Mirror
/
zulip
mirror of https://github.com/zulip/zulip.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
zulip/zerver/views/users.py

506 lines
23 KiB
Python
Raw Normal View History

views: Remove unused imports. Signed-off-by: Anders Kaseorg <andersk@mit.edu>
2019-02-02 23:53:22 +01:00
from typing import Union, Optional, Dict, Any, List
Add /authors page. Contributor visualization showing the avatar, user name and number of commits for each contributors. The JSON data would be updated upon deployment, triggered by the `update-prod-static` script.
2017-01-06 18:56:36 +01:00
json: Replace most use of simplejson with json. This is progress towards removing simplejson as a dependency.
2017-10-12 07:54:25 +02:00
import ujson
Annotate zerver/views/users.py.
2016-06-05 00:47:14 +02:00
from django.http import HttpRequest, HttpResponse
[i18n] Make error messages translatable. Make all strings passing through `json_error` and `JsonableError` translatable. Fixes #727
2016-05-25 15:02:02 +02:00
from django.utils.translation import ugettext as _
users: Change render_to_response to render. Related to #4093
2017-03-17 06:32:36 +01:00
from django.shortcuts import redirect, render
Add /authors page. Contributor visualization showing the avatar, user name and number of commits for each contributors. The JSON data would be updated upon deployment, triggered by the `update-prod-static` script.
2017-01-06 18:56:36 +01:00
from django.conf import settings
Move users views into their own file.
2015-11-24 05:26:33 +01:00
decorator: Refactor @require_non_guest_human_user decorator. Rename @require_non_guest_human_user to @require_member_or_admin. This is a refactor commit prior to introduction of Administrator Bots.
2019-06-18 16:43:22 +02:00
from zerver.decorator import require_realm_admin, require_member_or_admin
Move users views into their own file.
2015-11-24 05:26:33 +01:00
from zerver.forms import CreateUserForm
users: Refactor get_members_backend endpoint to use get_raw_user_data. Modify the get_raw_user_data method for use by the /users API endpoint and then modify the /users endpoint to use it.
2019-10-20 19:15:44 +02:00
from zerver.lib.events import get_raw_user_data
views/users.py: Allow changing bot's owner. Modify the `patch_bot_backend()` route to support changing the bot owner.
2017-02-24 06:36:54 +01:00
from zerver.lib.actions import do_change_avatar_fields, do_change_bot_owner, \
do_change_is_admin, do_change_default_all_public_streams, \
Move users views into their own file.
2015-11-24 05:26:33 +01:00
do_change_default_events_register_stream, do_change_default_sending_stream, \
users: Move check_change_full_name to actions.py. This avoids an import loop in the next commit, and better matches our usual code structure.
2017-11-16 02:29:53 +01:00
do_create_user, do_deactivate_user, do_reactivate_user, do_regenerate_api_key, \
backend: Add bot config data patching.
2018-01-30 19:21:13 +01:00
check_change_full_name, notify_created_bot, do_update_outgoing_webhook_service, \
/json/users/: Add user profile data variable to update values. This commit adds user profile data variable in `/json/users/` api view. This allows user to update user profile data along with user's name and type.
2018-09-04 20:46:11 +02:00
do_update_bot_config_data, check_change_bot_full_name, do_change_is_guest, \
do_update_user_custom_profile_data: Rename to ..._if_changed. This adds clarity to the fact that the function no longer does anything if the field values haven't changed.
2019-10-01 04:22:50 +02:00
do_update_user_custom_profile_data_if_changed, check_remove_custom_profile_field_value
users: Refactor get_members_backend endpoint to use get_raw_user_data. Modify the get_raw_user_data method for use by the /users API endpoint and then modify the /users endpoint to use it.
2019-10-20 19:15:44 +02:00
from zerver.lib.avatar import avatar_url, get_gravatar_url
embedded bots: Add config data UI. This adds UI fields in the bot settings for specifying configuration values like API keys for a bot. The names and placeholder values for each bot's config fields are fetched from the bot's <bot>.conf template file in the zulip_bots package. This also adds giphy and followup as embedded bots.
2018-01-07 19:24:14 +01:00
from zerver.lib.bot_config import set_bot_config
views: Remove unused imports. Signed-off-by: Anders Kaseorg <andersk@mit.edu>
2019-02-02 23:53:22 +01:00
from zerver.lib.exceptions import CannotDeactivateLastUserError
Embedded bots: Add support for creating embedded bots via the API. Adds support to add "Embedded bot" Service objects. This service handles every embedded bot. Extracted from "Embedded bots: Add support to add embedded bots from UI" by Robert Honig. Tweaked by tabbott to be disabled by default.
2017-07-14 16:44:07 +02:00
from zerver.lib.integrations import EMBEDDED_BOTS
views: Fix imports of REQ/has_request_variables from the wrong place. These were never in zerver/decorator.py, and so it makes sense to import them zerver/lib/request.py, mostly for ease of finding things.
2017-10-28 00:07:31 +02:00
from zerver.lib.request import has_request_variables, REQ
Move users views into their own file.
2015-11-24 05:26:33 +01:00
from zerver.lib.response import json_error, json_success
settings: Unset STATIC_ROOT in development. Django’s default FileSystemFinder disallows STATICFILES_DIRS from containing STATIC_ROOT (by raising an ImproperlyConfigured exception), because STATIC_ROOT is supposed to be the result of collecting all the static files in the project, not one of the potentially many sources of static files. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-07-17 02:29:08 +02:00
from zerver.lib.storage import static_path
users: Use access_stream_by_name to access streams. This simplifies the code somewhat and adds greater consistency of error messages.
2017-01-30 03:17:42 +01:00
from zerver.lib.streams import access_stream_by_name
Move users views into their own file.
2015-11-24 05:26:33 +01:00
from zerver.lib.upload import upload_avatar_image
users: Get all API keys via wrapper method. Now reading API keys from a user is done with the get_api_key wrapper method, rather than directly fetching it from the user object. Also, every place where an action should be done for each API key is now using get_all_api_keys. This method returns for the moment a single-item list, containing the specified user's API key. This commit is the first step towards allowing users have multiple API keys.
2018-08-01 10:53:40 +02:00
from zerver.lib.users import get_api_key
/json/users/: Add user profile data variable to update values. This commit adds user profile data variable in `/json/users/` api view. This allows user to update user profile data along with user's name and type.
2018-09-04 20:46:11 +02:00
from zerver.lib.validator import check_bool, check_string, check_int, check_url, check_dict, check_list
org settings: Add setting to prevent users from adding bots. Fixes: #7908.
2018-01-29 16:10:54 +01:00
from zerver.lib.users import check_valid_bot_type, check_bot_creation_policy, \
users: Replace duplication with generic func to validate bot id. This adds a common function `access_bot_by_id` to access bot id within same realm. It probably fixes some corner case bugs where we weren't checking for deactivated bots when regenerating API keys.
2018-05-28 20:42:31 +02:00
check_full_name, check_short_name, check_valid_interface_type, check_valid_bot_config, \
/json/users/: Add user profile data variable to update values. This commit adds user profile data variable in `/json/users/` api view. This allows user to update user profile data along with user's name and type.
2018-09-04 20:46:11 +02:00
access_bot_by_id, add_service, access_user_by_id, check_bot_name_available, \
validate_user_custom_profile_data
utils: Move random API key generator as generate_api_key. random_api_key, the function we use to generate random tokens for API keys, has been moved to zerver/lib/utils.py because it's used in more parts of the codebase (apart from user creation), and having it in zerver/lib/create_user.py was prone to cyclic dependencies. The function has also been renamed to generate_api_key to have an imperative name, that makes clearer what it does.
2018-08-01 11:18:37 +02:00
from zerver.lib.utils import generate_api_key, generate_random_token
users: Use get_user_including_cross_realm in avatar view.
2017-07-17 21:02:09 +02:00
from zerver.models import UserProfile, Stream, Message, email_allowed_for_realm, \
email: Convert accounts code to use delivery_email. A key part of this is the new helper, get_user_by_delivery_email. Its verbose name is important for clarity; it should help avoid blind copy-pasting of get_user (which we'll also want to rename). Unfortunately, it requires detailed understanding of the context to figure out which one to use; each is used in about half of call sites. Another important note is that this PR doesn't migrate get_user calls in the tests except where not doing so would cause the tests to fail. This probably deserves a follow-up refactor to avoid bugs here.
2018-12-07 00:05:57 +01:00
get_user_by_delivery_email, Service, get_user_including_cross_realm, \
signup: Prevent users from signing up with email containing +.
2018-06-20 13:08:07 +02:00
DomainNotAllowedForRealmError, DisposableEmailError, get_user_profile_by_id_in_realm, \
settings: Add FAKE_EMAIL_DOMAIN setting. Fixes #9401. This adds a FAKE_EMAIL_DOMAIN setting, which should be used if EXTERNAL_HOST is not a valid domain, and something else is needed to form bot and dummy user emails (if email visibility is turned off). It defaults to EXTERNAL_HOST. get_fake_email_domain() should be used to get this value. It validates that it's correctly set - that it can be used to form valid emails. If it's not set correctly, an exception is raised. This is the right approach, because it's undesirable to have the server seemingly peacefully operating with that setting misconfigured, as that could mask some hidden sneaky bugs due to UserProfiles with invalid emails, which would blow up the moment some code that does validate the emails is called.
