Changeset - 5e69685567c3
Parent rev.
Child rev.
[Not reviewed]
default
0 4 0
Mads Kiilerich - 9 years ago 2016-08-04 14:23:36
madski@unity3d.com
routing: use POST to 'delete_users_group' instead of DELETE
4 files changed with 12 insertions and 12 deletions:
kallithea/config/routing.py
2
2
kallithea/templates/admin/user_groups/user_group_edit_advanced.html
1
1
kallithea/templates/data_table/_dt_elements.html
1
1
kallithea/tests/functional/test_admin_user_groups.py
8
8
0 comments (0 inline, 0 general)
kallithea/config/routing.py
Show inline comments
 
@@ -225,8 +225,8 @@ def make_map(config):
 
                  action="new", conditions=dict(method=["GET"]))
 
        m.connect("update_users_group", "/user_groups/{id}",
 
                  action="update", conditions=dict(method=["PUT"]))
 
        m.connect("delete_users_group", "/user_groups/{id}",
 
                  action="delete", conditions=dict(method=["DELETE"]))
 
        m.connect("delete_users_group", "/user_groups/{id}/delete",
 
                  action="delete", conditions=dict(method=["POST"]))
 
        m.connect("edit_users_group", "/user_groups/{id}/edit",
 
                  action="edit", conditions=dict(method=["GET"]),
 
                  function=check_user_group)
kallithea/templates/admin/user_groups/user_group_edit_advanced.html
Show inline comments
 
@@ -14,7 +14,7 @@
 
%endfor
 
</dl>
 

			




	
	
	
		
 
${h.form(h.url('users_group', id=c.user_group.users_group_id),method='delete')}

			




	
	
	
		
 
${h.form(h.url('delete_users_group', id=c.user_group.users_group_id))}

			




	
	
	
		
 
    <button class="btn btn-small btn-danger" type="submit"

			




	
	
	
		
 
            onclick="return confirm('${_('Confirm to delete this user group: %s') % c.user_group.users_group_name}');">

			




	
	
	
		
 
        <i class="icon-minus-circled"></i>

			




        

    


    
    

    

        

                

                    kallithea/templates/data_table/_dt_elements.html
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -168,7 +168,7 @@

			




	
	
	
		
 
    </a>

			




	
	
	
		
 
 </div>

			




	
	
	
		
 
 <div style="float:left" class="grid_delete">

			




	
	
	
		
 
    ${h.form(h.url('users_group', id=user_group_id),method='delete')}

			




	
	
	
		
 
    ${h.form(h.url('delete_users_group', id=user_group_id))}

			




	
	
	
		
 
      <i class="icon-minus-circled" style="color:#FF4444"></i>

			




	
	
	
		
 
      ${h.submit('remove_',_('Delete'),id="remove_group_%s" % user_group_id, class_="action_button",

			




	
	
	
		
 
      onclick="return confirm('"+_('Confirm to delete this user group: %s') % user_group_name+"');")}

			




        

    


    
    

    

        

                

                    kallithea/tests/functional/test_admin_user_groups.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -54,8 +54,8 @@ class TestAdminUsersGroupsController(Tes

			




	
	
	
		
 
        gr = Session().query(UserGroup) \

			




	
	
	
		
 
            .filter(UserGroup.users_group_name == users_group_name).one()

			




	
	
	
		
 

			




	
	
	
		
 
        response = self.app.post(url('users_group', id=gr.users_group_id),

			




	
	
	
		
 
            params={'_method': 'delete', '_authentication_token': self.authentication_token()})

			




	
	
	
		
 
        response = self.app.post(url('delete_users_group', id=gr.users_group_id),

			




	
	
	
		
 
            params={'_authentication_token': self.authentication_token()})

			




	
	
	
		
 

			




	
	
	
		
 
        gr = Session().query(UserGroup) \

			




	
	
	
		
 
            .filter(UserGroup.users_group_name == users_group_name).scalar()

			




	
	
		
 
@@ -117,8 +117,8 @@ class TestAdminUsersGroupsController(Tes

			




	
	
	
		
 
        # DELETE !

			




	
	
	
		
 
        ug = UserGroup.get_by_group_name(users_group_name)

			




	
	
	
		
 
        ugid = ug.users_group_id

			




	
	
	
		
 
        response = self.app.post(url('users_group', id=ug.users_group_id),

			




	
	
	
		
 
            params={'_method': 'delete', '_authentication_token': self.authentication_token()})

			




	
	
	
		
 
        response = self.app.post(url('delete_users_group', id=ug.users_group_id),

			




	
	
	
		
 
            params={'_authentication_token': self.authentication_token()})

			




	
	
	
		
 
        response = response.follow()

			




	
	
	
		
 
        gr = Session().query(UserGroup) \

			




	
	
	
		
 
            .filter(UserGroup.users_group_name == users_group_name).scalar()

			




	
	
		
 
@@ -184,8 +184,8 @@ class TestAdminUsersGroupsController(Tes

			




	
	
	
		
 
        # DELETE !

			




	
	
	
		
 
        ug = UserGroup.get_by_group_name(users_group_name)

			




	
	
	
		
 
        ugid = ug.users_group_id

			




	
	
	
		
 
        response = self.app.post(url('users_group', id=ug.users_group_id),

			




	
	
	
		
 
            params={'_method': 'delete', '_authentication_token': self.authentication_token()})

			




	
	
	
		
 
        response = self.app.post(url('delete_users_group', id=ug.users_group_id),

			




	
	
	
		
 
            params={'_authentication_token': self.authentication_token()})

			




	
	
	
		
 
        response = response.follow()

			




	
	
	
		
 
        gr = Session().query(UserGroup) \

			




	
	
	
		
 
                           .filter(UserGroup.users_group_name ==

			




	
	
		
 
@@ -200,5 +200,5 @@ class TestAdminUsersGroupsController(Tes

			




	
	
	
		
 
        assert perms == []

			




	
	
	
		
 

			




	
	
	
		
 
    def test_delete_browser_fakeout(self):

			




	
	
	
		
 
        response = self.app.post(url('users_group', id=1),

			




	
	
	
		
 
                                 params=dict(_method='delete', _authentication_token=self.authentication_token()))

			




	
	
	
		
 
        response = self.app.post(url('delete_users_group', id=1),

			




	
	
	
		
 
                                 params=dict(_authentication_token=self.authentication_token()))

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2025 by various authors & licensed under GPLv3.