Class: Marty::User

Inherits:

Base

• Object
• ActiveRecord::Base
• Base
• Marty::User

Defined in:

app/models/marty/user.rb

Constant Summary

MARTY_IMPORT_UNIQUENESS =

[:login]

Constants inherited from Base

Base::COUNT_SIG, Base::DISTINCT_SIG, Base::FIRST_SIG, Base::GROUP_SIG, Base::JOINS_SIG, Base::LAST_SIG, Base::LIMIT_SIG, Base::MCFLY_PT_SIG, Base::NOT_SIG, Base::ORDER_SIG, Base::PLUCK_SIG, Base::SELECT_SIG, Base::WHERE_SIG

Class Method Summary

• .authenticate_with?(login, password) ⇒ Boolean
• .current ⇒ Object
• .current=(user) ⇒ Object
• .has_role(role) ⇒ Object
• .try_to_autologin(key) ⇒ Object

  Returns the user who matches the given autologin key or nil.

• .try_to_login(login, password) ⇒ Object

  Returns the user that matches provided login and password, or nil.

Instance Method Summary

• #name ⇒ Object
• #to_s ⇒ Object

Methods inherited from Base

mcfly_pt

Methods inherited from ActiveRecord::Base

joins, old_joins

Class Method Details

.authenticate_with?(login, password) ⇒ Boolean

Returns:

• (Boolean)

# File 'app/models/marty/user.rb', line 56

def self.authenticate_with?(login, password)
  cf = Rails.configuration.marty

  auth_source = cf.auth_source.to_s

  if auth_source == "local"
    ok = password == cf.local_password
  elsif auth_source == "ldap"
    # IMPORTANT NOTE: if server allows anonymous LDAP access, empty
    # passwords will succeed!  i.e. if a valid user with empty
    # password is sent in, ldap.bind will return OK.
    cf = Rails.configuration.marty.ldap
    ldap = Net::LDAP.new(host: cf.host,
                         port: cf.port,
                         base: cf.base_dn,
                         encryption: cf.encryption,
                         auth: {
                           method: :simple,
                           username: cf.domain + "\\" + login,
                           password: password,
                         })
    ok = ldap.bind
  else
    raise "bad auth_source: #{auth_source.inspect}"
  end

  find_by_login(login) if ok
end

.current ⇒ Object

# File 'app/models/marty/user.rb', line 89

def self.current
  Mcfly.whodunnit
end

.current=(user) ⇒ Object

# File 'app/models/marty/user.rb', line 85

def self.current=(user)
  Mcfly.whodunnit = user
end

.has_role(role) ⇒ Object

# File 'app/models/marty/user.rb', line 93

def self.has_role(role)
   mr = Mcfly.whodunnit.roles rescue []
   mr.any? {|attr| attr.name == role}
end

.try_to_autologin(key) ⇒ Object

Returns the user who matches the given autologin key or nil

# File 'app/models/marty/user.rb', line 27

def self.try_to_autologin(key)
  tokens = Marty::Token.find_all_by_action_and_value('autologin', key.to_s)
  # Make sure there's only 1 token that matches the key
  if tokens.size == 1
    token = tokens.first
    autologin = Rails.configuration.marty.autologin || 0

    if (token.created_on > autologin.to_i.day.ago) &&
        token.user && token.user.active?
      token.user
    end
  end
end

.try_to_login(login, password) ⇒ Object

Returns the user that matches provided login and password, or nil

# File 'app/models/marty/user.rb', line 42

def self.try_to_login(login, password)
  login = login.to_s
  password = password.to_s

  # Make sure no one can sign in with an empty password
  return nil if password.empty?

  user = find_by_login(login)

  return nil if !user || !user.active?

  authenticate_with?(login, password) || nil
end

Instance Method Details

#name ⇒ Object

# File 'app/models/marty/user.rb', line 18

def name
  "#{firstname} #{lastname}"
end

#to_s ⇒ Object

# File 'app/models/marty/user.rb', line 22

def to_s
  name
end