2019-08-30 00:21:36 +02:00
EmailContainsPlusError, get_user_by_id_in_realm_including_cross_realm, Realm, \
InvalidFakeEmailDomain
Move users views into their own file.
2015-11-24 05:26:33 +01:00
zerver/views: Use Python 3 syntax for typing. Edited by tabbott to remove state.py and streams.py, because of problems with the original PR's changes, and wrap some long lines.
2017-11-27 09:28:57 +01:00
def deactivate_user_backend(request: HttpRequest, user_profile: UserProfile,
/json/users: Replace email with user_id in API to update/remove users.
2018-05-17 19:36:33 +02:00
user_id: int) -> HttpResponse:
users: Replace duplication with generic func to validate user id. This adds a common function `access_user_by_id` to access user id within same realm, complete with a full suite of unit tests. Tweaked by tabbott to make the test much more readable.
2018-06-04 07:04:19 +02:00
target = access_user_by_id(user_profile, user_id)
admin: Do not allow removing or deactivating the last org admin. Modified by tabbott to cover and test some additional cases. Fixes #2396.
2016-12-05 06:40:00 +01:00
if check_last_admin(target):
return json_error(_('Cannot deactivate the only organization administrator'))
Move users views into their own file.
2015-11-24 05:26:33 +01:00
return _deactivate_user_profile_backend(request, user_profile, target)
zerver/views: Use Python 3 syntax for typing. Edited by tabbott to remove state.py and streams.py, because of problems with the original PR's changes, and wrap some long lines.
2017-11-27 09:28:57 +01:00
def deactivate_user_own_backend(request: HttpRequest, user_profile: UserProfile) -> HttpResponse:
settings: Improve error message when deactivating the last user. This PR was originally started by Rishi Gupta (see #10383).
2018-08-21 08:14:46 +02:00
if UserProfile.objects.filter(realm=user_profile.realm, is_active=True).count() == 1:
raise CannotDeactivateLastUserError(is_last_admin=False)
admin: Do not allow removing or deactivating the last org admin. Modified by tabbott to cover and test some additional cases. Fixes #2396.
2016-12-05 06:40:00 +01:00
if user_profile.is_realm_admin and check_last_admin(user_profile):
settings: Improve error message when deactivating the last user. This PR was originally started by Rishi Gupta (see #10383).
2018-08-21 08:14:46 +02:00
raise CannotDeactivateLastUserError(is_last_admin=True)
do_deactivate_user: Add acting user to RealmAuditLog.
2017-08-17 01:20:23 +02:00
do_deactivate_user(user_profile, acting_user=user_profile)
lint: Ban use of json_success({}) instead of json_success().
2016-10-21 07:34:04 +02:00
return json_success()
Add UI for deactivating your own Zulip account. Fixes #1009.
2016-10-13 20:09:32 +02:00
zerver/views: Use Python 3 syntax for typing. Edited by tabbott to remove state.py and streams.py, because of problems with the original PR's changes, and wrap some long lines.
2017-11-27 09:28:57 +01:00
def check_last_admin(user_profile: UserProfile) -> bool:
models: Extract get_human_admin_users function. This function is an alternative to get_admin_users that we use in all places where we explicitly want only human administrative users (not administrative bots). The following commits will rename get_admin_users for better clarity.
2019-06-20 23:26:54 +02:00
admins = set(user_profile.realm.get_human_admin_users())
return user_profile.is_realm_admin and not user_profile.is_bot and len(admins) == 1
admin: Do not allow removing or deactivating the last org admin. Modified by tabbott to cover and test some additional cases. Fixes #2396.
2016-12-05 06:40:00 +01:00
zerver/views: Use Python 3 syntax for typing. Edited by tabbott to remove state.py and streams.py, because of problems with the original PR's changes, and wrap some long lines.
2017-11-27 09:28:57 +01:00
def deactivate_bot_backend(request: HttpRequest, user_profile: UserProfile,
/json/bots: Replace email with user_id in API to update bots.
2018-05-15 15:26:04 +02:00
bot_id: int) -> HttpResponse:
users: Replace duplication with generic func to validate bot id. This adds a common function `access_bot_by_id` to access bot id within same realm. It probably fixes some corner case bugs where we weren't checking for deactivated bots when regenerating API keys.
2018-05-28 20:42:31 +02:00
target = access_bot_by_id(user_profile, bot_id)
Move users views into their own file.
2015-11-24 05:26:33 +01:00
return _deactivate_user_profile_backend(request, user_profile, target)
zerver/views: Use Python 3 syntax for typing. Edited by tabbott to remove state.py and streams.py, because of problems with the original PR's changes, and wrap some long lines.
2017-11-27 09:28:57 +01:00
def _deactivate_user_profile_backend(request: HttpRequest, user_profile: UserProfile,
target: UserProfile) -> HttpResponse:
do_deactivate_user: Add acting user to RealmAuditLog.
2017-08-17 01:20:23 +02:00
do_deactivate_user(target, acting_user=user_profile)
lint: Ban use of json_success({}) instead of json_success().
2016-10-21 07:34:04 +02:00
return json_success()
Move users views into their own file.
2015-11-24 05:26:33 +01:00
zerver/views: Use Python 3 syntax for typing. Edited by tabbott to remove state.py and streams.py, because of problems with the original PR's changes, and wrap some long lines.
2017-11-27 09:28:57 +01:00
def reactivate_user_backend(request: HttpRequest, user_profile: UserProfile,
/json/users: Replace email with user_id in API to reactivate user.
2018-05-17 19:45:13 +02:00
user_id: int) -> HttpResponse:
users: Replace duplication with generic func to validate user id. This adds a common function `access_user_by_id` to access user id within same realm, complete with a full suite of unit tests. Tweaked by tabbott to make the test much more readable.
2018-06-04 07:04:19 +02:00
target = access_user_by_id(user_profile, user_id, allow_deactivated=True, allow_bots=True)
bots: Enforce bot creation policy on reactivating bots. It's sorta an unusual state to get into, to have a user own a deactivated bot, when they can't create a bot of that type, but definitely a valid possibility that we should be checking for. Fixes #10087.
2018-07-27 18:18:33 +02:00
if target.is_bot:
mypy: Fix mypy error with optional. This was missed in a57d3371135ae13b531525a79a6c6e55905d95e2.
2018-07-27 19:58:08 +02:00
assert target.bot_type is not None
bots: Enforce bot creation policy on reactivating bots. It's sorta an unusual state to get into, to have a user own a deactivated bot, when they can't create a bot of that type, but definitely a valid possibility that we should be checking for. Fixes #10087.
2018-07-27 18:18:33 +02:00
check_bot_creation_policy(user_profile, target.bot_type)
RealmAuditLog: Pass acting_user to do_reactivate_user.
2017-09-22 16:18:05 +02:00
do_reactivate_user(target, acting_user=user_profile)
lint: Ban use of json_success({}) instead of json_success().
2016-10-21 07:34:04 +02:00
return json_success()
Move users views into their own file.
2015-11-24 05:26:33 +01:00
@has_request_variables
/json/users: Replace email with user_id in API to update/remove users.
2018-05-17 19:36:33 +02:00
def update_user_backend(request: HttpRequest, user_profile: UserProfile, user_id: int,
views: Change use of typing.Text to str. This is the first part of a general migration of our typing codebase to use the simpler `str` for strings.
2018-04-24 03:47:28 +02:00
full_name: Optional[str]=REQ(default="", validator=check_string),
settings_users: Support guest user in admin-user-table. This supports guest user in the user-info-form-modal as well as in the role section of the admin-user-table. With some fixes by Tim Abbott and Shubham Dhama.
2018-10-19 12:29:46 +02:00
is_admin: Optional[bool]=REQ(default=None, validator=check_bool),
/json/users/: Add user profile data variable to update values. This commit adds user profile data variable in `/json/users/` api view. This allows user to update user profile data along with user's name and type.
2018-09-04 20:46:11 +02:00
is_guest: Optional[bool]=REQ(default=None, validator=check_bool),
request: Tighten type checking on REQ. Then, find and fix a predictable number of previous misuses. With a small change by tabbott to preserve backwards compatibility for sending `yes` for the `forged` field. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-11-13 08:17:49 +01:00
profile_data: Optional[List[Dict[str, Union[int, str, List[int]]]]]=
/json/users/: Add user profile data variable to update values. This commit adds user profile data variable in `/json/users/` api view. This allows user to update user profile data along with user's name and type.
