194 lines
6.2 KiB
Python
194 lines
6.2 KiB
Python
# ERPNext - web based ERP (http://erpnext.com)
|
|
# Copyright (C) 2012 Web Notes Technologies Pvt Ltd
|
|
#
|
|
# This program is free software: you can redistribute it and/or modify
|
|
# it under the terms of the GNU General Public License as published by
|
|
# the Free Software Foundation, either version 3 of the License, or
|
|
# (at your option) any later version.
|
|
#
|
|
# This program is distributed in the hope that it will be useful,
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU General Public License
|
|
# along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
import webnotes
|
|
import json
|
|
|
|
from webnotes.model.doc import Document
|
|
from webnotes.utils import cint
|
|
|
|
@webnotes.whitelist()
|
|
def get(arg=None):
|
|
"""return all users"""
|
|
return webnotes.conn.sql("""select name, file_list, enabled, gender,
|
|
restrict_ip, login_before, login_after from tabProfile
|
|
where docstatus<2 and name not in ('Administrator', 'Guest') order by
|
|
ifnull(enabled,0) desc, name""", as_dict=1)
|
|
|
|
@webnotes.whitelist()
|
|
def get_roles(arg=None):
|
|
"""return all roles"""
|
|
return [r[0] for r in webnotes.conn.sql("""select name from tabRole
|
|
where name not in ('Administrator', 'Guest', 'All') order by name""")]
|
|
|
|
@webnotes.whitelist()
|
|
def get_user_roles(arg=None):
|
|
"""get roles for a user"""
|
|
return [r[0] for r in webnotes.conn.sql("""select role from tabUserRole
|
|
where parent=%s""", webnotes.form_dict['uid'])]
|
|
|
|
@webnotes.whitelist()
|
|
def get_perm_info(arg=None):
|
|
"""get permission info"""
|
|
return webnotes.conn.sql("""select parent, permlevel, `read`, `write`, submit,
|
|
cancel, amend from tabDocPerm where role=%s
|
|
and docstatus<2 order by parent, permlevel""",
|
|
webnotes.form_dict['role'], as_dict=1)
|
|
|
|
@webnotes.whitelist()
|
|
def update_roles(arg=None):
|
|
"""update set and unset roles"""
|
|
# remove roles
|
|
unset = json.loads(webnotes.form_dict['unset_roles'])
|
|
webnotes.conn.sql("""delete from tabUserRole where parent='%s'
|
|
and role in ('%s')""" % (webnotes.form_dict['uid'], "','".join(unset)))
|
|
|
|
# check for 1 system manager
|
|
if not webnotes.conn.sql("""select parent from tabUserRole where role='System Manager'
|
|
and docstatus<2"""):
|
|
webnotes.msgprint("Sorry there must be atleast one 'System Manager'")
|
|
raise webnotes.ValidationError
|
|
|
|
# add roles
|
|
roles = get_user_roles()
|
|
toset = json.loads(webnotes.form_dict['set_roles'])
|
|
for role in toset:
|
|
if not role in roles:
|
|
d = Document('UserRole')
|
|
d.role = role
|
|
d.parent = webnotes.form_dict['uid']
|
|
d.save()
|
|
|
|
webnotes.msgprint('Roles Updated')
|
|
|
|
@webnotes.whitelist()
|
|
def update_security(args=''):
|
|
args = json.loads(args)
|
|
webnotes.conn.set_value('Profile', args['user'], 'restrict_ip', args.get('restrict_ip') or '')
|
|
webnotes.conn.set_value('Profile', args['user'], 'login_after', args.get('login_after') or None)
|
|
webnotes.conn.set_value('Profile', args['user'], 'login_before', args.get('login_before') or None)
|
|
webnotes.conn.set_value('Profile', args['user'], 'enabled', int(args.get('enabled',0)) or 0)
|
|
|
|
if args.get('new_password') and args.get('sys_admin_pwd'):
|
|
from webnotes.utils import cint
|
|
