Ghost/ghost/admin/app/models/user.js

/* jscs:disable requireCamelCaseOrUpperCaseIdentifiers */
import Ember from 'ember';
import Model from 'ember-data/model';
import attr from 'ember-data/attr';
import { hasMany } from 'ember-data/relationships';
import ValidationEngine from 'ghost/mixins/validation-engine';

const {
    computed,
    inject: {service}
} = Ember;
const {equal, empty} = computed;

export default Model.extend(ValidationEngine, {
    validationType: 'user',

    uuid: attr('string'),
    name: attr('string'),
    slug: attr('string'),
    email: attr('string'),
    image: attr('string'),
    cover: attr('string'),
    bio: attr('string'),
    website: attr('string'),
    location: attr('string'),
    accessibility: attr('string'),
    status: attr('string'),
    language: attr('string', {defaultValue: 'en_US'}),
    meta_title: attr('string'),
    meta_description: attr('string'),
    last_login: attr('moment-date'),
    created_at: attr('moment-date'),
    created_by: attr('number'),
    updated_at: attr('moment-date'),
    updated_by: attr('number'),
    roles: hasMany('role', {
        embedded: 'always',
        async: false
    }),
    count: attr('raw'),

    ghostPaths: service(),
    ajax: service(),

    // TODO: Once client-side permissions are in place,
    // remove the hard role check.
    isAuthor: equal('role.name', 'Author'),
    isEditor: equal('role.name', 'Editor'),
    isAdmin: equal('role.name', 'Administrator'),
    isOwner: equal('role.name', 'Owner'),

    isPasswordValid: empty('passwordValidationErrors.[]'),

    active: computed('status', function () {
        return ['active', 'warn-1', 'warn-2', 'warn-3', 'warn-4', 'locked'].indexOf(this.get('status')) > -1;
    }),

    invited: computed('status', function () {
        return ['invited', 'invited-pending'].indexOf(this.get('status')) > -1;
    }),

    pending: equal('status', 'invited-pending').property('status'),

    passwordValidationErrors: computed('password', 'newPassword', 'ne2Password', function () {
        let validationErrors = [];

        if (!validator.equals(this.get('newPassword'), this.get('ne2Password'))) {
            validationErrors.push({message: 'Your new passwords do not match'});
        }

        if (!validator.isLength(this.get('newPassword'), 8)) {
            validationErrors.push({message: 'Your password is not long enough. It must be at least 8 characters long.'});
        }

        return validationErrors;
    }),

    role: computed('roles', {
        get() {
            return this.get('roles.firstObject');
        },
        set(key, value) {
            // Only one role per user, so remove any old data.
            this.get('roles').clear();
            this.get('roles').pushObject(value);

            return value;
        }
    }),

    saveNewPassword() {
        let url = this.get('ghostPaths.url').api('users', 'password');

        return this.get('ajax').put(url, {
            data: {
                password: [{
                    user_id: this.get('id'),
                    oldPassword: this.get('password'),
                    newPassword: this.get('newPassword'),
                    ne2Password: this.get('ne2Password')
                }]
            }
        });
    },

    resendInvite() {
        let fullUserData = this.toJSON();
        let userData = {
            email: fullUserData.email,
            roles: fullUserData.roles
        };
        let inviteUrl = this.get('ghostPaths.url').api('users');

        return this.get('ajax').post(inviteUrl, {
            data: JSON.stringify({users: [userData]}),
            contentType: 'application/json'
        });
    }
});
Use es6 across client and add ember-suave to enforce rules no issue - add ember-suave dependency - upgrade grunt-jscs dependency - add a new .jscsrc for the client's tests directory that extends from client's base .jscsrc - separate client tests in Gruntfile jscs task so they pick up the test's .jscsrc - standardize es6 usage across client 2015-10-28 14:36:45 +03:00			`/* jscs:disable requireCamelCaseOrUpperCaseIdentifiers */`
Ember init, bower deps, es6 modules 2015-02-13 07:22:32 +03:00			`import Ember from 'ember';`
deps: ember-data@2.3.2 no issue - updates ember-data dependency and switches to direct es6 module import instead of destructuring assignment - fixes issue with `authenticationFailed` action being called before transitions have finished 2016-01-12 22:23:01 +03:00			`import Model from 'ember-data/model';`
			`import attr from 'ember-data/attr';`
			`import { hasMany } from 'ember-data/relationships';`
Add validation to invite new user form. Closes #3246 - Add a UserValidator to the validation engine that runs a set of validations based on the user status. - Added validations for invited users and active users. 2014-07-11 23:01:42 +04:00			`import ValidationEngine from 'ghost/mixins/validation-engine';`

cleanup usage of Ember.inject 2016-01-19 16:03:27 +03:00			`const {`
			`computed,`
			`inject: {service}`
			`} = Ember;`
Use es6 across client and add ember-suave to enforce rules no issue - add ember-suave dependency - upgrade grunt-jscs dependency - add a new .jscsrc for the client's tests directory that extends from client's base .jscsrc - separate client tests in Gruntfile jscs task so they pick up the test's .jscsrc - standardize es6 usage across client 2015-10-28 14:36:45 +03:00			`const {equal, empty} = computed;`

