471 lines
14 KiB
Ruby
471 lines
14 KiB
Ruby
# Copyright (c) 2010, Diaspora Inc. This file is
|
|
# licensed under the Affero General Public License version 3 or later. See
|
|
# the COPYRIGHT file.
|
|
|
|
require File.join(Rails.root, 'lib/diaspora/user')
|
|
require File.join(Rails.root, 'lib/salmon/salmon')
|
|
|
|
class User
|
|
include MongoMapper::Document
|
|
include Diaspora::UserModules
|
|
include Encryptor::Private
|
|
|
|
plugin MongoMapper::Devise
|
|
|
|
QUEUE = MessageHandler.new
|
|
|
|
devise :invitable, :database_authenticatable, :registerable,
|
|
:recoverable, :rememberable, :trackable, :validatable
|
|
|
|
key :username
|
|
key :serialized_private_key, String
|
|
key :invites, Integer, :default => 5
|
|
key :invitation_token, String
|
|
key :invitation_sent_at, DateTime
|
|
key :inviter_ids, Array, :typecast => 'ObjectId'
|
|
key :friend_ids, Array, :typecast => 'ObjectId'
|
|
key :pending_request_ids, Array, :typecast => 'ObjectId'
|
|
key :visible_post_ids, Array, :typecast => 'ObjectId'
|
|
key :visible_person_ids, Array, :typecast => 'ObjectId'
|
|
|
|
key :invite_messages, Hash
|
|
|
|
key :getting_started, Boolean, :default => true
|
|
|
|
key :language, String
|
|
|
|
before_validation :strip_and_downcase_username, :on => :create
|
|
before_validation :set_current_language, :on => :create
|
|
|
|
validates_presence_of :username
|
|
validates_uniqueness_of :username, :case_sensitive => false
|
|
validates_format_of :username, :with => /\A[A-Za-z0-9_.]+\z/
|
|
validates_length_of :username, :maximum => 32
|
|
validates_inclusion_of :language, :in => AVAILABLE_LANGUAGE_CODES
|
|
|
|
validates_presence_of :person, :unless => proc {|user| user.invitation_token.present?}
|
|
validates_associated :person
|
|
|
|
one :person, :class_name => 'Person', :foreign_key => :owner_id
|
|
|
|
many :inviters, :in => :inviter_ids, :class_name => 'User'
|
|
many :friends, :in => :friend_ids, :class_name => 'Contact'
|
|
many :visible_people, :in => :visible_person_ids, :class_name => 'Person' # One of these needs to go
|
|
many :pending_requests, :in => :pending_request_ids, :class_name => 'Request'
|
|
many :raw_visible_posts, :in => :visible_post_ids, :class_name => 'Post'
|
|
many :aspects, :class_name => 'Aspect', :dependent => :destroy
|
|
|
|
many :services, :class_name => "Service"
|
|
|
|
#after_create :seed_aspects
|
|
|
|
before_destroy :unfriend_everyone, :remove_person
|
|
before_save do
|
|
person.save if person
|
|
end
|
|
|
|
attr_accessible :getting_started, :password, :password_confirmation, :language,
|
|
|
|
def strip_and_downcase_username
|
|
if username.present?
|
|
username.strip!
|
|
username.downcase!
|
|
end
|
|
end
|
|
|
|
def set_current_language
|
|
self.language = I18n.locale.to_s if self.language.blank?
