Changeset 4100

Timestamp:

11/24/06 23:18:33 (2 years ago)

Author:

adrian

Message:

per-object-permissions: Made some code-formatting changes

Files:

• django/branches/per-object-permissions/django/contrib/admin/media/js/row_level_permission.js (modified) (3 diffs)
• django/branches/per-object-permissions/django/contrib/admin/row_level_perm_manipulator.py (modified) (6 diffs)
• django/branches/per-object-permissions/django/contrib/admin/templatetags/admin_modify.py (modified) (2 diffs)
• django/branches/per-object-permissions/django/contrib/admin/utils.py (modified) (1 diff)
• django/branches/per-object-permissions/django/contrib/auth/models.py (modified) (18 diffs)
• django/branches/per-object-permissions/django/contrib/auth/templatetags/auth.py (modified) (6 diffs)
• django/branches/per-object-permissions/django/db/models/manipulators.py (modified) (1 diff)

django/branches/per-object-permissions/django/contrib/admin/media/js/row_level_permission.js

@@ -1 +1 @@
-var row_level_permission = {
-
-
+
-            var newForm = document.getElementById("addRLPForm");
-            var form = document.getElementById("editRLPForm-"+id);
@@ -8 +7 @@
-            newForm.negative.checked = form.negative.checked;
-        },
-
-
-
+
+
-                var eleList = document.getElementsByName("apply_checkbox");
-                var formList = [];
-
+ 
-                {
-                        var ele = eleList[i];
-
-(ele.checked)        
+ 
+ (ele.checked) 
-                                        ele.form.submit();
-                                }
@@ -24 +22 @@
-                return false;
-        },
-        
-        init: function() {
-
+
-        }
-}

django/branches/per-object-permissions/django/contrib/admin/row_level_perm_manipulator.py

@@ -11 +11 @@
-            self.ct = ct
-            perm_list = [(o.id, o.name) for o in self.ct.permission_set.order_by("name")]
-
+
-        obj_list = [(User, User.objects.order_by("username"))]
-        obj_list.extend([(Group, Group.objects.order_by("name"))])
-
+
-        self.fields = (
-            MultipleObjSelectField(field_name="owner", obj_list=obj_list),
-            
+
-            forms.CheckboxField(field_name="negative"),
-    
-
+
+
-    def save(self, new_data):
-        
-        rlp = RowLevelPermission.objects.get(pk=new_data['id'])
-
+
-        self.original_object = rlp
-        self.manager = rlp._default_manager
-        self.opts = rlp._meta
-
-            
-    
+
+
-
-        model_ct = rlp.model_ct
-        model = model_ct.get_object_for_this_type (pk=rlp.model_id)
-        model_id = rlp.model_id
-
+
-        perm = Permission.objects.get(pk=new_data['perm'])
-
-
+
-        field_name_list = ('owner_ct', 'owner_id', 'model_ct', 'model_id', 'permission')
-        field_data = owner_ct.id
-owner.id, 'model_ct_id':model_ct.id, 'model_id':model_id, 'permission_id':
+ owner.id, 'model_ct_id': model_ct.id, 'model_id': model_id, 'permission_id': 
-        manipulators.manipulator_validator_unique_together(field_name_list, self.opts, self, field_data, all_data)
-
+
-        rlp.owner = owner
-        rlp.permission = perm
@@ -59 +57 @@
-        self.fields = (
-            MultipleObjSelectField(field_name="owner", obj_list=obj_list, default_text=_("Select an option")),
-            
+
-            forms.CheckboxField(field_name="negative"),
-    
-
+
+
-    def save(self, new_data):
-        
-        owner = MultipleObjSelectField.returnObject(new_data['owner'])
-
@@ -72 +69 @@
-        ct = ContentType.objects.get_for_model(owner)
-        rlp_list = []
- 
+
-            perm = Permission.objects.get(pk=i)
-
-Check that the new row level perms are unique
+ Check that the new row level perms are unique.
-            field_name_list = ('owner_ct', 'owner_id', 'model_ct', 'model_id', 'permission')
-            field_data = ct.id
- 
-owner.id, 'model_ct_id':self.ct.id, 'model_id':model_id, 'permission_id':
-            
-
+
+ owner.id, 'model_ct_id': self.ct.id, 'model_id': model_id, 'permission_id': 
+
+
-            rlp = RowLevelPermission.objects.create_row_level_permission(self.obj_instance, owner, perm, negative=new_data['negative'])
-            rlp_list.append(rlp)
-
-        
-
+
+
+
-class MultipleObjSelectField(forms.SelectField):
-    """
-    Extends a select field to use more then one type of model in a select field.
-    Uses optgroup in the select field to differentiate between object types.
-
+
-    obj_list should be a list of lists containing the model and a list of objects.
-    E.g. ((User, User.objects.all()), (Group, Group.objects.all))
-
- 
+
+
-    default_text parameter. An example of default text would be "Select an option"
-
+
-    The remaining parameters are very similiar to the normal SelectField.
-
+
-    To return the object selected pass the string result to MultipleObjSelectField.returnObject(string),
-    it returns the object instance.
-
+
-    To create a key for a specific object, use: MultipleObjSelectField.returnKey(object). It has an optional
-    parameter for the content type (ct), if you have already determined the content type and want to save on
-    db queries.
-    """
-
-
-
+
+
-        choice_list = []
-        self.default_text = default_text
-
+ 
-        for obj, obj_choices in obj_list:
-            ct = ContentType.objects.get_for_model(obj)
-            object_choice = [(MultipleObjSelectField.returnKey(o, ct=ct), str(o)) for o in obj_choices]
-            choice_list.extend([(ct.name.title(), object_choice)])
-
-
-
-
+
+
+
-    def render(self, data):
-        from django.utils.html import escape
@@ -127 +122 @@
-             self.is_required and ' required' or '', self.field_name, self.size)]
-        str_data = str(data) # normalize to string
-
+
-        if self.default_text:
-            selected_html = ''
-            if not str_data:
-                selected_html = ' selected="selected"'
-            
-
+
+
-        for obj, obj_choices in self.choices:
-            output.append('    <optgroup label="%s">' % (obj,))
@@ -143 +138 @@
-            output.append('    </optgroup>')
-        output.append('  </select>')
-        
-
+
+
-    def returnObject(data):
-        data = data.split('/')
@@ -154 +149 @@
-        if not ct:
-            ct = ContentType.objects.get_for_model(obj.__class__)
-+"/"+ct.model+"/"+
-
+ + "/" + ct.model + "/" + 
+
-    returnObject = staticmethod(returnObject)
-    returnKey = staticmethod(returnKey)
-        
-        
-        