2018-09-04 20:46:11 +02:00
REQ(default=None,
validator=check_list(check_dict([('id', check_int)])))) -> HttpResponse:
users: Replace duplication with generic func to validate user id. This adds a common function `access_user_by_id` to access user id within same realm, complete with a full suite of unit tests. Tweaked by tabbott to make the test much more readable.
2018-06-04 07:04:19 +02:00
target = access_user_by_id(user_profile, user_id, allow_deactivated=True, allow_bots=True)
Move users views into their own file.
2015-11-24 05:26:33 +01:00
models: Replace is_guest and is_realm_admin with UserProfile.role. This new data model will be more extensible for future work on features like a primary administrator.
2019-10-05 02:35:07 +02:00
# Historically, UserProfile had two fields, is_guest and is_realm_admin.
# This condition protected against situations where update_user_backend
# could cause both is_guest and is_realm_admin to be set.
# Once we update the frontend to just send a 'role' value, we can remove this check.
settings_users: Support guest user in admin-user-table. This supports guest user in the user-info-form-modal as well as in the role section of the admin-user-table. With some fixes by Tim Abbott and Shubham Dhama.
2018-10-19 12:29:46 +02:00
if (((is_guest is None and target.is_guest) or is_guest) and
((is_admin is None and target.is_realm_admin) or is_admin)):
return json_error(_("Guests cannot be organization administrators"))
org settings: Fix error when admin update realm users full names. Currently, if there is only one admin in realm and admin tries to updates any non-adminuser's full name it throws error, "Cannot remove only realm admin". Because in `/json/users/<user_id>` api check_if_last_admin_is_changed is checked even if property is_admin is not changed. This commit fix this issue and add tests for it.
2018-10-17 15:04:58 +02:00
if is_admin is not None and target.is_realm_admin != is_admin:
admin: Do not allow removing or deactivating the last org admin. Modified by tabbott to cover and test some additional cases. Fixes #2396.
2016-12-05 06:40:00 +01:00
if not is_admin and check_last_admin(user_profile):
return json_error(_('Cannot remove the only organization administrator'))
Move users views into their own file.
2015-11-24 05:26:33 +01:00
do_change_is_admin(target, is_admin)
Add support for changing user's name by admin. Fixes: #1553
2016-09-27 14:25:52 +02:00
settings_users: Support guest user in admin-user-table. This supports guest user in the user-info-form-modal as well as in the role section of the admin-user-table. With some fixes by Tim Abbott and Shubham Dhama.
2018-10-19 12:29:46 +02:00
if is_guest is not None and target.is_guest != is_guest:
do_change_is_guest(target, is_guest)
Add support for changing user's name by admin. Fixes: #1553
2016-09-27 14:25:52 +02:00
if (full_name is not None and target.full_name != full_name and
full_name.strip() != ""):
# We don't respect `name_changes_disabled` here because the request
# is on behalf of the administrator.
Switch change_full_name to use RealmAuditLog. This requires adding an `acting_user` parameter to the `do_change_bot_owner` function.
2017-04-07 07:28:28 +02:00
check_change_full_name(target, full_name, user_profile)
Add support for changing user's name by admin. Fixes: #1553
2016-09-27 14:25:52 +02:00
/json/users/: Add user profile data variable to update values. This commit adds user profile data variable in `/json/users/` api view. This allows user to update user profile data along with user's name and type.
2018-09-04 20:46:11 +02:00
if profile_data is not None:
custom profile fields: Fix error handling for admin clearing values. This commit fixes an error in the logic for allowing admins to edit any user's CPF (custom profile field) values. The logic allowing users to edit their own CPF values is however sound. What happens is that of all the CPF types, for "choice fields" as well as "URL" and "date fields", when the value is reset/deleted/cleared by the admin in the Admin UI (organization settings), the frontend would send a null (empty string) value to the backend for that custom profile field (as this is, after all, the new value in this case). This would then triggers the backend validators to return an error message. We fix this by using the method check_remove_custom_profile_field_value, that both code paths (user editing their own CPFs and admin editing a user's CPF) can call.
2019-01-15 12:21:14 +01:00
clean_profile_data = []
for entry in profile_data:
if not entry["value"]:
field_id = entry["id"]
check_remove_custom_profile_field_value(target, field_id)
else:
clean_profile_data.append(entry)
validate_user_custom_profile_data(target.realm.id, clean_profile_data)
do_update_user_custom_profile_data: Rename to ..._if_changed. This adds clarity to the fact that the function no longer does anything if the field values haven't changed.
2019-10-01 04:22:50 +02:00
do_update_user_custom_profile_data_if_changed(target, clean_profile_data)
/json/users/: Add user profile data variable to update values. This commit adds user profile data variable in `/json/users/` api view. This allows user to update user profile data along with user's name and type.
2018-09-04 20:46:11 +02:00
lint: Ban use of json_success({}) instead of json_success().
2016-10-21 07:34:04 +02:00
return json_success()
Move users views into their own file.
2015-11-24 05:26:33 +01:00
avatar: Allow API authentication for /avatar/ routes. This makes it feasibly for the mobile apps to correctly render user avatars generated by the `!avatar()` syntax.
2018-08-13 19:09:09 +02:00
def avatar(request: HttpRequest, user_profile: UserProfile,
email_or_id: str, medium: bool=False) -> HttpResponse:
Support email changes for !avatar syntax. Significantly modified by tabbott to avoid calling get_user_profile_by_email in bugdown, and have 100% test coverage of the views code. Fixes #2041.
2016-10-24 16:42:43 +02:00
"""Accepts an email address or user ID and returns the avatar"""
users: Use get_user_including_cross_realm in avatar view.
2017-07-17 21:02:09 +02:00
is_email = False
Move users views into their own file.
2015-11-24 05:26:33 +01:00
try:
Support email changes for !avatar syntax. Significantly modified by tabbott to avoid calling get_user_profile_by_email in bugdown, and have 100% test coverage of the views code. Fixes #2041.
2016-10-24 16:42:43 +02:00
int(email_or_id)
except ValueError:
users: Use get_user_including_cross_realm in avatar view.
2017-07-17 21:02:09 +02:00
is_email = True
Support email changes for !avatar syntax. Significantly modified by tabbott to avoid calling get_user_profile_by_email in bugdown, and have 100% test coverage of the views code. Fixes #2041.
2016-10-24 16:42:43 +02:00
try:
avatar: Allow API authentication for /avatar/ routes. This makes it feasibly for the mobile apps to correctly render user avatars generated by the `!avatar()` syntax.
2018-08-13 19:09:09 +02:00
realm = user_profile.realm
users: Use get_user_including_cross_realm in avatar view.
2017-07-17 21:02:09 +02:00
if is_email:
avatar: Rename user_profile to avatar_user_profile. This is a preparatory commit for upcoming changes to move /avatar/ to be a logged in or API accessible endpoint. Basically we rename this variable because the new name is more appropriate in the situation. Also user_profile will be used to hold the user_profile of person accessing the endpoint in coming up commit.
2018-08-18 14:18:58 +02:00
avatar_user_profile = get_user_including_cross_realm(email_or_id, realm)
users: Use get_user_including_cross_realm in avatar view.
2017-07-17 21:02:09 +02:00
else:
avatar: Allow API authentication for /avatar/ routes. This makes it feasibly for the mobile apps to correctly render user avatars generated by the `!avatar()` syntax.
2018-08-13 19:09:09 +02:00
avatar_user_profile = get_user_by_id_in_realm_including_cross_realm(int(email_or_id), realm)
Support email changes for !avatar syntax. Significantly modified by tabbott to avoid calling get_user_profile_by_email in bugdown, and have 100% test coverage of the views code. Fixes #2041.
2016-10-24 16:42:43 +02:00
# If there is a valid user account passed in, use its avatar
avatar: Rename user_profile to avatar_user_profile. This is a preparatory commit for upcoming changes to move /avatar/ to be a logged in or API accessible endpoint. Basically we rename this variable because the new name is more appropriate in the situation. Also user_profile will be used to hold the user_profile of person accessing the endpoint in coming up commit.
2018-08-18 14:18:58 +02:00
url = avatar_url(avatar_user_profile, medium=medium)
Move users views into their own file.
2015-11-24 05:26:33 +01:00
except UserProfile.DoesNotExist:
Support email changes for !avatar syntax. Significantly modified by tabbott to avoid calling get_user_profile_by_email in bugdown, and have 100% test coverage of the views code. Fixes #2041.
2016-10-24 16:42:43 +02:00
# If there is no such user, treat it as a new gravatar
email = email_or_id
Have functions in lib/avatar.py use avatar versions. In some cases here we simplify things by calling avatar_url() instead of get_avatar_url(), when we have a user_profile record handy. For other cases we pass in an extra avatar_version parameter to get_avatar_url(), including from avatar_url().
2017-02-16 22:35:57 +01:00
avatar_version = 1
Make user_id, realm_id mandatory in _get_unversioned_avatar_url.
2017-07-17 18:04:36 +02:00
url = get_gravatar_url(email, avatar_version, medium)
Remove unused code path in avatar() endpoint.
