2016-11-15 15:56:29 +00:00
|
|
|
# frozen_string_literal: true
|
2017-05-02 01:14:47 +01:00
|
|
|
# == Schema Information
|
|
|
|
#
|
|
|
|
# Table name: users
|
|
|
|
#
|
2018-04-23 10:29:17 +01:00
|
|
|
# id :bigint(8) not null, primary key
|
2017-05-02 01:14:47 +01:00
|
|
|
# email :string default(""), not null
|
|
|
|
# created_at :datetime not null
|
|
|
|
# updated_at :datetime not null
|
|
|
|
# encrypted_password :string default(""), not null
|
|
|
|
# reset_password_token :string
|
|
|
|
# reset_password_sent_at :datetime
|
|
|
|
# remember_created_at :datetime
|
|
|
|
# sign_in_count :integer default(0), not null
|
|
|
|
# current_sign_in_at :datetime
|
|
|
|
# last_sign_in_at :datetime
|
|
|
|
# current_sign_in_ip :inet
|
|
|
|
# last_sign_in_ip :inet
|
2017-07-13 02:12:25 +01:00
|
|
|
# admin :boolean default(FALSE), not null
|
2017-05-02 01:14:47 +01:00
|
|
|
# confirmation_token :string
|
|
|
|
# confirmed_at :datetime
|
|
|
|
# confirmation_sent_at :datetime
|
|
|
|
# unconfirmed_email :string
|
|
|
|
# locale :string
|
|
|
|
# encrypted_otp_secret :string
|
|
|
|
# encrypted_otp_secret_iv :string
|
|
|
|
# encrypted_otp_secret_salt :string
|
|
|
|
# consumed_timestep :integer
|
2017-07-13 02:12:25 +01:00
|
|
|
# otp_required_for_login :boolean default(FALSE), not null
|
2017-05-02 01:14:47 +01:00
|
|
|
# last_emailed_at :datetime
|
|
|
|
# otp_backup_codes :string is an Array
|
2017-05-20 16:32:44 +01:00
|
|
|
# filtered_languages :string default([]), not null, is an Array
|
2018-04-23 10:29:17 +01:00
|
|
|
# account_id :bigint(8) not null
|
2017-11-07 18:06:44 +00:00
|
|
|
# disabled :boolean default(FALSE), not null
|
2017-11-11 19:23:33 +00:00
|
|
|
# moderator :boolean default(FALSE), not null
|
2018-04-23 10:29:17 +01:00
|
|
|
# invite_id :bigint(8)
|
2018-02-02 09:18:55 +00:00
|
|
|
# remember_token :string
|
2018-06-17 12:54:02 +01:00
|
|
|
# chosen_languages :string is an Array
|
2018-12-24 18:12:38 +00:00
|
|
|
# created_by_application_id :bigint(8)
|
2019-03-14 04:28:30 +00:00
|
|
|
# approved :boolean default(TRUE), not null
|
2017-05-02 01:14:47 +01:00
|
|
|
#
|
2016-11-15 15:56:29 +00:00
|
|
|
|
2016-08-17 16:56:23 +01:00
|
|
|
class User < ApplicationRecord
|
2017-01-13 01:42:22 +00:00
|
|
|
include Settings::Extend
|
2019-03-14 01:13:42 +00:00
|
|
|
include UserRoles
|
2017-11-07 18:06:44 +00:00
|
|
|
|
2018-08-19 02:50:34 +01:00
|
|
|
# The home and list feeds will be stored in Redis for this amount
|
|
|
|
# of time, and status fan-out to followers will include only people
|
|
|
|
# within this time frame. Lowering the duration may improve performance
|
|
|
|
# if lots of people sign up, but not a lot of them check their feed
|
|
|
|
# every day. Raising the duration reduces the amount of expensive
|
|
|
|
# RegenerationWorker jobs that need to be run when those people come
|
|
|
|
# to check their feed
|
2019-01-02 09:47:32 +00:00
|
|
|
ACTIVE_DURATION = ENV.fetch('USER_ACTIVE_DAYS', 7).to_i.days.freeze
|
2017-01-12 19:46:24 +00:00
|
|
|
|
2018-01-02 15:55:00 +00:00
|
|
|
devise :two_factor_authenticatable,
|
2018-03-04 19:28:24 +00:00
|
|
|
otp_secret_encryption_key: Rails.configuration.x.otp_secret
|
2018-01-02 15:55:00 +00:00
|
|
|
|
|
|
|
devise :two_factor_backupable,
|
2017-04-15 12:26:03 +01:00
|
|
|
otp_number_of_backup_codes: 10
|
2016-03-05 12:12:24 +00:00
|
|
|
|
2018-01-02 15:55:00 +00:00
|
|
|
devise :registerable, :recoverable, :rememberable, :trackable, :validatable,
|
|
|
|
:confirmable
|
|
|
|
|
2019-03-14 01:13:42 +00:00
|
|
|
include Omniauthable
|
|
|
|
include PamAuthenticable
|
|
|
|
include LdapAuthenticable
|
2018-02-02 09:18:55 +00:00
|
|
|
|
2018-01-19 19:56:47 +00:00
|
|
|
belongs_to :account, inverse_of: :user
|
|
|
|
belongs_to :invite, counter_cache: :uses, optional: true
|
2018-12-24 18:12:38 +00:00
|
|
|
belongs_to :created_by_application, class_name: 'Doorkeeper::Application', optional: true
|
2016-03-05 21:43:05 +00:00
|
|
|
accepts_nested_attributes_for :account
|
2016-03-05 12:12:24 +00:00
|
|
|
|
2017-08-22 17:33:57 +01:00
|
|
|
has_many :applications, class_name: 'Doorkeeper::Application', as: :owner
|
2018-02-21 22:21:32 +00:00
|
|
|
has_many :backups, inverse_of: :user
|
2017-08-22 17:33:57 +01:00
|
|
|
|
2019-04-09 15:06:30 +01:00
|
|
|
has_one :invite_request, class_name: 'UserInviteRequest', inverse_of: :user, dependent: :destroy
|
|
|
|
accepts_nested_attributes_for :invite_request, reject_if: ->(attributes) { attributes['text'].blank? }
|
|
|
|
|
2017-05-19 02:11:23 +01:00
|
|
|
validates :locale, inclusion: I18n.available_locales.map(&:to_s), if: :locale?
|
2017-06-09 18:46:01 +01:00
|
|
|
validates_with BlacklistedEmailValidator, if: :email_changed?
|
2018-12-10 21:53:25 +00:00
|
|
|
validates_with EmailMxValidator, if: :validate_email_dns?
|
2018-12-24 18:12:38 +00:00
|
|
|
validates :agreement, acceptance: { allow_nil: false, accept: [true, 'true', '1'] }, on: :create
|
2016-03-14 16:49:13 +00:00
|
|
|
|
2017-11-11 19:23:33 +00:00
|
|
|
scope :recent, -> { order(id: :desc) }
|
2019-03-14 04:28:30 +00:00
|
|
|
scope :pending, -> { where(approved: false) }
|
|
|
|
scope :approved, -> { where(approved: true) }
|
2017-03-03 22:45:48 +00:00
|
|
|
scope :confirmed, -> { where.not(confirmed_at: nil) }
|
2019-01-02 09:47:32 +00:00
|
|
|
scope :enabled, -> { where(disabled: false) }
|
2017-05-22 18:36:21 +01:00
|
|
|
scope :inactive, -> { where(arel_table[:current_sign_in_at].lt(ACTIVE_DURATION.ago)) }
|
2017-07-23 00:15:04 +01:00
|
|
|
scope :active, -> { confirmed.where(arel_table[:current_sign_in_at].gteq(ACTIVE_DURATION.ago)).joins(:account).where(accounts: { suspended: false }) }
|
2017-05-22 20:50:58 +01:00
|
|
|
scope :matches_email, ->(value) { where(arel_table[:email].matches("#{value}%")) }
|
2019-01-02 09:47:32 +00:00
|
|
|
scope :emailable, -> { confirmed.enabled.joins(:account).merge(Account.searchable) }
|
2016-10-07 12:17:56 +01:00
|
|
|
|
2017-05-08 02:32:52 +01:00
|
|
|
before_validation :sanitize_languages
|
2019-03-14 04:28:30 +00:00
|
|
|
before_create :set_approved
|
2017-05-08 02:32:52 +01:00
|
|
|
|
2017-06-01 19:53:37 +01:00
|
|
|
# This avoids a deprecation warning from Rails 5.1
|
|
|
|
# It seems possible that a future release of devise-two-factor will
|
|
|
|
# handle this itself, and this can be removed from our User class.
|
|
|
|
attribute :otp_secret
|
|
|
|
|
2017-06-23 17:50:53 +01:00
|
|
|
has_many :session_activations, dependent: :destroy
|
|
|
|
|
2017-11-15 15:05:20 +00:00
|
|
|
delegate :auto_play_gif, :default_sensitive, :unfollow_modal, :boost_modal, :delete_modal,
|
2018-09-25 04:09:35 +01:00
|
|
|
:reduce_motion, :system_font_ui, :noindex, :theme, :display_media, :hide_network,
|
2019-02-02 18:18:15 +00:00
|
|
|
:expand_spoilers, :default_language, :aggregate_reblogs, :show_application, to: :settings, prefix: :setting, allow_nil: false
|
2017-11-15 15:05:20 +00:00
|
|
|
|
2018-08-26 18:22:46 +01:00
|
|
|
attr_reader :invite_code
|
2019-04-25 01:49:25 +01:00
|
|
|
attr_writer :external
|
2017-11-27 15:07:59 +00:00
|
|
|
|
2017-04-23 03:43:42 +01:00
|
|
|
def confirmed?
|
|
|
|
confirmed_at.present?
|
|
|
|
end
|
|
|
|
|
2018-12-28 02:38:41 +00:00
|
|
|
def invited?
|
2019-05-02 03:30:12 +01:00
|
|
|
invite_id.present? && invite.valid_for_use?
|
2018-12-28 02:38:41 +00:00
|
|
|
end
|
|
|
|
|
2017-11-07 18:06:44 +00:00
|
|
|
def disable!
|
|
|
|
update!(disabled: true,
|
|
|
|
last_sign_in_at: current_sign_in_at,
|
|
|
|
current_sign_in_at: nil)
|
|
|
|
end
|
|
|
|
|
|
|
|
def enable!
|
|
|
|
update!(disabled: false)
|
|
|
|
end
|
|
|
|
|
2017-12-29 18:52:04 +00:00
|
|
|
def confirm
|
2019-03-23 01:23:48 +00:00
|
|
|
new_user = !confirmed?
|
|
|
|
self.approved = true if open_registrations?
|
2017-12-29 18:52:04 +00:00
|
|
|
|
|
|
|
super
|
2019-03-14 01:13:42 +00:00
|
|
|
|
2019-03-14 04:28:30 +00:00
|
|
|
if new_user && approved?
|
|
|
|
prepare_new_user!
|
|
|
|
elsif new_user
|
|
|
|
notify_staff_about_pending_account!
|
|
|
|
end
|
2017-12-29 18:52:04 +00:00
|
|
|
end
|
|
|
|
|
2017-11-11 19:23:33 +00:00
|
|
|
def confirm!
|
2019-03-23 01:23:48 +00:00
|
|
|
new_user = !confirmed?
|
|
|
|
self.approved = true if open_registrations?
|
2017-12-29 18:52:04 +00:00
|
|
|
|
2017-11-11 19:23:33 +00:00
|
|
|
skip_confirmation!
|
|
|
|
save!
|
2019-03-14 01:13:42 +00:00
|
|
|
|
2019-03-14 04:28:30 +00:00
|
|
|
prepare_new_user! if new_user && approved?
|
|
|
|
end
|
|
|
|
|
|
|
|
def pending?
|
|
|
|
!approved?
|
|
|
|
end
|
|
|
|
|
|
|
|
def active_for_authentication?
|
|
|
|
super && approved?
|
|
|
|
end
|
|
|
|
|
|
|
|
def inactive_message
|
|
|
|
!approved? ? :pending : super
|
|
|
|
end
|
|
|
|
|
|
|
|
def approve!
|
|
|
|
return if approved?
|
|
|
|
|
|
|
|
update!(approved: true)
|
|
|
|
prepare_new_user!
|
2018-01-23 19:52:30 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
def update_tracked_fields!(request)
|
|
|
|
super
|
|
|
|
prepare_returning_user!
|
2017-11-11 19:23:33 +00:00
|
|
|
end
|
|
|
|
|
2017-05-02 20:07:12 +01:00
|
|
|
def disable_two_factor!
