Context navigation

source: WAeUP_SRP/base/PatchCPSUserFolderUserFolder.py @ 2704

Last change on this file since 2704 was 2696, checked in by Henrik Bettermann, 17 years ago
allow ClearanceOfficer? to edit student subobjects
File size: 5.6 KB

Rev	Line
[880]	1	from AccessControl import ClassSecurityInfo
	2	from ExtensionClass import Base
	3	from Acquisition import Implicit
	4	from Acquisition import aq_base, aq_parent, aq_inner
[1957]	5	import re
[880]	6	security = ClassSecurityInfo()
	7
[2055]	8	def getCertificateObject(self,st_entry):
	9	try:
[2057]	10	return getattr(getattr(getattr(self.portal_url.getPortalObject().campus.academics,st_entry.faculty),
	11	st_entry.department).certificates,st_entry.course)
[2055]	12	except:
	13	return None
[2057]	14
[880]	15	security.declarePublic('getRolesInContext')
	16	def getRolesInContext(self, object):
[881]	17	"""Get the list of roles assigned to the user.
	18	This includes local roles assigned in the context of
	19	the passed in object.
	20	Knows about local roles blocking (roles starting with '-').
	21	"""
[880]	22	name = self.getUserName()
	23	roles = self.getRoles()
[881]	24	# deal with groups
	25	groups = self.getComputedGroups()
	26	# end groups
[880]	27	local = {}
	28	stop_loop = 0
[881]	29	real_object = object
[880]	30	object = aq_inner(object)
	31	while 1:
	32	# Collect all roles info
	33	lrd = {}
	34	local_roles = getattr(object, '__ac_local_roles__', None)
	35	if local_roles:
	36	if callable(local_roles):
	37	local_roles = local_roles() or {}
	38	for r in local_roles.get(name, ()):
	39	if r:
	40	lrd[r] = None
	41	local_group_roles = getattr(object, '__ac_local_group_roles__', None)
	42	if local_group_roles:
	43	if callable(local_group_roles):
	44	local_group_roles = local_group_roles() or {}
	45	for g in groups:
	46	for r in local_group_roles.get(g, ()):
	47	if r:
	48	lrd[r] = None
	49	lr = lrd.keys()
	50	# Positive role assertions
	51	for r in lr:
	52	if r[0] != '-':
	53	if not local.has_key(r):
	54	local[r] = 1 # acquired role
	55	# Negative (blocking) role assertions
	56	for r in lr:
	57	if r[0] == '-':
	58	r = r[1:]
	59	if not r:
	60	# role '-' blocks all acquisition
	61	stop_loop = 1
	62	break
	63	if not local.has_key(r):
	64	local[r] = 0 # blocked role
	65	if stop_loop:
	66	break
[881]	67	if hasattr(object, 'aq_parent'):
	68	object = aq_inner(object.aq_parent)
[880]	69	continue
	70	if hasattr(object, 'im_self'):
[881]	71	object = aq_inner(object.im_self)
[880]	72	continue
	73	break
	74	roles = list(roles)
	75	for r, v in local.items():
	76	if v: # only if not blocked
	77	roles.append(r)
	78	## patch to assign dynamic roles for WAeUP
[2057]	79	while 1:
[2696]	80
[2057]	81	o = ord(name[1])
[1959]	82	if o >= 48 and o <= 57:
[1563]	83	break
[1576]	84	groups = self.portal_membership.getAuthenticatedMember().getGroups()
[1578]	85	if not ("ClearanceOfficers" in groups or "CourseAdvisers" in groups):
[1576]	86	break
[1035]	87	if callable(real_object) and hasattr(real_object,'im_self'):
	88	real_object = real_object.im_self
[1547]	89
[1563]	90	if real_object is None:
	91	break
[1035]	92	if hasattr(real_object,'portal_type') and\
[1576]	93	real_object.portal_type not in ("Student",
	94	"StudentClearance",
[2055]	95	"StudentStudyLevel",
[2696]	96	"StudentPersonal",
[2055]	97	):
[880]	98	break
[1076]	99	student_id = self.getStudentId()
	100	res = self.students_catalog(id=student_id)
[1066]	101	if len(res) != 1:
	102	break
[1549]	103	st_entry = res[0]
[2696]	104
	105	if real_object.portal_type in ("StudentStudyLevel"):
[2055]	106	certificate_obj = getCertificateObject(self,st_entry)
	107	if certificate_obj is None:
[2057]	108	#from pdb import set_trace;set_trace()
[2055]	109	break
	110	if real_object.meta_type.endswith('Folder'): # it is a proxy
	111	object = real_object
[1612]	112	else:
[2055]	113	object = real_object.aq_parent
	114	if real_object.portal_type == "StudentStudyLevel":
	115	level = object.getId()
	116	context_obj = getattr(certificate_obj,level,None)
[1576]	117	if context_obj is None:
[1612]	118	#from pdb import set_trace;set_trace()
[1576]	119	break
[1581]	120	allowed = set(('CourseAdviser', 'SectionManager'))
	121	elif real_object.portal_type == "Student" and "CourseAdvisers" in groups:
[1607]	122	#we need some special processing since CourseAdvisers are only
[1581]	123	#specified per StudyLevel
[2055]	124	certificate_obj = getCertificateObject(self,st_entry)
	125	if certificate_obj is None:
[2057]	126	#from pdb import set_trace;set_trace()
[2055]	127	break
[1581]	128	allowed = set(('CourseAdviser', 'SectionManager'))
	129	for context_obj in certificate_obj.objectValues():
	130	dynamic_roles = set(self.getRolesInContext(context_obj))
	131	intersect = dynamic_roles & allowed
	132	if intersect:
	133	roles.extend(list(intersect))
	134	break
[1549]	135	else:
[2065]	136	res = self.portal_catalog(portal_type="Department",id=st_entry.department)
[1581]	137	allowed = set(('ClearanceOfficer', 'SectionManager'))
[1549]	138	if len(res) != 1:
	139	break
	140	context_obj = res[0].getObject()
[1581]	141	dynamic_roles = set(self.getRolesInContext(context_obj))
	142	intersect = dynamic_roles & allowed
	143	if intersect:
	144	roles.extend(list(intersect))
[880]	145	break
	146	return roles
	147
[881]	148	from Products.CPSUserFolder.CPSUserFolder import CPSUser
	149	CPSUser.getRolesInContext = getRolesInContext

Note: See TracBrowser for help on using the repository browser.

Download in other formats: