2016-04-08 13:12:31 +02:00
|
|
|
package net.frozenorb.apiv3.models;
|
2016-02-12 02:40:06 +01:00
|
|
|
|
2016-04-30 20:03:34 +02:00
|
|
|
import com.google.common.collect.ImmutableMap;
|
|
|
|
|
import com.google.common.collect.ImmutableSet;
|
2016-05-07 15:34:10 +02:00
|
|
|
import com.google.common.collect.Maps;
|
2016-02-12 02:40:06 +01:00
|
|
|
import lombok.Getter;
|
2016-04-27 23:58:00 +02:00
|
|
|
import lombok.Setter;
|
2016-03-22 00:58:08 +01:00
|
|
|
import net.frozenorb.apiv3.APIv3;
|
2016-04-28 22:57:44 +02:00
|
|
|
import net.frozenorb.apiv3.serialization.ExcludeFromReplies;
|
2016-05-05 22:00:32 +02:00
|
|
|
import net.frozenorb.apiv3.utils.PermissionUtils;
|
2016-04-27 02:46:34 +02:00
|
|
|
import org.bson.Document;
|
2016-04-27 23:58:00 +02:00
|
|
|
import org.mindrot.jbcrypt.BCrypt;
|
2016-03-21 23:28:17 +01:00
|
|
|
import org.mongodb.morphia.annotations.Entity;
|
|
|
|
|
import org.mongodb.morphia.annotations.Id;
|
2016-05-03 01:34:30 +02:00
|
|
|
import org.mongodb.morphia.annotations.Indexed;
|
2016-02-12 02:40:06 +01:00
|
|
|
|
2016-04-27 02:46:34 +02:00
|
|
|
import java.util.*;
|
2016-02-23 13:14:42 +01:00
|
|
|
|
2016-03-21 23:28:17 +01:00
|
|
|
@Entity(value = "users", noClassnameStored = true)
|
2016-05-05 22:00:32 +02:00
|
|
|
public final class User {
|
2016-02-12 02:40:06 +01:00
|
|
|
|
2016-03-22 00:58:08 +01:00
|
|
|
@Getter @Id private UUID id;
|
2016-05-03 01:34:30 +02:00
|
|
|
@Getter @Indexed private String lastUsername;
|
2016-03-22 00:58:08 +01:00
|
|
|
@Getter @ExcludeFromReplies private Map<String, Date> aliases;
|
2016-05-03 01:34:30 +02:00
|
|
|
@Getter @Setter @ExcludeFromReplies private String totpSecret;
|
|
|
|
|
@Getter @Indexed @ExcludeFromReplies @Setter private String emailToken;
|
2016-04-27 23:58:00 +02:00
|
|
|
@Getter @ExcludeFromReplies @Setter private Date emailTokenSet;
|
2016-03-22 00:58:08 +01:00
|
|
|
@Getter @ExcludeFromReplies private String password;
|
2016-04-27 23:58:00 +02:00
|
|
|
@Getter @Setter private String email;
|
2016-05-05 22:00:32 +02:00
|
|
|
@Getter private String phoneNumber;
|
2016-02-23 13:14:42 +01:00
|
|
|
@Getter private String lastSeenOn;
|
2016-03-21 23:28:17 +01:00
|
|
|
@Getter private Date lastSeenAt;
|
2016-05-06 01:35:45 +02:00
|
|
|
@Getter private Date firstSeenAt;
|
2016-03-21 23:28:17 +01:00
|
|
|
|
2016-04-27 02:46:34 +02:00
|
|
|
public static User byId(String id) {
|
|
|
|
|
try {
|
|
|
|
|
return byId(UUID.fromString(id));
|
|
|
|
|
} catch (Exception ex) {
|
2016-05-01 06:34:02 +02:00
|
|
|
return null;
|
2016-04-27 02:46:34 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2016-03-22 00:58:08 +01:00
|
|
|
public static User byId(UUID id) {
|
|
|
|
|
return APIv3.getDatastore().createQuery(User.class).field("id").equal(id).get();
|
|
|
|
|
}
|
|
|
|
|
|
2016-05-01 02:08:58 +02:00
|
|
|
public static User byEmailToken(String name) {
|
|
|
|
|
return APIv3.getDatastore().createQuery(User.class).field("emailToken").equal(name).get();
|
2016-04-08 13:12:31 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
@Deprecated