django/branches/per-object-permissions/django/contrib/admin/templatetags/admin_modify.py

@@ -129 +129 @@
-    def __init__(self, related_object, field_mapping, original):
-        super(TabularBoundRelatedObject, self).__init__(related_object, field_mapping, original)
-
+
-        self.field_wrapper_list = [FieldWrapper(field) for field in self.relation.editable_fields()]
-
+
-        fields = self.relation.editable_fields()
-
+
-        self.form_field_collection_wrappers = [FormFieldCollectionWrapper(field_mapping, fields, i)
-                                               for (i,field_mapping) in self.field_mappings.items() ]
-
+
-        self.original_row_needed = max([fw.use_raw_id_admin() for fw in self.field_wrapper_list])
-        if original:
@@ -156 +156 @@
-        if original:
-            self.original = original
-
+
-        self.show_url = original and hasattr(self.relation.opts, 'get_absolute_url')
-

django/branches/per-object-permissions/django/contrib/admin/utils.py

@@ -101 +101 @@
-    for name, urlbase in ROLES.items():
-        create_reference_role(name, urlbase)
-
-
-
+
+ 
+ 
-
-import sha
- 
+
-from django.contrib.contenttypes.models import ContentType
-
- content_type_id, object_id, hash 
+content_type_id, object_id, hash_
-    hash_match = sha.new("%s/%s" % (content_type_id, object_id) + settings.SECRET_KEY).hexdigest()
-
-
-
-
+
-
-def create_objref(object):
- object 
+object
-    object_id = object.id
- 
+

django/branches/per-object-permissions/django/contrib/auth/models.py

@@ -50 +50 @@
-class RowLevelPermissionManager(models.Manager):
-    def create_row_level_permission(self, model_instance, owner, permission, negative=False):
-=ContentType.objects.get_for_model(model_instance)        
+ = ContentType.objects.get_for_model(model_instance)
-        if isinstance(permission, str):
-__exact
+
-        if model_ct != permission.content_type:
-Invalid value: Permission content type(%s) and object content type
+Permission content type (%s) and object content type 
-        model_id = model_instance._get_pk_val()
-LvlPerm = self.model(model_id=model_id, model_ct=model_ct
-                                     owner_id=owner.id, 
-                                     
-LvlP
-LvlP
-
+_lvl_perm = self.model(model_id=model_id, model_ct=model_ct, owner_id=owner.id
+
+
+_lvl_p
+_lvl_p
+
-    def create_default_row_permissions(self, model_instance, owner, change=True, delete=True, negChange=False, negDel=False):
-        ret_dict = {}
@@ -67 +67 @@
-        if change:
-            change_str = "change_%s" % (model_ct.model)
-=
+ = 
-        if delete:
-            delete_str = "delete_%s" % (model_ct.model)
-=
-    
-
-
-=
+ = 
+
+
+ 
+ = 
-        if isinstance(perm, str):
-            perm = Permission.objects.get(codename__exact=perm, content_type=model_ct.id)
-
-
-
-
-
-
-
+
+
+
+
-        if user_group_list:
-            group_model_ids = RowLevelPermission.objects.filter(owner_ct=ContentType.objects.get_for_model(Group).id,
-
-
-
-
+
+
-        return id_list
-
-class RowLevelPermission(models.Model):
- 
+
-    Similiar to permissions but works on instances of objects instead of types.
- 
+
-    permissions table using a many to one relation.
-    
-    """
-    model_id = models.PositiveIntegerField("'Model' ID")
@@ -105 +99 @@
-    negative = models.BooleanField()
-    permission = models.ForeignKey(Permission)
-    
-    model = models.GenericForeignKey(fk_field='model_id', ct_field='model_ct')
-    owner = models.GenericForeignKey(fk_field='owner_id', ct_field='owner_ct')
-    
-    objects = RowLevelPermissionManager()
-
+
-    class Meta:
-        verbose_name = _('row level permission')
-        verbose_name_plural = _('row level permissions')
-        
+
-
-    class Admin:
@@ -121 +113 @@
-    def __str__(self):
-        return "%s | %s:%s | %s:%s" % (self.permission, self.owner_ct, self.owner, self.model_ct, self.model)
-
+
-    def __repr__(self):
-        return "%s | %s:%s | %s:%s" % (self.permission, self.owner_ct, self.owner, self.model_ct, self.model)
-
-
-class Group(models.Model):
@@ -180 +171 @@
-        help_text=_("In addition to the permissions manually assigned, this user will also get all permissions granted to each group he/she is in."))
-    user_permissions = models.ManyToManyField(Permission, verbose_name=_('user permissions'), blank=True, filter_interface=models.HORIZONTAL)
-
+
-    row_level_permissions_owned = models.GenericRelation(RowLevelPermission, object_id_field="owner_id", content_type_field="owner_ct", related_name="owner")
-
@@ -284 +275 @@
-
-    def check_row_level_permission(self, permission, object):
-=
+ = 
-        if isinstance(permission, str):
-            try:
-__exact
+
-            except Permission.DoesNotExist:
-                return False
-        try:
-            model_id = object._get_pk_val()
-
-
-
+
+
-        except RowLevelPermission.DoesNotExist:
-            return self.check_group_row_level_permissions(permission, object)
@@ -300 +290 @@
-
-    def check_group_row_level_permissions(self, permission, object):
-        #SELECT rlp."negative" 
-        #FROM "auth_user_groups" ug, "auth_rowlevelpermission" rlp 
-        #WHERE rlp."owner_id"=ug."group_id" 
-        #AND ug."user_id"=%s        
-        #AND rlp."owner_ct_id"=%s
-        #AND rlp."model_id"=%s
-        #AND rlp."model_ct_id"=%s
-        #AND rlp."permission_id"=%s;
-        model_id = object._get_pk_val()
-        
+
-        sql = """
-            SELECT rlp.%s
@@ -326 +308 @@
-            backend.quote_name('model_ct_id'), backend.quote_name('permission_id'),
-            backend.quote_name('negative'))
- 
- 
+
+
-                             model_id,
-                             ContentType.objects.get_for_model(object).id,
-                             permission.id,])
-        row = cursor.fetchone()
-
-        if row is None:
-            return None
-        return not row[0]
-        
-
-    def has_perm(self, perm, object=None):
@@ -345 +325 @@
-            return True
-        if object and object._meta.row_level_permissions:
-Since we use the content type for row level perms, we don't need the application name
+ Since we use the content type for row level perms, we don't need the application name.
-            permission_str = perm[perm.index('.')+1:]
-            row_level_permission = self.check_row_level_permission(permission_str, object)
@@ -361 +341 @@
-    def contains_permission(self, perm, model=None):
-        """
- 
+
-        of the given model.
-        """
@@ -370 +350 @@
-            return self.contains_row_level_perm(perm, model)
-        return False
-
+
-    def contains_row_level_perm(self, perm, model):
-        model_ct = ContentType.objects.get_for_model(model)
@@ -377 +357 @@
-        else:
-            permission = perm
-
-
-
+
+
-            return True
-        
+
-
-    def contains_group_row_level_perms(self, perm, ct):
-
-
-
-
-
-
-
-
-
+
-        sql = """
-            SELECT COUNT(*)
@@ -402 +373 @@
-                AND rlp.%s = %%s
-                AND rlp.%s = %%s""" % (
- 
+
-            backend.quote_name('django_content_type'), backend.quote_name('owner_id'),
-            backend.quote_name('group_id'), backend.quote_name('user_id'),
@@ -409 +380 @@
-        cursor.execute(sql, [self.id, False, ContentType.objects.get_for_model(Group).id, ct.id, perm.id])
-        count = int(cursor.fetchone()[0])
-(count>0)
+count > 0
-
-    def has_module_perms(self, app_label):
@@ -417 +388 @@
-        if self.is_superuser:
-            return True
-bool(len([p for p in self.get_all_permissions() if p[:p.index('.')] == app_label]))
+[p for p in self.get_all_permissions() if p[:p.index('.')] == app_label]
-            return True
-        return self.has_module_row_level_perms(app_label)
-
-    def has_module_row_level_perms(self, app_label):
-
-
-
-
-
-
-
-
+
-        sql = """
-            SELECT COUNT(*)
@@ -438 +402 @@
-                AND rlp.%s = %%s
-                AND rlp.%s = %%s
-                    
+
-            backend.quote_name('django_content_type'), backend.quote_name('auth_rowlevelpermission'),
-            backend.quote_name('model_ct_id'), backend.quote_name('id'),
- 
+
-            backend.quote_name('owner_ct_id'),
-            backend.quote_name('owner_id'),backend.quote_name('negative'), )
-
-
-
+
-        count = int(cursor.fetchone()[0])
->
+ > 
-            return True
-        return self.has_module_group_row_level_perms(app_label)
-
+
-    def has_module_group_row_level_perms(self, app_label):
-
-
-
-
-
-
-
-
-
+
-        sql = """
-            SELECT COUNT(*)
@@ -471 +425 @@
-                AND rlp.%s = %%s
-                AND rlp.%s = %%s""" % (
- 
+
-            backend.quote_name('django_content_type'), backend.quote_name('owner_id'),
-            backend.quote_name('group_id'), backend.quote_name('user_id'),
@@ -479 +433 @@
-        cursor.execute(sql, [self.id, app_label, False, ContentType.objects.get_for_model(Group).id])
-        count = int(cursor.fetchone()[0])
-
-
+
-
-    def get_and_delete_messages(self):

