Changeset 7184 for main/waeup.sirp/trunk/src/waeup/sirp/applicants/browser.py

Timestamp:

24 Nov 2011, 09:20:13 (13 years ago)

Author:

Henrik Bettermann

Message:

Reorganise permissions:

The navigation viewlets now manage the permission requirements themselves. No need to do this in pagetemplates.

Rename permission waeup.View to waeup.viewAcademics because it only refers to the academic section.

Add permission waeup.Authenticated (which is used in students). The StudentRecordOwner? explicitly needs this permission. Otherwise the MyData? tab disappears when changing the password.

Roles do not need to get the waeup.Public permission. This is already guaranteed in site.zcml.

File:

• main/waeup.sirp/trunk/src/waeup/sirp/applicants/browser.py (modified) (2 diffs)

main/waeup.sirp/trunk/src/waeup/sirp/applicants/browser.py

@@ -234 +234 @@
         return self.context.access_code
 
-class ApplicantsTab(PrimaryNavTab):
+class ApplicantsAuthTab(PrimaryNavTab):
     """Applicants tab in primary navigation.
     """
-
     grok.context(IWAeUPObject)
     grok.order(3)
-    grok.require('waeup.Public')
+    grok.require('waeup.viewApplication')
     grok.template('primarynavtab')
-
     pnav = 3
     tab_title = u'Applicants'
@@ -249 +247 @@
     def link_target(self):
         return self.view.application_url('applicants')
+
+class ApplicantsAnonTab(ApplicantsAuthTab):
+    """Applicants tab in primary navigation.
+
+    Display tab only for anonymous. Authenticated users can call the
+    form from the user navigation bar.
+    """
+    grok.require('waeup.Anonymous')
+    tab_title = u'Application'
+
+    # Also zope.manager has role Anonymous.
+    # To avoid displaying this tab, uncomment the following.
+    #def tab_title(self):
+    #    userid = self.request.principal.id
+    #    if userid != 'zope.anybody':
+    #        tt = u''
+    #    else:
+    #        tt = u'Application'
+    #    return tt
 
 class ApplicantsContainerPage(WAeUPDisplayFormPage):