webnotes.conn.sql("update tabProfile set password=password(%s) where name=%s",
|
|
(args['new_password'], args['user']))
|
|
else:
|
|
webnotes.msgprint('Settings Updated')
|
|
|
|
|
|
|
|
#
|
|
# user addition
|
|
#
|
|
|
|
@webnotes.whitelist()
|
|
def add_user(args):
|
|
args = json.loads(args)
|
|
add_profile(args)
|
|
|
|
@webnotes.whitelist()
|
|
def add_profile(args):
|
|
from webnotes.utils import validate_email_add, now
|
|
email = args['user']
|
|
sql = webnotes.conn.sql
|
|
|
|
# validate max number of users exceeded or not
|
|
import conf
|
|
if hasattr(conf, 'max_users'):
|
|
active_users = sql("""select count(*) from tabProfile
|
|
where ifnull(enabled, 0)=1 and docstatus<2
|
|
and name not in ('Administrator', 'Guest')""")[0][0]
|
|
if active_users >= conf.max_users and conf.max_users:
|
|
# same message as in users.js
|
|
webnotes.msgprint("""Alas! <br />\
|
|
You already have <b>%(active_users)s</b> active users, \
|
|
which is the maximum number that you are currently allowed to add. <br /><br /> \
|
|
So, to add more users, you can:<br /> \
|
|
1. <b>Upgrade to the unlimited users plan</b>, or<br /> \
|
|
2. <b>Disable one or more of your existing users and try again</b>""" \
|
|
% {'active_users': active_users}, raise_exception=1)
|
|
|
|
if not email:
|
|
email = webnotes.form_dict.get('user')
|
|
if not validate_email_add(email):
|
|
raise Exception
|
|
return 'Invalid Email Id'
|
|
|
|
if sql("select name from tabProfile where name = %s", email):
|
|
# exists, enable it
|
|
sql("update tabProfile set enabled = 1, docstatus=0 where name = %s", email)
|
|
webnotes.msgprint('Profile exists, enabled it with new password')
|
|
else:
|
|
# does not exist, create it!
|
|
pr = Document('Profile')
|
|
pr.name = email
|
|
pr.email = email
|
|
pr.first_name = args.get('first_name')
|
|
pr.last_name = args.get('last_name')
|
|
pr.enabled = 1
|
|
pr.user_type = 'System User'
|
|
pr.save(1)
|
|
|
|
if args.get('password'):
|
|
sql("""
|
|
UPDATE tabProfile
|
|
SET password = PASSWORD(%s), modified = %s
|
|
WHERE name = %s""", (args.get('password'), now, email))
|
|
|
|
send_welcome_mail(email, args)
|
|
|
|
@webnotes.whitelist()
|
|
def send_welcome_mail(email, args):
|
|
"""send welcome mail to user with password and login url"""
|
|
pr = Document('Profile', email)
|
|
from webnotes.utils.email_lib import sendmail_md
|
|
args.update({
|
|
'company': webnotes.conn.get_default('company'),
|
|
'password': args.get('password'),
|
|
'account_url': webnotes.conn.get_value('Website Settings',
|
|
'Website Settings', 'subdomain') or ""
|
|
})
|
|
if not args.get('last_name'): args['last_name'] = ''
|
|
sendmail_md(pr.email, subject="Welcome to ERPNext", msg=welcome_txt % args, from_defs=1)
|
|
|
|
#
|
|
# delete user
|
|
#
|
|
@webnotes.whitelist()
|
|
def delete(arg=None):
|
|
"""delete user"""
|
|
webnotes.conn.sql("update tabProfile set enabled=0, docstatus=2 where name=%s",
|
|
webnotes.form_dict['uid'])
|
|
webnotes.login_manager.logout(user=webnotes.form_dict['uid'])
|
|
|
|
welcome_txt = """
|
|
## %(company)s
|
|
|
|
Dear %(first_name)s %(last_name)s
|
|
|
|
Welcome!
|
|
|
|
A new account has been created for you, here are your details:
|
|
|
|
login-id: %(user)s
|
|
password: %(password)s
|
|
|
|
To login to your new ERPNext account, please go to:
|
|
|
|
%(account_url)s
|
|
"""
|