203 lines
8.5 KiB
Ruby
203 lines
8.5 KiB
Ruby
#
|
|
# Copyright (C) 2012 - present Instructure, Inc.
|
|
#
|
|
# This file is part of Canvas.
|
|
#
|
|
# Canvas is free software: you can redistribute it and/or modify it under
|
|
# the terms of the GNU Affero General Public License as published by the Free
|
|
# Software Foundation, version 3 of the License.
|
|
#
|
|
# Canvas is distributed in the hope that it will be useful, but WITHOUT ANY
|
|
# WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
|
|
# A PARTICULAR PURPOSE. See the GNU Affero General Public License for more
|
|
# details.
|
|
#
|
|
# You should have received a copy of the GNU Affero General Public License along
|
|
# with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
module UserSearch
|
|
|
|
def self.for_user_in_context(search_term, context, searcher, session=nil, options = {})
|
|
search_term = search_term.to_s
|
|
return User.none if search_term.strip.empty?
|
|
base_scope = scope_for(context, searcher, options.slice(:enrollment_type, :enrollment_role,
|
|
:enrollment_role_id, :exclude_groups, :enrollment_state, :include_inactive_enrollments, :sort, :order))
|
|
if search_term.to_s =~ Api::ID_REGEX
|
|
db_id = Shard.relative_id_for(search_term, Shard.current, Shard.current)
|
|
scope = base_scope.where(id: db_id)
|
|
if scope.exists?
|
|
return scope
|
|
elsif !SearchTermHelper.valid_search_term?(search_term)
|
|
return User.none
|
|
end
|
|
# no user found by id, so lets go ahead with the regular search, maybe this person just has a ton of numbers in their name
|
|
end
|
|
|
|
SearchTermHelper.validate_search_term(search_term)
|
|
|
|
unless context.grants_right?(searcher, session, :manage_students) ||
|
|
context.grants_right?(searcher, session, :manage_admin_users)
|
|
restrict_search = true
|
|
end
|
|
context.shard.activate do
|
|
base_scope = base_scope.where(conditions_statement(search_term, {:restrict_search => restrict_search}))
|
|
if options[:role_filter_id] && options[:role_filter_id] != ""
|
|
base_scope = base_scope.where("#{options[:role_filter_id]} IN
|
|
(SELECT role_id FROM #{Enrollment.quoted_table_name}
|
|
WHERE #{Enrollment.quoted_table_name}.user_id = #{User.quoted_table_name}.id)")
|
|
end
|
|
base_scope
|
|
end
|
|
end
|
|
|
|
def self.conditions_statement(search_term, options={})
|
|
pattern = like_string_for(search_term)
|
|
conditions = []
|
|
|
|
if complex_search_enabled? && !options[:restrict_search]
|
|
conditions << complex_sql << pattern << pattern << pattern << CommunicationChannel::TYPE_EMAIL << pattern
|
|
else
|
|
conditions << like_condition('users.name') << pattern
|
|
end
|
|
|
|
conditions
|
|
end
|
|
|
|
def self.like_string_for(search_term)
|
|
pattern_type = (gist_search_enabled? ? :full : :right)
|
|
wildcard_pattern(search_term, :type => pattern_type, :case_sensitive => false)
|
|
end
|
|
|
|
def self.scope_for(context, searcher, options={})
|
|
enrollment_roles = Array(options[:enrollment_role]) if options[:enrollment_role]
|
|
enrollment_role_ids = Array(options[:enrollment_role_id]) if options[:enrollment_role_id]
|
|
enrollment_types = Array(options[:enrollment_type]) if options[:enrollment_type]
|
|
enrollment_states = Array(options[:enrollment_state]) if options[:enrollment_state]
|
|
include_prior_enrollments = !options[:enrollment_state].nil?
