Context navigation

source: WAeUP_SRP/trunk/PatchCPSUserFolderUserFolder.py @ 1977

Last change on this file since 1977 was 1959, checked in by joachim, 17 years ago
faster method to detect isStudent
File size: 6.3 KB

Line
1	from AccessControl import ClassSecurityInfo
2	from ExtensionClass import Base
3	from Acquisition import Implicit
4	from Acquisition import aq_base, aq_parent, aq_inner
5	import re
6	security = ClassSecurityInfo()
7
8	security.declarePublic('getRolesInContext')
9	def getRolesInContext(self, object):
10	"""Get the list of roles assigned to the user.
11	This includes local roles assigned in the context of
12	the passed in object.
13	Knows about local roles blocking (roles starting with '-').
14	"""
15	name = self.getUserName()
16	roles = self.getRoles()
17	# deal with groups
18	groups = self.getComputedGroups()
19	# end groups
20	local = {}
21	stop_loop = 0
22	real_object = object
23	object = aq_inner(object)
24	while 1:
25	# Collect all roles info
26	lrd = {}
27	local_roles = getattr(object, '__ac_local_roles__', None)
28	if local_roles:
29	if callable(local_roles):
30	local_roles = local_roles() or {}
31	for r in local_roles.get(name, ()):
32	if r:
33	lrd[r] = None
34	local_group_roles = getattr(object, '__ac_local_group_roles__', None)
35	if local_group_roles:
36	if callable(local_group_roles):
37	local_group_roles = local_group_roles() or {}
38	for g in groups:
39	for r in local_group_roles.get(g, ()):
40	if r:
41	lrd[r] = None
42	lr = lrd.keys()
43	# Positive role assertions
44	for r in lr:
45	if r[0] != '-':
46	if not local.has_key(r):
47	local[r] = 1 # acquired role
48	# Negative (blocking) role assertions
49	for r in lr:
50	if r[0] == '-':
51	r = r[1:]
52	if not r:
53	# role '-' blocks all acquisition
54	stop_loop = 1
55	break
56	if not local.has_key(r):
57	local[r] = 0 # blocked role
58	if stop_loop:
59	break
60	if hasattr(object, 'aq_parent'):
61	object = aq_inner(object.aq_parent)
62	continue
63	if hasattr(object, 'im_self'):
64	object = aq_inner(object.im_self)
65	continue
66	break
67	roles = list(roles)
68	for r, v in local.items():
69	if v: # only if not blocked
70	roles.append(r)
71	## patch to assign dynamic roles for WAeUP
72	while 1:
73	#if self.isStudent():
74	# break
75	# if re.match(r'\D\d\d\d\d\d\d',name):
76	# break
77	#if len(name) != 7:
78	# break
79	#try:
80	# int(name[1:])
81	#except:
82	# break
83	o = ord(name[1])
84	if o >= 48 and o <= 57:
85	break
86	groups = self.portal_membership.getAuthenticatedMember().getGroups()
87	if not ("ClearanceOfficers" in groups or "CourseAdvisers" in groups):
88	break
89	if callable(real_object) and hasattr(real_object,'im_self'):
90	real_object = real_object.im_self
91
92	if real_object is None:
93	break
94	if hasattr(real_object,'portal_type') and\
95	real_object.portal_type not in ("Student",
96	"StudentClearance",
97	"StudentStudyLevel"):
98	break
99
100	# don't test if it is not a proxy
101	#if real_object.portal_type == real_object.meta_type:
102	# break
103
104	# can be later simplified by replacing by students_catalog values - Henrik
105	# getattr works always because of acquisition ?! Henrik
106	sc = getattr(real_object,'study_course',None)
107	if sc is None:
108	break
109	sc_obj = sc.getContent()
110	cert_id = sc_obj.study_course
111	res_cert = self.portal_catalog(id = cert_id)
112	if len(res_cert) != 1:
113	break
114	certificate_brain = res_cert[0]
115	certificate_obj = certificate_brain.getObject()
116	cert_path = certificate_brain.getPath().split('/')
117	fac_id = cert_path[-4]
118	dep_id = cert_path[-3]
119	# temporary self-healing function
120	# deprecated after reindexing the students_catalog
121	student_id = self.getStudentId()
122	res = self.students_catalog(id=student_id)
123	if len(res) != 1:
124	break
125	st_entry = res[0]
126	if st_entry.faculty != fac_id or\
127	st_entry.department != dep_id or\
128	st_entry.course != cert_id:
129	self.students_catalog.modifyRecord(id = student_id,
130	faculty = fac_id,
131	department = dep_id,
132	course = cert_id
133	)
134	if real_object.portal_type == "StudentStudyLevel":
135	if real_object.meta_type != "StudentStudyLevel":
136	context_obj = getattr(certificate_obj,real_object.getId(),None)
137	else:
138	context_obj = getattr(certificate_obj,real_object.aq_parent.getId(),None)
139	if context_obj is None:
140	#from pdb import set_trace;set_trace()
141	break
142	allowed = set(('CourseAdviser', 'SectionManager'))
143	elif real_object.portal_type == "Student" and "CourseAdvisers" in groups:
144	#we need some special processing since CourseAdvisers are only
145	#specified per StudyLevel
146	allowed = set(('CourseAdviser', 'SectionManager'))
147	for context_obj in certificate_obj.objectValues():
148	dynamic_roles = set(self.getRolesInContext(context_obj))
149	intersect = dynamic_roles & allowed
150	if intersect:
151	roles.extend(list(intersect))
152	break
153	else:
154	res = self.portal_catalog(portal_type="Department",id=dep_id)
155	allowed = set(('ClearanceOfficer', 'SectionManager'))
156	if len(res) != 1:
157	break
158	context_obj = res[0].getObject()
159	dynamic_roles = set(self.getRolesInContext(context_obj))
160	intersect = dynamic_roles & allowed
161	if intersect:
162	roles.extend(list(intersect))
163	break
164	return roles
165
166	from Products.CPSUserFolder.CPSUserFolder import CPSUser
167	CPSUser.getRolesInContext = getRolesInContext

Note: See TracBrowser for help on using the repository browser.

Download in other formats: