Class: Marty::User

Inherits:

Base

• Object
• ActiveRecord::Base
• Base
• Marty::User

Defined in:

app/models/marty/user.rb

Constant Summary

MARTY_IMPORT_UNIQUENESS =

[:login]

Class Method Summary

• .authenticate_with?(login, password) ⇒ Boolean
• .current ⇒ Object
• .current=(user) ⇒ Object
• .has_role(role) ⇒ Object
• .ldap_login(login, password) ⇒ Object
• .try_to_autologin(key) ⇒ Object

  Returns the user who matches the given autologin key or nil.

• .try_to_login(login, password) ⇒ Object

  Returns the user that matches provided login and password, or nil.

Instance Method Summary

• #name ⇒ Object
• #roles ⇒ Object
• #to_s ⇒ Object

Methods inherited from Base

get_final_attrs, get_struct_attrs, make_hash, make_openstruct, mcfly_pt

Methods inherited from ActiveRecord::Base

joins, old_joins

Class Method Details

.authenticate_with?(login, password) ⇒ Boolean

Returns:

• (Boolean)

# File 'app/models/marty/user.rb', line 76

def self.authenticate_with?(login, password)
  cf = Rails.configuration.marty

  auth_source = cf.auth_source.to_s

  if auth_source == 'local'
    ok = password == cf.local_password
  elsif auth_source == 'ldap'
    ok = ldap_login(login, password)
  else
    raise "bad auth_source: #{auth_source.inspect}"
  end

  find_by_login(login) if ok
end

.current ⇒ Object

# File 'app/models/marty/user.rb', line 96

def self.current
  Mcfly.whodunnit
end

.current=(user) ⇒ Object

# File 'app/models/marty/user.rb', line 92

def self.current=(user)
  Mcfly.whodunnit = user
end

.has_role(role) ⇒ Object

# File 'app/models/marty/user.rb', line 100

def self.has_role(role)
   mr = Mcfly.whodunnit.user_roles rescue []
   mr.any? { |ur| ur.role == role }
end

.ldap_login(login, password) ⇒ Object

# File 'app/models/marty/user.rb', line 59

def self.ldap_login(login, password)
  # IMPORTANT NOTE: if server allows anonymous LDAP access, empty
  # passwords will succeed!  i.e. if a valid user with empty
  # password is sent in, ldap.bind will return OK.
  cf = Rails.configuration.marty.ldap
  ldap = Net::LDAP.new(host: cf.host,
                       port: cf.port,
                       base: cf.base_dn,
                       encryption: cf.encryption,
                       auth: {
                         method: :simple,
                         username: cf.domain + '\\' + login,
                         password: password,
                       })
  ldap.bind
end

.try_to_autologin(key) ⇒ Object

Returns the user who matches the given autologin key or nil

# File 'app/models/marty/user.rb', line 30

def self.try_to_autologin(key)
  tokens = Marty::Token.find_all_by_action_and_value('autologin', key.to_s)
  # Make sure there's only 1 token that matches the key
  if tokens.size == 1
    token = tokens.first
    autologin = Rails.configuration.marty.autologin || 0

    if (token.created_on > autologin.to_i.day.ago) &&
        token.user && token.user.active?
      token.user
    end
  end
end

.try_to_login(login, password) ⇒ Object

Returns the user that matches provided login and password, or nil

# File 'app/models/marty/user.rb', line 45

def self.try_to_login(login, password)
  login = login.to_s
  password = password.to_s

  # Make sure no one can sign in with an empty password
  return nil if password.empty?

  user = find_by_login(login)

  return nil if !user || !user.active?

  authenticate_with?(login, password) || nil
end

Instance Method Details

#name ⇒ Object

# File 'app/models/marty/user.rb', line 17

def name
  "#{firstname} #{lastname}"
end

#roles ⇒ Object

# File 'app/models/marty/user.rb', line 25

def roles
  user_roles.map(&:role)
end

#to_s ⇒ Object

# File 'app/models/marty/user.rb', line 21

def to_s
  name
end