLeast(UserRank.NEW_MEMBER)
143 def checkPerm(self, user, perm):
144 if not user.is_authenticated:
147 if type(perm) == str:
148 perm = Permission[perm]
149 elif type(perm) != Permission:
150 raise Exception("Unknown permission given to User.checkPerm()")
152 # Members can edit their own packages, and editors can edit any packages
153 if perm == Permission.CHANGE_AUTHOR:
154 return user.rank.atLeast(UserRank.EDITOR)
155 elif perm == Permission.CHANGE_RANK or perm == Permission.CHANGE_DNAME:
156 return user.rank.atLeast(UserRank.MODERATOR)
157 elif perm == Permission.CHANGE_EMAIL:
158 return user == self or (user.rank.atLeast(UserRank.MODERATOR) and user.rank.atLeast(self.rank))
160 raise Exception("Permission {} is not related to users".format(perm.name))
162 class UserEmailVerification(db.Model):
163 id = db.Column(db.Integer, primary_key=True)
164 user_id = db.Column(db.Integer, db.ForeignKey("user.id"))
165 email = db.Column(db.String(100))
166 token = db.Column(db.String(32))
167 user = db.relationship("User", foreign_keys=[user_id])
169 class Notification(db.Model):
170 id = db.Column(db.Integer, primary_key=True)
171 user_id = db.Column(db.Integer, db.ForeignKey("user.id"))
172 causer_id = db.Column(db.Integer, db.ForeignKey("user.id"))
173 user = db.relationship("User", foreign_keys=[user_id])
174 causer = db.relationship("User", foreign_keys=[causer_id])
176 title = db.Column(db.String(100), nullable=False)
177 url = db.Column(db.String(200), nullable=True)
179 def __init__(self, us, cau, titl, ur):
186 class License(db.Model):
187 id = db.Column(db.Integer, primary_key=True)
188 name = db.Column(db.String(50), nullable=False, unique=True)
190 def __init__(self, v):
197 class PackageType(enum.Enum):
203 return self.name.lower()
210 return [(choice, choice.value) for choice in cls]
213 def coerce(cls, item):
214 return item if type(item) == PackageType else PackageType[item]
217 class PackagePropertyKey(enum.Enum):
220 shortDesc = "Short Description"
225 provides = "Provides"
228 issueTracker = "Issue Tracker"
229 forums = "Forum Topic ID"
231 def convert(self, value):
232 if self == PackagePropertyKey.tags:
233 return ",".join([t.title for t in value])
234 elif self == PackagePropertyKey.provides:
235 return ",".join([t.name for t in value])
239 provides = db.Table("provides",
240 db.Column("package_id", db.Integer, db.ForeignKey("package.id"), primary_key=True),
241 db.Column("metapackage_id", db.Integer, db.ForeignKey("meta_package.id"), primary_key=True)
244 tags = db.Table("tags",
245 db.Column("tag_id", db.Integer, db.ForeignKey("tag.id"), primary_key=True),
246 db.Column("package_id", db.Integer, db.ForeignKey("package.id"), primary_key=True)
249 class Dependency(db.Model):
250 id = db.Column(db.Integer, primary_key=True)
251 depender_id = db.Column(db.Integer, db.ForeignKey("package.id"), nullable=True)
252 package_id = db.Column(db.Integer, db.ForeignKey("package.id"), nullable=True)
253 package = db.relationship("Package", foreign_keys=[package_id])
254 meta_package_id = db.Column(db.Integer, db.ForeignKey("meta_package.id"), nullable=True)
255 optional = db.Column(db.Boolean, nullable=False, default=False)
256 __table_args__ = (db.UniqueConstraint('depender_id', 'package_id', 'meta_package_id', name='_dependency_uc'), )
258 def __init__(self, depender=None, package=None, meta=None):
262 self.depender = depender
264 packageProvided = package is not None
265 metaProvided = meta is not None
267 if packageProvided and not metaProvided:
268 self.package = package
269 elif metaProvided and not packageProvided:
270 self.meta_package = meta
272 raise Exception("Either meta or package must be given, but not both!")
