200 lines
5.6 KiB
Ruby
200 lines
5.6 KiB
Ruby
# == Schema Information
|
|
#
|
|
# Table name: users
|
|
#
|
|
# id :integer not null, primary key
|
|
# confirmation_sent_at :datetime
|
|
# confirmation_token :string
|
|
# confirmed_at :datetime
|
|
# current_sign_in_at :datetime
|
|
# current_sign_in_ip :string
|
|
# discard_reason :string
|
|
# discarded_at :datetime
|
|
# email :string default(""), not null
|
|
# encrypted_password :string default(""), not null
|
|
# failed_attempts :integer default(0), not null
|
|
# last_sign_in_at :datetime
|
|
# last_sign_in_ip :string
|
|
# locked_at :datetime
|
|
# loged_in_with_france_connect :string default(NULL)
|
|
# remember_created_at :datetime
|
|
# reset_password_sent_at :datetime
|
|
# reset_password_token :string
|
|
# sign_in_count :integer default(0), not null
|
|
# siret :string
|
|
# unconfirmed_email :text
|
|
# unlock_token :string
|
|
# created_at :datetime
|
|
# updated_at :datetime
|
|
# administrateur_id :bigint
|
|
# instructeur_id :bigint
|
|
#
|
|
class User < ApplicationRecord
|
|
include EmailSanitizableConcern
|
|
include Discard::Model
|
|
|
|
enum loged_in_with_france_connect: {
|
|
particulier: 'particulier',
|
|
entreprise: 'entreprise'
|
|
}
|
|
|
|
# Include default devise modules. Others available are:
|
|
# :confirmable, :lockable, :timeoutable and :omniauthable
|
|
devise :database_authenticatable, :registerable, :async,
|
|
:recoverable, :rememberable, :trackable, :validatable, :confirmable, :lockable
|
|
|
|
has_many :dossiers, dependent: :destroy
|
|
has_many :invites, dependent: :destroy
|
|
has_many :dossiers_invites, through: :invites, source: :dossier
|
|
has_many :feedbacks, dependent: :destroy
|
|
has_one :france_connect_information, dependent: :destroy
|
|
belongs_to :instructeur, optional: true
|
|
belongs_to :administrateur, optional: true
|
|
|
|
accepts_nested_attributes_for :france_connect_information
|
|
|
|
default_scope { eager_load(:instructeur, :administrateur) }
|
|
|
|
before_validation -> { sanitize_email(:email) }
|
|
|
|
# Override of Devise::Models::Confirmable#send_confirmation_instructions
|
|
def send_confirmation_instructions
|
|
if discarded?
|
|
return
|
|
end
|
|
|
|
unless @raw_confirmation_token
|
|
generate_confirmation_token!
|
|
end
|
|
|
|
opts = pending_reconfirmation? ? { to: unconfirmed_email } : {}
|
|
|
|
# Make our procedure_after_confirmation available to the Mailer
|
|
opts[:procedure_after_confirmation] = CurrentConfirmation.procedure_after_confirmation
|
|
|
|
send_devise_notification(:confirmation_instructions, @raw_confirmation_token, opts)
|
|
end
|
|
|
|
# Callback provided by Devise
|
|
def after_confirmation
|
|
link_invites!
|
|
end
|
|
|
|
def owns?(dossier)
|
|
dossier.user_id == id
|
|
end
|
|
|
|
def invite?(dossier_id)
|
|
invites.pluck(:dossier_id).include?(dossier_id.to_i)
|
|
end
|
|
|
|
def owns_or_invite?(dossier)
|
|
owns?(dossier) || invite?(dossier.id)
|
|
end
|
|
|
|
def invite!
|
|
UserMailer.invite_instructeur(self, set_reset_password_token).deliver_later
|
|
end
|
|
|
|
def invite_administrateur!(administration_id)
|
|
reset_password_token = nil
|
|
|
|
if !active?
|
|
reset_password_token = set_reset_password_token
|
|
end
|
|
|
|
AdministrationMailer.invite_admin(self, reset_password_token, administration_id).deliver_later
|
|
end
|
|
|
|
def remind_invitation!
|
|
reset_password_token = set_reset_password_token
|
|
|
|
AdministrateurMailer.activate_before_expiration(self, reset_password_token).deliver_later
|
|
end
|
|
|
|
def self.create_or_promote_to_instructeur(email, password, administrateurs: [])
|
|
user = User
|
|
.create_with(password: password, confirmed_at: Time.zone.now)
|
|
.find_or_create_by(email: email)
|
|
|
|
if user.valid?
|
|
if user.instructeur_id.nil?
|
|
user.create_instructeur!
|
|
end
|
|
|
|
user.instructeur.administrateurs << administrateurs
|
|
end
|
|
|
|
user
|
|
end
|
|
|
|
def self.create_or_promote_to_administrateur(email, password)
|
|
user = User.create_or_promote_to_instructeur(email, password)
|
|
|
|
if user.valid? && user.administrateur_id.nil?
|
|
user.create_administrateur!
|
|
end
|
|
|
|
user
|
|
end
|
|
|
|
def flipper_id
|
|
"User:#{id}"
|
|
end
|
|
|
|
def active?
|
|
last_sign_in_at.present?
|
|
end
|
|
|
|
def can_be_discarded?
|
|
administrateur.nil? && instructeur.nil?
|
|
end
|
|
|
|
def can_be_deleted?
|
|
can_be_discarded? && dossiers.with_discarded.state_instruction_commencee.empty?
|
|
end
|
|
|
|
def delete_and_keep_track_dossiers(administration)
|
|
if !can_be_deleted?
|
|
raise "Cannot delete this user because instruction has started for some dossiers"
|
|
end
|
|
|
|
dossiers.each do |dossier|
|
|
dossier.discard_and_keep_track!(administration, :user_removed)
|
|
end
|
|
dossiers.with_discarded.destroy_all
|
|
destroy!
|
|
end
|
|
|
|
def discard_and_anonymize!(reason)
|
|
if !can_be_discarded?
|
|
raise "Cannot discard this user because they are also instructeur or administrateur"
|
|
end
|
|
|
|
discard!
|
|
update_columns(
|
|
discard_reason: reason,
|
|
email: "#{SecureRandom.hex}@anonymous.org",
|
|
encrypted_password: SecureRandom.hex,
|
|
unconfirmed_email: nil,
|
|
current_sign_in_at: nil,
|
|
current_sign_in_ip: nil,
|
|
last_sign_in_at: nil,
|
|
last_sign_in_ip: nil
|
|
)
|
|
end
|
|
|
|
def delete_or_discard!(administration)
|
|
if can_be_deleted?
|
|
delete_and_keep_track_dossiers(administration)
|
|
else
|
|
discard_and_anonymize!("Discarded by Manager##{administration.id}")
|
|
end
|
|
end
|
|
|
|
private
|
|
|
|
def link_invites!
|
|
Invite.where(email: email).update_all(user_id: id)
|
|
end
|
|
end
|