class User < ActiveRecord::Base

  hobo_model
  include Hobo::AuthenticatedUser
  set_login_attr :username
  
  def display_name
    "#{self.username} (#{self.created_at.to_formatted_s(:kurz)})"
  end

  # --- Hobo Permissions --- #

  def super_user?
    login == 'niko'
  end

  def creatable_by?(creator)
    false
  end

  def updatable_by?(updater, new)
    updater == self and same_fields?(new, :username)
  end

  def deletable_by?(deleter)
    false
  end

  def viewable_by?(viewer, field)
    viewer == self and not viewer.guest?
  end


  # --- Fallback permissions --- #

  # (Hobo checks these for models that do not define the *_by? methods)

  def can_create?(obj)
    false
  end

  def can_update?(obj, new)
    false
  end

  def can_delete?(obj)
    false
  end

  def can_view?(obj, field)
    true
  end

  def guest?
    false
  end

end