275 if self.package is not None:
276 return self.package.author.username + "/" + self.package.name
277 elif self.meta_package is not None:
278 return self.meta_package.name
280 raise Exception("Meta and package are both none!")
283 def SpecToList(depender, spec, cache={}):
285 arr = spec.split(",")
288 pattern1 = re.compile("^([a-z0-9_]+)$")
289 pattern2 = re.compile("^([A-Za-z0-9_]+)/([a-z0-9_]+)$")
296 if pattern1.match(x):
297 meta = MetaPackage.GetOrCreate(x, cache)
298 retval.append(Dependency(depender, meta=meta))
300 m = pattern2.match(x)
301 username = m.group(1)
303 user = User.query.filter_by(username=username).first()
305 raise Exception("Unable to find user " + username)
307 package = Package.query.filter_by(author=user, name=name).first()
309 raise Exception("Unable to find package " + name + " by " + username)
311 retval.append(Dependency(depender, package=package))
317 class Package(db.Model):
318 id = db.Column(db.Integer, primary_key=True)
321 author_id = db.Column(db.Integer, db.ForeignKey("user.id"))
322 name = db.Column(db.String(100), nullable=False)
323 title = db.Column(db.String(100), nullable=False)
324 shortDesc = db.Column(db.String(200), nullable=False)
325 desc = db.Column(db.Text, nullable=True)
326 type = db.Column(db.Enum(PackageType))
327 created_at = db.Column(db.DateTime, nullable=False, default=datetime.utcnow)
329 license_id = db.Column(db.Integer, db.ForeignKey("license.id"), nullable=False, default=1)
330 license = db.relationship("License", foreign_keys=[license_id])
331 media_license_id = db.Column(db.Integer, db.ForeignKey("license.id"), nullable=False, default=1)
332 media_license = db.relationship("License", foreign_keys=[media_license_id])
334 approved = db.Column(db.Boolean, nullable=False, default=False)
335 soft_deleted = db.Column(db.Boolean, nullable=False, default=False)
338 repo = db.Column(db.String(200), nullable=True)
339 website = db.Column(db.String(200), nullable=True)
340 issueTracker = db.Column(db.String(200), nullable=True)
341 forums = db.Column(db.Integer, nullable=True)
343 provides = db.relationship("MetaPackage", secondary=provides, lazy="subquery",
344 backref=db.backref("packages", lazy="dynamic"))
346 dependencies = db.relationship("Dependency", backref="depender", lazy="dynamic", foreign_keys=[Dependency.depender_id])
348 tags = db.relationship("Tag", secondary=tags, lazy="subquery",
349 backref=db.backref("packages", lazy=True))
351 releases = db.relationship("PackageRelease", backref="package",
352 lazy="dynamic", order_by=db.desc("package_release_releaseDate"))
354 screenshots = db.relationship("PackageScreenshot", backref="package",
357 requests = db.relationship("EditRequest", backref="package",
360 def __init__(self, package=None):
364 self.author_id = package.author_id
365 self.created_at = package.created_at
366 self.approved = package.approved
368 for e in PackagePropertyKey:
369 setattr(self, e.name, getattr(package, e.name))
371 def getAsDictionary(self, base_url):
375 "author": self.author.display_name,
376 "shortDesc": self.shortDesc,
377 "type": self.type.toName(),
378 "license": self.license.name,
380 "url": base_url + self.getDownloadURL(),
381 "release": self.getDownloadRelease().id if self.getDownloadRelease() is not None else None,
382 "screenshots": [base_url + ss.url for ss in self.screenshots],
383 "thumbnail": base_url + self.getThumbnailURL()
386 def getThumbnailURL(self):
387 screenshot = self.screenshots.filter_by(approved=True).first()
388 return screenshot.getThumbnailURL() if screenshot is not None else None
390 def getMainScreenshotURL(self):
391 screenshot = self.screenshots.filter_by(approved=True).first()
392 return screenshot.url if screenshot is not None else None
394 def getDetailsURL(self):
395 return url_for("package_page",
396 author=self.author.username, name=self.name)
398 def getEditURL(self):
399 return url_for("create_edit_package_page",
400 author=self.author.username, name=self.name)
402 def getApproveURL(self):
403 return url_for("approve_package_page",
404 author=self.author.username, name=self.name)
406 def getDeleteURL(self):
407 return url_for("delete_package_page",
408 author=self.author.username, name=self.name)
410 def getNewScreenshotURL(self):
411 return url_for("create_screenshot_page",
412 author=self.author.username, name=self.name)
414 def getCreateReleaseURL(self):
415 return url_for("create_release_page",
416 author=self.author.username, name=self.name)
418 def getCreateEditRequestURL(self):
419 return url_for("create_edit_editrequest_page",
420 author=self.author.username, name=self.name)
422 def getDownloadURL(self):
423 return url_for("package_download_page",
424 author=self.author.username, name=self.name)
426 def getDownloadRelease(self):
427 for rel in self.releases:
433 def canImportScreenshot(self):
434 if self.repo is None:
437 url = urlparse(self.repo)
438 if url.netloc == "github.com":
443 def canMakeReleaseFromVCS(self):
444 if self.repo is None:
447 url = urlparse(self.repo)
448 if url.netloc == "github.com":
453 def checkPerm(self, user, perm):
454 if not user.is_authenticated:
457 if type(perm) == str:
458 perm = Permission[perm]
459 elif type(perm) != Permission:
460 raise Exception("Unknown permission given to Package.checkPerm()")
462 isOwner = user == self.author
464 # Members can edit their own packages, and editors can edit any packages
465 if perm == Permission.MAKE_RELEASE or perm == Permission.ADD_SCREENSHOTS:
466 return isOwner or user.rank.atLeast(UserRank.EDITOR)
468 if perm == Permission.EDIT_PACKAGE or perm == Permission.APPROVE_CHANGES:
470 return user.rank.atLeast(UserRank.MEMBER if self.approved else UserRank.NEW_MEMBER)
472 return user.rank.atLeast(UserRank.EDITOR)
474 # Editors can change authors
475 elif perm == Permission.CHANGE_AUTHOR:
476 return user.rank.atLeast(UserRank.EDITOR)
478 elif perm == Permission.APPROVE_NEW or perm == Permission.APPROVE_RELEASE \
479 or perm == Permission.APPROVE_SCREENSHOT:
480 return user.rank.atLeast(UserRank.TRUSTED_MEMBER if isOwner else UserRank.EDITOR)
482 # Moderators can delete packages
483 elif perm == Permission.DELETE_PACKAGE or perm == Permission.CHANGE_RELEASE_URL:
484 return user.rank.atLeast(UserRank.MODERATOR)
487 raise Exception("Permission {} is not related to packages".format(perm.name))
489 class MetaPackage(db.Model):
490 id = db.Column(db.Integer, primary_key=True)
491 name = db.Column(db.String(100), unique=True, nullable=False)
492 dependencies = db.relationship("Dependency", backref="meta_package", lazy="dynamic")
494 def __init__(self, name=None):
501 def ListToSpec(list):
502 return ",".join([str(x) for x in list])
505 def GetOrCreate(name, cache={}):
508 mp = MetaPackage.query.filter_by(name=name).first()
511 mp = MetaPackage(name)
518 def SpecToList(spec, cache={}):
520 arr = spec.split(",")
523 pattern = re.compile("^([a-z0-9_]+)$")
530 if not pattern.match(x):
533 retval.append(MetaPackage.GetOrCreate(x, cache))
538 id = db.Column(db.Integer, primary_key=True)
539 name = db.Column(db.String(100), unique=True, nullable=False)
540 title = db.Column(db.String(100), nullable=False)
541 backgroundColor = db.Column(db.String(6), nullable=False)
542 textColor = db.Column(db.String(6), nullable=False)
544 def __init__(self, title, backgroundColor="000000", textColor="ffffff"):
546 self.backgroundColor = backgroundColor
547 self.textColor = textColor
550 regex = re.compile("[^a-z_]")
551 self.name = regex.sub("", self.title.lower().replace(" ", "_"))
553 class PackageRelease(db.Model):
554 id = db.Column(db.Integer, primary_key=True)
556 package_id = db.Column(db.Integer, db.ForeignKey("package.id"))
557 title = db.Column(db.String(100), nullable=False)
558 releaseDate = db.Column(db.DateTime, nullable=False)
559 url = db.Column(db.String(200), nullable=False)
560 approved = db.Column(db.Boolean, nullable=False, default=False)
561 task_id = db.Column(db.String(37), nullable=True)
564 def getEditURL(self):
565 return url_for("edit_release_page",
566 author=self.package.author.username,
567 name=self.package.name,
571 self.releaseDate = datetime.now()
573 class PackageScreenshot(db.Model):
574 id = db.Column(db.Integer, primary_key=True)
575 package_id = db.Column(db.Integer, db.ForeignKey("package.id"))
576 title = db.Column(db.String(100), nullable=False)
577 url = db.Column(db.String(100), nullable=False)
578 approved = db.Column(db.Boolean, nullable=False, default=False)
581 def getEditURL(self):
582 return url_for("edit_screenshot_page",
583 author=self.package.author.username,
584 name=self.package.name,
587 def getThumbnailURL(self):
588 return self.url.replace("/uploads/", "/thumbnails/350x233/")
590 class EditRequest(db.Model):
591 id = db.Column(db.Integer, primary_key=True)
593 package_id = db.Column(db.Integer, db.ForeignKey("package.id"))
594 author_id = db.Column(db.Integer, db.ForeignKey("user.id"))
596 title = db.Column(db.String(100), nullable=False)
597 desc = db.Column(db.String(1000), nullable=True)
602 status = db.Column(db.Integer, nullable=False, default=0)
604 changes = db.relationship("EditRequestChange", backref="request",
608 return url_for("view_editrequest_page",
609 author=self.package.author.username,
610 name=self.package.name,
613 def getApproveURL(self):
614 return url_for("approve_editrequest_page",
615 author=self.package.author.username,
616 name=self.package.name,
619 def getRejectURL(self):
620 return url_for("reject_editrequest_page",
621 author=self.package.author.username,
622 name=self.package.name,
625 def getEditURL(self):
626 return url_for("create_edit_editrequest_page",
627 author=self.package.author.username,
628 name=self.package.name,
631 def applyAll(self, package):
632 for change in self.changes:
633 change.apply(package)
636 def checkPerm(self, user, perm):
637 if not user.is_authenticated:
640 if type(perm) == str:
641 perm = Permission[perm]
642 elif type(perm) != Permission:
643 raise Exception("Unknown permission given to EditRequest.checkPerm()")
645 isOwner = user == self.author
647 # Members can edit their own packages, and editors can edit any packages
648 if perm == Permission.EDIT_EDITREQUEST:
649 return isOwner or user.rank.atLeast(UserRank.EDITOR)
652 raise Exception("Permission {} is not related to packages".format(perm.name))
657 class EditRequestChange(db.Model):
658 id = db.Column(db.Integer, primary_key=True)
660 request_id = db.Column(db.Integer, db.ForeignKey("edit_request.id"))
661 key = db.Column(db.Enum(PackagePropertyKey), nullable=False)
663 # TODO: make diff instead
664 oldValue = db.Column(db.Text, nullable=True)
665 newValue = db.Column(db.Text, nullable=True)
667 def apply(self, package):
668 if self.key == PackagePropertyKey.tags:
670 for tagTitle in self.newValue.split(","):
671 tag = Tag.query.filter_by(title=tagTitle.strip()).first()
672 package.tags.append(tag)
675 setattr(package, self.key.name, self.newValue)
678 db_adapter = SQLAlchemyAdapter(db, User) # Register the User model
679 user_manager = UserManager(db_adapter, app) # Initialize Flask-User