Changeset 3615

Timestamp:

08/19/06 11:27:56 (2 years ago)

Author:

clong

Message:

[per-object-permissions] Updating admin interface of RLP to be on a separate page, not entirely working at this point
[per-object-permissions] Changed global.css to apply styles to reset button

Files:

• django/branches/per-object-permissions/django/contrib/admin/media/css/global.css (modified) (1 diff)
• django/branches/per-object-permissions/django/contrib/admin/row_level_perm_manipulator.py (modified) (1 diff)
• django/branches/per-object-permissions/django/contrib/admin/templates/admin/change_form.html (modified) (2 diffs)
• django/branches/per-object-permissions/django/contrib/admin/templates/admin/row_level_permission.html (modified) (5 diffs)
• django/branches/per-object-permissions/django/contrib/admin/urls.py (modified) (2 diffs)
• django/branches/per-object-permissions/django/contrib/admin/views/row_level_permissions.py (modified) (5 diffs)

django/branches/per-object-permissions/django/contrib/admin/media/css/global.css

@@ -91 +91 @@
-input[type=submit].default, .submit-row input.default { border:2px solid #5b80b2; background:#7CA0C7 url(../img/admin/default-bg.gif) bottom repeat-x; font-weight:bold; color:white; }
-input[type=submit].default:active { background-image:url(../img/admin/default-bg-reverse.gif); background-position:top; }
+/* RESET BUTTONS */
+input[type=reset], input[type=button], .submit-row input { background:white url(../img/admin/nav-bg.gif) bottom repeat-x; padding:3px; color:black; border:1px solid #bbb; border-color:#ddd #aaa #aaa #ddd; }
+input[type=reseet]:active, input[type=button]:active { background-image:url(../img/admin/nav-bg-reverse.gif); background-position:top; }
+input[type=reset].default, .submit-row input.default { border:2px solid #5b80b2; background:#7CA0C7 url(../img/admin/default-bg.gif) bottom repeat-x; font-weight:bold; color:white; }
+input[type=reset].default:active { background-image:url(../img/admin/default-bg-reverse.gif); background-position:top; }
-
-/* MODULES */

django/branches/per-object-permissions/django/contrib/admin/row_level_perm_manipulator.py

@@ -117 +117 @@
-            choice_list.extend([(ct.name.title(), object_choice)])
-            #choice_list.extend([(MultipleObjSelectField.returnKey(o, ct=ct), str(o)+" ("+ct.name.title()+")") for o in obj_choices])
-        print choice_list
-        super(MultipleObjSelectField, self).__init__(field_name, choices=choice_list, 
-                                                     size=size, is_required=is_required, 

django/branches/per-object-permissions/django/contrib/admin/templates/admin/change_form.html

@@ -67 +67 @@
-</form>
-
+{% comment %}
-{% if new_rlp_form  %}
-<div id="row_level_perm_container">
@@ -72 +73 @@
-</div>
-{% endif %}
+{% endcomment %}
-
-</div>

django/branches/per-object-permissions/django/contrib/admin/templates/admin/row_level_permission.html

@@ -1 @@
-
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
-
-
-
-
-
-
-
+
-<h2>{% trans "Add Permissions" %}</h2>
-../../../auth/row_level_permission/add/{{ content_type_id }}/{{ object_id }}
+add
-<table id="add-rlpTable">
-<tr class="header">
@@ -47 +62 @@
-</table>
-</form>
+{% end_if_has_perm %}
-
+{% if_has_perm "auth.change_rowlevelpermission" %}
-<h2>{% trans "Current Permissions" %}</h2>
-<table id="current-rlpTable">
@@ -91 +108 @@
-                <br/>
-                <!--<a href="../../../auth/row_level_permission/{% objref o.rlp %}/delete/" class="deleteLink" onclick="row_level_permission.deleteRLP('{% objref o.rlp %}'); return false;">{% trans 'Delete' %}</a> |-->
-L
+l
-                <a href="javascript:row_level_permission.copyToNew({{ o.rlp.id }})" class="copyToNewLink">{% trans 'Copy to New' %}</a>
-        </td>   
@@ -105 +122 @@
-                        <input id="apply_selected_button" type="submit" value="{% trans 'Apply Selected' %}" />
-                </form>
+                <form id="delete_selected_form" method="POST" name="delete_selected_form"  onsubmit="alert('Not yet working'); return false;">
+                        <input id="delete_selected_button" type="submit" value="{% trans 'Delete Selected' %}" />
+                </form>
-        </td>
-</tr>
+{% if is_paginated %}
+<tr align="right">
+<td colspan="5">
+{% if has_previous %} <a href="?page={{ previous }}"> &lt;&lt; </a> {% endif %} {% if has_next %} <a href="?page={{ next }}"> &gt;&gt; </a>{% endif %}
+</td>
+</tr>
+{% endif %}
-</TBODY>
-</table>
@@ -112 +139 @@
-<em>{% trans 'No row level permissions'%}</em>
-{% endif %}
+{% end_if_has_perm %}
+</div>
+</div>
+{% endblock %}

