mirror of
https://github.com/jazzband/django-admin2.git
synced 2026-03-22 09:03:02 +00:00
e29767a208
Works exactly the same way as that of the standard add/change/delete permissions (the code is in fact copied from there).
146 lines
4.5 KiB
Python
146 lines
4.5 KiB
Python
"""
|
|
|
|
For wont of a better name, this module is called 'models'. It's role is
|
|
synonymous with the django.contrib.admin.sites model.
|
|
|
|
"""
|
|
|
|
from django.contrib.auth import models as auth_app
|
|
from django.db.models import get_models, signals
|
|
|
|
try:
|
|
import floppyforms as forms
|
|
except ImportError:
|
|
from django import forms
|
|
|
|
|
|
class BaseAdmin2(object):
|
|
|
|
search_fields = []
|
|
|
|
# Show the fields to be displayed as columns
|
|
# TODO: Confirm that this is what the Django admin uses
|
|
list_fields = []
|
|
|
|
#This shows up on the DocumentListView of the Posts
|
|
list_actions = []
|
|
|
|
# This shows up in the DocumentDetailView of the Posts.
|
|
document_actions = []
|
|
|
|
# shows up on a particular field
|
|
field_actions = {}
|
|
|
|
fields = None
|
|
exclude = None
|
|
fieldsets = None
|
|
form = forms.ModelForm
|
|
filter_vertical = ()
|
|
filter_horizontal = ()
|
|
radio_fields = {}
|
|
prepopulated_fields = {}
|
|
formfield_overrides = {}
|
|
readonly_fields = ()
|
|
ordering = None
|
|
|
|
|
|
# TODO: make the model argument required after the registration code has been refactored.
|
|
# def __init__(self, model):
|
|
def __init__(self, model=None):
|
|
super(BaseAdmin2, self).__init__()
|
|
|
|
self.model = model
|
|
|
|
|
|
def _user_has_permission(self, user, permission_type, obj=None):
|
|
""" Generic method for checking whether the user has permission of specified type for the model.
|
|
Type can be one of view, add, change, delete.
|
|
You can also specify instance of the model for object-specific permission check.
|
|
"""
|
|
if not user.is_authenticated() or not user.is_staff:
|
|
return False
|
|
opts = self.model._meta
|
|
full_permission_name = '%s.%s_%s' % (opts.app_label, permission_type, opts.object_name.lower())
|
|
return user.has_perm(full_permission_name, obj)
|
|
|
|
def has_view_permission(self, request, obj=None):
|
|
""" Can view this object """
|
|
return self._user_has_permission(request.user, 'view', obj)
|
|
|
|
def has_edit_permission(self, request, obj=None):
|
|
""" Can edit this object """
|
|
return self._user_has_permission(request.user, 'change', obj)
|
|
|
|
def has_add_permission(self, request, obj=None):
|
|
""" Can add this object """
|
|
return self._user_has_permission(request.user, 'add', obj)
|
|
|
|
def has_delete_permission(self, request, obj=None):
|
|
""" Can delete this object """
|
|
return self._user_has_permission(request.user, 'delete', obj)
|
|
|
|
|
|
class Admin2(BaseAdmin2):
|
|
|
|
list_display = ('__str__',)
|
|
list_display_links = ()
|
|
list_filter = ()
|
|
list_select_related = False
|
|
list_per_page = 100
|
|
list_max_show_all = 200
|
|
list_editable = ()
|
|
search_fields = ()
|
|
save_as = False
|
|
save_on_top = False
|
|
|
|
|
|
|
|
def create_permissions(app, created_models, verbosity, **kwargs):
|
|
"""
|
|
Creates 'view' permissions for all models.
|
|
django.contrib.auth only creates add, change and delete permissions. Since we also support read-only views, we need
|
|
to add our own extra permission.
|
|
Copied from django.contrib.auth.management.create_permissions
|
|
"""
|
|
from django.contrib.contenttypes.models import ContentType
|
|
|
|
def _get_permission_codename(action, opts):
|
|
return u'%s_%s' % (action, opts.object_name.lower())
|
|
|
|
app_models = get_models(app)
|
|
|
|
# This will hold the permissions we're looking for as
|
|
# (content_type, (codename, name))
|
|
searched_perms = list()
|
|
# The codenames and ctypes that should exist.
|
|
ctypes = set()
|
|
for klass in app_models:
|
|
ctype = ContentType.objects.get_for_model(klass)
|
|
ctypes.add(ctype)
|
|
|
|
opts = klass._meta
|
|
perm = (_get_permission_codename('view', opts), u'Can view %s' % opts.verbose_name_raw)
|
|
searched_perms.append((ctype, perm))
|
|
|
|
# Find all the Permissions that have a context_type for a model we're
|
|
# looking for. We don't need to check for codenames since we already have
|
|
# a list of the ones we're going to create.
|
|
all_perms = set(auth_app.Permission.objects.filter(
|
|
content_type__in=ctypes,
|
|
).values_list(
|
|
"content_type", "codename"
|
|
))
|
|
|
|
objs = [
|
|
auth_app.Permission(codename=codename, name=name, content_type=ctype)
|
|
for ctype, (codename, name) in searched_perms
|
|
if (ctype.pk, codename) not in all_perms
|
|
]
|
|
auth_app.Permission.objects.bulk_create(objs)
|
|
if verbosity >= 2:
|
|
for obj in objs:
|
|
print "Adding permission '%s'" % obj
|
|
|
|
|
|
signals.post_syncdb.connect(create_permissions,
|
|
dispatch_uid = "django-admin2.djadmin2.models.create_permissions")
|