closed-social
/
mastodon
3
0
Fork 2
Code Issues 5 Pull Requests 0 Projects 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3279 Commits
4 Branches
567 MiB
Tree: c207b4bb33
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'c207b4bb33'
${ noResults }
mastodon/app/models/user.rb

103 lines
3.3 KiB
Raw Normal View History

Fix rubocop issues, introduce usage of frozen literal to improve performance
7 years ago
annotate models (#2697) * add annotate to Gemfile * rails g annotate:install * configure annotate_models * add schema info to models * fix rubocop to add frozen_string_literal
7 years ago
Filter languages with opt out (#3175) * Remove allowed_languages and add filtered_languages * Use filtered_languages instead of allowed_languages
7 years ago
annotate models (#2697) * add annotate to Gemfile * rails g annotate:install * configure annotate_models * add schema info to models * fix rubocop to add frozen_string_literal
7 years ago
Fix rubocop issues, introduce usage of frozen literal to improve performance
7 years ago
Upgrade to Rails 5.0.0.1
7 years ago
Extend rails-settings-cached to merge db-saved hash values with defaults
7 years ago
Specs for cleanup workers (#3235) * Add spec files for feed and media cleanup workers * Add coverage for feed and media cleanup schedulers * Clean up feed and media cleanup workers
7 years ago
Migrate from ledermann/rails-settings to rails-settings-cached which allows global settings with YAML-defined defaults. Add admin page for editing global settings. Add "site_description" setting that would show as a paragraph on the frontpage
7 years ago
Added optional two-factor authentication
7 years ago
Add recovery code support for two-factor auth (#1773) * Add recovery code support for two-factor auth When users enable two-factor auth, the app now generates ten single-use recovery codes. Users are encouraged to print the codes and store them in a safe place. The two-factor prompt during login now accepts both OTP codes and recovery codes. The two-factor settings UI allows users to regenerated lost recovery codes. Users who have set up two-factor auth prior to this feature being added can use it to generate recovery codes for the first time. Fixes #563 and fixes #987 * Set OTP_SECRET in test enviroment * add missing .html to view file names
7 years ago
Removing grape and adding devise
8 years ago
Required foreign keys (#2003) * Add `required: true` option to foreign column * Fixes NoMethodError ``` > Favourite.new.valid? NoMethodError: undefined method `reblog?' for nil:NilClass ```
7 years ago
Customizing devise views and controllers
8 years ago
Removing grape and adding devise
8 years ago
Conditional validations no longer accept strings for if/unless (#3124)
7 years ago
Fix db:seed - only run some validations when the field was changed (#3592) * Fix db:seed - only run some validations when the field was changed * Add tests
6 years ago
Bind oauth applications to users
8 years ago
Order by symbol value (#3077)
7 years ago
Add digest e-mails
7 years ago
Specs for cleanup workers (#3235) * Add spec files for feed and media cleanup workers * Add coverage for feed and media cleanup schedulers * Clean up feed and media cleanup workers
7 years ago
Add coverage for ReportFilter and AccountFilter (#3236)
7 years ago
Adding user settings (model and mailer), no form yet
7 years ago
Improve allowed language handling (#2897) * Dont allow empty value in user allowed languages * Sanitize language input to reject blank values in array
7 years ago
Update Rails to version 5.1.1 (#3121) * Update rails to version 5.1.1 * Run `rails app:update` * Remove the override of polymorphic activity relationship * Silence warning about otp_secret attribute being unknown to rails * We will only introduce form_with where we want to use remote data
7 years ago
Admin UI for confirming users (#2245) * Shows confirmed status in list. * Adds ability to confirm users in admin UI. * Added new english translations. * Addresses feedback from #2245. * More feedback.
7 years ago
Add option to disable two factor auth in admin accounts panel. (#2584) * Add option to disable two factor auth in admin accounts panel. Closes #2578 * Add @mjankowski's suggestions. * Moves destroy actions behind User#disable_two_factor! * Adds spec coverage for Admin:TwoFactorAuthenticationsController and User#disable_two_factor!
7 years ago
Add API modifiers to limit returned toots from public/hashtag timelines to only those from local users; Add link to "extended information" to getting started in the UI; Add defaults for posting privacy; Change how publish button looks depending on posting privacy chosen
7 years ago
Allow user to disable the boost confirm dialog in preferences
7 years ago
Add gif auto-play/pause preference This introduces a new per-user preference called "Auto-play animated GIFs", which is enabled by default. When a user disables this setting, gifs in toots become click-to-play. Previews of animated gifs were changed to display the video play button so that users can distinguish them from regular images. This setting also affects account avatars in the detailed account view, which was changed to use the same hover-to-play mechanism that is used for animated avatars in timelines. Fixes #1652
7 years ago
Add preference setting for delete toot modal (#3368) * Set delete_modal preference to true by default * Does not show confirmation modal if delete_modal is false * Add ja translation for preference setting page
7 years ago
Add gif auto-play/pause preference This introduces a new per-user preference called "Auto-play animated GIFs", which is enabled by default. When a user disables this setting, gifs in toots become click-to-play. Previews of animated gifs were changed to display the video play button so that users can distinguish them from regular images. This setting also affects account avatars in the detailed account view, which was changed to use the same hover-to-play mechanism that is used for animated avatars in timelines. Fixes #1652
7 years ago
Improve allowed language handling (#2897) * Dont allow empty value in user allowed languages * Sanitize language input to reject blank values in array
7 years ago
Refactor User and spec (#3431) * Protect send_devise_notification of User * Improve spec for User
7 years ago
Improve allowed language handling (#2897) * Dont allow empty value in user allowed languages * Sanitize language input to reject blank values in array
7 years ago
Filter languages with opt out (#3175) * Remove allowed_languages and add filtered_languages * Use filtered_languages instead of allowed_languages
7 years ago
Improve allowed language handling (#2897) * Dont allow empty value in user allowed languages * Sanitize language input to reject blank values in array
7 years ago
Made some progress
8 years ago
 