django/branches/per-object-permissions/django/contrib/admin/urls.py

@@ -31 +31 @@
-    ('^auth/row_level_permission/(?P<ct_id>\d+)/(?P<rlp_id>\d+)/(?P<hash>\w+)/delete/$', 'django.contrib.admin.views.row_level_permissions.delete_row_level_permission'),
-    ('^auth/row_level_permission/(?P<ct_id>\d+)/(?P<rlp_id>\d+)/(?P<hash>\w+)/change/$', 'django.contrib.admin.views.row_level_permissions.change_row_level_permission'),
-
+
+
-
-    # "Add user" -- a special-case view
@@ -41 +42 @@
-    ('^([^/]+)/([^/]+)/(.+)/history/$', 'django.contrib.admin.views.main.history'),
-    ('^([^/]+)/([^/]+)/(.+)/delete/$', 'django.contrib.admin.views.main.delete_stage'),
+    ('^([^/]+)/([^/]+)/(.+)/row_level_permissions/$', 'django.contrib.admin.views.row_level_permissions.edit_row_level_permissions'),
+    ('^([^/]+)/([^/]+)/(.+)/row_level_permissions/add/$', 'django.contrib.admin.views.row_level_permissions.add_row_level_permission'),
-    ('^([^/]+)/([^/]+)/(.+)/$', 'django.contrib.admin.views.main.change_stage'),
-)

django/branches/per-object-permissions/django/contrib/admin/views/row_level_permissions.py

