Added permission app

2025-06-21 01:48:21 +02:00 · 2019-09-18 14:26:42 +02:00
parent 2a2e78f83f
commit 67d1d9f7b7
9 changed files with 182 additions and 0 deletions
--- a/apps/member/backends.py
+++ b/apps/member/backends.py
@ -0,0 +1,33 @@
+from django.contribs.contenttype.models import ContentType
+from member.models import Club, Membership, RolePermissions
+
+
+class PermissionBackend(object):
+    supports_object_permissions = True
+    supports_anonymous_user = False
+    supports_inactive_user = False
+
+    def authenticate(self, username, password):
+        return None
+
+    def permissions(self, user, obj):
+        for membership in user.memberships.all():
+            if not membership.valid() or membership.role is None:
+                continue
+            for permission in RolePermissions.objects.get(role=membership.role).permissions.objects.all():
+                permission = permission.about(user=user, club=membership.club)
+                yield permission
+
+    def has_perm(self, user_obj, perm, obj=None):
+        if obj is None:
+            return False
+        perm = perm.split('_')
+        perm_type = perm[1]
+        perm_field = perm[2] if len(perm) == 3 else None
+        return any(permission.applies(obj, perm_type, perm_field) for obj in self.permissions(user_obj, obj))
+
+    def get_all_permissions(self, user_obj, obj=None):
+        if obj is None:
+            return []
+        else:
+            return list(self.permissions(user_obj, obj))
--- a/apps/member/models.py
+++ b/apps/member/models.py
@ -2,6 +2,8 @@
 # Copyright (C) 2018-2019 by BDE ENS Paris-Saclay
 # SPDX-License-Identifier: GPL-3.0-or-later

+import datetime
+
 from django.conf import settings
 from django.db import models
 from django.db.models.signals import post_save
@ -9,6 +11,7 @@ from django.dispatch import receiver
 from django.utils.translation import gettext_lazy as _
 from django.urls import reverse

+
 class Profile(models.Model):
    """
    An user profile
@ -51,6 +54,7 @@ class Profile(models.Model):
    def get_absolute_url(self):
        return reverse('user_detail',args=(self.pk,))

+
 class Club(models.Model):
    """
    A student club
@ -141,11 +145,29 @@ class Membership(models.Model):
        verbose_name=_('fee'),
    )

+    def valid(self):
+        return self.date_start <= datetime.datetime.now() < self.date_end
+
    class Meta:
        verbose_name = _('membership')
        verbose_name_plural = _('memberships')


+class RolePermissions(models.Model):
+    """
+    Permissions associated with a Role
+    """
+    role = models.ForeignKey(
+        Role,
+        on_delete=models.PROTECT,
+        related_name='+',
+        verbose_name=_('role'),
+    )
+    permissions = models.ManyToManyField(
+        'permission.Permission'
+    )
+
+
 # @receiver(post_save, sender=settings.AUTH_USER_MODEL)
 # def save_user_profile(instance, created, **_kwargs):
 #     """