|
|
end
|
|
|
|
def self.find_for_authentication(conditions={})
|
|
if conditions[:username] =~ /^([\w\.%\+\-]+)@([\w\-]+\.)+([\w]{2,})$/i # email regex
|
|
conditions[:email] = conditions.delete(:username)
|
|
end
|
|
super
|
|
end
|
|
|
|
######## Making things work ########
|
|
key :email, String
|
|
|
|
def method_missing(method, *args)
|
|
self.person.send(method, *args)
|
|
end
|
|
|
|
######### Aspects ######################
|
|
def drop_aspect(aspect)
|
|
if aspect.people.size == 0
|
|
aspect.destroy
|
|
else
|
|
raise "Aspect not empty"
|
|
end
|
|
end
|
|
|
|
def move_friend(opts = {})
|
|
return true if opts[:to] == opts[:from]
|
|
if opts[:friend_id] && opts[:to] && opts[:from]
|
|
from_aspect = self.aspects.first(:_id => opts[:from])
|
|
posts_to_move = from_aspect.posts.find_all_by_person_id(opts[:friend_id])
|
|
if add_person_to_aspect(opts[:friend_id], opts[:to], :posts => posts_to_move)
|
|
delete_person_from_aspect(opts[:friend_id], opts[:from], :posts => posts_to_move)
|
|
return true
|
|
end
|
|
end
|
|
false
|
|
end
|
|
|
|
def add_person_to_aspect(person_id, aspect_id, opts = {})
|
|
contact = contact_for(Person.find(person_id))
|
|
raise "Can not add person to an aspect you do not own" unless aspect = self.aspects.find_by_id(aspect_id)
|
|
raise "Can not add person you are not friends with" unless contact
|
|
raise 'Can not add person who is already in the aspect' if aspect.people.include?(contact)
|
|
contact.aspects << aspect
|
|
opts[:posts] ||= self.raw_visible_posts.all(:person_id => person_id)
|
|
|
|
aspect.posts += opts[:posts]
|
|
contact.save
|
|
aspect.save
|
|
end
|
|
|
|
def delete_person_from_aspect(person_id, aspect_id, opts = {})
|
|
aspect = Aspect.find(aspect_id)
|
|
raise "Can not delete a person from an aspect you do not own" unless aspect.user == self
|
|
contact = contact_for Person.find(person_id)
|
|
contact.aspect_ids.delete aspect.id
|
|
opts[:posts] ||= aspect.posts.all(:person_id => person_id)
|
|
aspect.posts -= opts[:posts]
|
|
contact.save
|
|
aspect.save
|
|
end
|
|
|
|
######## Posting ########
|
|
def post(class_name, opts = {})
|
|
post = build_post(class_name, opts)
|
|
|
|
if post.save
|
|
raise 'MongoMapper failed to catch a failed save' unless post.id
|
|
dispatch_post(post, :to => opts[:to])
|
|
end
|
|
post
|
|
end
|
|
|
|
def build_post(class_name, opts = {})
|
|
opts[:person] = self.person
|
|
opts[:diaspora_handle] = self.person.diaspora_handle
|
|
|
|
model_class = class_name.to_s.camelize.constantize
|
|
model_class.instantiate(opts)
|
|
end
|
|
|
|
def dispatch_post(post, opts = {})
|
|
if post.is_a?(Photo) && post.album_id
|
|
aspect_ids = aspects_with_post(post.album_id)
|
|
aspect_ids.map! { |aspect| aspect.id }
|
|
else
|
|
aspect_ids = opts.delete(:to)
|
|
end
|
|
|
|
aspect_ids = validate_aspect_permissions(aspect_ids)
|
|
self.raw_visible_posts << post
|
|
self.save
|
|
Rails.logger.info("Pushing: #{post.inspect} out to aspects")
|
|
push_to_aspects(post, aspect_ids)
|
|
post.socket_to_uid(id, :aspect_ids => aspect_ids) if post.respond_to?(:socket_to_uid)
|
|
if post.public
|
|
self.services.each do |service|
|
|
self.send("post_to_#{service.provider}".to_sym, service, post.message)
|
|
end
|
|
end
|
|
end
|
|
|
|
def post_to_facebook(service, message)
|
|
Rails.logger.info("Sending a message: #{message} to Facebook")
|
|
EventMachine::HttpRequest.new("https://graph.facebook.com/me/feed?message=#{message}&access_token=#{service.access_token}").post
|
|
end
|
|
|
|
def post_to_twitter(service, message)
|
|
oauth = Twitter::OAuth.new(SERVICES['twitter']['consumer_token'], SERVICES['twitter']['consumer_secret'])
|
|
oauth.authorize_from_access(service.access_token, service.access_secret)
|
|
client = Twitter::Base.new(oauth)
|
|
client.update(message)
|
|
end
|
|
|
|
def update_post(post, post_hash = {})
|
|
if self.owns? post
|
|
post.update_attributes(post_hash)
|
|
aspects = aspects_with_post(post.id)
|
|
self.push_to_aspects(post, aspects)
|
|
end
|
|
end
|
|
|
|
def validate_aspect_permissions(aspect_ids)
|
|
if aspect_ids == "all"
|
|
return aspect_ids
|
|
end
|
|
|
|
aspect_ids = [aspect_ids.to_s] unless aspect_ids.is_a? Array
|
|
|
|
if aspect_ids.nil? || aspect_ids.empty?
|
|
raise ArgumentError.new("You must post to someone.")
|
|
end
|
|
|
|
aspect_ids.each do |aspect_id|
|
|
unless self.aspects.find(aspect_id)
|
|
raise ArgumentError.new("Cannot post to an aspect you do not own.")