2016-07-13 02:19:26 +02:00
# We can rely on the url already having query parameters. Because
# our templates depend on being able to use the ampersand to
# add query parameters to our url, get_avatar_url does '?x=x'
# hacks to prevent us from having to jump through decode/encode hoops.
mypy: Clean zerver/views/users.py for strict-optional.
2018-06-01 17:47:50 +02:00
assert url is not None
Remove unused code path in avatar() endpoint.
2016-07-13 02:19:26 +02:00
assert '?' in url
url += '&' + request.META['QUERY_STRING']
Move users views into their own file.
2015-11-24 05:26:33 +01:00
return redirect(url)
views: Change use of typing.Text to str. This is the first part of a general migration of our typing codebase to use the simpler `str` for strings.
2018-04-24 03:47:28 +02:00
def get_stream_name(stream: Optional[Stream]) -> Optional[str]:
Move users views into their own file.
2015-11-24 05:26:33 +01:00
if stream:
Simplify zerver/views/users.py:get_stream_name.
2017-02-11 05:44:37 +01:00
return stream.name
return None
Move users views into their own file.
2015-11-24 05:26:33 +01:00
decorator: Refactor @require_non_guest_human_user decorator. Rename @require_non_guest_human_user to @require_member_or_admin. This is a refactor commit prior to introduction of Administrator Bots.
2019-06-18 16:43:22 +02:00
@require_member_or_admin
Move users views into their own file.
2015-11-24 05:26:33 +01:00
@has_request_variables
mypy: Use Python 3 type syntax in 'views/users.py'.
2017-12-25 12:02:23 +01:00
def patch_bot_backend(
/json/bots: Replace email with user_id in API to update bots.
2018-05-15 15:26:04 +02:00
request: HttpRequest, user_profile: UserProfile, bot_id: int,
views: Change use of typing.Text to str. This is the first part of a general migration of our typing codebase to use the simpler `str` for strings.
2018-04-24 03:47:28 +02:00
full_name: Optional[str]=REQ(default=None),
request: Tighten type checking on REQ. Then, find and fix a predictable number of previous misuses. With a small change by tabbott to preserve backwards compatibility for sending `yes` for the `forged` field. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-11-13 08:17:49 +01:00
bot_owner_id: Optional[int]=REQ(validator=check_int, default=None),
views: Change use of typing.Text to str. This is the first part of a general migration of our typing codebase to use the simpler `str` for strings.
2018-04-24 03:47:28 +02:00
config_data: Optional[Dict[str, str]]=REQ(default=None,
validator=check_dict(value_validator=check_string)),
service_payload_url: Optional[str]=REQ(validator=check_url, default=None),
Add bot services to page_params. This is the first step for allowing users to edit a bot's service entries, name the outgoing webhook configuration entries. The chosen data structures allow for a future with multiple services per bot; right now, only one service per bot is supported.
2018-01-16 20:34:12 +01:00
service_interface: Optional[int]=REQ(validator=check_int, default=1),
views: Change use of typing.Text to str. This is the first part of a general migration of our typing codebase to use the simpler `str` for strings.
2018-04-24 03:47:28 +02:00
default_sending_stream: Optional[str]=REQ(default=None),
default_events_register_stream: Optional[str]=REQ(default=None),
mypy: Use Python 3 type syntax in 'views/users.py'.
2017-12-25 12:02:23 +01:00
default_all_public_streams: Optional[bool]=REQ(default=None, validator=check_bool)
) -> HttpResponse:
users: Replace duplication with generic func to validate bot id. This adds a common function `access_bot_by_id` to access bot id within same realm. It probably fixes some corner case bugs where we weren't checking for deactivated bots when regenerating API keys.
2018-05-28 20:42:31 +02:00
bot = access_bot_by_id(user_profile, bot_id)
Move users views into their own file.
2015-11-24 05:26:33 +01:00
if full_name is not None:
bots: Prevent bots from having duplicate full names. Bots are not allowed to use the same name as other users in the realm (either bot or human). This is kind of a big commit, but I wanted to combine the post/patch (aka add/edit) checks into one commit, since it's a change in policy that affects both codepaths. A lot of the noise is in tests. We had good coverage on the previous code, including some places like event testing where we were expediently not bothering to use different names for different bots in some longer tests. And then of course I test some new scenarios that are relevant with the new policy. There are two new functions: check_bot_name_available: very simple Django query check_change_bot_full_name: this diverges from the 3-line check_change_full_name, where the latter is still used for the "humans" use case And then we just call those in appropriate places. Note that there is still a loophole here where you can get two bots with the same name if you reactivate a bot named Fred that was inactive when the second bot named Fred was created. Also, we don't attempt to fix historical data. So this commit shouldn't be considered any kind of lockdown, it's just meant to help people from inadvertently creating two bots of the same name where they don't intend to. For more context, we are continuing to allow two human users in the same realm to have the same full name, and our code should generally be tolerant of that possibility. (A good example is our new mention syntax, which disambiguates same-named people using ids.) It's also worth noting that our web app client doesn't try to scrub full_name from its payload in situations where the user has actually only modified other fields in the "Edit bot" UI. Starting here we just handle this on the server, since it's easy to fix there, and even if we fixed it in the web app, there's no guarantee that other clients won't be just as brute force. It wasn't exactly broken before, but we'd needlessly write rows to audit tables. Fixes #10509
2018-09-27 19:25:18 +02:00
check_change_bot_full_name(bot, full_name, user_profile)
bots settings: Improve API for editing bot owners to refer to users by ID. Fixes #9502
2018-06-19 07:42:04 +02:00
if bot_owner_id is not None:
bots: Handle exception on changing bot owner to invalid user. It catches the `UserProfile.DoesNotExist` exception and hence prevent internal server error. Also remove option to select empty bot owner. Fixes: #8334.
2018-02-10 14:17:04 +01:00
try:
bots settings: Improve API for editing bot owners to refer to users by ID. Fixes #9502
2018-06-19 07:42:04 +02:00
owner = get_user_profile_by_id_in_realm(bot_owner_id, user_profile.realm)
bots: Handle exception on changing bot owner to invalid user. It catches the `UserProfile.DoesNotExist` exception and hence prevent internal server error. Also remove option to select empty bot owner. Fixes: #8334.
2018-02-10 14:17:04 +01:00
except UserProfile.DoesNotExist:
return json_error(_('Failed to change owner, no such user'))
bots: Check bot owner for deactivated users and bots. We should not allow deactivated users and bots as a bot owner.
2018-02-13 11:54:16 +01:00
if not owner.is_active:
return json_error(_('Failed to change owner, user is deactivated'))
if owner.is_bot:
return json_error(_("Failed to change owner, bots can't own other bots"))
bots settings: Improve API for editing bot owners to refer to users by ID. Fixes #9502
2018-06-19 07:42:04 +02:00
previous_owner = bot.bot_owner
if previous_owner != owner:
do_change_bot_owner(bot, owner, user_profile)
bots: Handle exception on changing bot owner to invalid user. It catches the `UserProfile.DoesNotExist` exception and hence prevent internal server error. Also remove option to select empty bot owner. Fixes: #8334.
2018-02-10 14:17:04 +01:00
Move users views into their own file.
2015-11-24 05:26:33 +01:00
if default_sending_stream is not None:
users: Use access_stream_by_name to access streams. This simplifies the code somewhat and adds greater consistency of error messages.
2017-01-30 03:17:42 +01:00
if default_sending_stream == "":
mypy: Clean up more optional types.
2017-02-11 05:45:39 +01:00
stream = None # type: Optional[Stream]
users: Use access_stream_by_name to access streams. This simplifies the code somewhat and adds greater consistency of error messages.
2017-01-30 03:17:42 +01:00
else:
(stream, recipient, sub) = access_stream_by_name(
user_profile, default_sending_stream)
Move users views into their own file.
2015-11-24 05:26:33 +01:00
do_change_default_sending_stream(bot, stream)
if default_events_register_stream is not None:
users: Use access_stream_by_name to access streams. This simplifies the code somewhat and adds greater consistency of error messages.
2017-01-30 03:17:42 +01:00
if default_events_register_stream == "":
stream = None
else:
(stream, recipient, sub) = access_stream_by_name(
user_profile, default_events_register_stream)
Move users views into their own file.
2015-11-24 05:26:33 +01:00
do_change_default_events_register_stream(bot, stream)
if default_all_public_streams is not None:
do_change_default_all_public_streams(bot, default_all_public_streams)
Add bot services to page_params. This is the first step for allowing users to edit a bot's service entries, name the outgoing webhook configuration entries. The chosen data structures allow for a future with multiple services per bot; right now, only one service per bot is supported.
2018-01-16 20:34:12 +01:00
if service_payload_url is not None:
check_valid_interface_type(service_interface)
mypy: Clean zerver/views/users.py for strict-optional.
2018-06-01 17:47:50 +02:00
assert service_interface is not None
Add bot services to page_params. This is the first step for allowing users to edit a bot's service entries, name the outgoing webhook configuration entries. The chosen data structures allow for a future with multiple services per bot; right now, only one service per bot is supported.
2018-01-16 20:34:12 +01:00
do_update_outgoing_webhook_service(bot, service_interface, service_payload_url)
backend: Add bot config data patching.
2018-01-30 19:21:13 +01:00
if config_data is not None:
do_update_bot_config_data(bot, config_data)
Move users views into their own file.
2015-11-24 05:26:33 +01:00
if len(request.FILES) == 0:
pass
elif len(request.FILES) == 1:
python3: Fix usage of .keys()/.values() to handle iterators. This fixes the places where we use the result of .keys(), .items(), and .values() that wouldn't work with an iterator to wrap them with list().
2016-01-25 01:27:18 +01:00
user_file = list(request.FILES.values())[0]
Refactor: Change upload_avatar_image to accept two user profiles. In this commit we just change the upload_avatar_image function to accept two user_profiles acting_user_profile and target_user_profile. Basically email param is dropped for a target_user_profile so that avatar's could be moved lateron to user id based storage.
2017-03-02 16:21:46 +01:00
upload_avatar_image(user_file, user_profile, bot)
Move users views into their own file.
2015-11-24 05:26:33 +01:00
avatar_source = UserProfile.AVATAR_FROM_USER
Bump user_profile.avatar_version when we change avatars. We have a field called user_profile.avatar_version that will track avatar versions and be used tactically in avatar urls to get browsers to refresh their caches (in future commits). This commit bumps the avatar version when we update avatars. We do this in do_change_avatar_fields(), which was do_change_avatar_source() before this change. Adarsh did the initial work here, and Steve Howell (showell) also made changes.
2017-01-28 19:05:20 +01:00
do_change_avatar_fields(bot, avatar_source)
Move users views into their own file.
2015-11-24 05:26:33 +01:00
else:
[i18n] Make error messages translatable. Make all strings passing through `json_error` and `JsonableError` translatable. Fixes #727
2016-05-25 15:02:02 +02:00
return json_error(_("You may only upload one file at a time"))
Move users views into their own file.
2015-11-24 05:26:33 +01:00
json_result = dict(
full_name=bot.full_name,
avatar_url=avatar_url(bot),
Add bot services to page_params. This is the first step for allowing users to edit a bot's service entries, name the outgoing webhook configuration entries. The chosen data structures allow for a future with multiple services per bot; right now, only one service per bot is supported.
2018-01-16 20:34:12 +01:00
service_interface = service_interface,
service_payload_url = service_payload_url,
backend: Add bot config data patching.
2018-01-30 19:21:13 +01:00
config_data = config_data,
Move users views into their own file.
2015-11-24 05:26:33 +01:00
default_sending_stream=get_stream_name(bot.default_sending_stream),
default_events_register_stream=get_stream_name(bot.default_events_register_stream),
default_all_public_streams=bot.default_all_public_streams,
)
views/users.py: Allow changing bot's owner. Modify the `patch_bot_backend()` route to support changing the bot owner.
2017-02-24 06:36:54 +01:00
# Don't include the bot owner in case it is not set.
# Default bots have no owner.
if bot.bot_owner is not None:
json_result['bot_owner'] = bot.bot_owner.email
Move users views into their own file.
2015-11-24 05:26:33 +01:00
return json_success(json_result)
decorator: Refactor @require_non_guest_human_user decorator. Rename @require_non_guest_human_user to @require_member_or_admin. This is a refactor commit prior to introduction of Administrator Bots.
2019-06-18 16:43:22 +02:00
@require_member_or_admin
Move users views into their own file.
2015-11-24 05:26:33 +01:00
@has_request_variables
/json/bots: Replace email with user_id in API to generate bot_api_key. Fixes #3643.
2018-05-15 18:13:07 +02:00
def regenerate_bot_api_key(request: HttpRequest, user_profile: UserProfile, bot_id: int) -> HttpResponse:
users: Replace duplication with generic func to validate bot id. This adds a common function `access_bot_by_id` to access bot id within same realm. It probably fixes some corner case bugs where we weren't checking for deactivated bots when regenerating API keys.
2018-05-28 20:42:31 +02:00
bot = access_bot_by_id(user_profile, bot_id)
Move users views into their own file.
2015-11-24 05:26:33 +01:00
actions: Make do_regenerate_api_key return the new key. This way, the new API key can be fetched without needing to read it from the UserProfile object.
2018-08-10 21:03:32 +02:00
new_api_key = do_regenerate_api_key(bot, user_profile)
Move users views into their own file.
2015-11-24 05:26:33 +01:00
json_result = dict(
actions: Make do_regenerate_api_key return the new key. This way, the new API key can be fetched without needing to read it from the UserProfile object.
2018-08-10 21:03:32 +02:00
api_key=new_api_key
Move users views into their own file.
2015-11-24 05:26:33 +01:00
)
return json_success(json_result)
decorator: Refactor @require_non_guest_human_user decorator. Rename @require_non_guest_human_user to @require_member_or_admin. This is a refactor commit prior to introduction of Administrator Bots.
2019-06-18 16:43:22 +02:00
@require_member_or_admin
Move users views into their own file.
2015-11-24 05:26:33 +01:00
@has_request_variables
mypy: Use Python 3 type syntax in 'views/users.py'.
2017-12-25 12:02:23 +01:00
def add_bot_backend(
request: HttpRequest, user_profile: UserProfile,
views: Change use of typing.Text to str. This is the first part of a general migration of our typing codebase to use the simpler `str` for strings.
2018-04-24 03:47:28 +02:00
full_name_raw: str=REQ("full_name"), short_name_raw: str=REQ("short_name"),
mypy: Use Python 3 type syntax in 'views/users.py'.
2017-12-25 12:02:23 +01:00
bot_type: int=REQ(validator=check_int, default=UserProfile.DEFAULT_BOT),
views: Change use of typing.Text to str. This is the first part of a general migration of our typing codebase to use the simpler `str` for strings.
2018-04-24 03:47:28 +02:00
payload_url: Optional[str]=REQ(validator=check_url, default=""),
service_name: Optional[str]=REQ(default=None),
config_data: Dict[str, str]=REQ(default={},
validator=check_dict(value_validator=check_string)),
mypy: Use Python 3 type syntax in 'views/users.py'.
2017-12-25 12:02:23 +01:00
interface_type: int=REQ(validator=check_int, default=Service.GENERIC),
views: Change use of typing.Text to str. This is the first part of a general migration of our typing codebase to use the simpler `str` for strings.
2018-04-24 03:47:28 +02:00
default_sending_stream_name: Optional[str]=REQ('default_sending_stream', default=None),
default_events_register_stream_name: Optional[str]=REQ('default_events_register_stream',
default=None),
mypy: Use Python 3 type syntax in 'views/users.py'.
2017-12-25 12:02:23 +01:00
default_all_public_streams: Optional[bool]=REQ(validator=check_bool, default=None)
) -> HttpResponse:
bots: Add validation to add_bot_backend to prevent empty short names Fixes #5487
2017-06-21 13:46:58 +02:00
short_name = check_short_name(short_name_raw)
bots: Allow incoming webhook bots to be configured via /bots. Without disturbing the flow of the existing code for configuring embedded bots too much, we now use the config_options feature to allow incoming webhook type bot to be configured via. the "/bots" endpoint of the API.
2019-08-18 12:56:21 +02:00
if bot_type != UserProfile.INCOMING_WEBHOOK_BOT:
service_name = service_name or short_name
Move users views into their own file.
2015-11-24 05:26:33 +01:00
short_name += "-bot"
users: Verify full names explicitly in user creation. This fixes an issue where users could be created with an invalid name (introduced only a couple commits ago when we added character set restrictions).
2017-02-08 04:51:01 +01:00
full_name = check_full_name(full_name_raw)
settings: Add FAKE_EMAIL_DOMAIN setting. Fixes #9401. This adds a FAKE_EMAIL_DOMAIN setting, which should be used if EXTERNAL_HOST is not a valid domain, and something else is needed to form bot and dummy user emails (if email visibility is turned off). It defaults to EXTERNAL_HOST. get_fake_email_domain() should be used to get this value. It validates that it's correctly set - that it can be used to form valid emails. If it's not set correctly, an exception is raised. This is the right approach, because it's undesirable to have the server seemingly peacefully operating with that setting misconfigured, as that could mask some hidden sneaky bugs due to UserProfiles with invalid emails, which would blow up the moment some code that does validate the emails is called.
2019-08-30 00:21:36 +02:00
try:
email = '%s@%s' % (short_name, user_profile.realm.get_bot_domain())
except InvalidFakeEmailDomain:
return json_error(_("Can't create bots until FAKE_EMAIL_DOMAIN is correctly configured.\n"
"Please contact your server administrator."))
Move users views into their own file.
2015-11-24 05:26:33 +01:00
form = CreateUserForm({'full_name': full_name, 'email': email})
Embedded bots: Add support for creating embedded bots via the API. Adds support to add "Embedded bot" Service objects. This service handles every embedded bot. Extracted from "Embedded bots: Add support to add embedded bots from UI" by Robert Honig. Tweaked by tabbott to be disabled by default.
2017-07-14 16:44:07 +02:00
if bot_type == UserProfile.EMBEDDED_BOT:
if not settings.EMBEDDED_BOTS_ENABLED:
return json_error(_("Embedded bots are not enabled."))
if service_name not in [bot.name for bot in EMBEDDED_BOTS]:
return json_error(_("Invalid embedded bot name."))
Move users views into their own file.
2015-11-24 05:26:33 +01:00
if not form.is_valid():
# We validate client-side as well
[i18n] Make error messages translatable. Make all strings passing through `json_error` and `JsonableError` translatable. Fixes #727
2016-05-25 15:02:02 +02:00
return json_error(_('Bad name or username'))
Move users views into their own file.
2015-11-24 05:26:33 +01:00
try:
email: Convert accounts code to use delivery_email. A key part of this is the new helper, get_user_by_delivery_email. Its verbose name is important for clarity; it should help avoid blind copy-pasting of get_user (which we'll also want to rename). Unfortunately, it requires detailed understanding of the context to figure out which one to use; each is used in about half of call sites. Another important note is that this PR doesn't migrate get_user calls in the tests except where not doing so would cause the tests to fail. This probably deserves a follow-up refactor to avoid bugs here.
2018-12-07 00:05:57 +01:00
get_user_by_delivery_email(email, user_profile.realm)
[i18n] Make error messages translatable. Make all strings passing through `json_error` and `JsonableError` translatable. Fixes #727
2016-05-25 15:02:02 +02:00
return json_error(_("Username already in use"))
Move users views into their own file.
2015-11-24 05:26:33 +01:00
except UserProfile.DoesNotExist:
pass
bots: Prevent bots from having duplicate full names. Bots are not allowed to use the same name as other users in the realm (either bot or human). This is kind of a big commit, but I wanted to combine the post/patch (aka add/edit) checks into one commit, since it's a change in policy that affects both codepaths. A lot of the noise is in tests. We had good coverage on the previous code, including some places like event testing where we were expediently not bothering to use different names for different bots in some longer tests. And then of course I test some new scenarios that are relevant with the new policy. There are two new functions: check_bot_name_available: very simple Django query check_change_bot_full_name: this diverges from the 3-line check_change_full_name, where the latter is still used for the "humans" use case And then we just call those in appropriate places. Note that there is still a loophole here where you can get two bots with the same name if you reactivate a bot named Fred that was inactive when the second bot named Fred was created. Also, we don't attempt to fix historical data. So this commit shouldn't be considered any kind of lockdown, it's just meant to help people from inadvertently creating two bots of the same name where they don't intend to. For more context, we are continuing to allow two human users in the same realm to have the same full name, and our code should generally be tolerant of that possibility. (A good example is our new mention syntax, which disambiguates same-named people using ids.) It's also worth noting that our web app client doesn't try to scrub full_name from its payload in situations where the user has actually only modified other fields in the "Edit bot" UI. Starting here we just handle this on the server, since it's easy to fix there, and even if we fixed it in the web app, there's no guarantee that other clients won't be just as brute force. It wasn't exactly broken before, but we'd needlessly write rows to audit tables. Fixes #10509
2018-09-27 19:25:18 +02:00
check_bot_name_available(
realm_id=user_profile.realm_id,
full_name=full_name,
)
org settings: Add setting to prevent users from adding bots. Fixes: #7908.
2018-01-29 16:10:54 +01:00
check_bot_creation_policy(user_profile, bot_type)
settings: Limit the creation of generic bots. This commit adds a setting to limit creation of generic bots to admins for realms that want that restriction. (Generic bots, apart from being considered spammy on some realms, have less locked down permissions than webhook bots). Fixes #7066.
2017-11-24 16:24:24 +01:00
check_valid_bot_type(user_profile, bot_type)
bots: Add UI to select Slack compatible interface for webhooks. interface_type select menu will be used to choose the interface for outgoing webhooks. It will be displayed only when the selected bot type is OUTGOING WEBHOOK type. The default value is GENERIC interface type (1).
2017-07-03 18:35:12 +02:00
check_valid_interface_type(interface_type)
Move users views into their own file.
2015-11-24 05:26:33 +01:00
if len(request.FILES) == 0:
avatar_source = UserProfile.AVATAR_FROM_GRAVATAR
elif len(request.FILES) != 1:
[i18n] Make error messages translatable. Make all strings passing through `json_error` and `JsonableError` translatable. Fixes #727
2016-05-25 15:02:02 +02:00
return json_error(_("You may only upload one file at a time"))
Move users views into their own file.
2015-11-24 05:26:33 +01:00
else:
avatar_source = UserProfile.AVATAR_FROM_USER
Annotate zerver/views/users.py.
2016-06-05 00:47:14 +02:00
default_sending_stream = None
if default_sending_stream_name is not None:
users: Use access_stream_by_name to access streams. This simplifies the code somewhat and adds greater consistency of error messages.
2017-01-30 03:17:42 +01:00
(default_sending_stream, ignored_rec, ignored_sub) = access_stream_by_name(
user_profile, default_sending_stream_name)
Move users views into their own file.
2015-11-24 05:26:33 +01:00
Annotate zerver/views/users.py.
2016-06-05 00:47:14 +02:00
default_events_register_stream = None
if default_events_register_stream_name is not None:
users: Use access_stream_by_name to access streams. This simplifies the code somewhat and adds greater consistency of error messages.
2017-01-30 03:17:42 +01:00
(default_events_register_stream, ignored_rec, ignored_sub) = access_stream_by_name(
user_profile, default_events_register_stream_name)
Move users views into their own file.
2015-11-24 05:26:33 +01:00
bots: Allow incoming webhook bots to be configured via /bots. Without disturbing the flow of the existing code for configuring embedded bots too much, we now use the config_options feature to allow incoming webhook type bot to be configured via. the "/bots" endpoint of the API.
2019-08-18 12:56:21 +02:00
if bot_type in (UserProfile.INCOMING_WEBHOOK_BOT, UserProfile.EMBEDDED_BOT) and service_name:
bot_config: Have check_valid_bot_config also take the bot_type. This is a prep commit to allow us to validate user provided bot config data using the same function for incoming webhook type bots alongside embedded bots (as opposed to creating a new function just for incoming webhook bots).
2019-08-17 19:06:51 +02:00
check_valid_bot_config(bot_type, service_name, config_data)
Display error when creating embedded bot with incorrect config data. "incorrect" here means rejected by a bot's validate_config() method. A common scenario for this is validating API keys before the bot is created. If validate_config() fails, the bot will not be created.
2018-02-13 11:47:40 +01:00
CVE-2019-18933: Fix insecure account creation via social authentication. A bug in Zulip's new user signup process meant that users who registered their account using social authentication (e.g. GitHub or Google SSO) in an organization that also allows password authentication could have their personal API key stolen by an unprivileged attacker, allowing nearly full access to the user's account. Zulip versions between 1.7.0 and 2.0.6 were affected. This commit fixes the original bug and also contains a database migration to fix any users with corrupt `password` fields in the database as a result of the bug. Out of an abundance of caution (and to protect the users of any installations that delay applying this commit), the migration also resets the API keys of any users where Zulip's logs cannot prove the user's API key was not previously stolen via this bug. Resetting those API keys will be inconvenient for users: * Users of the Zulip mobile and terminal apps whose API keys are reset will be logged out and need to login again. * Users using their personal API keys for any other reason will need to re-fetch their personal API key. We discovered this bug internally and don't believe it was disclosed prior to our publishing it through this commit. Because the algorithm for determining which users might have been affected is very conservative, many users who were never at risk will have their API keys reset by this migration. To avoid this on self-hosted installations that have always used e.g. LDAP authentication, we skip resetting API keys on installations that don't have password authentication enabled. System administrators on installations that used to have email authentication enabled, but no longer do, should temporarily enable EmailAuthBackend before applying this migration. The migration also records which users had their passwords or API keys reset in the usual RealmAuditLog table.
2019-11-18 07:57:36 +01:00
bot_profile = do_create_user(email=email, password=None,
Move users views into their own file.
2015-11-24 05:26:33 +01:00
realm=user_profile.realm, full_name=full_name,
Remove `active` parameter from `do_create_user()`. Almost all callers to do_create_user were trying to create active users, except for one test. The active=False codepath was kind of broken (things like sending welcome messages had sort of undefined behavior there), so instead of trying to maintain it, we just update the one test (`test_people`) to flip the `is_active` flag manually. Fixes #7197
2017-10-28 19:22:02 +02:00
short_name=short_name,
bots: Add UI for creating different types of bot. Add 'Type of bot' option for bots by adding dropdown option in settings->"Your bots". For now, this allows creating incoming webhook bots in addition to default bots. This will enable users to add a bot as an incoming webhook (in addition to add full-featured bots). With various minor tweaks and cleanups by tabbott. Fixes #2186.