|
|
|
|
self.otp_required_for_login = false
|
|
|
|
otp_backup_codes&.clear
|
|
|
|
save!
|
|
|
|
end
|
|
|
|
|
2017-02-06 22:16:20 +00:00
|
|
|
def setting_default_privacy
|
|
|
|
settings.default_privacy || (account.locked? ? 'private' : 'public')
|
|
|
|
end
|
2017-04-11 15:10:16 +01:00
|
|
|
|
2018-01-15 03:34:28 +00:00
|
|
|
def allows_digest_emails?
|
|
|
|
settings.notification_emails['digest']
|
|
|
|
end
|
|
|
|
|
2018-09-01 23:11:58 +01:00
|
|
|
def allows_report_emails?
|
|
|
|
settings.notification_emails['report']
|
|
|
|
end
|
|
|
|
|
2019-04-09 23:35:49 +01:00
|
|
|
def allows_pending_account_emails?
|
|
|
|
settings.notification_emails['pending_account']
|
|
|
|
end
|
|
|
|
|
2018-05-18 01:26:51 +01:00
|
|
|
def hides_network?
|
|
|
|
@hides_network ||= settings.hide_network
|
|
|
|
end
|
|
|
|
|
2018-12-09 12:03:01 +00:00
|
|
|
def aggregates_reblogs?
|
|
|
|
@aggregates_reblogs ||= settings.aggregate_reblogs
|
|
|
|
end
|
|
|
|
|
2019-02-02 18:18:15 +00:00
|
|
|
def shows_application?
|
2019-02-20 16:47:38 +00:00
|
|
|
@shows_application ||= settings.show_application
|
2019-02-02 18:18:15 +00:00
|
|
|
end
|
|
|
|
|
2017-08-22 17:33:57 +01:00
|
|
|
def token_for_app(a)
|
|
|
|
return nil if a.nil? || a.owner != self
|
|
|
|
Doorkeeper::AccessToken
|
|
|
|
.find_or_create_by(application_id: a.id, resource_owner_id: id) do |t|
|
|
|
|
|
|
|
|
t.scopes = a.scopes
|
|
|
|
t.expires_in = Doorkeeper.configuration.access_token_expires_in
|
|
|
|
t.use_refresh_token = Doorkeeper.configuration.refresh_token_enabled?
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-06-25 15:54:30 +01:00
|
|
|
def activate_session(request)
|
|
|
|
session_activations.activate(session_id: SecureRandom.hex,
|
|
|
|
user_agent: request.user_agent,
|
2017-08-30 09:24:30 +01:00
|
|
|
ip: request.remote_ip).session_id
|
2017-06-23 17:50:53 +01:00
|
|
|
end
|
|
|
|
|
|
|
|
def exclusive_session(id)
|
|
|
|
session_activations.exclusive(id)
|
|
|
|
end
|
|
|
|
|
|
|
|
def session_active?(id)
|
|
|
|
session_activations.active? id
|
|
|
|
end
|
|
|
|
|
2017-07-13 21:15:32 +01:00
|
|
|
def web_push_subscription(session)
|
2018-05-11 10:49:12 +01:00
|
|
|
session.web_push_subscription.nil? ? nil : session.web_push_subscription
|
2017-07-13 21:15:32 +01:00
|
|
|
end
|
|
|
|
|
2017-11-27 15:07:59 +00:00
|
|
|
def invite_code=(code)
|
2018-08-26 18:22:46 +01:00
|
|
|
self.invite = Invite.find_by(code: code) if code.present?
|
2017-11-27 15:07:59 +00:00
|
|
|
@invite_code = code
|
|
|
|
end
|
|
|
|
|
2018-02-02 09:18:55 +00:00
|
|
|
def password_required?
|
2018-02-28 18:04:53 +00:00
|
|
|
return false if Devise.pam_authentication || Devise.ldap_authentication
|
2018-02-02 09:18:55 +00:00
|
|
|
super
|
|
|
|
end
|
|
|
|
|
|
|
|
def send_reset_password_instructions
|
2018-02-28 18:04:53 +00:00
|
|
|
return false if encrypted_password.blank? && (Devise.pam_authentication || Devise.ldap_authentication)
|
2018-02-02 09:18:55 +00:00
|
|
|
super
|
|
|
|
end
|
|
|
|
|
|
|
|
def reset_password!(new_password, new_password_confirmation)
|
2018-02-28 18:04:53 +00:00
|
|
|
return false if encrypted_password.blank? && (Devise.pam_authentication || Devise.ldap_authentication)
|
2018-02-02 09:18:55 +00:00
|
|
|
super
|
|
|
|
end
|
|
|
|
|
2018-09-25 04:09:35 +01:00
|
|
|
def show_all_media?