|
|
end
|
|
end
|
|
|
|
aspect_ids
|
|
end
|
|
|
|
def push_to_aspects(post, aspect_ids)
|
|
if aspect_ids == :all || aspect_ids == "all"
|
|
aspects = self.aspects
|
|
elsif aspect_ids.is_a?(Array) && aspect_ids.first.class == Aspect
|
|
aspects = aspect_ids
|
|
else
|
|
aspects = self.aspects.find_all_by_id(aspect_ids)
|
|
end
|
|
#send to the aspects
|
|
target_contacts = []
|
|
|
|
aspects.each { |aspect|
|
|
aspect.posts << post
|
|
aspect.save
|
|
target_contacts = target_contacts | aspect.people
|
|
}
|
|
|
|
push_to_hub(post) if post.respond_to?(:public) && post.public
|
|
|
|
push_to_people(post, self.person_objects(target_contacts))
|
|
end
|
|
|
|
def push_to_people(post, people)
|
|
salmon = salmon(post)
|
|
people.each { |person|
|
|
xml = salmon.xml_for person
|
|
push_to_person(person, xml)
|
|
}
|
|
end
|
|
|
|
def push_to_person(person, xml)
|
|
Rails.logger.debug("#{self.real_name} is adding xml to message queue to #{person.receive_url}")
|
|
QUEUE.add_post_request(person.receive_url, xml)
|
|
QUEUE.process
|
|
end
|
|
|
|
def push_to_hub(post)
|
|
Rails.logger.debug("Pushing update to pubsub server #{APP_CONFIG[:pubsub_server]} with url #{self.public_url}")
|
|
QUEUE.add_hub_notification(APP_CONFIG[:pubsub_server], self.public_url)
|
|
end
|
|
|
|
def salmon(post)
|
|
created_salmon = Salmon::SalmonSlap.create(self, post.to_diaspora_xml)
|
|
created_salmon
|
|
end
|
|
|
|
######## Commenting ########
|
|
def comment(text, options = {})
|
|
comment = build_comment(text, options)
|
|
if comment
|
|
dispatch_comment comment
|
|
comment.socket_to_uid id
|
|
end
|
|
comment
|
|
end
|
|
|
|
def build_comment(text, options = {})
|
|
raise "must comment on something!" unless options[:on]
|
|
comment = Comment.new(:person_id => self.person.id, :diaspora_handle => self.person.diaspora_handle, :text => text, :post => options[:on])
|
|
comment.creator_signature = comment.sign_with_key(encryption_key)
|
|
if comment.save
|
|
comment
|
|
else
|
|
Rails.logger.warn "this failed to save: #{comment.inspect}"
|
|
false
|
|
end
|
|
end
|
|
|
|
def dispatch_comment(comment)
|
|
if owns? comment.post
|
|
comment.post_creator_signature = comment.sign_with_key(encryption_key)
|
|
comment.save
|
|
aspects = aspects_with_post(comment.post_id)
|
|
push_to_people(comment, people_in_aspects(aspects))
|
|
elsif owns? comment
|
|
comment.save
|
|
push_to_people comment, [comment.post.person]
|
|
end
|
|
end
|
|
|
|
######### Posts and Such ###############
|
|
def retract(post)
|
|
aspect_ids = aspects_with_post(post.id)
|
|
aspect_ids.map! { |aspect| aspect.id.to_s }
|
|
|
|
post.unsocket_from_uid(self.id, :aspect_ids => aspect_ids) if post.respond_to? :unsocket_from_uid
|
|
retraction = Retraction.for(post)
|
|
push_to_people retraction, people_in_aspects(aspects_with_post(post.id))
|
|
retraction
|
|
end
|
|
|
|
########### Profile ######################
|
|
def update_profile(params)
|
|
if self.person.profile.update_attributes(params)
|
|
push_to_aspects profile, :all
|
|
true
|
|
else
|
|
false
|
|
end
|
|
end
|
|
|
|
###Invitations############
|
|
def invite_user(opts = {})
|
|
if self.invites > 0
|
|
|
|
aspect_id = opts.delete(:aspect_id)
|
|
if aspect_id == nil
|
|
raise "Must invite into aspect"
|
|
end
|
|
aspect_object = self.aspects.find_by_id(aspect_id)
|
|
if !(aspect_object)
|
|
raise "Must invite to your aspect"
|
|
else
|
|
u = User.find_by_email(opts[:email])
|
|
if u.nil?
