# ERPNext - web based ERP (http://erpnext.com) # Copyright (C) 2012 Web Notes Technologies Pvt Ltd # # This program is free software: you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation, either version 3 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . import webnotes import json from webnotes.model.doc import Document from webnotes.utils import cint @webnotes.whitelist() def get(arg=None): """return all users""" return webnotes.conn.sql("""select name, file_list, enabled, gender, restrict_ip, login_before, login_after from tabProfile where docstatus<2 and name not in ('Administrator', 'Guest') order by ifnull(enabled,0) desc, name""", as_dict=1) @webnotes.whitelist() def get_roles(arg=None): """return all roles""" return [r[0] for r in webnotes.conn.sql("""select name from tabRole where name not in ('Administrator', 'Guest', 'All') order by name""")] @webnotes.whitelist() def get_user_roles(arg=None): """get roles for a user""" return [r[0] for r in webnotes.conn.sql("""select role from tabUserRole where parent=%s""", webnotes.form_dict['uid'])] @webnotes.whitelist() def get_perm_info(arg=None): """get permission info""" return webnotes.conn.sql("""select parent, permlevel, `read`, `write`, submit, cancel, amend from tabDocPerm where role=%s and docstatus<2 order by parent, permlevel""", webnotes.form_dict['role'], as_dict=1) @webnotes.whitelist() def update_roles(arg=None): """update set and unset roles""" # remove roles unset = json.loads(webnotes.form_dict['unset_roles']) webnotes.conn.sql("""delete from tabUserRole where parent='%s' and role in ('%s')""" % (webnotes.form_dict['uid'], "','".join(unset))) # check for 1 system manager if not webnotes.conn.sql("""select parent from tabUserRole where role='System Manager' and docstatus<2"""): webnotes.msgprint("Sorry there must be atleast one 'System Manager'") raise webnotes.ValidationError # add roles roles = get_user_roles() toset = json.loads(webnotes.form_dict['set_roles']) for role in toset: if not role in roles: d = Document('UserRole') d.role = role d.parent = webnotes.form_dict['uid'] d.save() webnotes.msgprint('Roles Updated') @webnotes.whitelist() def update_security(args=''): args = json.loads(args) webnotes.conn.set_value('Profile', args['user'], 'restrict_ip', args.get('restrict_ip')) webnotes.conn.set_value('Profile', args['user'], 'login_after', args.get('login_after')) webnotes.conn.set_value('Profile', args['user'], 'login_before', args.get('login_before')) webnotes.conn.set_value('Profile', args['user'], 'enabled', int(args.get('enabled',0)) or 0) if args.get('new_password') and args.get('sys_admin_pwd'): from webnotes.utils import cint webnotes.conn.sql("update tabProfile set password=password(%s) where name=%s", (args['new_password'], args['user'])) else: webnotes.msgprint('Settings Updated') # # user addition # @webnotes.whitelist() def add_user(args): args = json.loads(args) add_profile(args) @webnotes.whitelist() def add_profile(args): from webnotes.utils import validate_email_add, now email = args['user'] sql = webnotes.conn.sql # validate max number of users exceeded or not import conf if hasattr(conf, 'max_users'): active_users = sql("""select count(*) from tabProfile where ifnull(enabled, 0)=1 and docstatus<2 and name not in ('Administrator', 'Guest')""")[0][0] if active_users >= conf.max_users and conf.max_users: # same message as in users.js webnotes.msgprint("""Alas!
\ You already have %(active_users)s active users, \ which is the maximum number that you are currently allowed to add.

\ So, to add more users, you can:
\ 1. Upgrade to the unlimited users plan, or
\ 2. Disable one or more of your existing users and try again""" \ % {'active_users': active_users}, raise_exception=1) if not email: email = webnotes.form_dict.get('user') if not validate_email_add(email): raise Exception return 'Invalid Email Id' if sql("select name from tabProfile where name = %s", email): # exists, enable it sql("update tabProfile set enabled = 1, docstatus=0 where name = %s", email) webnotes.msgprint('Profile exists, enabled it with new password') else: # does not exist, create it! pr = Document('Profile') pr.name = email pr.email = email pr.first_name = args.get('first_name') pr.last_name = args.get('last_name') pr.enabled = 1 pr.user_type = 'System User' pr.save(1) if args.get('password'): sql(""" UPDATE tabProfile SET password = PASSWORD(%s), modified = %s WHERE name = %s""", (args.get('password'), now, email)) send_welcome_mail(email, args) @webnotes.whitelist() def send_welcome_mail(email, args): """send welcome mail to user with password and login url""" pr = Document('Profile', email) from webnotes.utils.email_lib import sendmail_md args.update({ 'company': webnotes.conn.get_default('company'), 'password': args.get('password'), 'account_url': webnotes.conn.get_value('Website Settings', 'Website Settings', 'subdomain') or "" }) if not args.get('last_name'): args['last_name'] = '' sendmail_md(pr.email, subject="Welcome to ERPNext", msg=welcome_txt % args, from_defs=1) # # delete user # @webnotes.whitelist() def delete(arg=None): """delete user""" webnotes.conn.sql("update tabProfile set enabled=0, docstatus=2 where name=%s", webnotes.form_dict['uid']) webnotes.login_manager.logout(user=webnotes.form_dict['uid']) welcome_txt = """ ## %(company)s Dear %(first_name)s %(last_name)s Welcome! A new account has been created for you, here are your details: login-id: %(user)s password: %(password)s To login to your new ERPNext account, please go to: %(account_url)s """