Sith/core/views/__init__.py


from django.shortcuts import render
from django.http import HttpResponseForbidden
from django.core.exceptions import PermissionDenied, ObjectDoesNotExist
from django.views.generic.base import View

from core.models import Group

def forbidden(request):
    return render(request, "core/403.jinja")

def not_found(request):
    return render(request, "core/404.jinja")


class CanEditPropMixin(View):
    """
    This view is made to protect any child view that would be showing some properties of an object that are restricted
    to only the owner group of the given object.
    In other word, you can make a view with this view as parent, and it would be retricted to the users that are in the
    object's owner_group
    """
    def dispatch(self, request, *arg, **kwargs):
        res = super(CanEditPropMixin, self).dispatch(request, *arg, **kwargs)
        if ((hasattr(self, 'object') and (self.object is None or self.request.user.is_owner(self.object))) or
            (hasattr(self, 'object_list') and (self.object_list is None or self.object_list is [] or self.request.user.is_owner(self.object_list[0])))):
            return res
        try: # Always unlock when 403
            self.object.unset_lock()
        except: pass
        raise PermissionDenied

class CanEditMixin(View):
    """
    This view makes exactly the same this as its direct parent, but checks the group on the edit_group field of the
    object
    """
    def dispatch(self, request, *arg, **kwargs):
        # TODO: WIP: fix permissions with exceptions!
        res = super(CanEditMixin, self).dispatch(request, *arg, **kwargs)
        if ((hasattr(self, 'object') and (self.object is None or self.request.user.can_edit(self.object))) or
            (hasattr(self, 'object_list') and (self.object_list is None or self.object_list is [] or self.request.user.can_edit(self.object_list[0])))):
            return res
        try: # Always unlock when 403
            self.object.unset_lock()
        except: pass
        print("CanEditMixin 403")
        raise PermissionDenied

class CanViewMixin(View):
    """
    This view still makes exactly the same this as its direct parent, but checks the group on the view_group field of
    the object
    """
    def dispatch(self, request, *arg, **kwargs):
        res = super(CanViewMixin, self).dispatch(request, *arg, **kwargs)
        if ((hasattr(self, 'object') and (self.object is None or self.request.user.can_view(self.object))) or
            (hasattr(self, 'object_list') and (self.object_list is None or self.object_list is [] or self.request.user.can_view(self.object_list[0])))):
            return res
        try: # Always unlock when 403
            self.object.unset_lock()
        except: pass
        print("CanViewMixin 403")
        raise PermissionDenied

from .user import *
from .page import *
from .site import *
from .group import *
from .api import *
Implement generic right checking for any View with the right parents 2015-11-27 14:39:42 +00:00
WIP: Add custom 403 and 404, but break a bit the permissions! To be fixed 2015-12-07 16:23:52 +00:00			`from django.shortcuts import render`
Implement generic right checking for any View with the right parents 2015-11-27 14:39:42 +00:00			`from django.http import HttpResponseForbidden`
WIP: Refactor permissions 2015-12-08 08:46:48 +00:00			`from django.core.exceptions import PermissionDenied, ObjectDoesNotExist`
Implement generic right checking for any View with the right parents 2015-11-27 14:39:42 +00:00			`from django.views.generic.base import View`

Repair all tests and update requirements.txt 2015-12-07 15:08:24 +00:00			`from core.models import Group`

WIP: Add custom 403 and 404, but break a bit the permissions! To be fixed 2015-12-07 16:23:52 +00:00			`def forbidden(request):`
WIP: Move to Jinja2 2016-02-01 16:35:55 +00:00			`return render(request, "core/403.jinja")`
WIP: Add custom 403 and 404, but break a bit the permissions! To be fixed 2015-12-07 16:23:52 +00:00
			`def not_found(request):`
WIP: Move to Jinja2 2016-02-01 16:35:55 +00:00			`return render(request, "core/404.jinja")`
WIP: Add custom 403 and 404, but break a bit the permissions! To be fixed 2015-12-07 16:23:52 +00:00