2017-05-30 19:19:48 +02:00
bot_type=bot_type,
Move users views into their own file.
2015-11-24 05:26:33 +01:00
bot_owner=user_profile,
avatar_source=avatar_source,
default_sending_stream=default_sending_stream,
default_events_register_stream=default_events_register_stream,
default_all_public_streams=default_all_public_streams)
Refactor: Change upload_avatar_image to accept two user profiles. In this commit we just change the upload_avatar_image function to accept two user_profiles acting_user_profile and target_user_profile. Basically email param is dropped for a target_user_profile so that avatar's could be moved lateron to user id based storage.
2017-03-02 16:21:46 +01:00
if len(request.FILES) == 1:
user_file = list(request.FILES.values())[0]
upload_avatar_image(user_file, user_profile, bot_profile)
Outgoing webhook System: first Iteration of outgoing webhook UI.
2017-06-10 18:43:31 +02:00
Embedded bots: Add support for creating embedded bots via the API. Adds support to add "Embedded bot" Service objects. This service handles every embedded bot. Extracted from "Embedded bots: Add support to add embedded bots from UI" by Robert Honig. Tweaked by tabbott to be disabled by default.
2017-07-14 16:44:07 +02:00
if bot_type in (UserProfile.OUTGOING_WEBHOOK_BOT, UserProfile.EMBEDDED_BOT):
bots: Allow incoming webhook bots to be configured via /bots. Without disturbing the flow of the existing code for configuring embedded bots too much, we now use the config_options feature to allow incoming webhook type bot to be configured via. the "/bots" endpoint of the API.
2019-08-18 12:56:21 +02:00
assert(isinstance(service_name, str))
bot services: Rename add_outgoing_webhook_service to add_service.
2017-10-25 20:13:11 +02:00
add_service(name=service_name,
user_profile=bot_profile,
base_url=payload_url,
interface=interface_type,
utils: Move random API key generator as generate_api_key. random_api_key, the function we use to generate random tokens for API keys, has been moved to zerver/lib/utils.py because it's used in more parts of the codebase (apart from user creation), and having it in zerver/lib/create_user.py was prone to cyclic dependencies. The function has also been renamed to generate_api_key to have an imperative name, that makes clearer what it does.
2018-08-01 11:18:37 +02:00
token=generate_api_key())
Outgoing webhook System: first Iteration of outgoing webhook UI.
2017-06-10 18:43:31 +02:00
bots: Allow incoming webhook bots to be configured via /bots. Without disturbing the flow of the existing code for configuring embedded bots too much, we now use the config_options feature to allow incoming webhook type bot to be configured via. the "/bots" endpoint of the API.
2019-08-18 12:56:21 +02:00
if bot_type == UserProfile.INCOMING_WEBHOOK_BOT and service_name:
set_bot_config(bot_profile, "integration_id", service_name)
if bot_type in (UserProfile.INCOMING_WEBHOOK_BOT, UserProfile.EMBEDDED_BOT):
embedded bots: Add config data UI. This adds UI fields in the bot settings for specifying configuration values like API keys for a bot. The names and placeholder values for each bot's config fields are fetched from the bot's <bot>.conf template file in the zulip_bots package. This also adds giphy and followup as embedded bots.
2018-01-07 19:24:14 +01:00
for key, value in config_data.items():
set_bot_config(bot_profile, key, value)
Send an event to bot owners when a bot is created.
2018-01-16 20:19:57 +01:00
notify_created_bot(bot_profile)
users: Get all API keys via wrapper method. Now reading API keys from a user is done with the get_api_key wrapper method, rather than directly fetching it from the user object. Also, every place where an action should be done for each API key is now using get_all_api_keys. This method returns for the moment a single-item list, containing the specified user's API key. This commit is the first step towards allowing users have multiple API keys.
2018-08-01 10:53:40 +02:00
api_key = get_api_key(bot_profile)
Move users views into their own file.
2015-11-24 05:26:33 +01:00
json_result = dict(
users: Get all API keys via wrapper method. Now reading API keys from a user is done with the get_api_key wrapper method, rather than directly fetching it from the user object. Also, every place where an action should be done for each API key is now using get_all_api_keys. This method returns for the moment a single-item list, containing the specified user's API key. This commit is the first step towards allowing users have multiple API keys.
2018-08-01 10:53:40 +02:00
api_key=api_key,
lint: Clean up E126 PEP-8 rule.
2017-01-24 07:06:13 +01:00
avatar_url=avatar_url(bot_profile),
default_sending_stream=get_stream_name(bot_profile.default_sending_stream),
default_events_register_stream=get_stream_name(bot_profile.default_events_register_stream),
default_all_public_streams=bot_profile.default_all_public_streams,
Move users views into their own file.
2015-11-24 05:26:33 +01:00
)
return json_success(json_result)
decorator: Refactor @require_non_guest_human_user decorator. Rename @require_non_guest_human_user to @require_member_or_admin. This is a refactor commit prior to introduction of Administrator Bots.
2019-06-18 16:43:22 +02:00
@require_member_or_admin
zerver/views: Use Python 3 syntax for typing. Edited by tabbott to remove state.py and streams.py, because of problems with the original PR's changes, and wrap some long lines.
2017-11-27 09:28:57 +01:00
def get_bots_backend(request: HttpRequest, user_profile: UserProfile) -> HttpResponse:
Move users views into their own file.
2015-11-24 05:26:33 +01:00
bot_profiles = UserProfile.objects.filter(is_bot=True, is_active=True,
bot_owner=user_profile)
bot_profiles = bot_profiles.select_related('default_sending_stream', 'default_events_register_stream')
bot_profiles = bot_profiles.order_by('date_joined')
zerver/views: Use Python 3 syntax for typing. Edited by tabbott to remove state.py and streams.py, because of problems with the original PR's changes, and wrap some long lines.
2017-11-27 09:28:57 +01:00
def bot_info(bot_profile: UserProfile) -> Dict[str, Any]:
Move users views into their own file.
2015-11-24 05:26:33 +01:00
default_sending_stream = get_stream_name(bot_profile.default_sending_stream)
default_events_register_stream = get_stream_name(bot_profile.default_events_register_stream)
users: Get all API keys via wrapper method. Now reading API keys from a user is done with the get_api_key wrapper method, rather than directly fetching it from the user object. Also, every place where an action should be done for each API key is now using get_all_api_keys. This method returns for the moment a single-item list, containing the specified user's API key. This commit is the first step towards allowing users have multiple API keys.
2018-08-01 10:53:40 +02:00
# Bots are supposed to have only one API key, at least for now.
# Therefore we can safely asume that one and only valid API key will be
# the first one.
api_key = get_api_key(bot_profile)
Move users views into their own file.
2015-11-24 05:26:33 +01:00
return dict(
username=bot_profile.email,
full_name=bot_profile.full_name,
users: Get all API keys via wrapper method. Now reading API keys from a user is done with the get_api_key wrapper method, rather than directly fetching it from the user object. Also, every place where an action should be done for each API key is now using get_all_api_keys. This method returns for the moment a single-item list, containing the specified user's API key. This commit is the first step towards allowing users have multiple API keys.
2018-08-01 10:53:40 +02:00
api_key=api_key,
Move users views into their own file.
2015-11-24 05:26:33 +01:00
avatar_url=avatar_url(bot_profile),
default_sending_stream=default_sending_stream,
default_events_register_stream=default_events_register_stream,
default_all_public_streams=bot_profile.default_all_public_streams,
)
return json_success({'bots': list(map(bot_info, bot_profiles))})
Support client_gravatar in /json/users endpoint.
2017-10-10 04:51:04 +02:00
@has_request_variables
mypy: Use Python 3 type syntax in 'views/users.py'.
2017-12-25 12:02:23 +01:00
def get_members_backend(request: HttpRequest, user_profile: UserProfile,
users: Refactor get_members_backend endpoint to use get_raw_user_data. Modify the get_raw_user_data method for use by the /users API endpoint and then modify the /users endpoint to use it.
2019-10-20 19:15:44 +02:00
include_custom_profile_fields: bool=REQ(validator=check_bool,
default=False),
client_gravatar: bool=REQ(validator=check_bool, default=False)
) -> HttpResponse:
Support client_gravatar in /json/users endpoint.
2017-10-10 04:51:04 +02:00
'''
The client_gravatar field here is set to True if clients can compute
their own gravatars, which saves us bandwidth. We want to eventually
make this the default behavior, but we have old clients that expect
the server to compute this for us.
'''
Move users views into their own file.
2015-11-24 05:26:33 +01:00
realm = user_profile.realm
org_settings: Display delivery_email to admins always is admin UI. Mostly rewritten by Tim Abbott to ensure it correctly implements the desired security model. Administrators should have access to users' real email address so that they can contact users out-of-band.
2018-08-08 23:21:14 +02:00
if realm.email_address_visibility == Realm.EMAIL_ADDRESS_VISIBILITY_ADMINS:
# If email addresses are only available to administrators,
# clients cannot compute gravatars, so we force-set it to false.
client_gravatar = False
users: Refactor get_members_backend endpoint to use get_raw_user_data. Modify the get_raw_user_data method for use by the /users API endpoint and then modify the /users endpoint to use it.
2019-10-20 19:15:44 +02:00
members = get_raw_user_data(realm,
user_profile=user_profile,
client_gravatar=client_gravatar,
include_custom_profile_fields=include_custom_profile_fields)
return json_success({'members': members.values()})
Move create_user_backend into zerver.views.users. Commit aa33a0da moved users views into their own file, but missed this one.
2016-01-12 15:40:40 +01:00
@require_realm_admin
@has_request_variables
mypy: Use Python 3 type syntax in 'views/users.py'.
2017-12-25 12:02:23 +01:00
def create_user_backend(request: HttpRequest, user_profile: UserProfile,
views: Change use of typing.Text to str. This is the first part of a general migration of our typing codebase to use the simpler `str` for strings.
2018-04-24 03:47:28 +02:00
email: str=REQ(), password: str=REQ(), full_name_raw: str=REQ("full_name"),
short_name: str=REQ()) -> HttpResponse:
users: Verify full names explicitly in user creation. This fixes an issue where users could be created with an invalid name (introduced only a couple commits ago when we added character set restrictions).
2017-02-08 04:51:01 +01:00
full_name = check_full_name(full_name_raw)
Move create_user_backend into zerver.views.users. Commit aa33a0da moved users views into their own file, but missed this one.
2016-01-12 15:40:40 +01:00
form = CreateUserForm({'full_name': full_name, 'email': email})
if not form.is_valid():
[i18n] Make error messages translatable. Make all strings passing through `json_error` and `JsonableError` translatable. Fixes #727
2016-05-25 15:02:02 +02:00
return json_error(_('Bad name or username'))
Move create_user_backend into zerver.views.users. Commit aa33a0da moved users views into their own file, but missed this one.
2016-01-12 15:40:40 +01:00
# Check that the new user's email address belongs to the admin's realm
# (Since this is an admin API, we don't require the user to have been
# invited first.)
realm = user_profile.realm
models: Make email_allowed_for_realm raise exception.
2018-03-14 12:54:05 +01:00
try:
email_allowed_for_realm(email, user_profile.realm)
except DomainNotAllowedForRealmError:
i18n: Fix a last few strings mentioning realms.
2018-03-08 02:05:50 +01:00
return json_error(_("Email '%(email)s' not allowed in this organization") %
{'email': email})
models: Do the check for disposable email in email_allowed_for_realm.
2018-03-14 13:25:26 +01:00
except DisposableEmailError:
users: Fix error string for disposable email addresses. This should not use the term "realm", and doesn't need to name the organization, either.
2018-03-17 00:49:29 +01:00
return json_error(_("Disposable email addresses are not allowed in this organization"))
signup: Prevent users from signing up with email containing +.
2018-06-20 13:08:07 +02:00
except EmailContainsPlusError:
return json_error(_("Email addresses containing + are not allowed."))
emails: Add backend for disallowing disposable email addresses.
2018-03-05 20:19:07 +01:00
Move create_user_backend into zerver.views.users. Commit aa33a0da moved users views into their own file, but missed this one.
2016-01-12 15:40:40 +01:00
try:
email: Convert accounts code to use delivery_email. A key part of this is the new helper, get_user_by_delivery_email. Its verbose name is important for clarity; it should help avoid blind copy-pasting of get_user (which we'll also want to rename). Unfortunately, it requires detailed understanding of the context to figure out which one to use; each is used in about half of call sites. Another important note is that this PR doesn't migrate get_user calls in the tests except where not doing so would cause the tests to fail. This probably deserves a follow-up refactor to avoid bugs here.
2018-12-07 00:05:57 +01:00
get_user_by_delivery_email(email, user_profile.realm)
[i18n] Make error messages translatable. Make all strings passing through `json_error` and `JsonableError` translatable. Fixes #727
2016-05-25 15:02:02 +02:00
return json_error(_("Email '%s' already in use") % (email,))
Move create_user_backend into zerver.views.users. Commit aa33a0da moved users views into their own file, but missed this one.
2016-01-12 15:40:40 +01:00
except UserProfile.DoesNotExist:
pass
actions: Call send_initial_pms from process_new_human_user.
2017-10-25 21:48:37 +02:00
do_create_user(email, password, realm, full_name, short_name)
Move create_user_backend into zerver.views.users. Commit aa33a0da moved users views into their own file, but missed this one.
2016-01-12 15:40:40 +01:00
return json_success()
Move get_profile_backend to views/users.py. Fixes: #2710.
2016-12-15 12:22:24 +01:00
zerver/views: Use Python 3 syntax for typing. Edited by tabbott to remove state.py and streams.py, because of problems with the original PR's changes, and wrap some long lines.
2017-11-27 09:28:57 +01:00
def generate_client_id() -> str:
Move get_profile_backend to views/users.py. Fixes: #2710.
2016-12-15 12:22:24 +01:00
return generate_random_token(32)
zerver/views: Use Python 3 syntax for typing. Edited by tabbott to remove state.py and streams.py, because of problems with the original PR's changes, and wrap some long lines.
2017-11-27 09:28:57 +01:00
def get_profile_backend(request: HttpRequest, user_profile: UserProfile) -> HttpResponse:
Move get_profile_backend to views/users.py. Fixes: #2710.
2016-12-15 12:22:24 +01:00
result = dict(pointer = user_profile.pointer,
client_id = generate_client_id(),
max_message_id = -1,
user_id = user_profile.id,
api: Add avatar URL to the GET /profile endpoint. This endpoint is legacy in a lot of ways, but it seems reasonable that it should have these data.
2019-09-27 21:07:03 +02:00
avatar_url = avatar_url(user_profile),
Move get_profile_backend to views/users.py. Fixes: #2710.
2016-12-15 12:22:24 +01:00
full_name = user_profile.full_name,
email = user_profile.email,
is_bot = user_profile.is_bot,
is_admin = user_profile.is_realm_admin,
short_name = user_profile.short_name)
users: Send custom profile fields with the /profile endpoint.
2019-10-25 20:28:53 +02:00
if not user_profile.is_bot:
custom_profile_field_values = user_profile.customprofilefieldvalue_set.all()
profile_data = dict() # type: Dict[int, Dict[str, Any]]
for profile_field in custom_profile_field_values:
if profile_field.field.is_renderable():
profile_data[profile_field.field_id] = {
"value": profile_field.value,
"rendered_value": profile_field.rendered_value
}
else:
profile_data[profile_field.field_id] = {
"value": profile_field.value
}
result["profile_data"] = profile_data
Move get_profile_backend to views/users.py. Fixes: #2710.
2016-12-15 12:22:24 +01:00
messages = Message.objects.filter(usermessage__user_profile=user_profile).order_by('-id')[:1]
if messages:
result['max_message_id'] = messages[0].id
return json_success(result)
Add /authors page. Contributor visualization showing the avatar, user name and number of commits for each contributors. The JSON data would be updated upon deployment, triggered by the `update-prod-static` script.
2017-01-06 18:56:36 +01:00
zerver/views: Use Python 3 syntax for typing. Edited by tabbott to remove state.py and streams.py, because of problems with the original PR's changes, and wrap some long lines.
2017-11-27 09:28:57 +01:00
def team_view(request: HttpRequest) -> HttpResponse:
settings: Unset STATIC_ROOT in development. Django’s default FileSystemFinder disallows STATICFILES_DIRS from containing STATIC_ROOT (by raising an ImproperlyConfigured exception), because STATIC_ROOT is supposed to be the result of collecting all the static files in the project, not one of the potentially many sources of static files. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-07-17 02:29:08 +02:00
with open(static_path('generated/github-contributors.json')) as f:
json: Replace most use of simplejson with json. This is progress towards removing simplejson as a dependency.
2017-10-12 07:54:25 +02:00
data = ujson.load(f)
Add /authors page. Contributor visualization showing the avatar, user name and number of commits for each contributors. The JSON data would be updated upon deployment, triggered by the `update-prod-static` script.
2017-01-06 18:56:36 +01:00
users: Change render_to_response to render. Related to #4093
2017-03-17 06:32:36 +01:00
return render(
request,
landing-page: Extract /team/ from /about/. This extracts and creates a /team/ page using the existing 'team.html' template and applying the why-page styling to it.
2017-10-31 19:03:08 +01:00
'zerver/team.html',
team: Move contributors_list into page_params. This sidesteps tricky escaping issues, and will make it easier to build a strict Content-Security-Policy. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-09-13 01:38:24 +02:00
context={
'page_params': {
'contrib': data['contrib'],
},
'date': data['date'],
},
Add /authors page. Contributor visualization showing the avatar, user name and number of commits for each contributors. The JSON data would be updated upon deployment, triggered by the `update-prod-static` script.
2017-01-06 18:56:36 +01:00
)