			`export default Model.extend(ValidationEngine, {`
Add validation to invite new user form. Closes #3246 - Add a UserValidator to the validation engine that runs a set of validations based on the user status. - Added validations for invited users and active users. 2014-07-11 23:01:42 +04:00			`validationType: 'user',`
Fix validations on user settings page Closes #3271 - Change validations on both server and client to allow the Website field to be empty or a valid URL. - Add new schema validation helper isEmptyOrURL. - Remove duplicate call to UserValidator in the save action of the SettingsUser controller. - User.last_login and User.created_at are already Moment objects so Moment#fromNow can be called on them directly. 2014-07-14 20:32:55 +04:00
Use es6 across client and add ember-suave to enforce rules no issue - add ember-suave dependency - upgrade grunt-jscs dependency - add a new .jscsrc for the client's tests directory that extends from client's base .jscsrc - separate client tests in Gruntfile jscs task so they pick up the test's .jscsrc - standardize es6 usage across client 2015-10-28 14:36:45 +03:00			`uuid: attr('string'),`
			`name: attr('string'),`
			`slug: attr('string'),`
			`email: attr('string'),`
			`image: attr('string'),`
			`cover: attr('string'),`
			`bio: attr('string'),`
			`website: attr('string'),`
			`location: attr('string'),`
			`accessibility: attr('string'),`
			`status: attr('string'),`
			`language: attr('string', {defaultValue: 'en_US'}),`
			`meta_title: attr('string'),`
			`meta_description: attr('string'),`
			`last_login: attr('moment-date'),`
			`created_at: attr('moment-date'),`
			`created_by: attr('number'),`
			`updated_at: attr('moment-date'),`
			`updated_by: attr('number'),`
			`roles: hasMany('role', {`
Ember-cli, Ember, & Ember Data 1.13.x upgrades closes #5630 - upgrade ember-cli to latest version - upgrade ember to latest 1.13.x release - upgrade ember data to latest 1.13.x release - update custom adapters and serialisers for new internal JSON-API compatible formats [(docs)][1] - update all store queries to use new standardised query methods [(docs)][2] - add ember-data-filter addon ready for store.filter removal in ember-data 2.0 [(docs)][3] - remove use of prototype extensions for computed properties and observers - consolidate pagination into a single route mixin and simplify configuration [1]: http://emberjs.com/blog/2015/06/18/ember-data-1-13-released.html#toc_transition-to-the-new-jsonserializer-and-restserializer-apis [2]: http://emberjs.com/blog/2015/06/18/ember-data-1-13-released.html#toc_simplified-find-methods [3]: http://emberjs.com/blog/2015/06/18/ember-data-1-13-released.html#toc_ds-store-filter-moved-to-an-addon 2015-09-03 14:06:50 +03:00			`embedded: 'always',`
			`async: false`
			`}),`
deps: ember-data@2.3.2 no issue - updates ember-data dependency and switches to direct es6 module import instead of destructuring assignment - fixes issue with `authenticationFailed` action being called before transitions have finished 2016-01-12 22:23:01 +03:00			`count: attr('raw'),`
Improve signin Ref #2413 - Remove fixture and use actual API - Store and send down actual logged in user data - Refactor isLoggedIn to use computed property on application - After signin, update user data in dependency container - Add CSRF to all routes and controllers via initializer - Update authenticated route to check for user.isLoggedIn - Add notifications for signin error - Add notifications.showAPIError helper - Add plumbing for refreshless signup to doSignUp in admin controller 2014-05-15 03:36:13 +04:00
cleanup usage of Ember.inject 2016-01-19 16:03:27 +03:00			`ghostPaths: service(),`
			`ajax: service(),`
Use es6 across client and add ember-suave to enforce rules no issue - add ember-suave dependency - upgrade grunt-jscs dependency - add a new .jscsrc for the client's tests directory that extends from client's base .jscsrc - separate client tests in Gruntfile jscs task so they pick up the test's .jscsrc - standardize es6 usage across client 2015-10-28 14:36:45 +03:00
			`// TODO: Once client-side permissions are in place,`
			`// remove the hard role check.`
			`isAuthor: equal('role.name', 'Author'),`
			`isEditor: equal('role.name', 'Editor'),`
			`isAdmin: equal('role.name', 'Administrator'),`
			`isOwner: equal('role.name', 'Owner'),`

			`isPasswordValid: empty('passwordValidationErrors.[]'),`

			`active: computed('status', function () {`
			`return ['active', 'warn-1', 'warn-2', 'warn-3', 'warn-4', 'locked'].indexOf(this.get('status')) > -1;`
			`}),`

			`invited: computed('status', function () {`
			`return ['invited', 'invited-pending'].indexOf(this.get('status')) > -1;`
			`}),`

			`pending: equal('status', 'invited-pending').property('status'),`

			`passwordValidationErrors: computed('password', 'newPassword', 'ne2Password', function () {`
			`let validationErrors = [];`

			`if (!validator.equals(this.get('newPassword'), this.get('ne2Password'))) {`
			`validationErrors.push({message: 'Your new passwords do not match'});`
			`}`

			`if (!validator.isLength(this.get('newPassword'), 8)) {`
			`validationErrors.push({message: 'Your password is not long enough. It must be at least 8 characters long.'});`
			`}`

			`return validationErrors;`
			`}),`
Use Ember.inject instead of needs and initializers No Issue - Switches to the newer style of dependency injection. - Instead of injection Controllers via "needs," use Ember.inject.controller(). - Get rid of initializers that were only injecting objects into various factories. Converts these objects into Ember.Service objects and declaratively inject them where needed via Ember.inject.service(). The added benefit to this is that it's no longer a mystery where these properties/methods come from and it's straightforward to inject them where needed. 2015-05-26 05:10:50 +03:00
Use es6 across client and add ember-suave to enforce rules no issue - add ember-suave dependency - upgrade grunt-jscs dependency - add a new .jscsrc for the client's tests directory that extends from client's base .jscsrc - separate client tests in Gruntfile jscs task so they pick up the test's .jscsrc - standardize es6 usage across client 2015-10-28 14:36:45 +03:00			`role: computed('roles', {`
			`get() {`
update Ember to 1.12.1/ember-data to 1.0.0-beta.18 No issue - fixed "{{#each}}" helper in templates to use block syntax - fixed deprecated ember.controller getter/setter function to use new syntax - removed unnecessary pass-protect route view 2015-06-03 05:56:42 +03:00			`return this.get('roles.firstObject');`
			`},`
Use es6 across client and add ember-suave to enforce rules no issue - add ember-suave dependency - upgrade grunt-jscs dependency - add a new .jscsrc for the client's tests directory that extends from client's base .jscsrc - separate client tests in Gruntfile jscs task so they pick up the test's .jscsrc - standardize es6 usage across client 2015-10-28 14:36:45 +03:00			`set(key, value) {`
Enable JSCS checking on client. Refs #4001 - grunt-jscs@0.8.1 which provides ES6 support. 2014-10-25 01:09:50 +04:00			`// Only one role per user, so remove any old data.`
Add User Role Dropdown Closes #3402, Closes #3428 ------------------- ### Components - Added GhostSelectComponent to handle async select creation (h/t @rwjblue) - Added GhostRolesSelector (extends GhostSelect) for displaying user role options - Created StoreInjector for surgically inserting the store into things that normally wouldn't have them. ### Users Settings - InviteNewUserModal now uses GhostRolesSelector & defaults to Author - The role dropdown for user settings has permissions set per 3402 ### User Model - Added `role` property as an interface to getting and setting `roles` - Refactored anything that set `roles` to set `role` - isAdmin, isAuthor, isOwner and isEditor are all keyed off of `role` now ### Tests - Added functional tests for Settings.Users - updated settings.users and settings.users.user screens - fix spacing on screens ### Server Fixtures - Fixed owner fixture's roles 2014-07-30 04:11:02 +04:00			`this.get('roles').clear();`
			`this.get('roles').pushObject(value);`
Enable JSCS checking on client. Refs #4001 - grunt-jscs@0.8.1 which provides ES6 support. 2014-10-25 01:09:50 +04:00
Add User Role Dropdown Closes #3402, Closes #3428 ------------------- ### Components - Added GhostSelectComponent to handle async select creation (h/t @rwjblue) - Added GhostRolesSelector (extends GhostSelect) for displaying user role options - Created StoreInjector for surgically inserting the store into things that normally wouldn't have them. ### Users Settings - InviteNewUserModal now uses GhostRolesSelector & defaults to Author - The role dropdown for user settings has permissions set per 3402 ### User Model - Added `role` property as an interface to getting and setting `roles` - Refactored anything that set `roles` to set `role` - isAdmin, isAuthor, isOwner and isEditor are all keyed off of `role` now ### Tests - Added functional tests for Settings.Users - updated settings.users and settings.users.user screens - fix spacing on screens ### Server Fixtures - Fixed owner fixture's roles 2014-07-30 04:11:02 +04:00			`return value;`
			`}`
Hide Settings Tab if Author Implements #3293. Currently, we don’t have a permission system on the client side, so this relies on a hardcoded “author” string. 2014-07-22 01:19:46 +04:00			`}),`

Use es6 across client and add ember-suave to enforce rules no issue - add ember-suave dependency - upgrade grunt-jscs dependency - add a new .jscsrc for the client's tests directory that extends from client's base .jscsrc - separate client tests in Gruntfile jscs task so they pick up the test's .jscsrc - standardize es6 usage across client 2015-10-28 14:36:45 +03:00			`saveNewPassword() {`
			`let url = this.get('ghostPaths.url').api('users', 'password');`
Enable JSCS checking on client. Refs #4001 - grunt-jscs@0.8.1 which provides ES6 support. 2014-10-25 01:09:50 +04:00
deps: ember-ajax@0.7.1 2016-01-18 18:37:14 +03:00			`return this.get('ajax').put(url, {`
Settings: Admin User Tab closes #2422 - updated to use new change password method - have all save settings use notifications - create assetUrl helper for creating asset paths with subdir's properly prefixed - move all url based helpers onto a url object in ghost-paths 2014-07-13 08:01:26 +04:00			`data: {`
			`password: [{`
Password change MU closes #4624 - added user_id to password reset request - hide old password field - updated changePassword method to check permissions - updated changePassword method to work without oldPassword - fixed bug for errors shown as [Object object] 2014-12-11 23:23:07 +03:00			`user_id: this.get('id'),`
Enable JSCS checking on client. Refs #4001 - grunt-jscs@0.8.1 which provides ES6 support. 2014-10-25 01:09:50 +04:00			`oldPassword: this.get('password'),`
			`newPassword: this.get('newPassword'),`
			`ne2Password: this.get('ne2Password')`
Settings: Admin User Tab closes #2422 - updated to use new change password method - have all save settings use notifications - create assetUrl helper for creating asset paths with subdir's properly prefixed - move all url based helpers onto a url object in ghost-paths 2014-07-13 08:01:26 +04:00			`}]`
			`}`
Create SettingsUserController addresses #2422 - creates settings user controller - creates user model object - updates user fixture to be compatible with user model - updates settings/user template - add validator to Ember Admin - use validator to validate user model is valid - add mock response to /users/me/ path - creates models/base file for all models to inherit from - add mock response to /ghost/changepw/ path 2014-03-23 06:31:45 +04:00			`});`
			`},`

Use es6 across client and add ember-suave to enforce rules no issue - add ember-suave dependency - upgrade grunt-jscs dependency - add a new .jscsrc for the client's tests directory that extends from client's base .jscsrc - separate client tests in Gruntfile jscs task so they pick up the test's .jscsrc - standardize es6 usage across client 2015-10-28 14:36:45 +03:00			`resendInvite() {`
			`let fullUserData = this.toJSON();`
			`let userData = {`
			`email: fullUserData.email,`
			`roles: fullUserData.roles`
			`};`
deps: ember-ajax@0.7.1 2016-01-18 18:37:14 +03:00			`let inviteUrl = this.get('ghostPaths.url').api('users');`
Wiring up "resend" and "revoke" button on user management screen fixes #3214 - new ```resendInvite``` method on the User model encapsulates all logic - only sending users email address when re-inviting, since the user already exists on the back-end - ```revoke``` calls DELETE on /ghost/api/v0.1/users/:user_id 2014-07-08 09:24:07 +04:00
deps: ember-ajax@0.7.1 2016-01-18 18:37:14 +03:00			`return this.get('ajax').post(inviteUrl, {`
Wiring up "resend" and "revoke" button on user management screen fixes #3214 - new ```resendInvite``` method on the User model encapsulates all logic - only sending users email address when re-inviting, since the user already exists on the back-end - ```revoke``` calls DELETE on /ghost/api/v0.1/users/:user_id 2014-07-08 09:24:07 +04:00			`data: JSON.stringify({users: [userData]}),`
			`contentType: 'application/json'`
			`});`
Use es6 across client and add ember-suave to enforce rules no issue - add ember-suave dependency - upgrade grunt-jscs dependency - add a new .jscsrc for the client's tests directory that extends from client's base .jscsrc - separate client tests in Gruntfile jscs task so they pick up the test's .jscsrc - standardize es6 usage across client 2015-10-28 14:36:45 +03:00			`}`
Create SettingsUserController addresses #2422 - creates settings user controller - creates user model object - updates user fixture to be compatible with user model - updates settings/user template - add validator to Ember Admin - use validator to validate user model is valid - add mock response to /users/me/ path - creates models/base file for all models to inherit from - add mock response to /ghost/changepw/ path 2014-03-23 06:31:45 +04:00			`});`