|
2016-05-01 02:08:58 +02:00
|
|
|
public static User byLastUsername(String lastUsername) {
|
|
|
|
|
return APIv3.getDatastore().createQuery(User.class).field("lastUsername").equal(lastUsername).get();
|
2016-04-27 23:58:00 +02:00
|
|
|
}
|
|
|
|
|
|
2016-03-21 23:28:17 +01:00
|
|
|
public User() {} // For Morphia
|
|
|
|
|
|
2016-05-01 02:08:58 +02:00
|
|
|
public User(UUID id, String lastUsername) {
|
2016-03-21 23:28:17 +01:00
|
|
|
this.id = id;
|
2016-05-01 02:08:58 +02:00
|
|
|
this.lastUsername = lastUsername;
|
2016-03-21 23:28:17 +01:00
|
|
|
this.aliases = new HashMap<>();
|
2016-05-03 01:34:30 +02:00
|
|
|
this.totpSecret = null;
|
2016-03-21 23:28:17 +01:00
|
|
|
this.password = null;
|
|
|
|
|
this.email = null;
|
2016-05-05 22:00:32 +02:00
|
|
|
this.phoneNumber = null;
|
2016-03-22 00:58:08 +01:00
|
|
|
this.lastSeenOn = null;
|
2016-03-21 23:28:17 +01:00
|
|
|
this.lastSeenAt = new Date();
|
2016-05-06 01:35:45 +02:00
|
|
|
this.firstSeenAt = new Date();
|
2016-03-21 23:28:17 +01:00
|
|
|
|
2016-05-01 02:08:58 +02:00
|
|
|
aliases.put(lastUsername, new Date());
|
2016-02-12 02:40:06 +01:00
|
|
|
}
|
|
|
|
|
|
2016-05-01 02:08:58 +02:00
|
|
|
public boolean hasPermissionScoped(String permission, ServerGroup scope) {
|
2016-05-05 22:00:32 +02:00
|
|
|
Rank highestRank = getHighestRank(scope);
|
|
|
|
|
Map<String, Boolean> scopedPermissions = PermissionUtils.mergePermissions(
|
|
|
|
|
PermissionUtils.getDefaultPermissions(highestRank),
|
|
|
|
|
scope.calculatePermissions(highestRank)
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
return scopedPermissions.containsKey(permission) && scopedPermissions.get(permission);
|
2016-04-17 21:23:02 +02:00
|
|
|
}
|
|
|
|
|
|
2016-05-01 02:08:58 +02:00
|
|
|
public boolean hasPermissionAnywhere(String permission) {
|
2016-05-05 22:00:32 +02:00
|
|
|
Map<String, Boolean> globalPermissions = PermissionUtils.getDefaultPermissions(getHighestRank());
|
|
|
|
|
|
|
|
|
|
for (Map.Entry<ServerGroup, Rank> serverGroupEntry : getHighestRanks().entrySet()) {
|
|
|
|
|
ServerGroup serverGroup = serverGroupEntry.getKey();
|
|
|
|
|
Rank rank = serverGroupEntry.getValue();
|
|
|
|
|
|
|
|
|
|
globalPermissions = PermissionUtils.mergePermissions(
|
|
|
|
|
globalPermissions,
|
|
|
|
|
serverGroup.calculatePermissions(rank)
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return globalPermissions.containsKey(permission) && globalPermissions.get(permission);
|
2016-04-17 21:23:02 +02:00
|
|
|
}
|
|
|
|
|
|
2016-04-27 02:46:34 +02:00
|
|
|
public List<Grant> getGrants() {
|
|
|
|
|
return APIv3.getDatastore().createQuery(Grant.class).field("target").equal(id).asList();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public List<IPLogEntry> getIPLog() {
|
|
|
|
|
return APIv3.getDatastore().createQuery(IPLogEntry.class).field("user").equal(id).asList();
|
|
|
|
|
}
|
|
|
|
|
|
2016-05-01 02:08:58 +02:00
|
|
|
public IPLogEntry getIPLogEntry(String ip) {
|
|
|
|
|
IPLogEntry existing = APIv3.getDatastore().createQuery(IPLogEntry.class).field("user").equal(id).field("ip").equal(ip).get();
