asciinema.org/app/models/user.rb

class User < ActiveRecord::Base

  USERNAME_FORMAT = /\A[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9]\z/

  InvalidEmailError = Class.new(StandardError)

  has_many :api_tokens, :dependent => :destroy
  has_many :asciicasts, :dependent => :destroy
  has_many :likes, :dependent => :destroy
  has_many :comments, :dependent => :destroy
  has_many :expiring_tokens, dependent: :destroy

  validates :email, presence: true, on: :update
  validates :email, format: { with: /.+@.+\..+/i }, uniqueness: true, if: :email
  validates :username, uniqueness: { case_sensitive: false },
                       format: { with: USERNAME_FORMAT },
                       length: { minimum: 2, maximum: 16 },
                       if: :username

  scope :with_username, -> { where('username IS NOT NULL') }

  before_create :generate_auth_token

  def self.for_email!(email)
    raise InvalidEmailError if email.blank?

    self.where(email: email).first_or_create!

  rescue ActiveRecord::RecordInvalid => e
    if e.record.errors[:email].present?
      raise InvalidEmailError
    else
      raise e
    end
  end

  def self.for_username!(username)
    with_username.where(username: username).first!
  end

  def self.for_api_token(token)
    return nil if token.blank?

    joins(:api_tokens).where(
      'api_tokens.token' => token,
      'api_tokens.revoked_at' => nil,
    ).first
  end

  def self.for_auth_token(auth_token)
    where(auth_token: auth_token).first
  end

  def self.generate_auth_token
    SecureRandom.urlsafe_base64
  end

  def self.null
    new(temporary_username: 'anonymous')
  end

  def active_api_tokens
    api_tokens.active
  end

  def revoked_api_tokens
    api_tokens.revoked
  end

  def confirmed?
    email.present?
  end

  def username=(value)
    value ? super(value.strip) : super
  end

  def email=(value)
    value ? super(value.strip) : super
  end

  def theme
    theme_name.presence && Theme.for_name(theme_name)
  end

  def assign_api_token(token)
    api_token = ApiToken.for_token(token)

    if api_token
      api_token.reassign_to(self)
    else
      api_token = api_tokens.create!(token: token)
    end

    api_token
  end

  def merge_to(target_user)
    self.class.transaction do |tx|
      asciicasts.update_all(user_id: target_user.id, updated_at: DateTime.now)
      api_tokens.update_all(user_id: target_user.id, updated_at: DateTime.now)
      destroy
    end
  end

  def asciicast_count
    asciicasts.count
  end

  def asciicasts_excluding(asciicast, limit)
    asciicasts.where('id <> ?', asciicast.id).order('RANDOM()').limit(limit)
  end

  def paged_asciicasts(page, per_page)
    asciicasts.
      includes(:user).
      order("created_at DESC").
      paginate(page, per_page)
  end

  def admin?
    CFG.admin_ids.include?(id)
  end

  def first_login?
    expiring_tokens.count == 1
  end

  private

  def generate_auth_token
    begin
      self[:auth_token] = self.class.generate_auth_token
    end while User.exists?(auth_token: self[:auth_token])
  end

end
Add user model, and .create_with_omniauth method 2012-02-25 16:30:42 +00:00			`class User < ActiveRecord::Base`

Well, 2 letter usernames are fine too 2014-04-10 20:22:33 +00:00			`USERNAME_FORMAT = /\A[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9]\z/`
Validate username format 2014-04-10 20:03:21 +00:00
Log in by email without Persona 2014-10-12 18:36:31 +00:00			`InvalidEmailError = Class.new(StandardError)`

Rename user_token to api_token 2014-02-09 13:44:09 +00:00			`has_many :api_tokens, :dependent => :destroy`
Data model for "Like" 2012-04-06 12:06:40 +00:00			`has_many :asciicasts, :dependent => :destroy`
			`has_many :likes, :dependent => :destroy`
user->comments association 2012-04-06 20:58:44 +00:00			`has_many :comments, :dependent => :destroy`
Introduce ExpiringToken, a base for future authentication 2014-10-04 17:56:16 +00:00			`has_many :expiring_tokens, dependent: :destroy`
User tokens for assigning asciicasts to users 2012-03-04 17:14:58 +00:00
Validate email format 2014-10-05 16:26:30 +00:00			`validates :email, presence: true, on: :update`
			`validates :email, format: { with: /.+@.+\..+/i }, uniqueness: true, if: :email`
Drop "dummy" from users, replace it with temporary_username 2014-10-05 15:47:42 +00:00			`validates :username, uniqueness: { case_sensitive: false },`
Validate username format 2014-04-10 20:03:21 +00:00			`format: { with: USERNAME_FORMAT },`
Well, 2 letter usernames are fine too 2014-04-10 20:22:33 +00:00			`length: { minimum: 2, maximum: 16 },`
Drop "dummy" from users, replace it with temporary_username 2014-10-05 15:47:42 +00:00			`if: :username`
Validate presence and uniqueness of both nickname and email 2013-10-22 15:52:04 +00:00
Drop "dummy" from users, replace it with temporary_username 2014-10-05 15:47:42 +00:00			`scope :with_username, -> { where('username IS NOT NULL') }`
Prevent shadowing real user profiles by dummy ones 2014-02-12 18:51:25 +00:00
Use auth token for permanent sessions 2013-10-22 17:16:18 +00:00			`before_create :generate_auth_token`

Log in by email without Persona 2014-10-12 18:36:31 +00:00			`def self.for_email!(email)`
			`raise InvalidEmailError if email.blank?`

			`self.where(email: email).first_or_create!`
Make Persona the only login option (with the ability to access old accounts) 2013-10-19 18:59:39 +00:00
Log in by email without Persona 2014-10-12 18:36:31 +00:00			`rescue ActiveRecord::RecordInvalid => e`
			`if e.record.errors[:email].present?`
			`raise InvalidEmailError`
			`else`
			`raise e`
Fix User.for_email to never return dummy users without email 2014-09-23 17:05:14 +00:00			`end`
Refactor User.for_credentials/for_email into class methods 2013-10-20 16:51:35 +00:00			`end`
Make Persona the only login option (with the ability to access old accounts) 2013-10-19 18:59:39 +00:00
Drop "dummy" from users, replace it with temporary_username 2014-10-05 15:47:42 +00:00			`def self.for_username!(username)`
			`with_username.where(username: username).first!`
Prevent shadowing real user profiles by dummy ones 2014-02-12 18:51:25 +00:00			`end`

Split User.for_api_token into separate lookup and create methods 2014-02-15 20:37:05 +00:00			`def self.for_api_token(token)`
Create dummy users for new api tokens 2014-02-11 16:49:22 +00:00			`return nil if token.blank?`

Prevent asciicast upload for revoked tokens 2015-04-04 17:59:58 +00:00			`joins(:api_tokens).where(`
			`'api_tokens.token' => token,`
			`'api_tokens.revoked_at' => nil,`
			`).first`
Create dummy users for new api tokens 2014-02-11 16:49:22 +00:00			`end`

Don't use AR API outside of AR classes 2014-02-20 22:14:36 +00:00			`def self.for_auth_token(auth_token)`
			`where(auth_token: auth_token).first`
			`end`

Use auth token for permanent sessions 2013-10-22 17:16:18 +00:00			`def self.generate_auth_token`
			`SecureRandom.urlsafe_base64`
			`end`

Drop "dummy" from users, replace it with temporary_username 2014-10-05 15:47:42 +00:00			`def self.null`
			`new(temporary_username: 'anonymous')`
			`end`

Add ability to revoke recorder tokens 2015-04-02 09:45:39 +00:00			`def active_api_tokens`
			`api_tokens.active`
			`end`

			`def revoked_api_tokens`
			`api_tokens.revoked`
			`end`

Drop "dummy" from users, replace it with temporary_username 2014-10-05 15:47:42 +00:00			`def confirmed?`
			`email.present?`
			`end`

Rename nickname to username 2014-02-12 19:51:01 +00:00			`def username=(value)`
Auto-strip whitespace from email and nickname 2013-10-22 15:56:14 +00:00			`value ? super(value.strip) : super`
			`end`

			`def email=(value)`
			`value ? super(value.strip) : super`
			`end`

Add theme changing for whole user profile and single asciicast 2014-06-30 21:26:25 +00:00			`def theme`
			`theme_name.presence && Theme.for_name(theme_name)`
			`end`

Merge dummy users into real ones when assigning api tokens 2014-02-12 16:41:06 +00:00			`def assign_api_token(token)`
			`api_token = ApiToken.for_token(token)`

			`if api_token`
			`api_token.reassign_to(self)`
			`else`
			`api_token = api_tokens.create!(token: token)`
			`end`

			`api_token`
			`end`

			`def merge_to(target_user)`
			`self.class.transaction do \|tx\|`
			`asciicasts.update_all(user_id: target_user.id, updated_at: DateTime.now)`
			`api_tokens.update_all(user_id: target_user.id, updated_at: DateTime.now)`
			`destroy`
			`end`
User#add_user_token 2012-03-04 19:29:19 +00:00			`end`
Find or build user from omniauth hash in the middleware 2013-08-19 15:08:13 +00:00
Avoid AR chains outside of AR models 2013-11-18 18:06:56 +00:00			`def asciicast_count`
			`asciicasts.count`
			`end`

Introduce AsciicastPresenter 2014-01-18 10:44:13 +00:00			`def asciicasts_excluding(asciicast, limit)`
			`asciicasts.where('id <> ?', asciicast.id).order('RANDOM()').limit(limit)`
			`end`

Refactor user page to use a presenter object 2014-02-01 00:16:28 +00:00			`def paged_asciicasts(page, per_page)`
			`asciicasts.`
			`includes(:user).`
			`order("created_at DESC").`
			`paginate(page, per_page)`
			`end`

Introduce admin 2014-07-05 12:59:42 +00:00			`def admin?`
			`CFG.admin_ids.include?(id)`
			`end`

Log in by email without Persona 2014-10-12 18:36:31 +00:00			`def first_login?`
			`expiring_tokens.count == 1`
			`end`

Use auth token for permanent sessions 2013-10-22 17:16:18 +00:00			`private`

			`def generate_auth_token`
			`begin`
			`self[:auth_token] = self.class.generate_auth_token`
			`end while User.exists?(auth_token: self[:auth_token])`
			`end`

Add user model, and .create_with_omniauth method 2012-02-25 16:30:42 +00:00			`end`