def daily(dbo):
"""
Tasks to run once each day before users login for the day.
"""
al.info("start daily tasks", "cron.daily", dbo)
try:
# The batch should never be run at a time when users may be
# using the system, remove any database update locks as any
# lock at this time should be erroneous
configuration.db_unlock(dbo)
# Check to see if any updates need performing on this database
if dbupdate.check_for_updates(dbo):
dbupdate.perform_updates(dbo)
if dbupdate.check_for_view_seq_changes(dbo):
dbupdate.install_db_views(dbo)
dbupdate.install_db_sequences(dbo)
# Get the latest news from sheltermanager.com
dbfs.update_asm_news(dbo)
# Shouldn't be anyone logged in at this point
users.auto_logout(dbo)
# Update on shelter and foster animal location fields
animal.update_on_shelter_animal_statuses(dbo)
animal.update_foster_animal_statuses(dbo)
# Update all animal variable data (age, time on shelter, etc)
animal.update_all_variable_animal_data(dbo)
# Update animal figures for reports
animal.update_animal_figures(dbo)
animal.update_animal_figures_annual(dbo)
animal.update_animal_figures_asilomar(dbo)
# Update animal litter counts
animal.update_active_litters(dbo)
# Find any missing person geocodes
person.update_missing_geocodes(dbo)
# Clear out any old audit logs
audit.clean(dbo)
# Remove old publisher logs
dbfs.delete_old_publish_logs(dbo)
# auto cancel any reservations
movement.auto_cancel_reservations(dbo)
# auto cancel animal holds
animal.auto_cancel_holds(dbo)
# auto remove online forms
onlineform.auto_remove_old_incoming_forms(dbo)
# Update waiting list urgencies and auto remove
waitinglist.auto_remove_waitinglist(dbo)
waitinglist.auto_update_urgencies(dbo)
# See if any new PDFs have been attached that we can scale down
media.check_and_scale_pdfs(dbo)
# Email diary notes to users
diary.email_uncompleted_upto_today(dbo)
except:
em = str(sys.exc_info()[0])
al.error("FAIL: running batch tasks: %s" % em, "cron.daily", dbo, sys.exc_info())
# We're done, hurrah!
al.info("end daily tasks", "cron.daily", dbo)
def web_login(post, session, remoteip, path):
"""
Performs a login and sets up the user's session.
Returns the username on successful login, or:
FAIL - problem with user/pass/account/ip
DISABLED - The database is disabled
WRONGSERVER - The database is not on this server
"""
database = post["database"]
username = post["username"]
password = post["password"]
mobileapp = post["mobile"] == "true"
nologconnection = post["nologconnection"] == "true"
if len(username) > 100:
username = username[0:100]
dbo = db.get_database(database)
if dbo.database in ("FAIL", "DISABLED", "WRONGSERVER"):
return dbo.database
# Connect to the database and authenticate the username and password
user = authenticate(dbo, username, password)
if user is not None and not authenticate_ip(user, remoteip):
al.error(
"user %s with ip %s failed ip restriction check '%s'" %
(username, remoteip, user.IPRESTRICTION), "users.web_login", dbo)
return "FAIL"
if user is not None and "DISABLELOGIN" in user and user.DISABLELOGIN == 1:
al.error(
"user %s with ip %s failed as account has logins disabled" %
(username, remoteip), "users.web_login", dbo)
return "FAIL"
if user is not None:
al.info("%s successfully authenticated from %s" % (username, remoteip),
"users.web_login", dbo)
try:
dbo.locked = configuration.smdb_locked(dbo)
dbo.timezone = configuration.timezone(dbo)
dbo.installpath = path
session.locale = configuration.locale(dbo)
dbo.locale = session.locale
session.dbo = dbo
session.user = user.USERNAME
session.superuser = user.SUPERUSER
session.mobileapp = mobileapp
update_session(session)
except:
al.error("failed setting up session: %s" % str(sys.exc_info()[0]),
"users.web_login", dbo, sys.exc_info())
return "FAIL"
try:
session.securitymap = get_security_map(dbo, user.USERNAME)
except:
# This is a pre-3002 login where the securitymap is with
# the user (the error occurs because there's no role table)
al.debug("role table does not exist, using securitymap from user",
"users.web_login", dbo)
session.securitymap = user.SECURITYMAP
try:
ur = get_users(dbo, user.USERNAME)[0]
session.roles = ur.ROLES
session.roleids = ur.ROLEIDS
session.siteid = utils.cint(user.SITEID)
session.locationfilter = utils.nulltostr(user.LOCATIONFILTER)
except:
# Users coming from v2 won't have the
# IPRestriction or EmailAddress fields necessary for get_users - we can't
# help them right now so just give them an empty set of
# roles and locationfilter until they login again after the db update
session.roles = ""
session.roleids = ""
session.locationfilter = ""
session.siteid = 0
try:
# Mark the user logged in
if not nologconnection:
audit.login(dbo, username, remoteip)
# Check to see if any updates need performing on this database
if dbupdate.check_for_updates(dbo):
dbupdate.perform_updates(dbo)
# We did some updates, better reload just in case config/reports/etc changed
update_session(session)
# Check to see if our views and sequences are out of date and need reloading
if dbupdate.check_for_view_seq_changes(dbo):
dbupdate.install_db_views(dbo)
dbupdate.install_db_sequences(dbo)
except:
al.error("failed updating database: %s" % str(sys.exc_info()[0]),
"users.web_login", dbo, sys.exc_info())
try:
al.info("%s logged in" % user.USERNAME, "users.login", dbo)
update_user_activity(dbo, user.USERNAME)
except:
al.error(
"failed updating user activity: %s" % str(sys.exc_info()[0]),
"users.web_login", dbo, sys.exc_info())
return "FAIL"
else:
al.error(
"database:%s username:%s password:%s failed authentication from %s"
% (database, username, password, remoteip), "users.web_login", dbo)
return "FAIL"
return user.USERNAME
def daily(dbo):
"""
Tasks to run once each day before users login for the day.
"""
al.info("start daily tasks", "cron.daily", dbo)
try:
# The batch should never be run at a time when users may be
# using the system, remove any database update locks as any
# lock at this time should be erroneous
configuration.db_unlock(dbo)
try:
# Check to see if any updates need performing on this database
if dbupdate.check_for_updates(dbo):
dbupdate.perform_updates(dbo)
if dbupdate.check_for_view_seq_changes(dbo):
dbupdate.install_db_views(dbo)
dbupdate.install_db_sequences(dbo)
# Get the latest news from sheltermanager.com
dbfs.update_asm_news(dbo)
except:
em = str(sys.exc_info()[0])
al.error("FAIL: running database preparation tasks: %s" % em, "cron.daily", dbo, sys.exc_info())
try:
# Update on shelter and foster animal location fields
animal.update_on_shelter_animal_statuses(dbo)
animal.update_foster_animal_statuses(dbo)
except:
em = str(sys.exc_info()[0])
al.error("FAIL: running animal update tasks: %s" % em, "cron.daily", dbo, sys.exc_info())
try:
# Update all animal variable data (age, time on shelter, etc)
animal.update_all_variable_animal_data(dbo)
except:
em = str(sys.exc_info()[0])
al.error("FAIL: running variable data update: %s" % em, "cron.daily", dbo, sys.exc_info())
try:
# Update animal figures for reports
animal.update_animal_figures(dbo)
animal.update_animal_figures_annual(dbo)
animal.update_animal_figures_asilomar(dbo)
animal.update_animal_figures_monthly_asilomar(dbo)
except:
em = str(sys.exc_info()[0])
al.error("FAIL: running animal figures: %s" % em, "cron.daily", dbo, sys.exc_info())
try:
# Update waiting list urgencies and auto remove
waitinglist.auto_remove_waitinglist(dbo)
waitinglist.auto_update_urgencies(dbo)
except:
em = str(sys.exc_info()[0])
al.error("FAIL: running waiting list tasks: %s" % em, "cron.daily", dbo, sys.exc_info())
# Email diary notes to users
diary.email_uncompleted_upto_today(dbo)
# Update animal litter counts
animal.update_active_litters(dbo)
# Find any missing person geocodes
person.update_missing_geocodes(dbo)
# Clear out any old audit logs
audit.clean(dbo)
# Remove old publisher logs
dbfs.delete_old_publish_logs(dbo)
# auto cancel any reservations
movement.auto_cancel_reservations(dbo)
# auto cancel animal holds
animal.auto_cancel_holds(dbo)
# auto remove online forms
onlineform.auto_remove_old_incoming_forms(dbo)
# See if any new PDFs have been attached that we can scale down
if SCALE_PDF_DURING_BATCH:
media.check_and_scale_pdfs(dbo)
except:
em = str(sys.exc_info()[0])
al.error("FAIL: running batch tasks: %s" % em, "cron.daily", dbo, sys.exc_info())
# We're done, hurrah!
al.info("end daily tasks", "cron.daily", dbo)
def web_login(post, session, remoteip, path):
"""
Performs a login and sets up the user's session.