|
|
|
|
setting_display_media == 'show_all'
|
|
|
|
end
|
|
|
|
|
|
|
|
def hide_all_media?
|
|
|
|
setting_display_media == 'hide_all'
|
|
|
|
end
|
|
|
|
|
2017-05-30 14:28:56 +01:00
|
|
|
protected
|
|
|
|
|
|
|
|
def send_devise_notification(notification, *args)
|
|
|
|
devise_mailer.send(notification, self, *args).deliver_later
|
|
|
|
end
|
|
|
|
|
2017-05-08 02:32:52 +01:00
|
|
|
private
|
|
|
|
|
2019-03-14 04:28:30 +00:00
|
|
|
def set_approved
|
2019-04-25 01:49:25 +01:00
|
|
|
self.approved = open_registrations? || invited? || external?
|
2019-03-23 01:23:48 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
def open_registrations?
|
|
|
|
Setting.registrations_mode == 'open'
|
2019-03-14 04:28:30 +00:00
|
|
|
end
|
|
|
|
|
2019-04-25 01:49:25 +01:00
|
|
|
def external?
|
2019-04-27 22:55:16 +01:00
|
|
|
!!@external
|
2019-04-25 01:49:25 +01:00
|
|
|
end
|
|
|
|
|
2017-05-08 02:32:52 +01:00
|
|
|
def sanitize_languages
|
2018-06-17 12:54:02 +01:00
|
|
|
return if chosen_languages.nil?
|
|
|
|
chosen_languages.reject!(&:blank?)
|
|
|
|
self.chosen_languages = nil if chosen_languages.empty?
|
2017-05-08 02:32:52 +01:00
|
|
|
end
|
2017-12-29 18:52:04 +00:00
|
|
|
|
2018-01-23 19:52:30 +00:00
|
|
|
def prepare_new_user!
|
2017-12-29 18:52:04 +00:00
|
|
|
BootstrapTimelineWorker.perform_async(account_id)
|
|
|
|
ActivityTracker.increment('activity:accounts:local')
|
2018-01-18 18:17:25 +00:00
|
|
|
UserMailer.welcome(self).deliver_later
|
2017-12-29 18:52:04 +00:00
|
|
|
end
|
2018-01-23 19:52:30 +00:00
|
|
|
|
|
|
|
def prepare_returning_user!
|
|
|
|
ActivityTracker.record('activity:logins', id)
|
|
|
|
regenerate_feed! if needs_feed_update?
|
|
|
|
end
|
|
|
|
|
2019-03-14 04:28:30 +00:00
|
|
|
def notify_staff_about_pending_account!
|
|
|
|
User.staff.includes(:account).each do |u|
|
2019-04-09 23:35:49 +01:00
|
|
|
next unless u.allows_pending_account_emails?
|
2019-03-14 04:28:30 +00:00
|
|
|
AdminMailer.new_pending_account(u.account, self).deliver_later
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2018-01-23 19:52:30 +00:00
|
|
|
def regenerate_feed!
|
2019-01-18 00:02:51 +00:00
|
|
|
return unless Redis.current.setnx("account:#{account_id}:regeneration", true)
|
|
|
|
Redis.current.expire("account:#{account_id}:regeneration", 1.day.seconds)
|
2018-01-23 19:52:30 +00:00
|
|
|
RegenerationWorker.perform_async(account_id)
|
|
|
|
end
|
|
|
|
|
|
|
|
def needs_feed_update?
|
|
|
|
last_sign_in_at < ACTIVE_DURATION.ago
|
|
|
|
end
|
2018-12-10 21:53:25 +00:00
|
|
|
|
|
|
|
def validate_email_dns?
|
|
|
|
email_changed? && !(Rails.env.test? || Rails.env.development?)
|
|
|
|
end
|
2016-02-22 15:00:20 +00:00
|
|
|
end
|