1 # BEGIN BPS TAGGED BLOCK {{{
5 # This software is Copyright (c) 1996-2011 Best Practical Solutions, LLC
6 # <sales@bestpractical.com>
8 # (Except where explicitly superseded by other copyright notices)
13 # This work is made available to you under the terms of Version 2 of
14 # the GNU General Public License. A copy of that license should have
15 # been provided with this software, but in any event can be snarfed
18 # This work is distributed in the hope that it will be useful, but
19 # WITHOUT ANY WARRANTY; without even the implied warranty of
20 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
21 # General Public License for more details.
23 # You should have received a copy of the GNU General Public License
24 # along with this program; if not, write to the Free Software
25 # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
26 # 02110-1301 or visit their web page on the internet at
27 # http://www.gnu.org/licenses/old-licenses/gpl-2.0.html.
30 # CONTRIBUTION SUBMISSION POLICY:
32 # (The following paragraph is not intended to limit the rights granted
33 # to you to modify and distribute this software under the terms of
34 # the GNU General Public License and is only of importance to you if
35 # you choose to contribute your changes and enhancements to the
36 # community by submitting them to Best Practical Solutions, LLC.)
38 # By intentionally submitting any modifications, corrections or
39 # derivatives to this work, or any other work intended for use with
40 # Request Tracker, to Best Practical Solutions, LLC, you confirm that
41 # you are the copyright holder for those contributions and you grant
42 # Best Practical Solutions, LLC a nonexclusive, worldwide, irrevocable,
43 # royalty-free, perpetual, license to use, copy, create derivative
44 # works based on those contributions, and sublicense and distribute
45 # those contributions and any derivatives thereof.
47 # END BPS TAGGED BLOCK }}}
51 RT::CurrentUser - an RT object representing the current user
58 my $current_user = new RT::CurrentUser;
59 $current_user->Load(...);
61 my $current_user = RT::CurrentUser->new( $user_obj );
63 my $current_user = RT::CurrentUser->new( $address || $name || $id );
66 $current_user->UserObj->SetName('new_name');
71 B<Read-only> subclass of L<RT::User> class. Used to define the current
72 user. You should pass an instance of this class to constructors of
73 many RT classes, then the instance used to check ACLs and localize
78 See also L<RT::User> for a list of methods this class has.
82 Returns new CurrentUser object. Unlike all other classes of RT it takes
83 either subclass of C<RT::User> class object or scalar value that is
84 passed to Load method.
89 package RT::CurrentUser;
96 use base qw/RT::User/;
98 #The basic idea here is that $self->CurrentUser is always supposed
99 # to be a CurrentUser object. but that's hard to do when we're trying to load
100 # the CurrentUser object
106 $self->{'table'} = "Users";
108 if ( defined $User ) {
110 if ( UNIVERSAL::isa( $User, 'RT::User' ) ) {
111 $self->LoadById( $User->id );
113 elsif ( ref $User ) {
115 "RT::CurrentUser->new() called with a bogus argument: $User");
118 $self->Load( $User );
122 $self->_BuildTableAttributes;
126 =head2 Create, Delete and Set*
128 As stated above it's a subclass of L<RT::User>, but this class is read-only
129 and calls to these methods are illegal. Return 'permission denied' message
136 $RT::Logger->error('RT::CurrentUser is read-only, RT::User for manipulation');
137 return (0, $self->loc('Permission Denied'));
142 $RT::Logger->error('RT::CurrentUser is read-only, RT::User for manipulation');
143 return (0, $self->loc('Permission Denied'));
148 $RT::Logger->error('RT::CurrentUser is read-only, RT::User for manipulation');
149 return (0, $self->loc('Permission Denied'));
154 Returns the L<RT::User> object associated with this CurrentUser object.
161 my $user = RT::User->new( $self );
162 unless ( $user->LoadById( $self->Id ) ) {
164 $self->loc("Couldn't load [_1] from the users database.\n", $self->Id)
170 sub _CoreAccessible {
172 Name => { 'read' => 1 },
173 Gecos => { 'read' => 1 },
174 RealName => { 'read' => 1 },
175 Lang => { 'read' => 1 },
176 Password => { 'read' => 0, 'write' => 0 },
177 EmailAddress => { 'read' => 1, 'write' => 0 }
184 Loads a User into this CurrentUser object.
185 Takes a unix username as its only argument.
191 return $self->LoadByCol( "Gecos", shift );
196 Loads a User into this CurrentUser object.
203 return $self->LoadByCol( "Name", shift );
206 =head2 LanguageHandle
208 Returns this current user's langauge handle. Should take a language
209 specification. but currently doesn't
215 if ( !defined $self->{'LangHandle'}
216 || !UNIVERSAL::can( $self->{'LangHandle'}, 'maketext' )
219 if ( my $lang = $self->Lang ) {
222 elsif ( $self->id && ($self->id == ($RT::SystemUser->id||0) || $self->id == ($RT::Nobody->id||0)) ) {
223 # don't use ENV magic for system users
227 $self->{'LangHandle'} = RT::I18N->get_handle(@_);
230 # Fall back to english.
231 unless ( $self->{'LangHandle'} ) {
232 die "We couldn't get a dictionary. Ne mogu naidti slovar. No puedo encontrar dictionario.";
234 return $self->{'LangHandle'};
239 return '' if !defined $_[0] || $_[0] eq '';
241 my $handle = $self->LanguageHandle;
244 # pre-scan the lexicon hashes to return _AUTO keys verbatim,
245 # to keep locstrings containing '[' and '~' from tripping over Maketext
246 return $_[0] unless grep exists $_->{$_[0]}, @{ $handle->_lex_refs };
249 return $handle->maketext(@_);
254 return '' if !defined $_[0] || $_[0] eq '';
256 # XXX: work around perl's deficiency when matching utf8 data
257 return $_[0] if Encode::is_utf8($_[0]);
259 return $self->LanguageHandle->maketext_fuzzy( @_ );
264 Return the current currentuser object
276 Takes $password, $created and $nonce, and returns a boolean value
277 representing whether the authentication succeeded.
279 If both $nonce and $created are specified, validate $password against:
284 sha1_hex( "$username:$realm:$server_pass" )
287 where $server_pass is the md5_hex(password) digest stored in the
288 database, $created is in ISO time format, and $nonce is a random
289 string no longer than 32 bytes.
294 my ($self, $password, $created, $nonce, $realm) = @_;
297 require Digest::SHA1;
298 require MIME::Base64;
300 my $username = $self->UserObj->Name or return;
301 my $server_pass = $self->UserObj->__Value('Password') or return;
302 my $auth_digest = MIME::Base64::encode_base64(Digest::SHA1::sha1(
305 Digest::MD5::md5_hex("$username:$realm:$server_pass")
311 return ($password eq $auth_digest);
314 RT::Base->_ImportOverlays();