Returns the username on successful login, or:
FAIL - problem with user/pass/account/ip
DISABLED - The database is disabled
"""
dbo = db.DatabaseInfo()
database = post["database"]
username = post["username"]
password = post["password"]
nologconnection = post["nologconnection"]
# Do we have multiple databases?
if MULTIPLE_DATABASES:
if MULTIPLE_DATABASES_TYPE == "smcom":
# Is this sheltermanager.com? If so, we need to get the
# database connection info (dbo) before we can login.
# If a database hasn't been supplied, let's bail out now
# since we can't do anything
if str(database).strip() == "":
return "FAIL"
else:
dbo = smcom.get_database_info(database)
# Bail out if there was a problem with the database
if dbo.database == "FAIL" or dbo.database == "DISABLED":
return dbo.database
else:
# Look up the database info from our map
dbo = db.get_multiple_database_info(database)
if dbo.database == "FAIL":
return dbo.database
# Connect to the database and authenticate the username and password
user = authenticate(dbo, username, password)
if user is not None and not authenticate_ip(user, remoteip):
al.error(
"user %s with ip %s failed ip restriction check '%s'" %
(username, remoteip, user["IPRESTRICTION"]), "users.web_login",
dbo)
return "FAIL"
if user is not None:
al.info("%s successfully authenticated from %s" % (username, remoteip),
"users.web_login", dbo)
try:
dbo.locked = configuration.smdb_locked(dbo)
dbo.timezone = configuration.timezone(dbo)
dbo.installpath = path
session.locale = configuration.locale(dbo)
dbo.locale = session.locale
session.dbo = dbo
session.user = user["USERNAME"]
session.superuser = user["SUPERUSER"]
session.passchange = (password == "password")
update_session(session)
except:
al.error("failed setting up session: %s" % str(sys.exc_info()[0]),
"users.web_login", dbo, sys.exc_info())
return "FAIL"
try:
session.securitymap = get_security_map(dbo, user["USERNAME"])
except:
# This is a pre-3002 login where the securitymap is with
# the user (the error occurs because there's no role table)
al.debug("role table does not exist, using securitymap from user",
"users.web_login", dbo)
session.securitymap = user["SECURITYMAP"]
try:
ur = get_users(dbo, user["USERNAME"])[0]
session.roles = ur["ROLES"]
session.roleids = ur["ROLEIDS"]
session.locationfilter = utils.nulltostr(user["LOCATIONFILTER"])
except:
# Users coming from v2 won't have the
# IPRestriction or EmailAddress fields necessary for get_users - we can't
# help them right now so just give them an empty set of
# roles and locationfilter until they login again after the db update
session.roles = ""
session.roleids = ""
session.locationfilter = ""
try:
# If it's a sheltermanager.com database, try and update the
# last time the user connected to today
if smcom.active() and database != "" and nologconnection == "":
smcom.set_last_connected(dbo)
except:
pass
try:
# Check to see if any updates need performing on this database
if dbupdate.check_for_updates(dbo):
dbupdate.perform_updates(dbo)
# We did some updates, better reload just in case config/reports/etc changed
update_session(session)
# Check to see if our views and sequences are out of date and need reloading
if dbupdate.check_for_view_seq_changes(dbo):
dbupdate.install_db_views(dbo)
dbupdate.install_db_sequences(dbo)
except:
al.error("failed updating database: %s" % str(sys.exc_info()[0]),
"users.web_login", dbo, sys.exc_info())
try:
# Log out any old users that have been hanging around
auto_logout(dbo)
# Let this user through
login(dbo, user["USERNAME"])
except:
al.error(
"failed updating activeuser table: %s" %
str(sys.exc_info()[0]), "users.web_login", dbo, sys.exc_info())
return "FAIL"
else:
al.error(
"database:%s username:%s password:%s failed authentication from %s"
% (database, username, password, remoteip), "users.web_login", dbo)
return "FAIL"
return user["USERNAME"]
def web_login(post, session, remoteip, path):
"""
Performs a login and sets up the user's session.
Returns the username on successful login, or:
FAIL - problem with user/pass/account/ip
DISABLED - The database is disabled
WRONGSERVER - The database is not on this server
"""
dbo = db.DatabaseInfo()
database = post["database"]
username = post["username"]
password = post["password"]
mobileapp = post["mobile"] == "true"
nologconnection = post["nologconnection"]
if len(username) > 100:
username = username[0:100]
# Do we have multiple databases?
if MULTIPLE_DATABASES:
if MULTIPLE_DATABASES_TYPE == "smcom":
# Is this sheltermanager.com? If so, we need to get the
# database connection info (dbo) before we can login.
# If a database hasn't been supplied, let's bail out now
# since we can't do anything
if str(database).strip() == "":
return "FAIL"
else:
dbo = smcom.get_database_info(database)
# Bail out if there was a problem with the database
if dbo.database in ("FAIL", "DISABLED", "WRONGSERVER"):
return dbo.database
else:
# Look up the database info from our map
dbo = db.get_multiple_database_info(database)
if dbo.database == "FAIL":
return dbo.database
# Connect to the database and authenticate the username and password
user = authenticate(dbo, username, password)
if user is not None and not authenticate_ip(user, remoteip):
al.error("user %s with ip %s failed ip restriction check '%s'" % (username, remoteip, user["IPRESTRICTION"]), "users.web_login", dbo)
return "FAIL"
if user is not None:
al.info("%s successfully authenticated from %s" % (username, remoteip), "users.web_login", dbo)
try:
dbo.locked = configuration.smdb_locked(dbo)
dbo.timezone = configuration.timezone(dbo)
dbo.installpath = path
session.locale = configuration.locale(dbo)
dbo.locale = session.locale
session.dbo = dbo
session.user = user["USERNAME"]
session.superuser = user["SUPERUSER"]
session.passchange = (password == "password")
session.mobileapp = mobileapp
update_session(session)
except:
al.error("failed setting up session: %s" % str(sys.exc_info()[0]), "users.web_login", dbo, sys.exc_info())
return "FAIL"
try:
session.securitymap = get_security_map(dbo, user["USERNAME"])
except:
# This is a pre-3002 login where the securitymap is with
# the user (the error occurs because there's no role table)
al.debug("role table does not exist, using securitymap from user", "users.web_login", dbo)
session.securitymap = user["SECURITYMAP"]
try:
ur = get_users(dbo, user["USERNAME"])[0]
session.roles = ur["ROLES"]
session.roleids = ur["ROLEIDS"]
session.siteid = utils.cint(user["SITEID"])
session.locationfilter = utils.nulltostr(user["LOCATIONFILTER"])
except:
# Users coming from v2 won't have the
# IPRestriction or EmailAddress fields necessary for get_users - we can't
# help them right now so just give them an empty set of
# roles and locationfilter until they login again after the db update
session.roles = ""
session.roleids = ""
session.locationfilter = ""
session.siteid = 0
try:
# If it's a sheltermanager.com database, try and update the
# last time the user connected to today
if smcom.active() and database != "" and nologconnection == "":
smcom.set_last_connected(dbo)
except:
pass
try:
# Mark the user logged in
audit.login(dbo, username)
# Check to see if any updates need performing on this database
if dbupdate.check_for_updates(dbo):
dbupdate.perform_updates(dbo)
# We did some updates, better reload just in case config/reports/etc changed
update_session(session)
# Check to see if our views and sequences are out of date and need reloading
if dbupdate.check_for_view_seq_changes(dbo):
dbupdate.install_db_views(dbo)
dbupdate.install_db_sequences(dbo)
except:
al.error("failed updating database: %s" % str(sys.exc_info()[0]), "users.web_login", dbo, sys.exc_info())
try:
al.info("%s logged in" % user["USERNAME"], "users.login", dbo)
update_user_activity(dbo, user["USERNAME"])
except:
al.error("failed updating user activity: %s" % str(sys.exc_info()[0]), "users.web_login", dbo, sys.exc_info())
return "FAIL"
else:
al.error("database:%s username:%s password:%s failed authentication from %s" % (database, username, password, remoteip), "users.web_login", dbo)
return "FAIL"
return user["USERNAME"]