Implement generic right checking for any View with the right parents 2015-11-27 14:39:42 +00:00			`class CanEditPropMixin(View):`
			`"""`
			`This view is made to protect any child view that would be showing some properties of an object that are restricted`
			`to only the owner group of the given object.`
			`In other word, you can make a view with this view as parent, and it would be retricted to the users that are in the`
			`object's owner_group`
			`"""`
			`def dispatch(self, request, arg, *kwargs):`
			`res = super(CanEditPropMixin, self).dispatch(request, arg, *kwargs)`
Fix permissions Mixins 2016-02-02 09:03:18 +00:00			`if ((hasattr(self, 'object') and (self.object is None or self.request.user.is_owner(self.object))) or`
			`(hasattr(self, 'object_list') and (self.object_list is None or self.object_list is [] or self.request.user.is_owner(self.object_list[0])))):`
Implement generic right checking for any View with the right parents 2015-11-27 14:39:42 +00:00			`return res`
Refactor rights handling 2015-12-08 10:10:29 +00:00			`try: # Always unlock when 403`
			`self.object.unset_lock()`
			`except: pass`
WIP: Add custom 403 and 404, but break a bit the permissions! To be fixed 2015-12-07 16:23:52 +00:00			`raise PermissionDenied`
Implement generic right checking for any View with the right parents 2015-11-27 14:39:42 +00:00
Refactor rights handling 2015-12-08 10:10:29 +00:00			`class CanEditMixin(View):`
Implement generic right checking for any View with the right parents 2015-11-27 14:39:42 +00:00			`"""`
			`This view makes exactly the same this as its direct parent, but checks the group on the edit_group field of the`
			`object`
			`"""`
			`def dispatch(self, request, arg, *kwargs):`
WIP: Add custom 403 and 404, but break a bit the permissions! To be fixed 2015-12-07 16:23:52 +00:00			`# TODO: WIP: fix permissions with exceptions!`
Refactor rights handling 2015-12-08 10:10:29 +00:00			`res = super(CanEditMixin, self).dispatch(request, arg, *kwargs)`
Fix permissions Mixins 2016-02-02 09:03:18 +00:00			`if ((hasattr(self, 'object') and (self.object is None or self.request.user.can_edit(self.object))) or`
			`(hasattr(self, 'object_list') and (self.object_list is None or self.object_list is [] or self.request.user.can_edit(self.object_list[0])))):`
WIP: Refactor permissions 2015-12-08 08:46:48 +00:00			`return res`
Refactor rights handling 2015-12-08 10:10:29 +00:00			`try: # Always unlock when 403`
			`self.object.unset_lock()`
			`except: pass`
Club model implementation, various other changes 2016-01-29 14:20:00 +00:00			`print("CanEditMixin 403")`
WIP: Add custom 403 and 404, but break a bit the permissions! To be fixed 2015-12-07 16:23:52 +00:00			`raise PermissionDenied`
Implement generic right checking for any View with the right parents 2015-11-27 14:39:42 +00:00
Refactor rights handling 2015-12-08 10:10:29 +00:00			`class CanViewMixin(View):`
Implement generic right checking for any View with the right parents 2015-11-27 14:39:42 +00:00			`"""`
			`This view still makes exactly the same this as its direct parent, but checks the group on the view_group field of`
			`the object`
			`"""`
			`def dispatch(self, request, arg, *kwargs):`
Refactor rights handling 2015-12-08 10:10:29 +00:00			`res = super(CanViewMixin, self).dispatch(request, arg, *kwargs)`
Fix permissions Mixins 2016-02-02 09:03:18 +00:00			`if ((hasattr(self, 'object') and (self.object is None or self.request.user.can_view(self.object))) or`
			`(hasattr(self, 'object_list') and (self.object_list is None or self.object_list is [] or self.request.user.can_view(self.object_list[0])))):`
Implement generic right checking for any View with the right parents 2015-11-27 14:39:42 +00:00			`return res`
Refactor rights handling 2015-12-08 10:10:29 +00:00			`try: # Always unlock when 403`
			`self.object.unset_lock()`
			`except: pass`
Club model implementation, various other changes 2016-01-29 14:20:00 +00:00			`print("CanViewMixin 403")`
Implement generic right checking for any View with the right parents 2015-11-27 14:39:42 +00:00			`raise PermissionDenied`

Put view into a module 2015-11-24 15:09:46 +00:00			`from .user import *`
			`from .page import *`
			`from .site import *`
Basic group view and permissions management on the pages 2015-11-26 16:40:31 +00:00			`from .group import *`
Add a begining of API and CSS+JS (static files folder) 2016-01-08 16:11:38 +00:00			`from .api import *`
Implement generic right checking for any View with the right parents 2015-11-27 14:39:42 +00:00