+ validates_uniqueness_of :openid_url, :allow_nil => true
+ validates_length_of :pass_crypt, :within => 8..255
+ validates_length_of :display_name, :within => 3..255, :allow_nil => true
+ validates_email_format_of :email, :if => Proc.new { |u| u.email_changed? }
+ validates_email_format_of :new_email, :allow_blank => true, :if => Proc.new { |u| u.new_email_changed? }
+ validates_format_of :display_name, :with => /^[^\/;.,?]*$/, :if => Proc.new { |u| u.display_name_changed? }
+ validates_format_of :display_name, :with => /^\S/, :message => "has leading whitespace", :if => Proc.new { |u| u.display_name_changed? }
+ validates_format_of :display_name, :with => /\S$/, :message => "has trailing whitespace", :if => Proc.new { |u| u.display_name_changed? }
+ validates_numericality_of :home_lat, :allow_nil => true
+ validates_numericality_of :home_lon, :allow_nil => true
+ validates_numericality_of :home_zoom, :only_integer => true, :allow_nil => true
+ validates_inclusion_of :preferred_editor, :in => Editors::ALL_EDITORS, :allow_nil => true
+
+ after_initialize :set_creation_time
+ before_save :encrypt_password
+
+ file_column :image, :magick => { :geometry => "100x100>" }
+
+ def self.authenticate(options)
+ if options[:username] and options[:password]
+ user = where("email = ? OR display_name = ?", options[:username], options[:username]).first
+ user = nil if user and user.pass_crypt != OSM::encrypt_password(options[:password], user.pass_salt)
+ elsif options[:token]
+ token = UserToken.where(:token => options[:token]).preload(:user).first
+ user = token.user if token
+ end
+
+ if user and
+ ( user.status == "deleted" or
+ ( user.status == "pending" and not options[:pending] ) or
+ ( user.status == "suspended" and not options[:suspended] ) )
+ user = nil
+ end
+
+ token.update_attribute(:expiry, 1.week.from_now) if token and user
+
+ return user
+ end