1berry/liberapay.com
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
liberapay.com/liberapay/security/user.py
Changaco e0f03b3b30 rename, clean up, adapt, internationalize
2015-05-26 20:21:57 +02:00

90 lines
2.3 KiB
Python
Raw Blame History

from datetime import timedelta
import uuid
from aspen.utils import utcnow
from liberapay.models.participant import Participant
from liberapay.utils import erase_cookie, set_cookie
SESSION = b'session'
SESSION_REFRESH = timedelta(hours=1)
SESSION_TIMEOUT = timedelta(hours=6)
class User(object):
"""Represent a user of our website.
"""
# Constructors
# ============
def __init__(self, participant=None):
self.participant = participant
@classmethod
def from_session_token(cls, token):
"""Find a participant based on token and return a User.
"""
return cls(Participant.from_session_token(token))
@classmethod
def from_id(cls, userid):
"""Find a participant based on id and return a User.
"""
return cls(Participant.from_id(userid))
@classmethod
def from_username(cls, username):
"""Find a participant based on username and return a User.
"""
return cls(Participant.from_username(username))
def __str__(self):
if self.participant is None:
out = '<Anonymous>'
else:
out = '<User: %s>' % self.participant.username
return out
__repr__ = __str__
# Authentication Helpers
# ======================
def sign_in(self, cookies):
"""Start a new session for the user.
"""
token = uuid.uuid4().hex
expires = utcnow() + SESSION_TIMEOUT
self.participant.update_session(token, expires)
set_cookie(cookies, SESSION, token, expires)
def keep_signed_in(self, cookies):
"""Extend the user's current session.
"""
new_expires = utcnow() + SESSION_TIMEOUT
if new_expires - self.participant.session_expires > SESSION_REFRESH:
self.participant.set_session_expires(new_expires)
token = self.participant.session_token
set_cookie(cookies, SESSION, token, expires=new_expires)
def sign_out(self, cookies):
"""End the user's current session.
"""
self.participant.update_session(None, None)
self.participant = None
erase_cookie(cookies, SESSION)
# Roles
# =====
@property
def ADMIN(self):
return not self.ANON and self.participant.is_admin
@property
def ANON(self):
return self.participant is None
Reference in New Issue View Git Blame Copy Permalink