django/branches/per-object-permissions/django/contrib/auth/templatetags/auth.py

@@ -1 +1 @@
-from django import template
-from django.template import loader
- 
+
-
-register = template.Library()
@@ -7 +7 @@
-def if_has_perm(parser, token):
-    """
+    TODO: Update document
-
-
-
-
-
-
-
-
-
+
+
+
+
+
-    tokens = token.split_contents()
-<
-s
->
+ < 
+
+ > 
-        raise template.TemplateSyntaxError, "%r tag should have no more then 3 arguments" % tokens[0]
-
+
-    nodelist_true = parser.parse(('else', 'end_'+tokens[0],))
-    token = parser.next_token()
@@ -29 +27 @@
-    else:
-        nodelist_false = template.NodeList()
-
+
-    object_var = None
-    not_flag = False
-is
+==
-        not_flag = True
-=
->
+ = 
+ > 
-            object_var = parser.compile_filter(tokens[3])
-    else:
-=
->
+ = 
+ > 
-            object_var = parser.compile_filter(tokens[2])
-
-            
+
-        raise template.TemplateSyntaxError, "%r tag's argument should be in quotes" % tokens[0]
-
+
-    return HasPermNode(permission[1:-1], not_flag, object_var, nodelist_true, nodelist_false)
-
+
-class HasPermNode(template.Node):
-    def __init__(self, permission, not_flag, object_var, nodelist_true, nodelist_false):
@@ -71 +69 @@
-        return nodes
-
-   
+
-        if self.object_var:
-            try:
@@ -79 +77 @@
-        else:
-            object=None
-
+
-        try:
-            user = template.resolve_variable("user", context)
-        except template.VariableDoesNotExist:
-            return settings.TEMPLATE_STRING_IF_INVALID
-
+
-        bool_perm = user.has_perm(self.permission, object=object)
-        if (self.not_flag and not bool_perm) or (not self.not_flag and bool_perm):
@@ -91 +89 @@
-            return self.nodelist_false.render(context)
-        return ''
-
+
-register.tag('if_has_perm', if_has_perm)

django/branches/per-object-permissions/django/db/models/manipulators.py

@@ -233 +233 @@
-                        new_rel_obj.delete()
-                        self.fields_deleted.append('%s "%s"' % (related.opts.verbose_name, old_rel_obj))
-
-
-        # Save the order, if applicable.