|
|
elsif friends.include?(u.person)
|
|
raise "You are already friends with this person"
|
|
elsif not u.invited?
|
|
self.send_friend_request_to(u.person, aspect_object)
|
|
return
|
|
elsif u.invited? && u.inviters.include?(self)
|
|
raise "You already invited this person"
|
|
end
|
|
end
|
|
request = Request.instantiate(
|
|
:to => "http://local_request.example.com",
|
|
:from => self.person,
|
|
:into => aspect_id
|
|
)
|
|
|
|
invited_user = User.invite!(:email => opts[:email], :request => request, :inviter => self, :invite_message => opts[:invite_message])
|
|
|
|
self.invites = self.invites - 1
|
|
self.pending_requests << request
|
|
request.save
|
|
self.save!
|
|
invited_user
|
|
else
|
|
raise "You have no invites"
|
|
end
|
|
end
|
|
|
|
def self.invite!(attributes={})
|
|
inviter = attributes.delete(:inviter)
|
|
request = attributes.delete(:request)
|
|
|
|
invitable = find_or_initialize_with_error_by(:email, attributes.delete(:email))
|
|
invitable.attributes = attributes
|
|
if invitable.inviters.include?(inviter)
|
|
raise "You already invited this person"
|
|
else
|
|
invitable.pending_requests << request
|
|
invitable.inviters << inviter
|
|
message = attributes.delete(:invite_message)
|
|
if message
|
|
invitable.invite_messages[inviter.id.to_s] = message
|
|
end
|
|
end
|
|
|
|
if invitable.new_record?
|
|
invitable.errors.clear if invitable.email.try(:match, Devise.email_regexp)
|
|
else
|
|
invitable.errors.add(:email, :taken) unless invitable.invited?
|
|
end
|
|
|
|
invitable.invite! if invitable.errors.empty?
|
|
invitable
|
|
end
|
|
|
|
def accept_invitation!(opts = {})
|
|
if self.invited?
|
|
|
|
self.setup(opts)
|
|
|
|
self.invitation_token = nil
|
|
self.password = opts[:password]
|
|
self.password_confirmation = opts[:password_confirmation]
|
|
|
|
self.person.save!
|
|
self.invitation_token = nil
|
|
self.save!
|
|
self
|
|
end
|
|
end
|
|
|
|
###Helpers############
|
|
def self.build(opts = {})
|
|
u = User.new(opts)
|
|
u.email = opts[:email]
|
|
u.setup(opts)
|
|
u
|
|
end
|
|
|
|
def setup(opts)
|
|
self.username = opts[:username]
|
|
|
|
opts[:person] ||= {}
|
|
opts[:person][:profile] ||= Profile.new
|
|
|
|
self.person = Person.new(opts[:person])
|
|
self.person.diaspora_handle = "#{opts[:username]}@#{APP_CONFIG[:terse_pod_url]}"
|
|
self.person.url = APP_CONFIG[:pod_url]
|
|
new_key = User.generate_key
|
|
self.serialized_private_key = new_key
|
|
self.person.serialized_public_key = new_key.public_key
|
|
|
|
self
|
|
end
|
|
|
|
|
|
def seed_aspects
|
|
self.aspects.create(:name => "Family")
|
|
self.aspects.create(:name => "Work")
|
|
end
|
|
|
|
def as_json(opts={})
|
|
{
|
|
:user => {
|
|
:posts => self.raw_visible_posts.each { |post| post.as_json },
|
|
:friends => self.friends.each { |friend| friend.as_json },
|
|
:aspects => self.aspects.each { |aspect| aspect.as_json },
|
|
:pending_requests => self.pending_requests.each { |request| request.as_json },
|
|
}
|
|
}
|
|
end
|
|
|
|
|
|
def self.generate_key
|
|
key_size = (Rails.env == 'test' ? 512 : 4096)
|
|
OpenSSL::PKey::RSA::generate key_size
|
|
end
|
|
|
|
def encryption_key
|
|
OpenSSL::PKey::RSA.new(serialized_private_key)
|
|
end
|
|
|
|
protected
|
|
|
|
def remove_person
|
|
self.person.destroy
|
|
end
|
|
|
|
def unfriend_everyone
|
|
friends.each { |contact|
|
|
if contact.person.owner?
|
|
contact.person.owner.unfriended_by self.person
|
|
else
|
|
self.unfriend contact
|
|
end
|
|
}
|
|
end
|
|
end
|