Update a lot of things

2020-03-07 13:12:17 +01:00 · 2020-03-07 13:12:17 +01:00 · 30ce17b644
commit 30ce17b644
parent a014a97e14
11 changed files with 75 additions and 62 deletions
--- a/apps/member/backends.py
+++ b/apps/member/backends.py
@ -1,33 +1,37 @@
-from django.contribs.contenttype.models import ContentType
+# Copyright (C) 2018-2020 by BDE ENS Paris-Saclay
+# SPDX-License-Identifier: GPL-3.0-or-later
+
 from member.models import Club, Membership, RolePermissions
+from django.contrib.auth.backends import ModelBackend


-class PermissionBackend(object):
+class PermissionBackend(ModelBackend):
    supports_object_permissions = True
    supports_anonymous_user = False
    supports_inactive_user = False

-    def authenticate(self, username, password):
-        return None
-
-    def permissions(self, user, obj):
-        for membership in user.memberships.all():
-            if not membership.valid() or membership.role is None:
+    def permissions(self, user):
+        for membership in Membership.objects.filter(user=user).all():
+            if not membership.valid() or membership.roles is None:
                continue
-            for permission in RolePermissions.objects.get(role=membership.role).permissions.objects.all():
-                permission = permission.about(user=user, club=membership.club)
-                yield permission
+            for role_permissions in RolePermissions.objects.filter(role=membership.roles).all():
+                for permission in role_permissions.permissions.all():
+                    permission = permission.about(user=user, club=membership.club)
+                    yield permission

    def has_perm(self, user_obj, perm, obj=None):
+        if user_obj.is_superuser:
+            return True
+
        if obj is None:
            return False
        perm = perm.split('_', 3)
        perm_type = perm[1]
        perm_field = perm[2] if len(perm) == 3 else None
-        return any(permission.applies(obj, perm_type, perm_field) for obj in self.permissions(user_obj, obj))
+        return any(permission.applies(obj, perm_type, perm_field) for permission in self.permissions(user_obj))
+
+    def has_module_perms(self, user_obj, app_label):
+        return False

    def get_all_permissions(self, user_obj, obj=None):
-        if obj is None:
-            return []
-        else:
-            return list(self.permissions(user_obj, obj))
+        return list(self.permissions(user_obj))