|
|
include_inactive_enrollments = !!options[:include_inactive_enrollments]
|
|
exclude_groups = Array(options[:exclude_groups]) if options[:exclude_groups]
|
|
|
|
users = if context.is_a?(Account)
|
|
User.of_account(context).active
|
|
elsif context.is_a?(Course)
|
|
context.users_visible_to(searcher, include_prior_enrollments,
|
|
enrollment_state: enrollment_states, include_inactive: include_inactive_enrollments).distinct
|
|
else
|
|
context.users_visible_to(searcher).distinct
|
|
end
|
|
|
|
users = if options[:sort] == "last_login"
|
|
if options[:order] == 'desc'
|
|
users.order("MAX(current_login_at) desc, id desc")
|
|
else
|
|
users.order("MAX(current_login_at), id")
|
|
end
|
|
elsif options[:sort] == "username"
|
|
if options[:order] == 'desc'
|
|
users.order_by_sortable_name(direction: :descending)
|
|
else
|
|
users.order_by_sortable_name
|
|
end
|
|
elsif options[:sort] == "email"
|
|
if options[:order] == 'desc'
|
|
users.order("(SELECT unique_id FROM #{Pseudonym.quoted_table_name}
|
|
WHERE #{Pseudonym.quoted_table_name}.user_id = #{User.quoted_table_name}.id
|
|
AND unique_id ~* \'\\A([^@\\s]+)@((?:[-a-z0-9]+\\.)+[a-z]{2,})\\Z\'
|
|
LIMIT 1)
|
|
DESC, id DESC")
|
|
else
|
|
users.order("(SELECT unique_id FROM #{Pseudonym.quoted_table_name}
|
|
WHERE #{Pseudonym.quoted_table_name}.user_id = #{User.quoted_table_name}.id
|
|
AND unique_id ~* \'\\A([^@\\s]+)@((?:[-a-z0-9]+\\.)+[a-z]{2,})\\Z\'
|
|
LIMIT 1)")
|
|
end
|
|
elsif options[:sort] == "sis_id"
|
|
if options[:order] == 'desc'
|
|
users.order("(SELECT sis_user_id FROM #{Pseudonym.quoted_table_name}
|
|
WHERE #{Pseudonym.quoted_table_name}.user_id = #{User.quoted_table_name}.id
|
|
LIMIT 1) DESC, id DESC")
|
|
else
|
|
users.order("(SELECT sis_user_id FROM #{Pseudonym.quoted_table_name}
|
|
WHERE #{Pseudonym.quoted_table_name}.user_id = #{User.quoted_table_name}.id
|
|
LIMIT 1)")
|
|
end
|
|
else
|
|
users.order_by_sortable_name
|
|
end
|
|
|
|
if options[:role_filter_id] && options[:role_filter_id] != ""
|
|
users = users.where("#{options[:role_filter_id]} IN
|
|
(SELECT role_id FROM #{Enrollment.quoted_table_name}
|
|
WHERE #{Enrollment.quoted_table_name}.user_id = #{User.quoted_table_name}.id)")
|
|
end
|
|
|
|
if enrollment_role_ids || enrollment_roles
|
|
roles = if enrollment_role_ids
|
|
enrollment_role_ids.map{|id| Role.get_role_by_id(id)}.compact
|
|
else
|
|
enrollment_roles.map{|name| context.is_a?(Account) ? context.get_course_role_by_name(name) :
|
|
context.account.get_course_role_by_name(name)}.compact
|
|
end
|
|
conditions_sql = "role_id IN (?)"
|
|
# TODO: this can go away after we take out the enrollment role shim (after role_id has been populated)
|
|
roles.each do |role|
|
|
if role.built_in?
|
|
conditions_sql += " OR (role_id IS NULL AND type = #{User.connection.quote(role.name)})"
|
|
end
|
|
end
|
|
users = users.where(conditions_sql, roles.map(&:id))
|
|
elsif enrollment_types
|
|
enrollment_types = enrollment_types.map { |e| "#{e.camelize}Enrollment" }
|
|
if enrollment_types.any?{ |et| !Enrollment.readable_types.keys.include?(et) }
|
|
raise ArgumentError, 'Invalid Enrollment Type'
|
|
end
|
|
if context.is_a?(Group) && context.context_type == "Course"
|
|
users = users.joins(:enrollments).where(:enrollments => {:course_id => context.context_id})
|
|
end
|
|
users = users.where(:enrollments => { :type => enrollment_types })
|
|
end
|
|
|
|
if exclude_groups
|
|
users = users.where(Group.not_in_group_sql_fragment(exclude_groups))
|
|
end
|
|
|
|
users
|
|
end
|
|
|
|
private
|
|
|
|
def self.complex_sql
|
|
<<-SQL
|
|
(EXISTS (SELECT 1 FROM #{Pseudonym.quoted_table_name}
|
|
WHERE (#{like_condition('pseudonyms.sis_user_id')} OR
|
|
#{like_condition('pseudonyms.unique_id')})
|
|
AND pseudonyms.user_id = users.id
|
|
AND pseudonyms.workflow_state='active')
|
|
OR (#{like_condition('users.name')})
|
|
OR EXISTS (SELECT 1 FROM #{CommunicationChannel.quoted_table_name}
|
|
WHERE communication_channels.user_id = users.id
|
|
AND communication_channels.path_type = ?
|
|
AND #{like_condition('communication_channels.path')}
|
|
AND communication_channels.workflow_state in ('active', 'unconfirmed')))
|
|
SQL
|
|
end
|
|
|
|
def self.gist_search_enabled?
|
|
Setting.get('user_search_with_gist', 'true') == 'true'
|
|
end
|
|
|
|
def self.complex_search_enabled?
|
|
Setting.get('user_search_with_full_complexity', 'true') == 'true'
|
|
end
|
|
|
|
def self.like_condition(value)
|
|
ActiveRecord::Base.like_condition(value, 'lower(?)')
|
|
end
|
|
|
|
def self.wildcard_pattern(value, options)
|
|
ActiveRecord::Base.wildcard_pattern(value, options)
|
|
end
|
|
|
|
|
|
end
|