Davte/davtelepot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

/auth command and buttons

Browse Source
This commit is contained in:
Davte 2019-07-20 00:04:55 +02:00
parent 81cf37b0eb
commit 4b3228b6bc
1 changed files with 254 additions and 42 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

296
davtelepot/authorization.py
View File

@ -4,7 +4,9 @@
from collections import OrderedDict from collections import OrderedDict
# Project modules # Project modules
from .utilities import make_button from .utilities import (
Confirmator, get_cleaned_text, get_user, make_button, make_inline_keyboard
)
DEFAULT_ROLES = OrderedDict() DEFAULT_ROLES = OrderedDict()
DEFAULT_ROLES[0] = { DEFAULT_ROLES[0] = {
@ -148,7 +150,7 @@ class Role():
elif type(user_record) is int: elif type(user_record) is int:
user_role_id = user_record user_role_id = user_record
if type(user_role_id) is not int: if type(user_role_id) is not int:
for code, role in cls.roles: for code, role in cls.roles.items():
if role.name == user_role_id: if role.name == user_role_id:
user_role_id = code user_role_id = code
break break
@ -177,7 +179,8 @@ class Role():
buttons = [ buttons = [
make_button( make_button(
f"{role.symbol} {role.singular.capitalize()}", f"{role.symbol} {role.singular.capitalize()}",
f"auth:///set|{user_record['id']}_{code}" prefix='auth:///',
data=['set', user_record['id'], code]
) )
for code, role in cls.roles.items() for code, role in cls.roles.items()
] ]
@ -190,7 +193,10 @@ class Role():
def __gt__(self, other): def __gt__(self, other):
"""Return True if self can appoint other.""" """Return True if self can appoint other."""
return ( return (
self.code < other.code (
self.code < other.code
or other.code == 0
)
and self.code in other.can_be_appointed_by and self.code in other.can_be_appointed_by
) )
@ -219,10 +225,10 @@ def get_authorization_function(bot):
"""Take a `bot` and return its authorization_function.""" """Take a `bot` and return its authorization_function."""
def is_authorized(update, user_record=None, authorization_level=2): def is_authorized(update, user_record=None, authorization_level=2):
"""Return True if user role is at least at `authorization_level`.""" """Return True if user role is at least at `authorization_level`."""
user_role = bot.Roles.get_user_role(user_record=user_record) user_role = bot.Role.get_user_role(user_record=user_record)
if user_role.code == 0: if user_role.code == 0:
return False return False
needed_role = bot.Roles.get_user_role(user_role_id=authorization_level) needed_role = bot.Role.get_user_role(user_role_id=authorization_level)
if needed_role.code < user_role.code: if needed_role.code < user_role.code:
return False return False
return True return True
@ -230,47 +236,251 @@ def get_authorization_function(bot):
AUTHORIZATION_MESSAGES = { AUTHORIZATION_MESSAGES = {
'command': { 'auth_command': {
'auth': { 'description': {
{ 'en': "Edit user permissions. To select a user, reply to "
'description': { "a message of theirs or write their username",
'en': "Edit user permissions. To select a user, reply to " 'it': "Cambia il grado di autorizzazione di un utente "
"a message of theirs or write their username", "(in risposta o scrivendone lo username)"
'it': "Cambia il grado di autorizzazione di un utente "
"(in risposta o scrivendone lo username)"
}
}
}, },
'ban': { 'unhandled_case': {
{ 'en': "<code>Unhandled case :/</code>",
'description': { 'it': "<code>Caso non previsto :/</code>"
'en': "Reply to a user with /ban to ban them",
'it': "Banna l'utente (da usare in risposta)"
}
}
}, },
'instructions': {
'en': "Reply with this command to a user or write "
"<code>/auth username</code> to edit their permissions.",
'it': "Usa questo comando in risposta a un utente "
"oppure scrivi <code>/auth username</code> per "
"cambiarne il grado di autorizzazione."
},
'unknown_user': {
'en': "Unknown user.",
'it': "Utente sconosciuto."
},
'choose_user': {
'en': "{n} users match your query. Please select one.",
'it': "Ho trovato {n} utenti che soddisfano questi criteri.\n"
"Per procedere selezionane uno."
},
'no_match': {
'en': "No user matches your query. Please try again.",
'it': "Non ho trovato utenti che soddisfino questi criteri.\n"
"Prova di nuovo."
}
}, },
'button': { 'ban_command': {
'auth': { 'description': {
{ 'en': "Reply to a user with /ban to ban them",
'description': { 'it': "Banna l'utente (da usare in risposta)"
'en': "Edit user permissions", }
'it': "Cambia il grado di autorizzazione di un utente" },
} 'auth_button': {
'description': {
'en': "Edit user permissions",
'it': "Cambia il grado di autorizzazione di un utente"
},
'confirm': {
'en': "Are you sure?",
'it': "Sicuro sicuro?"
},
'back_to_user': {
'en': "Back to user",
'it': "Torna all'utente"
},
'permission_denied': {
'user': {
'en': "You cannot appoint this user!",
'it': "Non hai l'autorità di modificare i permessi di questo "
"utente!"
},
'role': {
'en': "You're not allowed to appoint someone to this role!",
'it': "Non hai l'autorità di conferire questo permesso!"
} }
}, },
} 'no_change': {
'en': "No change suggested!",
'it': "È già così!"
},
'appointed': {
'en': "Permission granted",
'it': "Permesso conferito"
}
},
} }
async def _authorization_command(bot, update, user_record): async def _authorization_command(bot, update, user_record):
# TODO define this function! text = get_cleaned_text(bot=bot, update=update, replace=['auth'])
return reply_markup = None
result = bot.get_message(
'authorization', 'auth_command', 'unhandled_case',
update=update, user_record=user_record
)
if not text:
if 'reply_to_message' not in update:
result = bot.get_message(
'authorization', 'auth_command', 'instructions',
update=update, user_record=user_record
)
else:
with bot.db as db:
user_record = db['users'].find_one(
telegram_id=update['reply_to_message']['from']['id']
)
else:
with bot.db as db:
user_record = list(
db.query(
"SELECT * "
"FROM users "
"WHERE COALESCE("
" first_name || last_name || username,"
" last_name || username,"
" first_name || username,"
" username,"
" first_name || last_name,"
" last_name,"
" first_name"
f") LIKE '%{text}%'"
)
)
if user_record is None:
result = bot.get_message(
'authorization', 'auth_command', 'unknown_user',
update=update, user_record=user_record
)
elif type(user_record) is list and len(user_record) > 1:
result = bot.get_message(
'authorization', 'auth_command', 'choose_user',
update=update, user_record=user_record,
n=len(user_record)
)
reply_markup = make_inline_keyboard(
[
make_button(
f"👤 {get_user(user, link_profile=False)}",
prefix='auth:///',
data=['show', user['id']]
)
for user in user_record[:30]
],
3
)
elif type(user_record) is list and len(user_record) == 0:
result = bot.get_message(
'authorization', 'auth_command', 'no_match',
update=update, user_record=user_record,
)
else:
if type(user_record) is list:
user_record = user_record[0]
result, buttons = bot.Role.get_user_role_panel(user_record)
reply_markup = make_inline_keyboard(buttons, 1)
return dict(
text=result,
reply_markup=reply_markup,
parse_mode='HTML'
)
async def _authorization_button(bot, update, user_record): async def _authorization_button(bot, update, user_record, data):
# TODO define this function! if len(data) == 0:
return data = ['']
command, *arguments = data
user_id = user_record['telegram_id']
if len(arguments) > 0:
other_user_id = arguments[0]
else:
other_user_id = None
result, text, reply_markup = '', '', None
if command in ['show']:
with bot.db as db:
other_user_record = db['users'].find_one(id=other_user_id)
text, buttons = bot.Role.get_user_role_panel(other_user_record)
reply_markup = make_inline_keyboard(buttons, 1)
elif command in ['set'] and len(arguments) > 1:
other_user_id, new_privileges, *_ = arguments
if not Confirmator.get(
key=f'{user_id}_set_{other_user_id}',
confirm_timedelta=5
).confirm:
return bot.get_message(
'authorization', 'auth_button', 'confirm',
update=update, user_record=user_record,
)
with bot.db as db:
other_user_record = db['users'].find_one(id=other_user_id)
user_role = bot.Role.get_user_role(user_record=user_record)
other_user_role = bot.Role.get_user_role(user_record=other_user_record)
if other_user_role.code == new_privileges:
return bot.get_message(
'authorization', 'auth_button', 'no_change',
update=update, user_record=user_record
)
if not user_role > other_user_role:
text = bot.get_message(
'authorization', 'auth_button', 'permission_denied', 'user',
update=update, user_record=user_record
)
reply_markup = make_inline_keyboard(
[
make_button(
bot.get_message(
'authorization', 'auth_button', 'back_to_user',
update=update, user_record=user_record
),
prefix='auth:///',
data=['show', other_user_id]
)
],
1
)
elif new_privileges not in user_role.can_appoint:
text = bot.get_message(
'authorization', 'auth_button', 'permission_denied', 'role',
update=update, user_record=user_record
)
reply_markup = make_inline_keyboard(
[
make_button(
bot.get_message(
'authorization', 'auth_button', 'back_to_user',
update=update, user_record=user_record
),
prefix='auth:///',
data=['show', other_user_id]
)
],
1
)
else:
with bot.db as db:
db['users'].update(
dict(
id=other_user_id,
privileges=new_privileges
),
['id']
)
other_user_record = db['users'].find_one(id=other_user_id)
result = bot.get_message(
'authorization', 'auth_button', 'appointed',
update=update, user_record=user_record
)
text, buttons = bot.Role.get_user_role_panel(other_user_record)
reply_markup = make_inline_keyboard(buttons, 1)
if text:
return dict(
text=result,
edit=dict(
text=text,
reply_markup=reply_markup,
parse_mode='HTML'
)
)
return result
async def _ban_command(bot, update, user_record): async def _ban_command(bot, update, user_record):
@ -309,7 +519,7 @@ def init(bot, roles=None, language='en'):
@bot.command(command='/auth', aliases=[], show_in_keyboard=False, @bot.command(command='/auth', aliases=[], show_in_keyboard=False,
description=bot.get_message( description=bot.get_message(
'authorization', 'command', 'auth', 'description', 'authorization', 'auth_command', 'description',
language=language language=language
), ),
authorization_level='moderator') authorization_level='moderator')
@ -318,15 +528,17 @@ def init(bot, roles=None, language='en'):
@bot.button('auth:///', @bot.button('auth:///',
description=bot.get_message( description=bot.get_message(
'authorization', 'button', 'auth', 'description', 'authorization', 'auth_button', 'description',
language=language language=language
), authorization_level='moderator') ),
async def authorization_button(bot, update, user_record): separator='|',
return await _authorization_button(bot, update, user_record) authorization_level='moderator')
async def authorization_button(bot, update, user_record, data):
return await _authorization_button(bot, update, user_record, data)
@bot.command('/ban', aliases=[], show_in_keyboard=False, @bot.command('/ban', aliases=[], show_in_keyboard=False,
description=bot.get_message( description=bot.get_message(
'authorization', 'command', 'ban', 'description', 'authorization', 'ban_command', 'description',
language=language language=language
), ),
authorization_level='admin') authorization_level='admin')