@@ -1 +1 @@
-from django.contrib.admin import utils
+from django import forms, template
-from django.shortcuts import render_to_response, get_object_or_404
-from django.http import Http404, HttpResponse, HttpResponseRedirect
-from django.contrib.contenttypes.models import ContentType
-from django.contrib.auth.models import RowLevelPermission
+from django.contrib.admin.views import main
+from django.db import models
-from django.contrib.admin.row_level_perm_manipulator import AddRLPManipulator, ChangeRLPManipulator
-from django.core.exceptions import ImproperlyConfigured, ObjectDoesNotExist, PermissionDenied
+from django.core.paginator import ObjectPaginator, InvalidPage
-import simplejson
+
+def edit_row_level_permissions(request, app_label, model_name, object_id):
+    model = models.get_model(app_label, model_name)
+    object_id = main.unquote(object_id)
+    
+    model_ct = ContentType.objects.get_for_model(model)
+    model_instance = get_object_or_404(model, pk=object_id)
+    opts = model_instance._meta
+    
+    if not opts.row_level_permissions:
+        raise Http404
+    
+    if not request.user.has_perm(opts.app_label + '.' + opts.get_change_permission(), object=model_instance):
+        raise PermissionDenied
+    if not request.user.has_perm(RowLevelPermission._meta.app_label + '.' + RowLevelPermission._meta.get_change_permission()):
+        raise PermissionDenied    
+    
+    #TODO: For now takes the number per page from the model instance not the RLP object
+    paginator = ObjectPaginator(model_instance.row_level_permissions.order_by('owner_ct', 'owner_id'),
+                                opts.admin.list_per_page)
+    
+    page = int(request.GET.get('page', 0))
+    rlp_list = paginator.get_page(page)
+
+    c = template.RequestContext(request, {
+        'title': _('Edit Row Level Permissions'),
+        'object_id': object_id,
+        'content_type_id':model_ct.id,
+        'original': model_instance,
+        'opts':opts,
+        "is_paginated": paginator.has_next_page(0),
+        "has_next": paginator.has_next_page(page),
+        "has_previous": paginator.has_previous_page(page),
+        "page": page + 1,
+        "next": page + 1,
+        "previous": page - 1,
+    })   
+    
+    rlp_errors = rlp_new_data = {}
+    add_rlp_manip = AddRLPManipulator(model_instance, model_ct)
+    edit_rlp_manip = ChangeRLPManipulator(model_ct)
+    new_rlp_form = forms.FormWrapper(add_rlp_manip, rlp_new_data, rlp_errors)
+    empty_rlp_form = forms.FormWrapper(edit_rlp_manip, rlp_new_data, rlp_errors)
+    rlp_form_list = []
+    for r in rlp_list:
+        owner_val = str(r.owner_ct)+"-"+str(r.owner_id)
+        data = {'id':r.id, 'owner':owner_val, 'perm':r.permission.id, 'negative':r.negative}
+        rlp_form_list.append({'form':forms.FormWrapper(edit_rlp_manip, data, rlp_errors), 'rlp':r})
+    rlp_context = {'new_rlp_form':new_rlp_form, 
+               'rlp_form_list':rlp_form_list, 
+               'empty_rlp_form':empty_rlp_form,}
+    
+    c.update(rlp_context)
+    
+    return render_to_response([
+        "admin/%s/%s/row_level_permission.html" % (opts.app_label, opts.object_name.lower()),
+        "admin/%s/row_level_permission.html" % opts.app_label,
+        "admin/row_level_permission.html"], context_instance=c)
-
-def delete_row_level_permission(request, ct_id, rlp_id, hash):
-    msg = {}
-    ajax = request.GET.has_key("ajax")
-    if utils.verify_objref_hash(ct_id, rlp_id, hash):
-        rlp = get_object_or_404(RowLevelPermission, pk=rlp_id)
-        ct = rlp.model_ct
-        obj = rlp.model
-
-opts.app_label + '.' + opts
+
+rlp._meta.app_label + '.' + rlp._meta
-            raise PermissionDenied   
-
+, object=obj
-            raise PermissionDenied           
+
-        rlp.delete()
-        msg = {"result":True, "text":_("Row level permission was successful deleted"), "id":rlp_id}
-    else:
-        msg = { 'result':False, 'text': _("row level permission not found (bad hash)" )}
-    if ajax:
-        return HttpResponse(simplejson.dumps(msg), 'text/javascript')
-    request.user.message_set.create(message=msg['text'])
-    #return HttpResponseRedirect("/edit/%s/%s" % (ct.model, obj.id))
-    return HttpResponseRedirect("../../../../../../%s/%s/%s" % (obj._meta.app_label, obj._meta.module_name , str(obj.id)))
-
-
+
+
+
+
+
+
+
+
+
-    msg = {}
-    ajax = request.GET.has_key("ajax")
-    if not request.POST:
-        msg = { 'result':False, 'text': _("Only POSTs are allowed" )} 
-
-
+
-        request.user.message_set.create(message=msg['text'])
-
+ect
-
-
-
-
+
+
+
+
+
+
+
-        raise PermissionDenied  
-
@@ -65 +132 @@
-        else:
-            msg = {"result":True, "text":_("Row level permissions have successfully been added.")}
-    if not ajax:
-        request.user.message_set.create(message=msg['text'])
-        return HttpResponseRedirect("../../../../../%s/%s/%s" % (obj._meta.app_label, obj._meta.module_name , str(obj.id)))
-    
-    
-    resp_list = []
@@ -75 +138 @@
-        resp_list.append({"id":rlp.id, "permission":rlp.permission.id, "hash":hash})
-    msg["results"]=resp_list
-
+
+
+
+
-
-def change_row_level_permission(request, ct_id, rlp_id, hash):    
@@ -97 +163 @@
-        raise PermissionDenied  
-
-ect_model = rlp.model_ct.model_class()
-object_model._meta.app_label + '.' + object_model._meta.get_change_permission()
+ = rlp.model
+rlp._meta.app_label + '.' + rlp._meta.get_change_permission(), object=obj
-        raise PermissionDenied
-    
@@ -115 +181 @@
-    if ajax:
-        return HttpResponse(simplejson.dumps(msg), 'text/javascript')
-
-
+
+
+
+