  1. # frozen_string_literal: true
  2. # == Schema Information
  3. #
  4. # Table name: users
  5. #
  6. #  id                        :integer          not null, primary key
  7. #  email                     :string           default(""), not null
  8. #  account_id                :integer          not null
  9. #  created_at                :datetime         not null
  10. #  updated_at                :datetime         not null
  11. #  encrypted_password        :string           default(""), not null
  12. #  reset_password_token      :string
  13. #  reset_password_sent_at    :datetime
  14. #  remember_created_at       :datetime
  15. #  sign_in_count             :integer          default(0), not null
  16. #  current_sign_in_at        :datetime
  17. #  last_sign_in_at           :datetime
  18. #  current_sign_in_ip        :inet
  19. #  last_sign_in_ip           :inet
  20. #  admin                     :boolean          default(FALSE)
  21. #  confirmation_token        :string
  22. #  confirmed_at              :datetime
  23. #  confirmation_sent_at      :datetime
  24. #  unconfirmed_email         :string
  25. #  locale                    :string
  26. #  encrypted_otp_secret      :string
  27. #  encrypted_otp_secret_iv   :string
  28. #  encrypted_otp_secret_salt :string
  29. #  consumed_timestep         :integer
  30. #  otp_required_for_login    :boolean
  31. #  last_emailed_at           :datetime
  32. #  otp_backup_codes          :string           is an Array
  33. #  filtered_languages        :string           default([]), not null, is an Array
  34. #
  35. 

  36. class User < ApplicationRecord
  37.   include Settings::Extend
  38.   ACTIVE_DURATION = 14.days
  39. 

  40.   devise :registerable, :recoverable,
  41.          :rememberable, :trackable, :validatable, :confirmable,
  42.          :two_factor_authenticatable, :two_factor_backupable,
  43.          otp_secret_encryption_key: ENV['OTP_SECRET'],
  44.          otp_number_of_backup_codes: 10

  45. 

  46.   belongs_to :account, inverse_of: :user, required: true
  47.   accepts_nested_attributes_for :account
  48. 

  49.   validates :locale, inclusion: I18n.available_locales.map(&:to_s), if: :locale?
  50.   validates :email, email: true, if: :email_changed?
  51. 

  52.   scope :recent,    -> { order(id: :desc) }
  53.   scope :admins,    -> { where(admin: true) }
  54.   scope :confirmed, -> { where.not(confirmed_at: nil) }
  55.   scope :inactive, -> { where(arel_table[:current_sign_in_at].lt(ACTIVE_DURATION.ago)) }
  56.   scope :matches_email, ->(value) { where(arel_table[:email].matches("#{value}%")) }
  57.   scope :with_recent_ip_address, ->(value) { where(arel_table[:current_sign_in_ip].eq(value).or(arel_table[:last_sign_in_ip].eq(value))) }
  58. 

  59.   before_validation :sanitize_languages
  60. 

  61.   # This avoids a deprecation warning from Rails 5.1
  62.   # It seems possible that a future release of devise-two-factor will
  63.   # handle this itself, and this can be removed from our User class.
  64.   attribute :otp_secret
  65. 

  66.   def confirmed?
  67.     confirmed_at.present?
  68.   end
  69. 

  70.   def disable_two_factor!
  71.     self.otp_required_for_login = false
  72.     otp_backup_codes&.clear
  73.     save!
  74.   end
  75. 

  76.   def setting_default_privacy
  77.     settings.default_privacy || (account.locked? ? 'private' : 'public')
  78.   end
  79. 

  80.   def setting_boost_modal
  81.     settings.boost_modal
  82.   end
  83. 

  84.   def setting_delete_modal
  85.     settings.delete_modal
  86.   end
  87. 

  88.   def setting_auto_play_gif
  89.     settings.auto_play_gif
  90.   end
  91. 

  92.   protected
  93. 

  94.   def send_devise_notification(notification, *args)
  95.     devise_mailer.send(notification, self, *args).deliver_later
  96.   end
  97. 

  98.   private
  99. 

  100.   def sanitize_languages
  101.     filtered_languages.reject!(&:blank?)
  102.   end
  103. end