Changeset - 16253f330094
Parent rev.
Child rev.
[Not reviewed]
default
0 1 0
Marcin Kuzminski - 15 years ago 2010-08-25 18:15:50
marcin@python-works.com
fixes #30. Rewrite default permissions query + some other small fixes
1 file changed with 11 insertions and 9 deletions:
pylons_app/lib/auth.py
11
9
0 comments (0 inline, 0 general)
pylons_app/lib/auth.py
Show inline comments
 
@@ -138,22 +138,21 @@ def fill_perms(user):
 
    user.permissions['repositories'] = {}
 
    user.permissions['global'] = set()
 
 
    #===========================================================================
 
    # fetch default permissions
 
    #===========================================================================
 
    default_perms = sa.query(RepoToPerm, UserToPerm, Repository, Permission)\
 
        .outerjoin((UserToPerm, RepoToPerm.user_id == UserToPerm.user_id))\
 
    default_perms = sa.query(RepoToPerm, Repository, Permission)\
 
        .join((Repository, RepoToPerm.repository_id == Repository.repo_id))\
 
        .join((Permission, RepoToPerm.permission_id == Permission.permission_id))\
 
        .filter(RepoToPerm.user_id == sa.query(User).filter(User.username ==
 
                                            'default').one().user_id).all()
 
        .filter(RepoToPerm.user == sa.query(User).filter(User.username ==
 
                                            'default').scalar()).all()
 
 
    if user.is_admin:
 
        #=======================================================================
 
        # #admin have all rights set to admin
 
        # #admin have all default rights set to admin
 
        #=======================================================================
 
        user.permissions['global'].add('hg.admin')
 
 
        for perm in default_perms:
 
            p = 'repository.admin'
 
            user.permissions['repositories'][perm.RepoToPerm.repository.repo_name] = p
 
@@ -161,14 +160,18 @@ def fill_perms(user):
 
    else:
 
        #=======================================================================
 
        # set default permissions
 
        #=======================================================================
 
 
        #default global
 
        for perm in default_perms:
 
            user.permissions['global'].add(perm.UserToPerm.permission.permission_name)
 
        default_global_perms = sa.query(UserToPerm)\
 
            .filter(UserToPerm.user == sa.query(User).filter(User.username ==
 
            'default').one())
 
 
        for perm in default_global_perms:
 
            user.permissions['global'].add(perm.permission.permission_name)
 
 
        #default repositories
 
        for perm in default_perms:
 
            if perm.Repository.private and not perm.Repository.user_id == user.user_id:
 
                #disable defaults for private repos,
 
                p = 'repository.none'
 
@@ -180,14 +183,13 @@ def fill_perms(user):
 
 
            user.permissions['repositories'][perm.RepoToPerm.repository.repo_name] = p
 
 
        #=======================================================================
 
        # #overwrite default with user permissions if any
 
        #=======================================================================
 
        user_perms = sa.query(RepoToPerm, UserToPerm, Permission, Repository)\
 
            .outerjoin((UserToPerm, RepoToPerm.user_id == UserToPerm.user_id))\
 
        user_perms = sa.query(RepoToPerm, Permission, Repository)\
 
            .join((Repository, RepoToPerm.repository_id == Repository.repo_id))\
 
            .join((Permission, RepoToPerm.permission_id == Permission.permission_id))\
 
            .filter(RepoToPerm.user_id == user.user_id).all()
 
 
        for perm in user_perms:
 
            if perm.Repository.user_id == user.user_id:#set admin if owner
0 comments (0 inline, 0 general)
This site is powered by Kallithea 0.7.0, which is © 2010–2025 by various authors & licensed under GPLv3.