|
|
|
|
|
|
|
|
|
|
if (existing == null) {
|
|
|
|
|
existing = new IPLogEntry(this, ip);
|
|
|
|
|
APIv3.getDatastore().save(existing);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return existing;
|
|
|
|
|
}
|
|
|
|
|
|
2016-04-27 02:46:34 +02:00
|
|
|
public List<Punishment> getPunishments() {
|
|
|
|
|
return APIv3.getDatastore().createQuery(Punishment.class).field("target").equal(id).asList();
|
|
|
|
|
}
|
|
|
|
|
|
2016-04-27 23:58:00 +02:00
|
|
|
public List<Punishment> getPunishments(Collection<Punishment.PunishmentType> types) {
|
|
|
|
|
return APIv3.getDatastore().createQuery(Punishment.class).field("target").equal(id).field("type").in(types).asList();
|
2016-04-27 02:46:34 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public UserMetaEntry getMeta(ServerGroup group) {
|
2016-05-01 06:34:02 +02:00
|
|
|
return APIv3.getDatastore().createQuery(UserMetaEntry.class).field("user").equal(id).field("serverGroup").equal(group.getId()).get();
|
2016-04-27 02:46:34 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public void saveMeta(ServerGroup group, Document data) {
|
|
|
|
|
UserMetaEntry entry = getMeta(group);
|
|
|
|
|
|
|
|
|
|
if (entry == null) {
|
|
|
|
|
APIv3.getDatastore().save(new UserMetaEntry(this, group, data));
|
|
|
|
|
} else {
|
|
|
|
|
entry.setData(data);
|
|
|
|
|
APIv3.getDatastore().save(entry);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2016-05-05 22:00:32 +02:00
|
|
|
public void seenOnServer(String username, Server server) {
|
2016-05-01 02:08:58 +02:00
|
|
|
this.lastSeenOn = server.getId();
|
|
|
|
|
this.lastSeenAt = new Date();
|
2016-05-05 22:00:32 +02:00
|
|
|
this.aliases.put(username, new Date());
|
2016-05-01 02:08:58 +02:00
|
|
|
}
|
|
|
|
|
|
2016-04-27 23:58:00 +02:00
|
|
|
public void setPassword(char[] unencrypted) {
|
|
|
|
|
this.password = BCrypt.hashpw(new String(unencrypted), BCrypt.gensalt());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public boolean checkPassword(char[] unencrypted) {
|
|
|
|
|
return BCrypt.checkpw(new String(unencrypted), password);
|
|
|
|
|
}
|
|
|
|
|
|
2016-05-05 22:00:32 +02:00
|
|
|
public Rank getHighestRank() {
|
|
|
|
|
return getHighestRank(null);
|
|
|
|
|
}
|
|
|
|
|
|
2016-04-30 20:03:34 +02:00
|
|
|
public Rank getHighestRank(ServerGroup serverGroup) {
|
2016-05-06 01:35:45 +02:00
|
|
|
Rank highest = null;;
|
2016-04-30 20:03:34 +02:00
|
|
|
|
|
|
|
|
for (Grant grant : getGrants()) {
|
2016-05-01 02:08:58 +02:00
|
|
|
if (!grant.isActive() || (serverGroup != null && !grant.appliesOn(serverGroup))) {
|
2016-04-30 20:03:34 +02:00
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Rank rank = Rank.byId(grant.getRank());
|
|
|
|
|
|
|
|
|
|
if (highest == null || rank.getWeight() > highest.getWeight()) {
|
|
|
|
|
highest = rank;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (highest != null) {
|
|
|
|
|
return highest;
|
|
|
|
|
} else {
|
|
|
|
|
return Rank.byId("default");
|
|
|
|
|
}
|
2016-04-28 22:57:44 +02:00
|
|
|
}
|
|
|
|
|
|
2016-05-05 22:00:32 +02:00
|
|
|
public Map<ServerGroup, Rank> getHighestRanks() {
|
|
|
|
|
Map<ServerGroup, Rank> highestRanks = new HashMap<>();
|
|
|
|
|
Rank defaultRank = Rank.byId("default");
|
|
|
|
|
List<Grant> userGrants = getGrants();
|
|
|
|
|
|
|
|
|
|
for (ServerGroup serverGroup : ServerGroup.values()) {
|
|
|
|
|
Rank highest = defaultRank;
|
|
|
|
|
|
|
|
|
|
for (Grant grant : userGrants) {
|
|
|
|
|
if (!grant.isActive() || !grant.appliesOn(serverGroup)) {
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Rank rank = Rank.byId(grant.getRank());
|
|
|
|
|
|
|
|
|
|
if (highest == null || rank.getWeight() > highest.getWeight()) {
|
|
|
|
|
highest = rank;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
highestRanks.put(serverGroup, highest);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return highestRanks;
|
2016-04-30 20:03:34 +02:00
|
|
|
}
|
2016-04-28 22:57:44 +02:00
|
|
|
|
2016-04-30 20:03:34 +02:00
|
|
|
public Map<String, Object> getLoginInfo(Server server) {
|
|
|
|
|
String accessDenialReason = null;
|
2016-04-28 22:57:44 +02:00
|
|
|
|
2016-04-30 20:03:34 +02:00
|
|
|
for (Punishment punishment : getPunishments(ImmutableSet.of(
|
|
|
|
|
Punishment.PunishmentType.BLACKLIST,
|
|
|
|
|
Punishment.PunishmentType.BAN
|
|
|
|
|
))) {
|
|
|
|
|
if (!punishment.isActive()) {
|
|
|
|
|
continue;
|
|
|
|
|
}
|
2016-04-28 22:57:44 +02:00
|
|
|
|
2016-05-07 03:57:32 +02:00
|
|
|
accessDenialReason = punishment.getAccessDenialReason();
|
2016-04-28 22:57:44 +02:00
|
|
|
}
|
|
|
|
|
|
2016-05-07 15:34:10 +02:00
|
|
|
Punishment mute = null;
|
|
|
|
|
for (Punishment punishment : getPunishments(ImmutableSet.of(Punishment.PunishmentType.MUTE))) {
|
|
|
|
|
if (!punishment.isActive()) {
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
mute = punishment;
|
|
|
|
|
}
|
2016-04-28 22:57:44 +02:00
|
|
|
|
2016-05-01 02:08:58 +02:00
|
|
|
ServerGroup actorGroup = ServerGroup.byId(server.getGroup());
|
2016-05-05 22:00:32 +02:00
|
|
|
Rank highestRank = getHighestRank(actorGroup);
|
2016-05-06 01:35:45 +02:00
|
|
|
|
2016-05-05 22:00:32 +02:00
|
|
|
Map<String, Boolean> scopedPermissions = PermissionUtils.mergePermissions(
|
|
|
|
|
PermissionUtils.getDefaultPermissions(highestRank),
|
|
|
|
|
actorGroup.calculatePermissions(highestRank)
|
|
|
|
|
);
|
2016-04-30 20:03:34 +02:00
|
|
|
|
2016-05-07 15:34:10 +02:00
|
|
|
Map<String, Object> loginInfo = Maps.newHashMap();
|
|
|
|
|
|
|
|
|
|
loginInfo.put("user", this);
|
|
|
|
|
loginInfo.put("access", ImmutableMap.of(
|
|
|
|
|
"allowed", accessDenialReason == null,
|
|
|
|
|
"message", accessDenialReason == null ? "Public server" : accessDenialReason
|
|
|
|
|
));
|
|
|
|
|
loginInfo.put("rank", highestRank.getId());
|
|
|
|
|
loginInfo.put("permissions", scopedPermissions);
|
|
|
|
|
loginInfo.put("totpSetup", getTotpSecret() != null);
|
|
|
|
|
if (mute != null) {
|
|
|
|
|
loginInfo.put("mute", mute);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return loginInfo;
|
2016-04-28 22:57:44 +02:00
|
|
|
}
|
|
|
|
|
|
2016-02-12 02:40:06 +01:00
|
|
|
}
|
