1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
|
#!/usr/bin/env python
# -*- coding: utf-8 -*-
# Copyright (C) 2012-2013 Étienne Loks <etienne.loks_AT_peacefrogsDOTnet>
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU Affero General Public License as
# published by the Free Software Foundation, either version 3 of the
# License, or (at your option) any later version.
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU Affero General Public License for more details.
# You should have received a copy of the GNU Affero General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
# See the file COPYING for details.
from ishtar_common.models import get_current_profile
class SectionItem:
def __init__(self, idx, label, childs=[], profile_restriction=None, css=''):
self.idx = idx
self.label = label
self.childs = childs
self.available = False
self.items = {}
self.profile_restriction = profile_restriction
self.css = css
def check_profile_restriction(self):
if self.profile_restriction:
profile = get_current_profile()
if not getattr(profile, self.profile_restriction):
return False
return True
def can_be_available(self, user, session=None):
if not self.check_profile_restriction():
return False
for child in self.childs:
if child.can_be_available(user, session=session):
return True
return False
def is_available(self, user, obj=None, session=None):
for child in self.childs:
if child.is_available(user, obj, session=session):
return True
return False
def set_items(self, user, items, current_action=None, session=None):
selected = None
if user:
self.available = self.can_be_available(user, session=session)
for child in self.childs:
selected = child.set_items(user, items, current_action,
session=session) or selected
items[child.idx] = child
return selected
class MenuItem:
def __init__(self, idx, label, model=None, access_controls=[],
profile_restriction=None, css=''):
self.idx = idx
self.label = label
self.model = model
self.access_controls = access_controls
self.available = False
self.profile_restriction = profile_restriction
self.css = css
if not self.check_profile_restriction():
return False
def check_profile_restriction(self):
if self.profile_restriction:
profile = get_current_profile()
if not getattr(profile, self.profile_restriction):
return False
return True
def can_be_available(self, user, session=None):
if not self.check_profile_restriction():
return False
if not self.access_controls:
return True
prefix = (self.model._meta.app_label + '.') if self.model else ''
for access_control in self.access_controls:
access_control = prefix + access_control
if hasattr(user, 'ishtaruser') and \
user.ishtaruser.has_perm(access_control, self.model,
session=session) or \
access_control in user.get_group_permissions():
return True
# manage by person type
if hasattr(user, 'ishtaruser'):
if user.ishtaruser.has_right(self.idx, session=session):
return True
return False
def is_available(self, user, obj=None, session=None):
if not self.check_profile_restriction():
return False
if not self.access_controls:
return True
prefix = (self.model._meta.app_label + '.') if self.model else ''
for access_control in self.access_controls:
access_control = prefix + access_control
if user.has_perm(access_control, self.model, obj=obj):
# session=session):
return True
# manage by person type
if hasattr(user, 'ishtaruser'):
if user.ishtaruser.has_right(self.idx, session=session):
return True
return False
def set_items(self, user, items, current_action=None, session=None):
if user:
self.available = self.can_be_available(user, session=session)
if self.idx == current_action:
return True
|
