Context navigation

PatchCPSUserFolderUserFolder.py @ 17945

Last change on this file since 17945 was 4006, checked in by Henrik Bettermann, 16 years ago

resolve ticket aaue #16

Enable assigment of clearance officer role on certificate level. Do not show local roles on search student page.

File size: 6.0 KB

Line
1	from AccessControl import ClassSecurityInfo
2	from ExtensionClass import Base
3	from Acquisition import Implicit
4	from Acquisition import aq_base, aq_parent, aq_inner
5	import re
6	security = ClassSecurityInfo()
7
8	def getCertificateObject(self,st_entry):
9	try:
10	return getattr(getattr(getattr(self.portal_url.getPortalObject().campus.academics,st_entry.faculty),
11	st_entry.department).certificates,st_entry.course)
12	except:
13	return None
14
15	security.declarePublic('getRolesInContext')
16	def getRolesInContext(self, object):
17	"""Get the list of roles assigned to the user.
18	This includes local roles assigned in the context of
19	the passed in object.
20	Knows about local roles blocking (roles starting with '-').
21	"""
22	name = self.getUserName()
23	roles = self.getRoles()
24	# deal with groups
25	groups = self.getComputedGroups()
26	# end groups
27	local = {}
28	stop_loop = 0
29	real_object = object
30	object = aq_inner(object)
31	while 1:
32	# Collect all roles info
33	lrd = {}
34	local_roles = getattr(object, '__ac_local_roles__', None)
35	if local_roles:
36	if callable(local_roles):
37	local_roles = local_roles() or {}
38	for r in local_roles.get(name, ()):
39	if r:
40	lrd[r] = None
41	local_group_roles = getattr(object, '__ac_local_group_roles__', None)
42	if local_group_roles:
43	if callable(local_group_roles):
44	local_group_roles = local_group_roles() or {}
45	for g in groups:
46	for r in local_group_roles.get(g, ()):
47	if r:
48	lrd[r] = None
49	lr = lrd.keys()
50	# Positive role assertions
51	for r in lr:
52	if r[0] != '-':
53	if not local.has_key(r):
54	local[r] = 1 # acquired role
55	# Negative (blocking) role assertions
56	for r in lr:
57	if r[0] == '-':
58	r = r[1:]
59	if not r:
60	# role '-' blocks all acquisition
61	stop_loop = 1
62	break
63	if not local.has_key(r):
64	local[r] = 0 # blocked role
65	if stop_loop:
66	break
67	if hasattr(object, 'aq_parent'):
68	object = aq_inner(object.aq_parent)
69	continue
70	if hasattr(object, 'im_self'):
71	object = aq_inner(object.im_self)
72	continue
73	break
74	roles = list(roles)
75	for r, v in local.items():
76	if v: # only if not blocked
77	roles.append(r)
78	## patch to assign dynamic roles for WAeUP
79	while 1:
80
81	o = ord(name[1])
82	if o >= 48 and o <= 57:
83	break
84	groups = self.portal_membership.getAuthenticatedMember().getGroups()
85	if not ("ClearanceOfficers" in groups or "CourseAdvisers" in groups):
86	break
87	if callable(real_object) and hasattr(real_object,'im_self'):
88	real_object = real_object.im_self
89
90	if real_object is None:
91	break
92	if hasattr(real_object,'portal_type') and\
93	real_object.portal_type not in ("Student",
94	"StudentClearance",
95	"StudentStudyLevel",
96	"StudentPersonal",
97	):
98	break
99	student_id = self.getStudentId()
100	res = self.students_catalog(id=student_id)
101	if len(res) != 1:
102	break
103	st_entry = res[0]
104
105	if real_object.portal_type == "StudentStudyLevel":
106	certificate_obj = getCertificateObject(self,st_entry)
107	if certificate_obj is None:
108	#from pdb import set_trace;set_trace()
109	break
110	if real_object.meta_type.endswith('Folder'): # it is a proxy
111	object = real_object
112	else:
113	object = real_object.aq_parent
114	level = object.getId()
115	d,m = divmod(int(level),100)
116	if m: # its repeater
117	level = "%s" % (d*100)
118	context_obj = getattr(certificate_obj,level,None)
119	if context_obj is None and d > 1:
120	#may-be spillover t
121	level = "%s" % ((d-1)*100)
122	context_obj = getattr(certificate_obj,level,None)
123	if context_obj is None:
124	#from pdb import set_trace;set_trace()
125	break
126	allowed = set(('CourseAdviser', 'SectionManager'))
127	else:
128	allowed = set(('ClearanceOfficer', 'SectionManager'))
129	context_obj = getCertificateObject(self,st_entry)
130	if context_obj is None:
131	break
132	#res = self.portal_catalog(portal_type="Department",id=st_entry.department)
133	#if len(res) != 1:
134	# break
135	#context_obj = res[0].getObject()
136	dynamic_roles = set(self.getRolesInContext(context_obj))
137	intersect = dynamic_roles & allowed
138	if intersect:
139	roles.extend(list(intersect))
140	#from pdb import set_trace;set_trace()
141
142	if real_object.portal_type == "Student" and "CourseAdvisers" in groups:
143	#we need some special processing since CourseAdvisers are only
144	#specified per StudyLevel
145	certificate_obj = getCertificateObject(self,st_entry)
146	if certificate_obj is None:
147	#from pdb import set_trace;set_trace()
148	break
149	allowed = set(('CourseAdviser', 'SectionManager'))
150	for context_obj in certificate_obj.objectValues():
151	dynamic_roles = set(self.getRolesInContext(context_obj))
152	intersect2 = dynamic_roles & allowed
153	if intersect2:
154	roles.extend(list(intersect2))
155
156	break
157	return roles
158
159	from Products.CPSUserFolder.CPSUserFolder import CPSUser
160	CPSUser.getRolesInContext = getRolesInContext

Note: See TracBrowser for help on using the repository browser.

Context navigation

source: WAeUP_SRP/trunk/patches/PatchCPSUserFolderUserFolder.py @ 17945

Download in other formats: